Zpomalený notebook, prosím o kontrolu

[Márty84]

Pokud nemate, zazalohujte si radeji dulezita data (fotky, dokumenty, atd.)

Nepouzivejte ComboFix bez predchozi domluvy! Je to poruseni pravidel fora a ztratite tim narok na pomoc!

Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Kliknete na ComboFix pravym mysidlem a levym na Spustit jako spravce
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace
Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradku

[M.Lukes]

Zde je LOG:

ComboFix 14-10-24.01 - Lukeš_CZ 24.10.2014 2:18.1.1 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.2814.1952 [GMT 2:00]
Spuštěný z: c:\users\LukeÜ_CZ\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
FW: avast! Antivirus *Disabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-09-24 do 2014-10-24 )))))))))))))))))))))))))))))))
.
.
2014-10-24 00:33 . 2014-10-24 00:33 -------- d-----w- c:\users\Guest\AppData\Local\temp
2014-10-24 00:33 . 2014-10-24 00:33 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-10-23 20:56 . 2014-10-23 21:13 -------- d-----w- C:\AdwCleaner
2014-10-23 15:16 . 2014-10-23 15:16 -------- d-----w- c:\programdata\Malwarebytes
2014-10-23 11:59 . 2014-10-23 11:59 512 ----a-w- C:\PhysicalMBR.bin
2014-10-22 17:27 . 2014-10-22 17:27 26136 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2014-10-22 17:27 . 2014-10-22 17:07 291352 ----a-w- c:\windows\system32\aswBoot.exe
2014-10-22 17:27 . 2014-10-22 17:27 271288 ----a-w- c:\windows\system32\drivers\aswNdisFlt.sys
2014-10-22 17:10 . 2014-10-22 17:10 -------- d-----w- c:\users\Lukeš_CZ\AppData\Roaming\AVAST Software
2014-10-22 17:07 . 2014-10-22 17:07 91496 ----a-w- c:\windows\system32\drivers\aswStm.sys
2014-10-22 17:07 . 2014-10-22 17:07 206248 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-10-22 17:07 . 2014-10-22 17:07 422760 ----a-w- c:\windows\system32\drivers\aswSP.sys
2014-10-22 17:07 . 2014-10-22 17:07 70384 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-10-22 17:07 . 2014-10-22 17:07 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-10-22 17:07 . 2014-10-22 17:07 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-10-22 17:07 . 2014-10-22 17:07 81768 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2014-10-22 17:07 . 2014-10-22 17:07 787800 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2014-10-22 17:07 . 2014-10-22 17:07 43152 ----a-w- c:\windows\avastSS.scr
2014-10-22 17:05 . 2014-10-22 17:05 -------- d-----w- c:\program files\AVAST Software
2014-10-22 00:13 . 2014-10-22 00:13 -------- d-----w- c:\windows\system32\vbox
2014-10-21 11:34 . 2014-10-14 20:13 8901368 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{327D8CED-8FE4-4290-8DC5-D7EB3A0DA965}\mpengine.dll
2014-10-20 10:20 . 2014-10-20 10:20 -------- d-----w- c:\program files\LogMeIn Hamachi
2014-10-17 22:27 . 2014-10-17 22:27 -------- d-----w- c:\windows\cs
2014-10-17 22:24 . 2014-10-17 22:26 -------- d-----w- c:\program files\Windows Live
2014-10-17 22:23 . 2010-06-02 02:55 74072 ----a-w- c:\windows\system32\XAPOFX1_5.dll
2014-10-17 22:23 . 2010-06-02 02:55 527192 ----a-w- c:\windows\system32\XAudio2_7.dll
2014-10-17 22:23 . 2010-05-26 09:41 2106216 ----a-w- c:\windows\system32\D3DCompiler_43.dll
2014-10-17 22:23 . 2010-05-26 09:41 248672 ----a-w- c:\windows\system32\d3dx11_43.dll
2014-10-17 22:22 . 2009-09-04 15:29 453456 ----a-w- c:\windows\system32\d3dx10_42.dll
2014-10-17 22:21 . 2006-11-29 11:06 3426072 ----a-w- c:\windows\system32\d3dx9_32.dll
2014-10-17 22:18 . 2014-10-18 15:14 -------- d-----w- c:\users\Lukeš_CZ\AppData\Local\Windows Live
2014-10-17 22:17 . 2014-10-17 22:17 -------- d-----w- c:\program files\Common Files\Windows Live
2014-10-16 18:07 . 2014-10-16 18:14 -------- d-----w- c:\program files\trend micro
2014-10-16 18:07 . 2014-10-16 18:14 -------- d-----w- C:\rsit
2014-10-15 17:33 . 2014-10-10 01:44 230912 ----a-w- c:\windows\system32\generaltel.dll
2014-10-15 17:29 . 2014-07-07 01:40 988160 ----a-w- c:\windows\system32\drmv2clt.dll
2014-10-13 13:37 . 2014-10-13 13:37 -------- d-----w- c:\users\Lukeš_CZ\AppData\Local\Skype
2014-10-13 13:37 . 2014-10-23 21:29 -------- d-----w- c:\users\Lukeš_CZ\AppData\Roaming\Skype
2014-10-13 13:36 . 2014-10-13 13:36 -------- d-----w- c:\program files\Common Files\Skype
2014-10-13 13:36 . 2014-10-13 13:36 -------- d-----r- c:\program files\Skype
2014-10-10 16:24 . 2014-10-23 20:48 -------- d-----w- c:\program files\The KMPlayer
2014-10-09 11:58 . 2010-08-30 06:34 536576 ----a-w- c:\windows\system32\sqlite3.dll
2014-10-08 20:00 . 2014-10-08 20:00 -------- d-----w- c:\users\Lukeš_CZ\AppData\Roaming\OpenOffice
2014-10-08 15:54 . 2014-10-08 15:55 -------- d-----w- c:\users\Lukeš_CZ\AppData\Local\Temporary Projects
2014-10-08 15:13 . 2014-10-08 15:45 188128 ----a-w- c:\programdata\Microsoft\VCSExpress\10.0\1033\ResourceCache.dll
2014-10-06 20:08 . 2014-10-06 20:08 -------- d-----w- c:\programdata\VS
2014-10-06 19:51 . 2014-10-06 19:51 -------- d-----w- c:\program files\Microsoft Synchronization Services
2014-10-06 19:51 . 2014-10-17 22:26 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2014-10-06 19:46 . 2014-10-06 19:46 -------- d-----w- c:\program files\Microsoft.NET
2014-10-06 19:46 . 2014-10-06 19:46 -------- d-----w- c:\windows\symbols
2014-10-06 19:45 . 2014-10-06 19:45 -------- d-----w- c:\program files\Microsoft SDKs
2014-10-06 19:45 . 2014-10-06 19:45 -------- d-----w- c:\program files\Microsoft Help Viewer
2014-10-06 19:45 . 2014-10-06 19:45 -------- d-----w- c:\program files\Common Files\Merge Modules
2014-10-06 19:45 . 2014-10-08 16:04 -------- d-----w- c:\program files\Microsoft Visual Studio 10.0
2014-10-03 19:33 . 2014-10-03 20:17 -------- d-----w- c:\windows\system32\14100301_stream
2014-10-03 11:15 . 2014-10-03 19:27 -------- d-----w- c:\windows\system32\14100300_stream
2014-10-02 19:09 . 2014-10-20 10:18 -------- d-----w- c:\program files\Microsoft Silverlight
2014-10-02 19:07 . 2014-10-19 12:48 112832 ----a-w- c:\programdata\Microsoft\VCExpress\10.0\1033\ResourceCache.dll
2014-10-02 19:02 . 2014-10-02 19:02 -------- d-----w- c:\windows\PCHEALTH
2014-10-01 21:43 . 2014-10-01 21:43 -------- d-----w- c:\programdata\regid.1986-12.com.adobe
2014-10-01 21:25 . 2014-10-01 21:25 -------- d-----w- c:\program files\Common Files\Adobe AIR
2014-10-01 21:15 . 2014-10-01 21:43 -------- d-----w- c:\program files\Common Files\Adobe
2014-10-01 13:01 . 2014-09-25 01:40 519680 ----a-w- c:\windows\system32\qdvd.dll
2014-09-30 07:25 . 2014-09-30 14:58 -------- d-----w- c:\users\Guest\AppData\Local\LogMeIn Hamachi
2014-09-30 07:25 . 2014-09-30 07:25 -------- d-----w- c:\users\Guest\AppData\Local\LogMeIn
2014-09-28 18:53 . 2009-03-18 16:35 26176 ---ha-w- c:\windows\system32\hamachi.sys
2014-09-28 18:53 . 2014-10-20 19:27 -------- d-----w- c:\users\Lukeš_CZ\AppData\Local\LogMeIn Hamachi
2014-09-28 18:53 . 2014-09-28 18:53 -------- d-----w- c:\users\Lukeš_CZ\AppData\Local\LogMeIn
2014-09-28 18:53 . 2014-09-28 18:53 -------- d-----w- c:\programdata\LogMeIn
2014-09-28 17:11 . 2014-09-28 17:11 -------- d-----w- c:\users\Guest\AppData\Local\Google
2014-09-26 22:38 . 2014-09-26 22:38 -------- d-----w- c:\users\Lukeš_CZ\AppData\Local\ElevatedDiagnostics
2014-09-26 19:01 . 2014-10-02 16:27 -------- d-----w- c:\users\Lukeš_CZ\AppData\Roaming\FileZilla
2014-09-26 19:01 . 2014-09-26 19:02 -------- d-----w- c:\program files\FileZilla FTP Client
2014-09-26 17:01 . 2014-10-16 15:03 -------- d-----w- c:\program files\Mozilla Maintenance Service
2014-09-24 18:15 . 2014-09-24 18:15 -------- d-----w- c:\program files\Eidos
2014-09-24 14:39 . 2014-09-09 21:47 2048 ----a-w- c:\windows\system32\tzres.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-10-20 11:42 . 2014-09-21 14:27 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-10-20 11:42 . 2014-09-21 14:27 701104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-10-17 22:24 . 2012-07-17 12:37 23256 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-10-02 13:53 . 2014-09-20 15:08 231568 ------w- c:\windows\system32\MpSigStub.exe
2014-09-22 12:28 . 2014-09-22 12:28 243128 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2014-09-21 13:38 . 2014-09-21 13:39 129552 ----a-w- c:\windows\system32\drivers\ahcix86s.sys
2014-09-21 13:38 . 2014-09-21 13:39 266240 ----a-w- c:\windows\system32\Oemdspif.dll
2014-09-21 13:38 . 2014-09-21 13:39 14352 ----a-w- c:\windows\system32\drivers\AtiPcie.sys
2014-09-21 13:38 . 2014-09-21 13:39 4427264 ----a-w- c:\windows\system32\atiumdva.dll
2014-09-21 13:38 . 2014-09-21 13:39 3691008 ----a-w- c:\windows\system32\atiumdag.dll
2014-09-21 13:38 . 2014-09-21 13:39 331776 ----a-w- c:\windows\system32\atipdlxx.dll
2014-09-21 13:38 . 2014-09-21 13:39 159744 ----a-w- c:\windows\system32\atitmmxx.dll
2014-09-21 13:38 . 2014-09-21 13:39 9306112 ----a-w- c:\windows\system32\atioglxx.dll
2014-09-21 13:38 . 2014-09-21 13:39 3847168 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2014-09-21 13:38 . 2014-09-21 13:39 90112 ----a-w- c:\windows\system32\atibrtmon.exe
2014-09-21 13:38 . 2014-09-21 13:39 692224 ----a-w- c:\windows\system32\Ati2evxx.exe
2014-09-21 13:38 . 2014-09-21 13:39 42496 ----a-w- c:\windows\system32\atiadlxx.dll
2014-09-21 13:38 . 2014-09-21 13:39 421888 ----a-w- c:\windows\system32\ATIDEMGX.dll
2014-09-21 13:38 . 2014-09-21 13:39 270336 ----a-w- c:\windows\system32\Ati2evxx.dll
2014-09-21 13:38 . 2014-09-21 13:39 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2014-09-21 13:38 . 2014-09-21 13:39 50688 ----a-w- c:\windows\system32\amdpcom32.dll
2014-09-21 13:38 . 2014-09-21 13:39 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2014-09-20 17:34 . 2014-09-20 17:34 71680 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2014-09-20 17:34 . 2014-09-20 17:34 645120 ----a-w- c:\windows\system32\jsIntl.dll
2014-09-20 17:34 . 2014-09-20 17:34 62464 ----a-w- c:\windows\system32\tdc.ocx
2014-09-20 17:34 . 2014-09-20 17:34 337408 ----a-w- c:\windows\system32\html.iec
2014-09-20 17:34 . 2014-09-20 17:34 24576 ----a-w- c:\windows\system32\licmgr10.dll
2014-09-20 17:34 . 2014-09-20 17:34 194048 ----a-w- c:\windows\system32\elshyph.dll
2014-09-20 17:34 . 2014-09-20 17:34 182272 ----a-w- c:\windows\system32\msls31.dll
2014-09-20 17:34 . 2014-09-20 17:34 151552 ----a-w- c:\windows\system32\iexpress.exe
2014-09-20 17:34 . 2014-09-20 17:34 139264 ----a-w- c:\windows\system32\wextract.exe
2014-09-20 17:34 . 2014-09-20 17:34 86016 ----a-w- c:\windows\system32\iesysprep.dll
2014-09-20 17:34 . 2014-09-20 17:34 74240 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2014-09-20 17:34 . 2014-09-20 17:34 48640 ----a-w- c:\windows\system32\mshtmler.dll
2014-09-20 17:34 . 2014-09-20 17:34 36352 ----a-w- c:\windows\system32\imgutil.dll
2014-09-20 17:34 . 2014-09-20 17:34 13312 ----a-w- c:\windows\system32\mshta.exe
2014-09-20 17:34 . 2014-09-20 17:34 111616 ----a-w- c:\windows\system32\IEAdvpack.dll
2014-09-20 17:32 . 2014-09-20 17:32 69632 ----a-w- c:\windows\system32\smss.exe
2014-09-20 17:32 . 2014-09-20 17:32 640512 ----a-w- c:\windows\system32\advapi32.dll
2014-09-20 17:32 . 2014-09-20 17:32 619520 ----a-w- c:\windows\system32\tdh.dll
2014-09-20 17:32 . 2014-09-20 17:32 38912 ----a-w- c:\windows\system32\csrsrv.dll
2014-09-20 17:32 . 2014-09-20 17:32 1289096 ----a-w- c:\windows\system32\ntdll.dll
2014-09-20 17:32 . 2014-09-20 17:32 231424 ----a-w- c:\windows\system32\mswsock.dll
2014-09-20 17:32 . 2014-09-20 17:32 49152 ----a-w- c:\windows\system32\taskhost.exe
2014-09-20 17:28 . 2014-09-20 17:28 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-09-20 17:28 . 2014-09-20 17:28 906240 ----a-w- c:\windows\system32\FntCache.dll
2014-09-20 17:28 . 2014-09-20 17:28 604160 ----a-w- c:\windows\system32\d3d10level9.dll
2014-09-20 17:28 . 2014-09-20 17:28 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-09-20 17:28 . 2014-09-20 17:28 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-09-20 17:28 . 2014-09-20 17:28 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-09-20 17:28 . 2014-09-20 17:28 364544 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2014-09-20 17:28 . 2014-09-20 17:28 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-09-20 17:28 . 2014-09-20 17:28 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-09-20 17:28 . 2014-09-20 17:28 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-09-20 17:28 . 2014-09-20 17:28 293376 ----a-w- c:\windows\system32\dxgi.dll
2014-09-20 17:28 . 2014-09-20 17:28 2560 ---ha-w- c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-09-20 17:28 . 2014-09-20 17:28 249856 ----a-w- c:\windows\system32\d3d10_1core.dll
2014-09-20 17:28 . 2014-09-20 17:28 220160 ----a-w- c:\windows\system32\d3d10core.dll
2014-09-20 17:28 . 2014-09-20 17:28 207872 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2014-09-20 17:28 . 2014-09-20 17:28 187392 ----a-w- c:\windows\system32\UIAnimation.dll
2014-09-20 17:28 . 2014-09-20 17:28 161792 ----a-w- c:\windows\system32\d3d10_1.dll
2014-09-20 17:28 . 2014-09-20 17:28 1158144 ----a-w- c:\windows\system32\XpsPrint.dll
2014-09-20 17:28 . 2014-09-20 17:28 1080832 ----a-w- c:\windows\system32\d3d10.dll
2014-09-20 17:28 . 2014-09-20 17:28 10752 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-09-20 17:26 . 2014-09-20 17:26 1505280 ----a-w- c:\windows\system32\d3d11.dll
2014-09-20 15:52 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2014-08-23 01:46 . 2014-09-20 17:13 305152 ----a-w- c:\windows\system32\gdi32.dll
2014-08-12 23:00 . 2014-08-12 23:00 4575232 ----a-w- c:\windows\system32\GPhotos.scr
2014-08-01 11:35 . 2014-09-20 17:13 793600 ----a-w- c:\windows\system32\TSWorkspace.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-10-22 17:07 723976 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-01-21 61440]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2014-05-09 12021464]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-10-22 5223016]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="c:\windows\System32\SPReview\SPReview.exe" [2014-09-20 280576]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys [2014-10-22 91496]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2014-04-03 315008]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-09-19 108032]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 14848]
R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2013-10-02 49152]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
S0 aswNdisFlt;Avast! Firewall Driver;c:\windows\system32\DRIVERS\aswNdisFlt.sys [2014-10-22 271288]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys [2014-10-22 26136]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2014-10-22 787800]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2014-10-22 422760]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2014-09-22 243128]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [2014-10-22 24184]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2014-10-22 70384]
S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe [2014-10-22 104416]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [2014-10-18 1893200]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-10-18 411920]
S2 VBoxAswDrv;VBoxAsw Support Driver;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2014-10-22 218192]
S3 AvastVBoxSvc;AvastVBox COM Service;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2014-10-22 3192344]
S3 RTL8167;Ovladač Realtek 8167 NT;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-10-17 12:17 1089352 ----a-w- c:\program files\Google\Chrome\Application\38.0.2125.104\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-10-24 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-21 11:42]
.
.
------- Doplňkový sken -------
.
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
FF - ProfilePath - c:\users\Lukeš_CZ\AppData\Roaming\Mozilla\Firefox\Profiles\9syyr5en.default-1413208004927\
FF - prefs.js: browser.startup.homepage - www.seznam.cz
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2014-10-24 02:36:23
ComboFix-quarantined-files.txt 2014-10-24 00:36
.
Před spuštěním: Volných bajtů: 108 461 498 368
Po spuštění: Volných bajtů: 108 365 836 288
.
- - End Of File - - 8321261B10DCD9850BF3D875C25720B2
A36C5E4F47E84449FF07ED3517B43A31

[Márty84]

Vypnete trvale Windows Defender.


Presunte ComboFix primo na disk C (takze cesta k nemu bude c:\ComboFix.exe )!
Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

KillAll::

Folder::
c:\programdata\Malwarebytes

RegLock::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

Driver::
SkypeUpdate
SwitchBoard

Reboot::

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev CFScript a ulozte take primo na C (takze cesta k nemu bude c:\CFScript.txt ).
Vypnete antivir i dalsi pripadne zabezpeceni.
Pretahntete mysi tento vytvoreny textovy dokument nad ikonu ComboFix a pustte.
ComboFix by se mel spustit a vykonat prikazy.
Az skonci (muze dojit k restartu pc), mel by se objevit novy log, ten mi sem zase zkopirujte.

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace
Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradku

[M.Lukes]

Zde LOG:

ComboFix 14-10-24.01 - Lukeš_CZ 24.10.2014 9:24.2.1 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.2814.1989 [GMT 2:00]
Spuštěný z: C:\ComboFix.exe
Použité ovládací přepínače :: C:\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
FW: avast! Antivirus *Disabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_SkypeUpdate
-------\Service_SwitchBoard
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-09-24 do 2014-10-24 )))))))))))))))))))))))))))))))
.
.
2014-10-24 07:40 . 2014-10-24 07:40 -------- d-----w- c:\users\Guest\AppData\Local\temp
2014-10-24 07:40 . 2014-10-24 07:40 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-10-24 05:44 . 2014-10-24 05:44 -------- d-----w- c:\users\Guest\AppData\Roaming\AVAST Software
2014-10-23 20:56 . 2014-10-23 21:13 -------- d-----w- C:\AdwCleaner
2014-10-23 11:59 . 2014-10-23 11:59 512 ----a-w- C:\PhysicalMBR.bin
2014-10-22 17:27 . 2014-10-22 17:27 26136 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2014-10-22 17:27 . 2014-10-22 17:07 291352 ----a-w- c:\windows\system32\aswBoot.exe
2014-10-22 17:27 . 2014-10-22 17:27 271288 ----a-w- c:\windows\system32\drivers\aswNdisFlt.sys
2014-10-22 17:10 . 2014-10-22 17:10 -------- d-----w- c:\users\Lukeš_CZ\AppData\Roaming\AVAST Software
2014-10-22 17:07 . 2014-10-22 17:07 91496 ----a-w- c:\windows\system32\drivers\aswStm.sys
2014-10-22 17:07 . 2014-10-22 17:07 206248 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-10-22 17:07 . 2014-10-22 17:07 422760 ----a-w- c:\windows\system32\drivers\aswSP.sys
2014-10-22 17:07 . 2014-10-22 17:07 70384 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-10-22 17:07 . 2014-10-22 17:07 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-10-22 17:07 . 2014-10-22 17:07 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-10-22 17:07 . 2014-10-22 17:07 81768 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2014-10-22 17:07 . 2014-10-22 17:07 787800 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2014-10-22 17:07 . 2014-10-22 17:07 43152 ----a-w- c:\windows\avastSS.scr
2014-10-22 17:05 . 2014-10-22 17:05 -------- d-----w- c:\program files\AVAST Software
2014-10-22 00:13 . 2014-10-22 00:13 -------- d-----w- c:\windows\system32\vbox
2014-10-21 11:34 . 2014-10-14 20:13 8901368 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{327D8CED-8FE4-4290-8DC5-D7EB3A0DA965}\mpengine.dll
2014-10-20 10:20 . 2014-10-20 10:20 -------- d-----w- c:\program files\LogMeIn Hamachi
2014-10-17 22:27 . 2014-10-17 22:27 -------- d-----w- c:\windows\cs
2014-10-17 22:24 . 2014-10-17 22:26 -------- d-----w- c:\program files\Windows Live
2014-10-17 22:23 . 2010-05-26 09:41 2106216 ----a-w- c:\windows\system32\D3DCompiler_43.dll
2014-10-17 22:23 . 2010-05-26 09:41 248672 ----a-w- c:\windows\system32\d3dx11_43.dll
2014-10-17 22:22 . 2009-09-04 15:29 453456 ----a-w- c:\windows\system32\d3dx10_42.dll
2014-10-17 22:21 . 2006-11-29 11:06 3426072 ----a-w- c:\windows\system32\d3dx9_32.dll
2014-10-17 22:18 . 2014-10-18 15:14 -------- d-----w- c:\users\Lukeš_CZ\AppData\Local\Windows Live
2014-10-17 22:17 . 2014-10-17 22:17 -------- d-----w- c:\program files\Common Files\Windows Live
2014-10-16 18:07 . 2014-10-16 18:14 -------- d-----w- c:\program files\trend micro
2014-10-16 18:07 . 2014-10-16 18:14 -------- d-----w- C:\rsit
2014-10-15 17:33 . 2014-10-10 01:44 230912 ----a-w- c:\windows\system32\generaltel.dll
2014-10-15 17:33 . 2014-10-10 01:44 396288 ----a-w- c:\windows\system32\aepdu.dll
2014-10-15 17:33 . 2014-10-10 01:39 302592 ----a-w- c:\windows\system32\aeinv.dll
2014-10-15 17:33 . 2014-08-29 01:44 2744320 ----a-w- c:\windows\system32\rdpcorets.dll
2014-10-15 17:33 . 2014-07-17 01:39 523264 ----a-w- c:\windows\system32\termsrv.dll
2014-10-15 17:33 . 2014-07-17 01:39 130048 ----a-w- c:\windows\system32\rdpcorekmts.dll
2014-10-15 17:33 . 2014-07-17 01:03 184320 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2014-10-15 17:33 . 2014-07-17 01:39 65536 ----a-w- c:\windows\system32\TSpkg.dll
2014-10-15 17:33 . 2014-07-17 01:39 17408 ----a-w- c:\windows\system32\credssp.dll
2014-10-15 17:33 . 2014-07-17 01:02 31232 ----a-w- c:\windows\system32\drivers\tssecsrv.sys
2014-10-15 17:33 . 2014-09-04 05:04 372736 ----a-w- c:\windows\system32\rastls.dll
2014-10-15 17:33 . 2014-09-05 01:52 5703168 ----a-w- c:\windows\system32\mstscax.dll
2014-10-13 13:37 . 2014-10-13 13:37 -------- d-----w- c:\users\Lukeš_CZ\AppData\Local\Skype
2014-10-13 13:37 . 2014-10-23 21:29 -------- d-----w- c:\users\Lukeš_CZ\AppData\Roaming\Skype
2014-10-13 13:36 . 2014-10-13 13:36 -------- d-----w- c:\program files\Common Files\Skype
2014-10-13 13:36 . 2014-10-13 13:36 -------- d-----r- c:\program files\Skype
2014-10-10 16:24 . 2014-10-23 20:48 -------- d-----w- c:\program files\The KMPlayer
2014-10-09 11:58 . 2010-08-30 06:34 536576 ----a-w- c:\windows\system32\sqlite3.dll
2014-10-08 20:00 . 2014-10-08 20:00 -------- d-----w- c:\users\Lukeš_CZ\AppData\Roaming\OpenOffice
2014-10-08 15:54 . 2014-10-08 15:55 -------- d-----w- c:\users\Lukeš_CZ\AppData\Local\Temporary Projects
2014-10-08 15:13 . 2014-10-08 15:45 188128 ----a-w- c:\programdata\Microsoft\VCSExpress\10.0\1033\ResourceCache.dll
2014-10-06 20:08 . 2014-10-06 20:08 -------- d-----w- c:\programdata\VS
2014-10-06 19:51 . 2014-10-06 19:51 -------- d-----w- c:\program files\Microsoft Synchronization Services
2014-10-06 19:51 . 2014-10-17 22:26 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2014-10-06 19:46 . 2014-10-06 19:46 -------- d-----w- c:\program files\Microsoft.NET
2014-10-06 19:46 . 2014-10-06 19:46 -------- d-----w- c:\windows\symbols
2014-10-06 19:45 . 2014-10-06 19:45 -------- d-----w- c:\program files\Microsoft SDKs
2014-10-06 19:45 . 2014-10-06 19:45 -------- d-----w- c:\program files\Microsoft Help Viewer
2014-10-06 19:45 . 2014-10-06 19:45 -------- d-----w- c:\program files\Common Files\Merge Modules
2014-10-06 19:45 . 2014-10-08 16:04 -------- d-----w- c:\program files\Microsoft Visual Studio 10.0
2014-10-03 19:33 . 2014-10-03 20:17 -------- d-----w- c:\windows\system32\14100301_stream
2014-10-03 11:15 . 2014-10-03 19:27 -------- d-----w- c:\windows\system32\14100300_stream
2014-10-02 19:09 . 2014-10-20 10:18 -------- d-----w- c:\program files\Microsoft Silverlight
2014-10-02 19:07 . 2014-10-19 12:48 112832 ----a-w- c:\programdata\Microsoft\VCExpress\10.0\1033\ResourceCache.dll
2014-10-02 19:02 . 2014-10-02 19:02 -------- d-----w- c:\windows\PCHEALTH
2014-10-01 21:43 . 2014-10-01 21:43 -------- d-----w- c:\programdata\regid.1986-12.com.adobe
2014-10-01 21:25 . 2014-10-01 21:25 -------- d-----w- c:\program files\Common Files\Adobe AIR
2014-10-01 21:15 . 2014-10-01 21:43 -------- d-----w- c:\program files\Common Files\Adobe
2014-10-01 13:01 . 2014-09-25 01:40 519680 ----a-w- c:\windows\system32\qdvd.dll
2014-09-30 07:25 . 2014-09-30 14:58 -------- d-----w- c:\users\Guest\AppData\Local\LogMeIn Hamachi
2014-09-30 07:25 . 2014-09-30 07:25 -------- d-----w- c:\users\Guest\AppData\Local\LogMeIn
2014-09-28 18:53 . 2009-03-18 16:35 26176 ---ha-w- c:\windows\system32\hamachi.sys
2014-09-28 18:53 . 2014-10-24 07:45 -------- d-----w- c:\users\Lukeš_CZ\AppData\Local\LogMeIn Hamachi
2014-09-28 18:53 . 2014-09-28 18:53 -------- d-----w- c:\users\Lukeš_CZ\AppData\Local\LogMeIn
2014-09-28 18:53 . 2014-09-28 18:53 -------- d-----w- c:\programdata\LogMeIn
2014-09-28 17:11 . 2014-09-28 17:11 -------- d-----w- c:\users\Guest\AppData\Local\Google
2014-09-26 22:38 . 2014-09-26 22:38 -------- d-----w- c:\users\Lukeš_CZ\AppData\Local\ElevatedDiagnostics
2014-09-26 19:01 . 2014-10-02 16:27 -------- d-----w- c:\users\Lukeš_CZ\AppData\Roaming\FileZilla
2014-09-26 19:01 . 2014-09-26 19:02 -------- d-----w- c:\program files\FileZilla FTP Client
2014-09-26 17:01 . 2014-10-16 15:03 -------- d-----w- c:\program files\Mozilla Maintenance Service
2014-09-24 18:15 . 2014-09-24 18:15 -------- d-----w- c:\program files\Eidos
2014-09-24 14:39 . 2014-09-09 21:47 2048 ----a-w- c:\windows\system32\tzres.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-10-20 11:42 . 2014-09-21 14:27 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-10-20 11:42 . 2014-09-21 14:27 701104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-10-17 22:24 . 2012-07-17 12:37 23256 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-10-02 13:53 . 2014-09-20 15:08 231568 ------w- c:\windows\system32\MpSigStub.exe
2014-09-29 00:41 . 2014-10-15 17:33 2379264 ----a-w- c:\windows\system32\win32k.sys
2014-09-22 12:28 . 2014-09-22 12:28 243128 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2014-09-21 13:38 . 2014-09-21 13:39 129552 ----a-w- c:\windows\system32\drivers\ahcix86s.sys
2014-09-21 13:38 . 2014-09-21 13:39 266240 ----a-w- c:\windows\system32\Oemdspif.dll
2014-09-21 13:38 . 2014-09-21 13:39 14352 ----a-w- c:\windows\system32\drivers\AtiPcie.sys
2014-09-21 13:38 . 2014-09-21 13:39 4427264 ----a-w- c:\windows\system32\atiumdva.dll
2014-09-21 13:38 . 2014-09-21 13:39 3691008 ----a-w- c:\windows\system32\atiumdag.dll
2014-09-21 13:38 . 2014-09-21 13:39 331776 ----a-w- c:\windows\system32\atipdlxx.dll
2014-09-21 13:38 . 2014-09-21 13:39 159744 ----a-w- c:\windows\system32\atitmmxx.dll
2014-09-21 13:38 . 2014-09-21 13:39 9306112 ----a-w- c:\windows\system32\atioglxx.dll
2014-09-21 13:38 . 2014-09-21 13:39 3847168 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2014-09-21 13:38 . 2014-09-21 13:39 90112 ----a-w- c:\windows\system32\atibrtmon.exe
2014-09-21 13:38 . 2014-09-21 13:39 692224 ----a-w- c:\windows\system32\Ati2evxx.exe
2014-09-21 13:38 . 2014-09-21 13:39 42496 ----a-w- c:\windows\system32\atiadlxx.dll
2014-09-21 13:38 . 2014-09-21 13:39 421888 ----a-w- c:\windows\system32\ATIDEMGX.dll
2014-09-21 13:38 . 2014-09-21 13:39 270336 ----a-w- c:\windows\system32\Ati2evxx.dll
2014-09-21 13:38 . 2014-09-21 13:39 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2014-09-21 13:38 . 2014-09-21 13:39 50688 ----a-w- c:\windows\system32\amdpcom32.dll
2014-09-21 13:38 . 2014-09-21 13:39 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2014-09-20 17:34 . 2014-09-20 17:34 71680 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2014-09-20 17:34 . 2014-09-20 17:34 645120 ----a-w- c:\windows\system32\jsIntl.dll
2014-09-20 17:34 . 2014-09-20 17:34 62464 ----a-w- c:\windows\system32\tdc.ocx
2014-09-20 17:34 . 2014-09-20 17:34 337408 ----a-w- c:\windows\system32\html.iec
2014-09-20 17:34 . 2014-09-20 17:34 24576 ----a-w- c:\windows\system32\licmgr10.dll
2014-09-20 17:34 . 2014-09-20 17:34 194048 ----a-w- c:\windows\system32\elshyph.dll
2014-09-20 17:34 . 2014-09-20 17:34 182272 ----a-w- c:\windows\system32\msls31.dll
2014-09-20 17:34 . 2014-09-20 17:34 151552 ----a-w- c:\windows\system32\iexpress.exe
2014-09-20 17:34 . 2014-09-20 17:34 139264 ----a-w- c:\windows\system32\wextract.exe
2014-09-20 17:34 . 2014-09-20 17:34 86016 ----a-w- c:\windows\system32\iesysprep.dll
2014-09-20 17:34 . 2014-09-20 17:34 74240 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2014-09-20 17:34 . 2014-09-20 17:34 48640 ----a-w- c:\windows\system32\mshtmler.dll
2014-09-20 17:34 . 2014-09-20 17:34 36352 ----a-w- c:\windows\system32\imgutil.dll
2014-09-20 17:34 . 2014-09-20 17:34 13312 ----a-w- c:\windows\system32\mshta.exe
2014-09-20 17:34 . 2014-09-20 17:34 111616 ----a-w- c:\windows\system32\IEAdvpack.dll
2014-09-20 17:32 . 2014-09-20 17:32 69632 ----a-w- c:\windows\system32\smss.exe
2014-09-20 17:32 . 2014-09-20 17:32 640512 ----a-w- c:\windows\system32\advapi32.dll
2014-09-20 17:32 . 2014-09-20 17:32 619520 ----a-w- c:\windows\system32\tdh.dll
2014-09-20 17:32 . 2014-09-20 17:32 38912 ----a-w- c:\windows\system32\csrsrv.dll
2014-09-20 17:32 . 2014-09-20 17:32 1289096 ----a-w- c:\windows\system32\ntdll.dll
2014-09-20 17:32 . 2014-09-20 17:32 231424 ----a-w- c:\windows\system32\mswsock.dll
2014-09-20 17:32 . 2014-09-20 17:32 49152 ----a-w- c:\windows\system32\taskhost.exe
2014-09-20 17:28 . 2014-09-20 17:28 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-09-20 17:28 . 2014-09-20 17:28 906240 ----a-w- c:\windows\system32\FntCache.dll
2014-09-20 17:28 . 2014-09-20 17:28 604160 ----a-w- c:\windows\system32\d3d10level9.dll
2014-09-20 17:28 . 2014-09-20 17:28 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-09-20 17:28 . 2014-09-20 17:28 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-09-20 17:28 . 2014-09-20 17:28 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-09-20 17:28 . 2014-09-20 17:28 364544 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2014-09-20 17:28 . 2014-09-20 17:28 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-09-20 17:28 . 2014-09-20 17:28 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-09-20 17:28 . 2014-09-20 17:28 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-09-20 17:28 . 2014-09-20 17:28 293376 ----a-w- c:\windows\system32\dxgi.dll
2014-09-20 17:28 . 2014-09-20 17:28 2560 ---ha-w- c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-09-20 17:28 . 2014-09-20 17:28 249856 ----a-w- c:\windows\system32\d3d10_1core.dll
2014-09-20 17:28 . 2014-09-20 17:28 220160 ----a-w- c:\windows\system32\d3d10core.dll
2014-09-20 17:28 . 2014-09-20 17:28 207872 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2014-09-20 17:28 . 2014-09-20 17:28 187392 ----a-w- c:\windows\system32\UIAnimation.dll
2014-09-20 17:28 . 2014-09-20 17:28 161792 ----a-w- c:\windows\system32\d3d10_1.dll
2014-09-20 17:28 . 2014-09-20 17:28 1158144 ----a-w- c:\windows\system32\XpsPrint.dll
2014-09-20 17:28 . 2014-09-20 17:28 1080832 ----a-w- c:\windows\system32\d3d10.dll
2014-09-20 17:28 . 2014-09-20 17:28 10752 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-09-20 17:26 . 2014-09-20 17:26 1505280 ----a-w- c:\windows\system32\d3d11.dll
2014-09-20 15:52 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2014-09-18 23:59 . 2014-10-15 17:34 1810944 ----a-w- c:\windows\system32\wininet.dll
2014-08-23 01:46 . 2014-09-20 17:13 305152 ----a-w- c:\windows\system32\gdi32.dll
2014-08-12 23:00 . 2014-08-12 23:00 4575232 ----a-w- c:\windows\system32\GPhotos.scr
2014-08-01 11:35 . 2014-09-20 17:13 793600 ----a-w- c:\windows\system32\TSWorkspace.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-10-22 17:07 723976 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-01-21 61440]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2014-05-09 12021464]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-10-22 5223016]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="c:\windows\System32\SPReview\SPReview.exe" [2014-09-20 280576]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-09-19 108032]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 14848]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2013-10-02 49152]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
S0 aswNdisFlt;Avast! Firewall Driver;c:\windows\system32\DRIVERS\aswNdisFlt.sys [2014-10-22 271288]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys [2014-10-22 26136]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2014-10-22 787800]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2014-10-22 422760]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2014-09-22 243128]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [2014-10-22 24184]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2014-10-22 70384]
S2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys [2014-10-22 91496]
S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe [2014-10-22 104416]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [2014-10-18 1893200]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-10-18 411920]
S2 VBoxAswDrv;VBoxAsw Support Driver;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2014-10-22 218192]
S3 AvastVBoxSvc;AvastVBox COM Service;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2014-10-22 3192344]
S3 RTL8167;Ovladač Realtek 8167 NT;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-10-17 12:17 1089352 ----a-w- c:\program files\Google\Chrome\Application\38.0.2125.104\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-10-24 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-21 11:42]
.
.
------- Doplňkový sken -------
.
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
FF - ProfilePath - c:\users\Lukeš_CZ\AppData\Roaming\Mozilla\Firefox\Profiles\9syyr5en.default-1413208004927\
FF - prefs.js: browser.startup.homepage - www.seznam.cz
.
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\conhost.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
c:\windows\system32\DllHost.exe
c:\program files\Google\Update\GoogleUpdate.exe
.
**************************************************************************
.
Celkový čas: 2014-10-24 09:50:56 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-10-24 07:50
ComboFix2.txt 2014-10-24 00:36
.
Před spuštěním: Volných bajtů: 104 095 281 152
Po spuštění: Volných bajtů: 104 142 667 776
.
- - End Of File - - 1240CD18C52AC6BE5F812CD813E08D13
A36C5E4F47E84449FF07ED3517B43A31

[Márty84]

Dejte novy log z RSIT

[M.Lukes]

Logfile of random's system information tool 1.10 (written by random/random)
Run by Lukeš_CZ at 2014-10-24 10:37:35
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 99 GB (70%) free of 142 GB
Total RAM: 2814 MB (54% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:37:41, on 24.10.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17344)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\Explorer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Lukeš_CZ\Desktop\RSIT.exe
C:\Program Files\trend micro\Lukeš_CZ.exe
C:\Windows\system32\DllHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 4412 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Lukeš_CZ\AppData\Roaming\Mozilla\Firefox\Profiles\9syyr5en.default-1413208004927

prefs.js - "browser.startup.homepage" - "www.seznam.cz"

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.189 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_189.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll


C:\Users\Lukeš_CZ\AppData\Roaming\Mozilla\Firefox\Profiles\9syyr5en.default-1413208004927\extensions\
superstart@enjoyfreeware.org

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-10-22 586968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-01-21 61440]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2014-05-09 12021464]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-10-22 5223016]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FPS1"=frapsvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2014-10-24 10:37:35 ----D---- C:\rsit
2014-10-24 09:50:57 ----A---- C:\ComboFix.txt
2014-10-24 09:45:20 ----D---- C:\$RECYCLE.BIN
2014-10-24 02:14:18 ----A---- C:\Windows\zip.exe
2014-10-24 02:14:18 ----A---- C:\Windows\SWSC.exe
2014-10-24 02:14:18 ----A---- C:\Windows\SWREG.exe
2014-10-24 02:14:18 ----A---- C:\Windows\sed.exe
2014-10-24 02:14:18 ----A---- C:\Windows\PEV.exe
2014-10-24 02:14:18 ----A---- C:\Windows\NIRCMD.exe
2014-10-24 02:14:18 ----A---- C:\Windows\MBR.exe
2014-10-24 02:14:18 ----A---- C:\Windows\grep.exe
2014-10-24 02:14:01 ----D---- C:\Qoobox
2014-10-24 02:13:36 ----D---- C:\Windows\erdnt
2014-10-24 01:25:43 ----R---- C:\ComboFix.exe
2014-10-22 19:27:39 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2014-10-22 19:27:35 ----A---- C:\Windows\system32\aswBoot.exe
2014-10-22 19:27:07 ----A---- C:\Windows\system32\drivers\aswNdisFlt.sys
2014-10-22 19:10:25 ----D---- C:\Users\Lukeš_CZ\AppData\Roaming\AVAST Software
2014-10-22 19:07:45 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2014-10-22 19:07:45 ----A---- C:\Windows\system32\drivers\aswStm.sys
2014-10-22 19:07:44 ----A---- C:\Windows\system32\drivers\aswSP.sys
2014-10-22 19:07:43 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2014-10-22 19:07:43 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2014-10-22 19:07:43 ----A---- C:\Windows\system32\drivers\aswHwid.sys
2014-10-22 19:07:42 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2014-10-22 19:07:39 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2014-10-22 19:07:22 ----A---- C:\Windows\avastSS.scr
2014-10-22 19:05:11 ----D---- C:\Program Files\AVAST Software
2014-10-22 02:13:39 ----D---- C:\Windows\system32\vbox
2014-10-20 12:20:01 ----D---- C:\Program Files\LogMeIn Hamachi
2014-10-18 00:27:20 ----D---- C:\Windows\cs
2014-10-18 00:24:35 ----D---- C:\Program Files\Windows Live
2014-10-18 00:23:14 ----A---- C:\Windows\system32\XAudio2_7.dll
2014-10-18 00:23:14 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2014-10-18 00:23:14 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2014-10-18 00:23:13 ----A---- C:\Windows\system32\d3dx11_43.dll
2014-10-18 00:22:14 ----A---- C:\Windows\system32\d3dx10_42.dll
2014-10-18 00:21:03 ----A---- C:\Windows\system32\d3dx9_32.dll
2014-10-18 00:17:46 ----D---- C:\Program Files\Common Files\Windows Live
2014-10-16 20:07:27 ----D---- C:\Program Files\trend micro
2014-10-15 20:11:40 ----D---- C:\Program Files\Mozilla Firefox
2014-10-15 19:34:43 ----A---- C:\Windows\system32\packager.dll
2014-10-15 19:34:38 ----A---- C:\Windows\system32\mscorier.dll
2014-10-15 19:34:37 ----A---- C:\Windows\system32\mscories.dll
2014-10-15 19:34:37 ----A---- C:\Windows\system32\dfshim.dll
2014-10-15 19:34:36 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-10-15 19:34:35 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-15 19:34:35 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-10-15 19:34:34 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-15 19:34:33 ----A---- C:\Windows\system32\vbscript.dll
2014-10-15 19:34:33 ----A---- C:\Windows\system32\jsproxy.dll
2014-10-15 19:34:33 ----A---- C:\Windows\system32\ieUnatt.exe
2014-10-15 19:34:33 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-10-15 19:34:33 ----A---- C:\Windows\system32\dxtmsft.dll
2014-10-15 19:34:32 ----A---- C:\Windows\system32\wininet.dll
2014-10-15 19:34:31 ----A---- C:\Windows\system32\dxtrans.dll
2014-10-15 19:34:30 ----A---- C:\Windows\system32\ieui.dll
2014-10-15 19:34:29 ----A---- C:\Windows\system32\mshtmled.dll
2014-10-15 19:34:28 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-10-15 19:34:28 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-10-15 19:34:27 ----A---- C:\Windows\system32\iertutil.dll
2014-10-15 19:34:25 ----A---- C:\Windows\system32\jscript9diag.dll
2014-10-15 19:34:24 ----A---- C:\Windows\system32\jscript9.dll
2014-10-15 19:34:23 ----A---- C:\Windows\system32\mshtml.dll
2014-10-15 19:34:21 ----A---- C:\Windows\system32\iernonce.dll
2014-10-15 19:34:21 ----A---- C:\Windows\system32\ie4uinit.exe
2014-10-15 19:34:20 ----A---- C:\Windows\system32\urlmon.dll
2014-10-15 19:34:19 ----A---- C:\Windows\system32\iedkcs32.dll
2014-10-15 19:34:19 ----A---- C:\Windows\system32\ieapfltr.dll
2014-10-15 19:34:18 ----A---- C:\Windows\system32\msfeeds.dll
2014-10-15 19:34:16 ----A---- C:\Windows\system32\msrating.dll
2014-10-15 19:34:16 ----A---- C:\Windows\system32\iesetup.dll
2014-10-15 19:34:15 ----A---- C:\Windows\system32\ieframe.dll
2014-10-15 19:34:03 ----A---- C:\Windows\system32\msi.dll
2014-10-15 19:33:52 ----A---- C:\Windows\system32\generaltel.dll
2014-10-15 19:33:52 ----A---- C:\Windows\system32\aepdu.dll
2014-10-15 19:33:51 ----A---- C:\Windows\system32\aeinv.dll
2014-10-15 19:33:42 ----A---- C:\Windows\system32\rdpcorets.dll
2014-10-15 19:33:30 ----A---- C:\Windows\system32\winsta.dll
2014-10-15 19:33:30 ----A---- C:\Windows\system32\winlogon.exe
2014-10-15 19:33:30 ----A---- C:\Windows\system32\termsrv.dll
2014-10-15 19:33:30 ----A---- C:\Windows\system32\rdpcorekmts.dll
2014-10-15 19:33:30 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2014-10-15 19:33:29 ----A---- C:\Windows\system32\TSpkg.dll
2014-10-15 19:33:29 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2014-10-15 19:33:29 ----A---- C:\Windows\system32\credssp.dll
2014-10-15 19:33:15 ----A---- C:\Windows\system32\rastls.dll
2014-10-15 19:33:14 ----A---- C:\Windows\system32\win32k.sys
2014-10-15 19:33:12 ----A---- C:\Windows\system32\mstscax.dll
2014-10-15 19:29:37 ----A---- C:\Windows\system32\drmv2clt.dll
2014-10-15 19:29:37 ----A---- C:\Windows\system32\blackbox.dll
2014-10-15 19:29:36 ----A---- C:\Windows\system32\wmdrmsdk.dll
2014-10-15 19:29:34 ----A---- C:\Windows\system32\wmp.dll
2014-10-15 19:29:30 ----A---- C:\Windows\system32\mf.dll
2014-10-15 19:29:29 ----A---- C:\Windows\system32\drmmgrtn.dll
2014-10-15 19:29:29 ----A---- C:\Windows\system32\ci.dll
2014-10-15 19:29:29 ----A---- C:\Windows\system32\AUDIOKSE.dll
2014-10-15 19:29:28 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2014-10-15 19:29:28 ----A---- C:\Windows\system32\AudioSes.dll
2014-10-15 19:29:27 ----A---- C:\Windows\system32\winresume.exe
2014-10-15 19:29:27 ----A---- C:\Windows\system32\winload.exe
2014-10-15 19:29:26 ----A---- C:\Windows\system32\ntkrnlpa.exe
2014-10-15 19:29:26 ----A---- C:\Windows\system32\EncDump.dll
2014-10-15 19:29:26 ----A---- C:\Windows\system32\cryptsvc.dll
2014-10-15 19:29:25 ----A---- C:\Windows\system32\wintrust.dll
2014-10-15 19:29:25 ----A---- C:\Windows\system32\quartz.dll
2014-10-15 19:29:25 ----A---- C:\Windows\system32\ntoskrnl.exe
2014-10-15 19:29:25 ----A---- C:\Windows\system32\evr.dll
2014-10-15 19:29:24 ----A---- C:\Windows\system32\pcasvc.dll
2014-10-15 19:29:24 ----A---- C:\Windows\system32\mfplat.dll
2014-10-15 19:29:24 ----A---- C:\Windows\system32\cryptui.dll
2014-10-15 19:29:24 ----A---- C:\Windows\system32\crypt32.dll
2014-10-15 19:29:23 ----A---- C:\Windows\system32\cryptsp.dll
2014-10-15 19:29:23 ----A---- C:\Windows\system32\audiosrv.dll
2014-10-15 19:29:23 ----A---- C:\Windows\system32\AudioEng.dll
2014-10-15 19:29:22 ----A---- C:\Windows\system32\rrinstaller.exe
2014-10-15 19:29:22 ----A---- C:\Windows\system32\msscp.dll
2014-10-15 19:29:22 ----A---- C:\Windows\system32\msnetobj.dll
2014-10-15 19:29:22 ----A---- C:\Windows\system32\mfps.dll
2014-10-15 19:29:22 ----A---- C:\Windows\system32\audiodg.exe
2014-10-15 19:29:22 ----A---- C:\Windows\system32\appidsvc.dll
2014-10-15 19:29:21 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2014-10-15 19:29:21 ----A---- C:\Windows\system32\appidapi.dll
2014-10-15 19:29:20 ----A---- C:\Windows\system32\setbcdlocale.dll
2014-10-15 19:29:20 ----A---- C:\Windows\system32\mfpmp.exe
2014-10-15 19:29:20 ----A---- C:\Windows\system32\drivers\appid.sys
2014-10-15 19:29:20 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2014-10-15 19:29:18 ----A---- C:\Windows\system32\spwmp.dll
2014-10-15 19:29:18 ----A---- C:\Windows\system32\dxmasf.dll
2014-10-15 19:29:17 ----A---- C:\Windows\system32\mferror.dll
2014-10-15 19:29:16 ----A---- C:\Windows\system32\wmploc.DLL
2014-10-13 15:37:11 ----D---- C:\Users\Lukeš_CZ\AppData\Roaming\Skype
2014-10-13 15:36:57 ----D---- C:\Program Files\Common Files\Skype
2014-10-13 15:36:56 ----RD---- C:\Program Files\Skype
2014-10-10 18:24:06 ----D---- C:\Program Files\The KMPlayer
2014-10-09 13:58:21 ----A---- C:\Windows\system32\sqlite3.dll
2014-10-08 22:10:26 ----A---- C:\Windows\WINBASE.INI
2014-10-08 22:00:21 ----D---- C:\Users\Lukeš_CZ\AppData\Roaming\OpenOffice
2014-10-06 22:08:26 ----D---- C:\ProgramData\VS
2014-10-06 21:51:31 ----D---- C:\Program Files\Microsoft Synchronization Services
2014-10-06 21:51:30 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2014-10-06 21:46:42 ----D---- C:\Program Files\Microsoft.NET
2014-10-06 21:46:01 ----D---- C:\Windows\symbols
2014-10-06 21:45:49 ----D---- C:\Program Files\Microsoft SDKs
2014-10-06 21:45:49 ----D---- C:\Program Files\Microsoft Help Viewer
2014-10-06 21:45:49 ----D---- C:\Program Files\Common Files\Merge Modules
2014-10-06 21:45:47 ----D---- C:\Program Files\Microsoft Visual Studio 10.0
2014-10-06 20:33:41 ----D---- C:\Windows\system32\appmgmt
2014-10-03 21:33:29 ----D---- C:\Windows\system32\14100301_stream
2014-10-03 13:15:42 ----D---- C:\Windows\system32\14100300_stream
2014-10-02 21:09:35 ----D---- C:\Program Files\Microsoft Silverlight
2014-10-02 21:02:02 ----D---- C:\Windows\PCHEALTH
2014-10-01 23:43:32 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2014-10-01 23:25:50 ----D---- C:\Program Files\Common Files\Adobe AIR
2014-10-01 23:25:36 ----D---- C:\Program Files\Adobe
2014-10-01 23:15:59 ----D---- C:\ProgramData\Adobe
2014-10-01 23:15:43 ----D---- C:\Program Files\Common Files\Adobe
2014-10-01 15:01:56 ----A---- C:\Windows\system32\qdvd.dll
2014-09-28 20:53:52 ----AH---- C:\Windows\system32\hamachi.sys
2014-09-28 20:53:21 ----D---- C:\ProgramData\LogMeIn
2014-09-26 21:01:58 ----D---- C:\Users\Lukeš_CZ\AppData\Roaming\FileZilla
2014-09-26 21:01:44 ----D---- C:\Program Files\FileZilla FTP Client
2014-09-26 19:01:15 ----D---- C:\ProgramData\Mozilla
2014-09-26 19:01:14 ----D---- C:\Program Files\Mozilla Maintenance Service

======List of files/folders modified in the last 1 month======

2014-10-24 10:37:40 ----D---- C:\Windows\Temp
2014-10-24 10:35:14 ----D---- C:\Windows\Prefetch
2014-10-24 09:51:01 ----D---- C:\Windows\system32\drivers
2014-10-24 09:45:28 ----D---- C:\Windows
2014-10-24 09:45:28 ----A---- C:\Windows\system.ini
2014-10-24 09:45:13 ----D---- C:\Windows\system32\drivers\etc
2014-10-24 09:43:12 ----D---- C:\Windows\system32\config
2014-10-24 09:32:47 ----D---- C:\Windows\System32
2014-10-24 09:32:47 ----D---- C:\Windows\AppPatch
2014-10-24 09:32:43 ----D---- C:\Program Files\Common Files
2014-10-24 06:23:47 ----D---- C:\Users\Lukeš_CZ\AppData\Roaming\uTorrent
2014-10-24 05:53:10 ----RD---- C:\Users
2014-10-24 05:17:52 ----D---- C:\Windows\inf
2014-10-24 02:46:06 ----D---- C:\ProgramData
2014-10-24 02:14:56 ----SHD---- C:\System Volume Information
2014-10-24 01:34:22 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-10-23 22:54:58 ----RD---- C:\Program Files
2014-10-23 22:08:27 ----D---- C:\Users\Lukeš_CZ\AppData\Roaming\Clip2Net
2014-10-22 19:28:30 ----D---- C:\Windows\system32\DriverStore
2014-10-22 19:27:44 ----D---- C:\Windows\system32\Tasks
2014-10-22 19:05:11 ----D---- C:\ProgramData\AVAST Software
2014-10-22 18:48:26 ----SD---- C:\Windows\system32\Microsoft
2014-10-22 02:18:00 ----D---- C:\Windows\system32\NDF
2014-10-22 02:00:41 ----D---- C:\Program Files\Steam
2014-10-20 21:28:49 ----D---- C:\Windows\Tasks
2014-10-20 17:04:01 ----D---- C:\Windows\rescache
2014-10-20 16:02:37 ----D---- C:\Windows\Microsoft.NET
2014-10-20 13:42:56 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2014-10-20 12:28:04 ----SHD---- C:\Windows\Installer
2014-10-19 23:51:44 ----RSD---- C:\Windows\assembly
2014-10-19 14:49:30 ----D---- C:\Windows\winsxs
2014-10-19 14:44:24 ----D---- C:\Program Files\Common Files\microsoft shared
2014-10-19 14:43:02 ----SD---- C:\ProgramData\Microsoft
2014-10-18 03:12:46 ----D---- C:\Windows\Logs
2014-10-17 15:30:27 ----D---- C:\Program Files\CCleaner
2014-10-16 17:05:15 ----D---- C:\Windows\system32\catroot2
2014-10-15 20:07:39 ----D---- C:\Windows\debug
2014-10-15 19:58:10 ----D---- C:\Boot
2014-10-15 19:54:40 ----SD---- C:\Windows\system32\CompatTel
2014-10-15 19:54:39 ----D---- C:\Windows\system32\en-US
2014-10-15 19:54:39 ----D---- C:\Program Files\Internet Explorer
2014-10-15 19:54:36 ----D---- C:\Windows\system32\sk-SK
2014-10-15 19:54:36 ----D---- C:\Windows\system32\Dism
2014-10-15 19:54:36 ----D---- C:\Windows\system32\cs-CZ
2014-10-15 19:54:36 ----D---- C:\Program Files\Windows Media Player
2014-10-15 19:54:35 ----D---- C:\Windows\system32\CodeIntegrity
2014-10-15 19:54:35 ----D---- C:\Windows\system32\Boot
2014-10-15 19:46:51 ----D---- C:\Windows\system32\MRT
2014-10-15 19:40:04 ----A---- C:\Windows\system32\MRT.exe
2014-10-15 19:32:56 ----D---- C:\Windows\system32\catroot
2014-10-13 15:37:07 ----D---- C:\ProgramData\Skype
2014-10-12 13:27:40 ----D---- C:\Program Files\WinRAR
2014-10-12 13:27:40 ----D---- C:\Program Files\DAEMON Tools Lite
2014-10-08 22:03:09 ----D---- C:\Windows\system32\FxsTmp
2014-10-08 17:12:51 ----SD---- C:\Users\Lukeš_CZ\AppData\Roaming\Microsoft
2014-10-08 00:14:06 ----D---- C:\Users\Lukeš_CZ\AppData\Roaming\Adobe
2014-10-06 21:45:48 ----D---- C:\Program Files\MSBuild
2014-10-04 17:57:19 ----D---- C:\Users\Lukeš_CZ\AppData\Roaming\DAEMON Tools Lite
2014-10-02 15:53:02 ----N---- C:\Windows\system32\MpSigStub.exe
2014-10-01 23:33:57 ----RSD---- C:\Windows\Fonts
2014-09-25 15:26:54 ----D---- C:\Fraps
2014-09-25 02:14:39 ----D---- C:\Windows\system32\wdi

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ahcix86s;ahcix86s; C:\Windows\system32\DRIVERS\ahcix86s.sys [2014-09-21 129552]
R0 aswNdisFlt;Avast! Firewall Driver; C:\Windows\system32\DRIVERS\aswNdisFlt.sys [2014-10-22 271288]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-10-22 49944]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-10-22 206248]
R0 AtiPcie;ATI PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2014-09-21 14352]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2014-10-22 26136]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-10-22 81768]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-10-22 787800]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-10-22 422760]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2014-09-22 243128]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-10-22 24184]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-10-22 70384]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-10-22 91496]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2014-10-22 218192]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2014-09-21 3847168]
R3 BCM43XX;Broadcom 802.11 – ovladač síťového adaptéru; C:\Windows\system32\DRIVERS\bcmwl6.sys [2009-07-14 1131008]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2014-05-14 3086040]
R3 RTL8167;Ovladač Realtek 8167 NT; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-07-14 139776]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 catchme;catchme; \??\C:\Users\LUKE_C~1\AppData\Local\Temp\catchme.sys []
S3 mbr;mbr; \??\C:\Users\LUKE_C~1\AppData\Local\Temp\mbr.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2014-09-21 692224]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-10-22 50344]
R2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2014-10-22 104416]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2014-10-18 1893200]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-10-18 411920]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 1713904]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2014-10-22 3192344]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-09-23 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-10-20 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-09-23 116648]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-08-13 136120]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-09-19 108032]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-10-15 114288]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2014-09-16 569024]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

[Márty84]

Zopakujte prosim podle stejneho navodu sken s OTL (tentokrat uz se vytvori jen jeden log) a budeme mazat

[M.Lukes]

Podle návodu jako s ComboFix ?

[Márty84]

Neee, OTL http://forum.viry.cz/viewtopic.php?f=13 ... 9#p1353269

[M.Lukes]

OTL logfile created on: 24.10.2014 17:50:51 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Lukeš_CZ\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17358)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

2,75 Gb Total Physical Memory | 2,10 Gb Available Physical Memory | 76,39% Memory free
5,49 Gb Paging File | 4,41 Gb Available in Paging File | 80,29% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 139,05 Gb Total Space | 96,26 Gb Free Space | 69,23% Space Free | Partition Type: NTFS
Drive D: | 10,00 Gb Total Space | 1,17 Gb Free Space | 11,74% Space Free | Partition Type: NTFS

Computer Name: LUKEŠ_CZ-PC | User Name: Lukeš_CZ | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014.10.24 14:22:33 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Lukeš_CZ\Desktop\OTL.exe
PRC - [2014.10.22 19:27:07 | 000,104,416 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\afwServ.exe
PRC - [2014.10.22 19:07:20 | 005,223,016 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2014.10.22 19:07:20 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014.10.22 19:07:09 | 003,192,344 | ---- | M] (Avast Software) -- C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
PRC - [2014.10.18 16:52:14 | 001,893,200 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
PRC - [2014.10.18 15:16:24 | 000,411,920 | ---- | M] (LogMeIn, Inc.) -- C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
PRC - [2014.09.20 19:32:03 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe


========== Modules (No Company Name) ==========

MOD - [2014.10.22 19:07:21 | 038,561,576 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2014.10.15 20:08:53 | 011,922,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\b4001d722e320fa42cd87b04b5249b2d\System.Web.ni.dll
MOD - [2014.10.15 20:08:36 | 000,774,144 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\b3011370dcbf33751d3b9dce8091c6c6\System.Runtime.Remoting.ni.dll
MOD - [2014.10.15 20:07:11 | 012,435,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\1453d9e9a4989833ef3db4b22549ba1a\System.Windows.Forms.ni.dll
MOD - [2014.10.15 20:06:36 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\836e10dfd0811b303553216f5cb092ef\System.Drawing.ni.dll
MOD - [2014.10.15 20:06:25 | 005,467,648 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d49908aa93a23c84847b1f8b1b667860\System.Xml.ni.dll
MOD - [2014.10.15 20:06:17 | 000,978,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\237d509a79aeef6e4635b09450d98f2a\System.Configuration.ni.dll
MOD - [2014.10.15 20:04:04 | 007,991,808 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\908ba9e296e92b4e14bdc2437edac603\System.ni.dll
MOD - [2014.10.06 21:47:28 | 008,013,664 | ---- | M] () -- C:\Windows\assembly\GAC\Microsoft.mshtml\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.mshtml.dll
MOD - [2014.09.21 15:41:41 | 001,687,552 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.3106.38542__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll
MOD - [2014.09.21 15:41:41 | 000,270,336 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3106.38494__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll
MOD - [2014.09.21 15:41:41 | 000,204,800 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3106.38558__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll
MOD - [2014.09.21 15:41:41 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3106.38533__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll
MOD - [2014.09.21 15:41:41 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3106.38517__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
MOD - [2014.09.21 15:41:40 | 000,483,328 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3106.38798__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll
MOD - [2014.09.21 15:41:40 | 000,077,824 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3106.38756__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
MOD - [2014.09.21 15:41:40 | 000,069,632 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard.resources\2.0.3106.38565_cs_90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.resources.dll
MOD - [2014.09.21 15:41:40 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3106.38714__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
MOD - [2014.09.21 15:41:40 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3106.38664__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
MOD - [2014.09.21 15:41:40 | 000,007,680 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.resources\2.0.3106.38510_cs_90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.resources.dll
MOD - [2014.09.21 15:41:40 | 000,007,168 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard.resources\2.0.3106.38519_cs_90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.resources.dll
MOD - [2014.09.21 15:41:39 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.resources\2.0.3106.38689_cs_90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.resources.dll
MOD - [2014.09.21 15:41:39 | 000,005,632 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.resources\2.0.3106.38573_cs_90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.resources.dll
MOD - [2014.09.21 15:41:38 | 000,073,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3106.38510__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll
MOD - [2014.09.21 15:41:38 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard.resources\2.0.3106.38805_cs_90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.resources.dll
MOD - [2014.09.21 15:41:38 | 000,011,264 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Dashboard.resources\2.0.3106.38706_cs_90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Dashboard.resources.dll
MOD - [2014.09.21 15:41:38 | 000,006,144 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard.resources\2.0.3106.38724_cs_90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.resources.dll
MOD - [2014.09.21 15:41:37 | 000,348,160 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3106.38724__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
MOD - [2014.09.21 15:41:37 | 000,135,168 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3106.38805__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll
MOD - [2014.09.21 15:41:37 | 000,090,112 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3106.38731__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll
MOD - [2014.09.21 15:41:37 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3106.38723__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
MOD - [2014.09.21 15:41:36 | 000,147,456 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard\2.0.3106.38795__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Dashboard.dll
MOD - [2014.09.21 15:41:36 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime\2.0.3106.38795__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.dll
MOD - [2014.09.21 15:41:34 | 000,806,912 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3106.38668__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
MOD - [2014.09.21 15:41:34 | 000,585,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3106.38573__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll
MOD - [2014.09.21 15:41:34 | 000,438,272 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.3106.38519__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll
MOD - [2014.09.21 15:41:34 | 000,401,408 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3106.38746__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll
MOD - [2014.09.21 15:41:34 | 000,225,280 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3106.38565__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
MOD - [2014.09.21 15:41:34 | 000,118,784 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3106.38689__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
MOD - [2014.09.21 15:41:34 | 000,077,824 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3106.38667__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll
MOD - [2014.09.21 15:41:34 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3106.38687__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
MOD - [2014.09.21 15:41:33 | 000,401,408 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Dashboard\2.0.3106.38706__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll
MOD - [2014.09.21 15:41:33 | 000,307,200 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Wizard\2.0.3106.38579__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Wizard.dll
MOD - [2014.09.21 15:41:33 | 000,282,624 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Dashboard.Shared\2.0.3106.38648__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Dashboard.Shared.dll
MOD - [2014.09.21 15:41:33 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3106.38665__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
MOD - [2014.09.21 15:41:33 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3106.38578__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
MOD - [2014.09.21 15:41:33 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3106.38704__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
MOD - [2014.09.21 15:41:32 | 000,376,832 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3106.38666__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
MOD - [2014.09.21 15:41:32 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3106.38667__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
MOD - [2014.09.21 15:41:32 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3091.17968__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll
MOD - [2014.09.21 15:41:32 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3091.17961__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll
MOD - [2014.09.21 15:41:32 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3091.17980__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll
MOD - [2014.09.21 15:41:32 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3091.18004__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll
MOD - [2014.09.21 15:41:32 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3091.17978__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll
MOD - [2014.09.21 15:41:32 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3091.18004__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll
MOD - [2014.09.21 15:41:32 | 000,006,656 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll
MOD - [2014.09.21 15:41:30 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation\2.0.3091.17957__90ba9c70f846762e\CLI.Foundation.dll
MOD - [2014.09.21 15:41:30 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll
MOD - [2014.09.21 15:41:30 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation\2.0.3091.17954__90ba9c70f846762e\LOG.Foundation.dll
MOD - [2014.09.21 15:41:30 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3091.17956__90ba9c70f846762e\NEWAEM.Foundation.dll
MOD - [2014.09.21 15:41:30 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3091.18035__90ba9c70f846762e\CLI.Foundation.XManifest.dll
MOD - [2014.09.21 15:41:30 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.OS.I0602\2.0.3091.17981__90ba9c70f846762e\DEM.OS.I0602.dll
MOD - [2014.09.21 15:41:30 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3091.17970__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll
MOD - [2014.09.21 15:41:30 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3091.17968__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll
MOD - [2014.09.21 15:41:30 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3091.17961__90ba9c70f846762e\CLI.Component.Client.Shared.dll
MOD - [2014.09.21 15:41:30 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Foundation\2.0.3091.17977__90ba9c70f846762e\MOM.Foundation.dll
MOD - [2014.09.21 15:41:30 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.OS\2.0.3091.17980__90ba9c70f846762e\DEM.OS.dll
MOD - [2014.09.21 15:41:30 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll
MOD - [2014.09.21 15:41:30 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics\2.0.3091.17981__90ba9c70f846762e\DEM.Graphics.dll
MOD - [2014.09.21 15:41:30 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll
MOD - [2014.09.21 15:41:30 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3091.17967__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll
MOD - [2014.09.21 15:41:29 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3091.17970__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll
MOD - [2014.09.21 15:41:29 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3091.17992__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll
MOD - [2014.09.21 15:41:29 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3091.18001__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll
MOD - [2014.09.21 15:41:29 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Shared\2.0.3091.18001__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.dll
MOD - [2014.09.21 15:41:29 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3091.17987__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll
MOD - [2014.09.21 15:41:29 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3091.17982__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll
MOD - [2014.09.21 15:41:28 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3091.17993__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll
MOD - [2014.09.21 15:41:28 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.3091.17990__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll
MOD - [2014.09.21 15:41:28 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3091.17990__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll
MOD - [2014.09.21 15:41:28 | 000,049,152 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3091.17990__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
MOD - [2014.09.21 15:41:28 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3091.17992__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll
MOD - [2014.09.21 15:41:28 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3091.17976__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
MOD - [2014.09.21 15:41:28 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.3091.17988__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
MOD - [2014.09.21 15:41:28 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3091.17982__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
MOD - [2014.09.21 15:41:28 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.3091.17991__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll
MOD - [2014.09.21 15:41:28 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3091.17983__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
MOD - [2014.09.21 15:41:27 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.resources\2.0.3106.38503_cs_90ba9c70f846762e\CLI.Component.Dashboard.resources.dll
MOD - [2014.09.21 15:41:27 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3091.17979__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll
MOD - [2014.09.21 15:41:27 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll
MOD - [2014.09.21 15:41:27 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Foundation\2.0.3091.17977__90ba9c70f846762e\APM.Foundation.dll
MOD - [2014.09.21 15:41:27 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3091.17968__90ba9c70f846762e\AEM.Server.Shared.dll
MOD - [2014.09.21 15:41:27 | 000,006,656 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.SkinFactory.resources\2.0.3106.38488_cs_90ba9c70f846762e\CLI.Component.SkinFactory.resources.dll
MOD - [2014.09.21 15:41:26 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3106.38822__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll
MOD - [2014.09.21 15:41:26 | 000,011,264 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOCALIZATION.Foundation.Implementation\2.0.3106.38837__90ba9c70f846762e\LOCALIZATION.Foundation.Implementation.dll
MOD - [2014.09.21 15:41:26 | 000,007,168 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3106.38485__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll
MOD - [2014.09.21 15:41:25 | 000,106,496 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Implementation\2.0.3106.38785__90ba9c70f846762e\MOM.Implementation.dll
MOD - [2014.09.21 15:41:25 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3106.38782__90ba9c70f846762e\LOG.Foundation.Implementation.dll
MOD - [2014.09.21 15:41:25 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3091.17965__90ba9c70f846762e\LOG.Foundation.Private.dll
MOD - [2014.09.21 15:41:25 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3091.17977__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll
MOD - [2014.09.21 15:41:25 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOCALIZATION.Foundation.Private\2.0.3091.17963__90ba9c70f846762e\LOCALIZATION.Foundation.Private.dll
MOD - [2014.09.21 15:41:25 | 000,014,848 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll
MOD - [2014.09.21 15:41:25 | 000,013,312 | ---- | M] () -- C:\Windows\assembly\GAC\Interop.WBOCXLib\1.0.0.0__90ba9c70f846762e\Interop.WBOCXLib.dll
MOD - [2014.09.21 15:41:24 | 000,397,312 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3106.38526__90ba9c70f846762e\CLI.Component.Wizard.dll
MOD - [2014.09.21 15:41:24 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3106.38488__90ba9c70f846762e\CLI.Component.SkinFactory.dll
MOD - [2014.09.21 15:41:24 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3106.38485__90ba9c70f846762e\CLI.Component.Runtime.dll
MOD - [2014.09.21 15:41:24 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3091.17979__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll
MOD - [2014.09.21 15:41:24 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3091.17961__90ba9c70f846762e\CLI.Foundation.Private.dll
MOD - [2014.09.21 15:41:24 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3091.17978__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll
MOD - [2014.09.21 15:41:23 | 000,995,328 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3106.38503__90ba9c70f846762e\CLI.Component.Dashboard.dll
MOD - [2014.09.21 15:41:23 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3091.17970__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll
MOD - [2014.09.21 15:41:23 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3091.17977__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll
MOD - [2014.09.21 15:41:22 | 000,069,632 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ATIDEMOS\2.0.3106.38486__90ba9c70f846762e\ATIDEMOS.dll
MOD - [2014.09.21 15:41:22 | 000,057,344 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Server\2.0.3106.38482__90ba9c70f846762e\APM.Server.dll
MOD - [2014.09.21 15:41:22 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server\2.0.3106.38484__90ba9c70f846762e\AEM.Server.dll
MOD - [2014.09.21 15:41:22 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll
MOD - [2014.09.21 15:41:22 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CCC.Implementation\2.0.3106.38784__90ba9c70f846762e\CCC.Implementation.dll
MOD - [2014.09.21 15:41:22 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3091.17993__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll
MOD - [2014.09.21 04:04:42 | 000,025,600 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\0483c93466914f3fbd5b44454b0c8a98\Accessibility.ni.dll
MOD - [2014.09.21 04:03:07 | 011,497,984 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\38bf604432e1a30c954b2ee40d6a2d1c\mscorlib.ni.dll
MOD - [2013.07.08 14:43:49 | 000,425,984 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_cs_b77a5c561934e089\System.Windows.Forms.resources.dll
MOD - [2013.07.08 14:43:43 | 000,303,104 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_cs_b77a5c561934e089\mscorlib.resources.dll


========== Services (SafeList) ==========

SRV - [2014.10.22 19:27:07 | 000,104,416 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\afwServ.exe -- (avast! Firewall)
SRV - [2014.10.22 19:07:20 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2014.10.22 19:07:09 | 003,192,344 | ---- | M] (Avast Software) [On_Demand | Running] -- C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe -- (AvastVBoxSvc)
SRV - [2014.10.20 13:42:56 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014.10.18 16:52:14 | 001,893,200 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2014.10.18 15:16:24 | 000,411,920 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe -- (LMIGuardianSvc)
SRV - [2014.10.15 20:11:52 | 000,114,288 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014.09.19 02:50:15 | 000,108,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV - [2014.09.16 23:10:54 | 000,569,024 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013.05.27 06:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\synth3dvsc.sys -- (Synth3dVsc)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\LUKE_C~1\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - [2014.10.22 19:27:16 | 000,026,136 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswKbd.sys -- (aswKbd)
DRV - [2014.10.22 19:27:07 | 000,271,288 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswNdisFlt.sys -- (aswNdisFlt)
DRV - [2014.10.22 19:07:22 | 000,422,760 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2014.10.22 19:07:22 | 000,206,248 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2014.10.22 19:07:22 | 000,091,496 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\aswStm.sys -- (aswStm)
DRV - [2014.10.22 19:07:22 | 000,081,768 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr2.sys -- (aswRdr)
DRV - [2014.10.22 19:07:22 | 000,070,384 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2014.10.22 19:07:22 | 000,049,944 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2014.10.22 19:07:22 | 000,024,184 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\aswHwid.sys -- (aswHwid)
DRV - [2014.10.22 19:07:17 | 000,787,800 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2014.10.22 19:07:09 | 000,218,192 | ---- | M] (Avast Software) [Kernel | Auto | Running] -- C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys -- (VBoxAswDrv)
DRV - [2014.09.22 14:28:48 | 000,243,128 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2014.09.21 15:38:22 | 000,129,552 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\ahcix86s.sys -- (ahcix86s)
DRV - [2014.09.21 15:38:21 | 000,014,352 | ---- | M] (ATI Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\AtiPcie.sys -- (AtiPcie)
DRV - [2014.09.21 15:38:08 | 003,847,168 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2013.10.02 02:42:31 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2012.08.23 16:44:32 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010.11.20 14:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010.11.20 14:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010.11.20 14:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010.11.20 11:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010.11.20 11:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010.11.20 11:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009.03.18 18:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-2539830454-3853352712-3909248287-1001\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-2539830454-3853352712-3909248287-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-2539830454-3853352712-3909248287-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "www.seznam.cz"
FF - prefs.js..extensions.enabledAddons: superstart%40enjoyfreeware.org:7.3.1
FF - prefs.js..extensions.enabledAddons: stefanvandamme%40stefanvd.net:3.0.0.16
FF - prefs.js..extensions.enabledAddons: ClassicThemeRestorer%40ArisT2Noia4dev:1.2.5
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:33.0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_189.dll ()
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Users\Lukeš_CZ\AppData\Local\Google\Google Earth\plugin\npgeplugin.dll (Google)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2014.10.22 19:27:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 33.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 33.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2014.09.20 17:14:41 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Lukeš_CZ\AppData\Roaming\Mozilla\Extensions
[2014.10.17 15:35:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Lukeš_CZ\AppData\Roaming\Mozilla\Firefox\Profiles\9syyr5en.default-1413208004927\extensions
[2014.10.13 16:22:36 | 000,000,000 | ---D | M] (Super Start) -- C:\Users\Lukeš_CZ\AppData\Roaming\Mozilla\Firefox\Profiles\9syyr5en.default-1413208004927\extensions\superstart@enjoyfreeware.org
[2014.10.16 19:34:39 | 000,398,450 | ---- | M] () (No name found) -- C:\Users\Lukeš_CZ\AppData\Roaming\Mozilla\Firefox\Profiles\9syyr5en.default-1413208004927\extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi
[2014.10.15 01:21:24 | 000,999,939 | ---- | M] () (No name found) -- C:\Users\Lukeš_CZ\AppData\Roaming\Mozilla\Firefox\Profiles\9syyr5en.default-1413208004927\extensions\stefanvandamme@stefanvd.net.xpi
[2014.10.16 19:34:27 | 000,979,610 | ---- | M] () (No name found) -- C:\Users\Lukeš_CZ\AppData\Roaming\Mozilla\Firefox\Profiles\9syyr5en.default-1413208004927\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2014.10.15 20:11:40 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2014.10.15 20:11:54 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
File not found (No name found) -- C:\USERS\LUKEš_CZ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9SYYR5EN.DEFAULT-1413208004927\EXTENSIONS\CLASSICTHEMERESTORER@ARIST2NOIA4DEV.XPI
File not found (No name found) -- C:\USERS\LUKEš_CZ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9SYYR5EN.DEFAULT-1413208004927\EXTENSIONS\STEFANVANDAMME@STEFANVD.NET.XPI
File not found (No name found) -- C:\USERS\LUKEš_CZ\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9SYYR5EN.DEFAULT-1413208004927\EXTENSIONS\SUPERSTART@ENJOYFREEWARE.ORG

========== Chrome ==========

CHR - plugin: Error reading preferences file
CHR - Extension: No name found = C:\Users\Lukeš_CZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.8_0\
CHR - Extension: No name found = C:\Users\Lukeš_CZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\
CHR - Extension: No name found = C:\Users\Lukeš_CZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: No name found = C:\Users\Lukeš_CZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: No name found = C:\Users\Lukeš_CZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: No name found = C:\Users\Lukeš_CZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.0_0\
CHR - Extension: No name found = C:\Users\Lukeš_CZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.0.2204.148_0\
CHR - Extension: No name found = C:\Users\Lukeš_CZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\idgeoanibcknhniccgaoaiolihidecjn\3.0.1_0\
CHR - Extension: No name found = C:\Users\Lukeš_CZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhefgdcgopdpbledckgpkndipigififm\2.5_0\
CHR - Extension: No name found = C:\Users\Lukeš_CZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: No name found = C:\Users\Lukeš_CZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2014.10.24 09:45:13 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\.DEFAULT..\RunOnce: [SPReview] C:\Windows\System32\SPReview\SPReview.exe (Microsoft Corporation)
O4 - HKU\S-1-5-18..\RunOnce: [SPReview] C:\Windows\System32\SPReview\SPReview.exe (Microsoft Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2539830454-3853352712-3909248287-1001\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2539830454-3853352712-3909248287-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.46.172.36 213.46.172.37
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7E7D0170-29E5-4E38-935B-7067C7B81C40}: DhcpNameServer = 213.46.172.36 213.46.172.37
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FPS1 - C:\Windows\System32\frapsvid.dll (Beepa P/L)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[M.Lukes]

[2014.10.24 15:19:43 | 000,000,000 | ---D | C] -- C:\ATI
[2014.10.24 14:22:29 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Lukeš_CZ\Desktop\OTL.exe
[2014.10.24 10:37:35 | 000,000,000 | ---D | C] -- C:\rsit
[2014.10.24 09:45:20 | 000,000,000 | ---D | C] -- C:\$RECYCLE.BIN
[2014.10.24 02:14:18 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2014.10.24 02:14:18 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2014.10.24 02:14:18 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2014.10.24 02:14:01 | 000,000,000 | ---D | C] -- C:\Qoobox
[2014.10.24 02:13:36 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2014.10.24 01:25:43 | 005,583,977 | R--- | C] (Swearware) -- C:\ComboFix.exe
[2014.10.22 19:27:39 | 000,026,136 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswKbd.sys
[2014.10.22 19:27:35 | 000,291,352 | ---- | C] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2014.10.22 19:27:07 | 000,271,288 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswNdisFlt.sys
[2014.10.22 19:10:25 | 000,000,000 | ---D | C] -- C:\Users\Lukeš_CZ\AppData\Roaming\AVAST Software
[2014.10.22 19:08:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
[2014.10.22 19:07:45 | 000,091,496 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswStm.sys
[2014.10.22 19:07:44 | 000,422,760 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2014.10.22 19:07:43 | 000,070,384 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2014.10.22 19:07:42 | 000,081,768 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr2.sys
[2014.10.22 19:07:39 | 000,787,800 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2014.10.22 19:07:22 | 000,043,152 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2014.10.22 19:05:11 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2014.10.22 02:13:39 | 000,000,000 | ---D | C] -- C:\Windows\System32\vbox
[2014.10.20 12:20:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
[2014.10.20 12:20:01 | 000,000,000 | ---D | C] -- C:\Program Files\LogMeIn Hamachi
[2014.10.19 14:42:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2014.10.18 00:27:20 | 000,000,000 | ---D | C] -- C:\Windows\cs
[2014.10.18 00:24:35 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2014.10.18 00:23:14 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_43.dll
[2014.10.18 00:23:14 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_7.dll
[2014.10.18 00:23:14 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_5.dll
[2014.10.18 00:23:13 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_43.dll
[2014.10.18 00:22:14 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_42.dll
[2014.10.18 00:21:03 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_32.dll
[2014.10.18 00:18:07 | 000,000,000 | ---D | C] -- C:\Users\Lukeš_CZ\AppData\Local\Windows Live
[2014.10.18 00:17:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live
[2014.10.16 20:07:27 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2014.10.15 20:11:40 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2014.10.15 19:34:43 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\packager.dll
[2014.10.15 19:34:38 | 000,156,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll
[2014.10.15 19:34:37 | 000,081,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll
[2014.10.15 19:34:36 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwproxystub.dll
[2014.10.15 19:34:35 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollector.exe
[2014.10.15 19:34:35 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\JavaScriptCollectionAgent.dll
[2014.10.15 19:34:34 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
[2014.10.15 19:34:33 | 000,365,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2014.10.15 19:34:33 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2014.10.15 19:34:33 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2014.10.15 19:34:33 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollectorres.dll
[2014.10.15 19:34:31 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2014.10.15 19:34:30 | 000,440,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2014.10.15 19:34:28 | 001,068,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmlmedia.dll
[2014.10.15 19:34:28 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MshtmlDac.dll
[2014.10.15 19:34:25 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll
[2014.10.15 19:34:24 | 004,201,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2014.10.15 19:34:21 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2014.10.15 19:34:21 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2014.10.15 19:34:19 | 000,678,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2014.10.15 19:34:19 | 000,331,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2014.10.15 19:34:18 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2014.10.15 19:34:18 | 000,607,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2014.10.15 19:34:16 | 002,017,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2014.10.15 19:34:16 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2014.10.15 19:34:16 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2014.10.15 19:33:52 | 000,396,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2014.10.15 19:33:52 | 000,230,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\generaltel.dll
[2014.10.15 19:33:51 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[2014.10.15 19:33:42 | 002,744,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcorets.dll
[2014.10.15 19:33:30 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcorekmts.dll
[2014.10.15 19:33:14 | 002,379,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2014.10.15 19:29:37 | 000,988,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drmv2clt.dll
[2014.10.15 19:29:37 | 000,744,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\blackbox.dll
[2014.10.15 19:29:36 | 000,617,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmdrmsdk.dll
[2014.10.15 19:29:30 | 003,208,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2014.10.15 19:29:29 | 000,442,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AUDIOKSE.dll
[2014.10.15 19:29:29 | 000,409,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ci.dll
[2014.10.15 19:29:29 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drmmgrtn.dll
[2014.10.15 19:29:28 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AudioSes.dll
[2014.10.15 19:29:27 | 000,521,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2014.10.15 19:29:27 | 000,455,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2014.10.15 19:29:26 | 003,970,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2014.10.15 19:29:26 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDump.dll
[2014.10.15 19:29:25 | 003,914,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2014.10.15 19:29:25 | 001,329,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2014.10.15 19:29:25 | 000,489,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\evr.dll
[2014.10.15 19:29:24 | 000,354,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
[2014.10.15 19:29:23 | 000,374,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AudioEng.dll
[2014.10.15 19:29:22 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscp.dll
[2014.10.15 19:29:22 | 000,265,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msnetobj.dll
[2014.10.15 19:29:22 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2014.10.15 19:29:22 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\audiodg.exe
[2014.10.15 19:29:22 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rrinstaller.exe
[2014.10.15 19:29:21 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appidpolicyconverter.exe
[2014.10.15 19:29:21 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appidapi.dll
[2014.10.15 19:29:20 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\setbcdlocale.dll
[2014.10.15 19:29:20 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfpmp.exe
[2014.10.15 19:29:20 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appidcertstorecheck.exe
[2014.10.15 19:29:18 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll
[2014.10.15 19:29:18 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxmasf.dll
[2014.10.15 19:29:17 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx
[2014.10.15 19:29:17 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mferror.dll
[2014.10.15 19:29:16 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2014.10.13 15:46:51 | 000,000,000 | ---D | C] -- C:\Users\Lukeš_CZ\Desktop\Původní data aplikace Firefox
[2014.10.13 15:37:14 | 000,000,000 | ---D | C] -- C:\Users\Lukeš_CZ\AppData\Local\Skype
[2014.10.13 15:37:11 | 000,000,000 | ---D | C] -- C:\Users\Lukeš_CZ\AppData\Roaming\Skype
[2014.10.13 15:36:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2014.10.13 15:36:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2014.10.13 15:36:56 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2014.10.10 18:24:25 | 000,000,000 | ---D | C] -- C:\Users\Lukeš_CZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
[2014.10.10 18:24:06 | 000,000,000 | ---D | C] -- C:\Program Files\The KMPlayer
[2014.10.09 13:58:21 | 000,536,576 | ---- | C] (SQLite Development Team) -- C:\Windows\System32\sqlite3.dll
[2014.10.08 22:00:21 | 000,000,000 | ---D | C] -- C:\Users\Lukeš_CZ\AppData\Roaming\OpenOffice
[2014.10.08 17:54:19 | 000,000,000 | ---D | C] -- C:\Users\Lukeš_CZ\AppData\Local\Temporary Projects
[2014.10.06 22:08:26 | 000,000,000 | ---D | C] -- C:\ProgramData\VS
[2014.10.06 21:51:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Synchronization Services
[2014.10.06 21:51:30 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2014.10.06 21:50:27 | 000,000,000 | ---D | C] -- C:\Users\Lukeš_CZ\Documents\Visual Studio 2010
[2014.10.06 21:50:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express
[2014.10.06 21:46:42 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2014.10.06 21:46:01 | 000,000,000 | ---D | C] -- C:\Windows\symbols
[2014.10.06 21:45:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SDKs
[2014.10.06 21:45:49 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Help Viewer
[2014.10.06 21:45:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Merge Modules
[2014.10.06 21:45:47 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 10.0
[2014.10.06 20:33:41 | 000,000,000 | ---D | C] -- C:\Windows\System32\appmgmt
[2014.10.03 21:33:29 | 000,000,000 | ---D | C] -- C:\Windows\System32\14100301_stream
[2014.10.03 13:15:42 | 000,000,000 | ---D | C] -- C:\Windows\System32\14100300_stream
[2014.10.02 21:09:35 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2014.10.02 21:02:02 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2014.10.01 23:43:32 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe
[2014.10.01 23:25:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2014.10.01 23:25:36 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2014.10.01 23:15:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2014.10.01 23:15:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2014.10.01 15:01:56 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdvd.dll
[2014.09.29 19:41:15 | 000,000,000 | ---D | C] -- C:\Users\Lukeš_CZ\Desktop\Nová složka (2)
[2014.09.28 20:53:52 | 000,026,176 | -H-- | C] (LogMeIn, Inc.) -- C:\Windows\System32\hamachi.sys
[2014.09.28 20:53:21 | 000,000,000 | ---D | C] -- C:\Users\Lukeš_CZ\AppData\Local\LogMeIn Hamachi
[2014.09.28 20:53:21 | 000,000,000 | ---D | C] -- C:\Users\Lukeš_CZ\AppData\Local\LogMeIn
[2014.09.28 20:53:21 | 000,000,000 | ---D | C] -- C:\ProgramData\LogMeIn
[2014.09.27 00:38:03 | 000,000,000 | ---D | C] -- C:\Users\Lukeš_CZ\AppData\Local\ElevatedDiagnostics
[2014.09.26 21:01:58 | 000,000,000 | ---D | C] -- C:\Users\Lukeš_CZ\AppData\Roaming\FileZilla
[2014.09.26 21:01:49 | 000,000,000 | ---D | C] -- C:\Users\Lukeš_CZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
[2014.09.26 21:01:44 | 000,000,000 | ---D | C] -- C:\Program Files\FileZilla FTP Client
[2014.09.26 20:56:43 | 000,000,000 | ---D | C] -- C:\Users\Lukeš_CZ\Documents\PSpad
[2014.09.26 20:55:14 | 000,000,000 | ---D | C] -- C:\Users\Lukeš_CZ\Desktop\Nová složka
[2014.09.26 20:29:08 | 000,000,000 | ---D | C] -- C:\Users\Lukeš_CZ\Documents\SAMP 0.3z
[2014.09.26 19:01:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2014.09.26 19:01:14 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2014.09.24 21:18:38 | 000,000,000 | ---D | C] -- C:\Users\Lukeš_CZ\Documents\Eidos
[2014.09.24 20:24:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eidos
[2014.09.24 20:15:58 | 000,000,000 | ---D | C] -- C:\Program Files\Eidos

========== Files - Modified Within 30 Days ==========

[2014.10.24 17:53:58 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014.10.24 17:11:01 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014.10.24 14:22:33 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Lukeš_CZ\Desktop\OTL.exe
[2014.10.24 14:21:08 | 000,017,072 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014.10.24 14:21:08 | 000,017,072 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014.10.24 14:05:49 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014.10.24 14:05:41 | 2213,007,360 | -HS- | M] () -- C:\hiberfil.sys
[2014.10.24 10:37:15 | 001,107,968 | ---- | M] () -- C:\Users\Lukeš_CZ\Desktop\RSIT.exe
[2014.10.24 10:12:30 | 000,028,266 | ---- | M] () -- C:\Users\Lukeš_CZ\Desktop\1111.jpg
[2014.10.24 09:45:13 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2014.10.24 05:53:14 | 000,012,017 | ---- | M] () -- C:\Windows\diagwrn.xml
[2014.10.24 05:53:13 | 000,003,813 | ---- | M] () -- C:\Windows\diagerr.xml
[2014.10.24 01:34:22 | 000,668,376 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2014.10.24 01:34:22 | 000,653,724 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2014.10.24 01:34:22 | 000,141,004 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2014.10.24 01:34:22 | 000,121,596 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2014.10.24 01:26:39 | 005,583,977 | R--- | M] (Swearware) -- C:\ComboFix.exe
[2014.10.22 19:28:44 | 000,002,051 | ---- | M] () -- C:\Users\Public\Desktop\Avast Internet Security.lnk
[2014.10.22 19:27:16 | 000,026,136 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswKbd.sys
[2014.10.22 19:27:07 | 000,271,288 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswNdisFlt.sys
[2014.10.22 19:07:22 | 000,422,760 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2014.10.22 19:07:22 | 000,291,352 | ---- | M] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2014.10.22 19:07:22 | 000,206,248 | ---- | M] () -- C:\Windows\System32\drivers\aswVmm.sys
[2014.10.22 19:07:22 | 000,091,496 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswStm.sys
[2014.10.22 19:07:22 | 000,081,768 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr2.sys
[2014.10.22 19:07:22 | 000,070,384 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2014.10.22 19:07:22 | 000,049,944 | ---- | M] () -- C:\Windows\System32\drivers\aswRvrt.sys
[2014.10.22 19:07:22 | 000,043,152 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2014.10.22 19:07:22 | 000,024,184 | ---- | M] () -- C:\Windows\System32\drivers\aswHwid.sys
[2014.10.22 19:07:17 | 000,787,800 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2014.10.20 13:42:56 | 000,701,104 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2014.10.20 13:42:56 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2014.10.18 00:26:25 | 000,000,020 | ---- | M] () -- C:\Windows\¨úi
[2014.10.17 15:30:29 | 000,000,969 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2014.10.17 14:36:21 | 000,002,129 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014.10.15 19:57:40 | 003,644,504 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2014.10.13 15:36:57 | 000,002,521 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2014.10.10 18:24:25 | 000,000,997 | ---- | M] () -- C:\Users\Lukeš_CZ\Desktop\KMPlayer.lnk
[2014.10.10 03:44:58 | 000,230,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\generaltel.dll
[2014.10.10 03:44:35 | 000,396,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2014.10.10 03:39:38 | 000,302,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[2014.10.08 22:10:26 | 000,000,029 | ---- | M] () -- C:\Windows\WINBASE.INI
[2014.10.07 04:04:46 | 000,331,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2014.10.04 16:33:08 | 000,000,000 | ---- | M] () -- C:\Users\Lukeš_CZ\AppData\Roaming\FileOut.cns
[2014.10.04 16:33:08 | 000,000,000 | ---- | M] () -- C:\Users\Lukeš_CZ\AppData\Roaming\FileIn.cns
[2014.10.02 18:24:42 | 000,000,132 | ---- | M] () -- C:\Users\Lukeš_CZ\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
[2014.10.02 15:53:02 | 000,231,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2014.09.29 19:27:48 | 000,027,934 | ---- | M] () -- C:\Users\Lukeš_CZ\Documents\E_Ban.rar
[2014.09.29 02:41:36 | 002,379,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2014.09.26 21:02:53 | 000,001,950 | ---- | M] () -- C:\Users\Lukeš_CZ\Desktop\FileZilla Client.lnk
[2014.09.26 00:46:42 | 000,365,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2014.09.26 00:46:39 | 000,243,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2014.09.26 00:32:04 | 002,017,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2014.09.24 20:24:06 | 000,002,065 | ---- | M] () -- C:\Users\Public\Desktop\Tomb Raider - Anniversary.lnk

========== Files Created - No Company Name ==========

[2014.10.24 10:37:11 | 001,107,968 | ---- | C] () -- C:\Users\Lukeš_CZ\Desktop\RSIT.exe
[2014.10.24 10:12:29 | 000,028,266 | ---- | C] () -- C:\Users\Lukeš_CZ\Desktop\1111.jpg
[2014.10.24 02:14:18 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2014.10.24 02:14:18 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2014.10.24 02:14:18 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2014.10.24 02:14:18 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2014.10.24 02:14:18 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2014.10.23 13:59:48 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014.10.22 19:28:44 | 000,002,051 | ---- | C] () -- C:\Users\Public\Desktop\Avast Internet Security.lnk
[2014.10.22 19:07:45 | 000,206,248 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys
[2014.10.22 19:07:43 | 000,049,944 | ---- | C] () -- C:\Windows\System32\drivers\aswRvrt.sys
[2014.10.22 19:07:43 | 000,024,184 | ---- | C] () -- C:\Windows\System32\drivers\aswHwid.sys
[2014.10.18 00:27:01 | 000,001,251 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
[2014.10.18 00:26:39 | 000,001,320 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
[2014.10.18 00:26:23 | 000,000,020 | ---- | C] () -- C:\Windows\¨úi
[2014.10.13 15:36:57 | 000,002,521 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2014.10.10 18:24:25 | 000,000,997 | ---- | C] () -- C:\Users\Lukeš_CZ\Desktop\KMPlayer.lnk
[2014.10.08 22:10:26 | 000,000,029 | ---- | C] () -- C:\Windows\WINBASE.INI
[2014.10.08 02:57:27 | 000,012,017 | ---- | C] () -- C:\Windows\diagwrn.xml
[2014.10.08 02:57:27 | 000,003,813 | ---- | C] () -- C:\Windows\diagerr.xml
[2014.10.04 16:22:57 | 000,000,000 | ---- | C] () -- C:\Users\Lukeš_CZ\AppData\Roaming\FileOut.cns
[2014.10.04 16:22:57 | 000,000,000 | ---- | C] () -- C:\Users\Lukeš_CZ\AppData\Roaming\FileIn.cns
[2014.10.02 18:22:20 | 000,000,132 | ---- | C] () -- C:\Users\Lukeš_CZ\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
[2014.10.01 23:39:14 | 000,001,169 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS5.lnk
[2014.10.01 23:36:49 | 000,001,131 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS5.lnk
[2014.10.01 23:35:01 | 000,001,224 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS5.lnk
[2014.10.01 23:30:07 | 000,001,315 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS5.lnk
[2014.10.01 23:29:13 | 000,001,481 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS5.lnk
[2014.10.01 23:26:20 | 000,000,967 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
[2014.09.26 21:02:53 | 000,001,950 | ---- | C] () -- C:\Users\Lukeš_CZ\Desktop\FileZilla Client.lnk
[2014.09.24 20:24:06 | 000,002,065 | ---- | C] () -- C:\Users\Public\Desktop\Tomb Raider - Anniversary.lnk
[2014.09.24 19:17:14 | 000,309,105 | ---- | C] () -- C:\Users\Lukeš_CZ\Documents\08012010189.jpg
[2014.09.24 19:17:13 | 000,204,865 | ---- | C] () -- C:\Users\Lukeš_CZ\Documents\08012010193.jpg
[2014.09.24 19:17:11 | 000,245,094 | ---- | C] () -- C:\Users\Lukeš_CZ\Documents\08012010191.jpg
[2014.09.24 19:17:11 | 000,199,427 | ---- | C] () -- C:\Users\Lukeš_CZ\Documents\08012010192.jpg
[2014.09.24 19:17:10 | 000,262,181 | ---- | C] () -- C:\Users\Lukeš_CZ\Documents\08012010190.jpg
[2014.09.21 16:51:59 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2014.09.21 16:49:25 | 002,140,976 | ---- | C] () -- C:\Windows\System32\SStudio.dll
[2014.09.21 16:49:23 | 005,804,772 | ---- | C] () -- C:\Windows\System32\drivers\rtvienna.dat
[2014.09.21 16:49:19 | 001,099,203 | ---- | C] () -- C:\Windows\System32\drivers\RTAIODAT.DAT
[2014.09.21 16:49:07 | 000,188,696 | ---- | C] () -- C:\Windows\System32\AcpiServiceVnA.dll
[2014.09.21 16:49:07 | 000,029,496 | ---- | C] () -- C:\Windows\System32\audioLibVc.dll
[2014.09.21 15:43:26 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2014.09.21 15:39:27 | 003,107,788 | ---- | C] () -- C:\Windows\System32\atiumdva.dat
[2014.09.21 15:39:26 | 000,174,819 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2014.09.21 15:39:26 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2014.09.21 15:39:26 | 000,090,112 | ---- | C] () -- C:\Windows\System32\atibrtmon.exe
[2014.09.20 17:41:25 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
[2014.09.20 17:39:46 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe

========== ZeroAccess Check ==========

[M.Lukes]

2009.07.14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014.06.25 03:41:30 | 012,874,240 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2014.10.24 07:44:08 | 000,000,000 | ---D | M] -- C:\Users\Guest\AppData\Roaming\AVAST Software
[2014.10.22 19:10:25 | 000,000,000 | ---D | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\AVAST Software
[2014.10.23 22:08:27 | 000,000,000 | ---D | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\Clip2Net
[2014.10.04 17:57:19 | 000,000,000 | ---D | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\DAEMON Tools Lite
[2014.10.02 18:27:42 | 000,000,000 | ---D | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\FileZilla
[2014.09.21 18:05:44 | 000,000,000 | ---D | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\ICQ
[2014.10.08 22:00:21 | 000,000,000 | ---D | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\OpenOffice
[2014.10.24 06:23:47 | 000,000,000 | ---D | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\uTorrent

========== Purity Check ==========



========== Custom Scans ==========

< >
[2009.07.14 06:53:46 | 000,021,124 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2009.07.14 06:53:47 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2014.09.21 16:27:51 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job

< >

< MD5 for: AGP440.SYS >
[2009.07.14 03:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\erdnt\cache\AGP440.sys
[2009.07.14 03:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\drivers\AGP440.sys
[2009.07.14 03:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\AGP440.sys
[2009.07.14 03:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\AGP440.sys
[2009.07.14 03:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\AGP440.sys

< MD5 for: AHCIX86S.SYS >
[2014.09.21 15:38:22 | 000,129,552 | ---- | M] (AMD Technologies Inc.) MD5=4FA58A158C9D3769FF9248675B53D6A7 -- C:\Windows\System32\drivers\ahcix86s.sys
[2014.09.21 15:38:22 | 000,129,552 | ---- | M] (AMD Technologies Inc.) MD5=4FA58A158C9D3769FF9248675B53D6A7 -- C:\Windows\System32\DriverStore\FileRepository\ahcix86s.inf_x86_neutral_28923700a6989ec3\ahcix86s.sys

< MD5 for: ATAPI.SYS >
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\erdnt\cache\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_a5025d31bee4647c\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.18231_none_df26d4d57fdef5b0\atapi.sys
[2009.07.14 03:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.22414_none_dfc9143c98e9a6c4\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2009.07.14 03:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2010.11.20 14:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\System32\autochk.exe
[2010.11.20 14:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe

< MD5 for: CDROM.SYS >
[2009.07.14 01:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_5f7fb206051affbb\cdrom.sys
[2010.11.20 10:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\drivers\cdrom.sys
[2010.11.20 10:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_6381e09675524225\cdrom.sys
[2010.11.20 10:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_61b0c5ce02098355\cdrom.sys

< MD5 for: CNGAUDIT.DLL >
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\erdnt\cache\cngaudit.dll
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\System32\cngaudit.dll
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll

< MD5 for: CRYPTSVC.DLL >
[2013.05.10 06:49:59 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=33ADF6E0853AB39EA1723BE82842C1D3 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18150_none_77d7a417f9359661\cryptsvc.dll
[2013.05.13 06:45:55 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=3897DFF247D9ED0006190349DE264E14 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18151_none_77d8a461f934afb8\cryptsvc.dll
[2014.07.07 03:40:07 | 000,143,872 | ---- | M] (Microsoft Corporation) MD5=623E143F2DF17C0106A9988F5D7DC878 -- C:\Windows\erdnt\cache\cryptsvc.dll
[2014.07.07 03:40:07 | 000,143,872 | ---- | M] (Microsoft Corporation) MD5=623E143F2DF17C0106A9988F5D7DC878 -- C:\Windows\System32\cryptsvc.dll
[2014.07.07 03:40:07 | 000,143,872 | ---- | M] (Microsoft Corporation) MD5=623E143F2DF17C0106A9988F5D7DC878 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18526_none_77fe1d2ff917cf34\cryptsvc.dll
[2013.07.09 15:57:37 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=6DB499DEFCC827317C5371164A7CDB27 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22380_none_7840d305126b8725\cryptsvc.dll
[2013.07.09 06:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=7CA1BECEA5DE2643ADDAD32670E7A4C9 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18205_none_7812b70bf9088686\cryptsvc.dll
[2014.07.07 03:40:42 | 000,145,920 | ---- | M] (Microsoft Corporation) MD5=90BFC30E730A6760F1FEE2A55F8AB029 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22736_none_787cebf5123d8816\cryptsvc.dll
[2009.07.14 03:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll
[2010.11.20 14:18:24 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_7807034ff91166f4\cryptsvc.dll
[2013.05.11 06:59:05 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=AC04D05309BB2C418D0D80B9FB014642 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22322_none_7883b3211239122d\cryptsvc.dll
[2013.05.10 07:06:21 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=E122AA1C9A3CC46FF9DDDE46E5EB0C58 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22321_none_7882b2d71239f8d6\cryptsvc.dll
[2013.10.05 03:52:03 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=F2D9242C3BBD1C36467FCAE1AE01733F -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22473_none_784ea5b51260b460\cryptsvc.dll

< MD5 for: EXPLORER.EXE >
[2011.02.26 07:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2009.07.14 03:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2011.02.26 07:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_525b5180f3f95373\explorer.exe
[2011.02.26 07:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_51a3a583dafd0cef\explorer.exe
[2010.11.20 14:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\erdnt\cache\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe

< MD5 for: HAL.DLL >
[2010.11.20 14:29:53 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\System32\hal.dll
[2010.11.20 14:29:53 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_ad305c8fb7ec5060\hal.dll
[2009.07.14 03:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) MD5=9A557EAE64ABAB3BA67A9BB035D24CB9 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_aaff48c7bafdccc6\hal.dll

< MD5 for: IASTORV.SYS >
[2011.03.11 07:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\System32\drivers\iaStorV.sys
[2011.03.11 07:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_0bcee2057afcc090\iaStorV.sys
[2011.03.11 07:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_b0daddb9e6380745\iaStorV.sys
[2011.03.11 07:43:55 | 000,332,160 | ---- | M] (Intel Corporation) MD5=71F1A494FEDF4B33C02C4A6A28D6D9E9 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16778_none_aef580fde910b4b0\iaStorV.sys
[2011.03.11 07:28:00 | 000,332,160 | ---- | M] (Intel Corporation) MD5=778D0E6D7D9EBA0C403BADBAAD41DB20 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_b152a892ff64119f\iaStorV.sys
[2009.07.14 03:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_aee7a89be91b9000\iaStorV.sys
[2010.11.20 14:29:54 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_668286aa35d55928\iaStorV.sys
[2010.11.20 14:29:54 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_b118bc63e60a139a\iaStorV.sys
[2011.03.11 07:52:21 | 000,332,160 | ---- | M] (Intel Corporation) MD5=B9039A34C2F8769490DCC494E2402445 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.20921_none_afae2d45020c148b\iaStorV.sys

< MD5 for: ISAPNP.SYS >
[2009.07.14 03:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\drivers\isapnp.sys
[2009.07.14 03:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\isapnp.sys
[2009.07.14 03:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\isapnp.sys
[2009.07.14 03:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\isapnp.sys

< MD5 for: LSASS.EXE >
[2014.05.30 09:34:43 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=0421593A1955FE63245B700560B44600 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22705_none_a8e74cccd4220539\lsass.exe
[2011.11.17 09:09:25 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=05F38CB7CAB3CE8E9A1812D517DA93EF -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.21092_none_a69c8e86d7476262\lsass.exe
[2014.05.30 09:52:03 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=213601D688579B98F576BA7CA88496DE -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18489_none_a80b2dfdbb41b005\lsass.exe
[2014.04.12 04:06:16 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=627B40EB2595D8FCF1960F33389EB7D3 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22653_none_a8af3ab6d44c6119\lsass.exe
[2014.04.12 04:06:16 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=627B40EB2595D8FCF1960F33389EB7D3 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22712_none_a8d97c02d42cd525\lsass.exe
[2014.04.12 04:06:16 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=627B40EB2595D8FCF1960F33389EB7D3 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22736_none_a8c7dd52d4397263\lsass.exe
[2014.04.12 04:06:16 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=627B40EB2595D8FCF1960F33389EB7D3 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22807_none_a8e94f46d420350e\lsass.exe
[2012.08.24 18:53:44 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=7ABC23F3D86880AD62ACEDC7479608F8 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22099_none_a889f15ed46779fd\lsass.exe
[2011.11.17 07:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=81951F51E318AECC2D68559E47485CC4 -- C:\Windows\SoftwareDistribution\Download\1add9cfcebea5c3ecdb22cb57bfc5234\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17856_none_a828bb43bb2beb28\lsass.exe
[2011.11.17 07:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=81951F51E318AECC2D68559E47485CC4 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17725_none_a84828d7bb1480d7\lsass.exe
[2011.11.17 07:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=81951F51E318AECC2D68559E47485CC4 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17940_none_a82d8b59bb293454\lsass.exe
[2012.06.02 06:40:31 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=A6034689ACF9D14973F8384AD5A5451E -- C:\Windows\SoftwareDistribution\Download\1add9cfcebea5c3ecdb22cb57bfc5234\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.21225_none_a6eb42a4d70be51e\lsass.exe
[2011.11.17 07:36:26 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=C2243FF9E9AAD0C30E8B1A0914DA15B6 -- C:\Windows\SoftwareDistribution\Download\1add9cfcebea5c3ecdb22cb57bfc5234\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.17035_none_a656d407bdf6641e\lsass.exe
[2011.11.17 07:36:26 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=C2243FF9E9AAD0C30E8B1A0914DA15B6 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16915_none_a66c9bbdbde5f8fa\lsass.exe
[2014.04.12 04:11:22 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=DD17E1573651293D4ED31053795B3471 -- C:\Windows\erdnt\cache\lsass.exe
[2014.04.12 04:11:22 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=DD17E1573651293D4ED31053795B3471 -- C:\Windows\System32\lsass.exe
[2014.04.12 04:11:22 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=DD17E1573651293D4ED31053795B3471 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18443_none_a8306bf1bb26a837\lsass.exe
[2014.04.12 04:11:22 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=DD17E1573651293D4ED31053795B3471 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18496_none_a7fd5d33bb4c7ff1\lsass.exe
[2014.04.12 04:11:22 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=DD17E1573651293D4ED31053795B3471 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18526_none_a8490e8dbb13b981\lsass.exe
[2009.07.14 03:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_a620e0e5be1ecda7\lsass.exe
[2009.07.14 03:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_a851f4adbb0d5141\lsass.exe
[2012.06.02 06:51:22 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=FA7B950E4CA6AA260C4EABA19E03644D -- C:\Windows\SoftwareDistribution\Download\1add9cfcebea5c3ecdb22cb57bfc5234\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22010_none_a8d76e24d42eb666\lsass.exe
[2011.11.17 07:24:04 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=FBCB2DFA40862DAA7B1534C9538208A5 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.21861_none_a8a284cad4562b09\lsass.exe

< MD5 for: NDIS.SYS >
[2012.08.22 19:05:16 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=15B74B6283CEBCCE3054C1001CA01B5E -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.22097_none_aa0491cf93ad1c31\ndis.sys
[2009.07.14 03:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_a79d81ea7d62a289\ndis.sys
[2012.08.22 19:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\erdnt\cache\ndis.sys
[2012.08.22 19:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\System32\drivers\ndis.sys
[2012.08.22 19:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17939_none_a9bdfee47a5cd154\ndis.sys
[2010.11.20 14:30:06 | 000,712,576 | ---- | M] (Microsoft Corporation) MD5=E7C54812A2AAF43316EB6930C1FFA108 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_a9ce95b27a512623\ndis.sys

< MD5 for: NETLOGON.DLL >
[2010.11.20 14:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\erdnt\cache\netlogon.dll
[2010.11.20 14:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\System32\netlogon.dll
[2010.11.20 14:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_ffbf212e963c0162\netlogon.dll
[2009.07.14 03:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_fd8e0d66994d7dc8\netlogon.dll

< MD5 for: NVRAID.SYS >
[2009.07.14 03:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) MD5=3F3D04B1D08D43C16EA7963954EC768D -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvraid.sys
[2010.11.20 14:30:06 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=AF2EEC9580C1D32FB7EAF105D9784061 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_dd659ed032d28a14\nvraid.sys
[2010.11.20 14:30:06 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=AF2EEC9580C1D32FB7EAF105D9784061 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_3be22d131d40bd72\nvraid.sys
[2011.03.11 07:39:00 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=B3E25EE28883877076E0E1FF877D02E0 -- C:\Windows\System32\drivers\nvraid.sys
[2011.03.11 07:39:00 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=B3E25EE28883877076E0E1FF877D02E0 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_0276fc3b3ea60d41\nvraid.sys
[2011.03.11 07:39:00 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=B3E25EE28883877076E0E1FF877D02E0 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_3ba44e691d6eb11d\nvraid.sys
[2011.03.11 07:28:10 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=E3B840350A72CA6F39BD2BEF85A2BCFB -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_3c1c1942369abb77\nvraid.sys
[2011.03.11 07:44:01 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=F1B0BED906F97E16F6D0C3629D2F21C6 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16778_none_39bef1ad20475e88\nvraid.sys
[2011.03.11 07:52:25 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=FCD5C3542A85EEBA7D0833B7E5086C10 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.20921_none_3a779df43942be63\nvraid.sys

< MD5 for: NVSTOR.SYS >
[2011.03.11 07:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\System32\drivers\nvstor.sys
[2011.03.11 07:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_0276fc3b3ea60d41\nvstor.sys
[2011.03.11 07:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_3ba44e691d6eb11d\nvstor.sys
[2011.03.11 07:44:01 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4520B63899E867F354EE012D34E11536 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16778_none_39bef1ad20475e88\nvstor.sys
[2011.03.11 07:28:10 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=66D468654A58594F5F3BA63D5AD5B1AF -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_3c1c1942369abb77\nvstor.sys
[2011.03.11 07:52:25 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=8A7583A3B58D3EEB28BB26626526BC91 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.20921_none_3a779df43942be63\nvstor.sys
[2010.11.20 14:30:06 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_dd659ed032d28a14\nvstor.sys
[2010.11.20 14:30:06 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_3be22d131d40bd72\nvstor.sys
[2009.07.14 03:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvstor.sys

< MD5 for: SCECLI.DLL >
[2009.07.14 03:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll
[2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\erdnt\cache\scecli.dll
[2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\System32\scecli.dll
[2010.11.20 14:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_3a154c47375d881d\scecli.dll

< MD5 for: SMSS.EXE >
[2009.07.14 03:14:39 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=16742790895960690237A5143CEDEC8B -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_ac10fe207a85352b\smss.exe
[2013.07.08 05:02:28 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=634E0B45780F502304592C5615A31089 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22379_none_ae8fb42390bda114\smss.exe
[2013.08.29 02:51:28 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D2A72C71CD6C18A99E920EC5761F0C7D -- C:\Windows\SoftwareDistribution\Download\6b407cd86ae71d015c05a77e0e9eb140\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22436_none_aeb7f4db909fe272\smss.exe
[2014.09.20 19:32:57 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D2A72C71CD6C18A99E920EC5761F0C7D -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22436_none_aeb7f4db909fe272\smss.exe
[2014.04.12 04:06:24 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D8A5E3B8EB601B897AC78B060177E460 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22653_none_ae9f57f190b2c89d\smss.exe
[2014.04.12 04:06:24 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D8A5E3B8EB601B897AC78B060177E460 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22780_none_ae7be93590cdcd92\smss.exe
[2013.03.19 04:49:16 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=DE91DCC7BC55E940979097E98F743205 -- C:\Windows\SoftwareDistribution\Download\6b407cd86ae71d015c05a77e0e9eb140\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18113_none_ae40f33e7774c473\smss.exe
[2014.09.20 19:32:57 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=DE91DCC7BC55E940979097E98F743205 -- C:\Windows\System32\smss.exe
[2014.09.20 19:32:57 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=DE91DCC7BC55E940979097E98F743205 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18113_none_ae40f33e7774c473\smss.exe

< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\erdnt\cache\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe

< MD5 for: TCPIP.SYS >
[2011.04.25 06:56:06 | 001,286,016 | ---- | M] (Microsoft Corporation) MD5=0158D5E9982E9D6A90DFC802F618E130 -- C:\Windows\SoftwareDistribution\Download\819f2389c84fd99ac463e7d342b07134\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16802_none_b347f075c77b9c9d\tcpip.sys
[2011.04.25 06:31:30 | 001,290,624 | ---- | M] (Microsoft Corporation) MD5=24326784DF8F3D5F5BBB9F878CE33C14 -- C:\Windows\SoftwareDistribution\Download\819f2389c84fd99ac463e7d342b07134\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_b52f4dc5c4a121e0\tcpip.sys
[2009.07.14 03:19:10 | 001,285,712 | ---- | M] (Microsoft Corporation) MD5=2CC3D75488ABD3EC628BBB9A4FC84EFC -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_b2f46875c7b9d667\tcpip.sys
[2010.11.20 14:30:12 | 001,290,112 | ---- | M] (Microsoft Corporation) MD5=37E8FA3779668837CA9E2C36D2415949 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_b5257c3dc4a85a01\tcpip.sys
[2014.04.05 04:25:01 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=5579DD18546999F5D0EC39D018726C6B -- C:\Windows\erdnt\cache\tcpip.sys
[2014.04.05 04:25:01 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=5579DD18546999F5D0EC39D018726C6B -- C:\Windows\System32\drivers\tcpip.sys
[2014.04.05 04:25:01 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=5579DD18546999F5D0EC39D018726C6B -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18438_none_b513c4dfc4b513b9\tcpip.sys
[2013.09.07 04:06:48 | 001,309,120 | ---- | M] (Microsoft Corporation) MD5=6C4F3D92764FFA22D28061A4D9235446 -- C:\Windows\SoftwareDistribution\Download\b30857111daf421dcc02ef6356b7b370\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22444_none_b58e8eb0ddde6cf1\tcpip.sys
[2014.09.20 19:32:30 | 001,309,120 | ---- | M] (Microsoft Corporation) MD5=6C4F3D92764FFA22D28061A4D9235446 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22444_none_b58e8eb0ddde6cf1\tcpip.sys
[2011.04.25 08:31:09 | 001,301,376 | ---- | M] (Microsoft Corporation) MD5=6D4728CFF2724FF3A4654971D61D0F1C -- C:\Windows\SoftwareDistribution\Download\819f2389c84fd99ac463e7d342b07134\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_b5ad1a5addc7c444\tcpip.sys
[2011.04.25 06:44:18 | 001,298,816 | ---- | M] (Microsoft Corporation) MD5=8861B9A06BA99C6E1D62D0C86DFAB86C -- C:\Windows\SoftwareDistribution\Download\819f2389c84fd99ac463e7d342b07134\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20951_none_b39a7d5ae0c2aec5\tcpip.sys
[2013.09.08 04:07:12 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=CA59F7C570AF70BC174F477CFE2D9EE3 -- C:\Windows\SoftwareDistribution\Download\b30857111daf421dcc02ef6356b7b370\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18254_none_b4fa2013c4c8ebf1\tcpip.sys
[2014.09.20 19:32:30 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=CA59F7C570AF70BC174F477CFE2D9EE3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18254_none_b4fa2013c4c8ebf1\tcpip.sys
[2012.10.03 18:44:01 | 001,308,040 | ---- | M] (Microsoft Corporation) MD5=D490DD0A91B4EAC3B4EE08D11EE37C31 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_b5a428d6ddce3d9a\tcpip.sys
[2012.10.03 18:58:30 | 001,293,680 | ---- | M] (Microsoft Corporation) MD5=E23A56F843E2AEBBB209D0ACCA73C640 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_b4ef7439c4d0da52\tcpip.sys
[2014.04.05 04:16:21 | 001,310,144 | ---- | M] (Microsoft Corporation) MD5=EA47AB18E289333AB94397D77CA6E3A1 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22648_none_b59293a4dddacc9b\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\erdnt\cache\userinit.exe
[2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe
[2010.11.20 14:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009.07.14 03:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2014.07.16 04:56:14 | 000,304,640 | ---- | M] (Microsoft Corporation) MD5=4F37B93C14AEE313BEC52A23AFB15C2E -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.22750_none_7224b2134c7555fa\winlogon.exe
[2014.07.17 03:39:27 | 000,304,128 | ---- | M] (Microsoft Corporation) MD5=52449FD429D6053B78AE564DEF303870 -- C:\Windows\erdnt\cache\winlogon.exe
[2014.07.17 03:39:27 | 000,304,128 | ---- | M] (Microsoft Corporation) MD5=52449FD429D6053B78AE564DEF303870 -- C:\Windows\System32\winlogon.exe
[2014.07.17 03:39:27 | 000,304,128 | ---- | M] (Microsoft Corporation) MD5=52449FD429D6053B78AE564DEF303870 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.18540_none_71a5e34e334f9d18\winlogon.exe
[2010.11.20 14:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
[2009.07.14 03:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe
[2014.03.04 11:17:02 | 000,304,128 | ---- | M] (Microsoft Corporation) MD5=998507B046BA314CE8245364C686FA67 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.18409_none_71da23b23327143c\winlogon.exe
[2014.03.04 12:39:02 | 000,304,640 | ---- | M] (Microsoft Corporation) MD5=D53972F87D850CD2EB4B29B60CAFDD77 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.22616_none_7255f1994c4f8119\winlogon.exe

< MD5 for: WS2_32.DLL >
[2010.11.20 14:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\erdnt\cache\ws2_32.dll
[2010.11.20 14:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\System32\ws2_32.dll
[2010.11.20 14:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_f4bf1aae2c981ecf\ws2_32.dll
[2009.07.14 03:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll

< >

< %systemroot%*.* /U /s >
[11 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >
[2014.10.24 01:26:39 | 005,583,977 | R--- | M] (Swearware) -- C:\ComboFix.exe

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2014.10.08 00:14:06 | 000,000,000 | ---D | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\Adobe
[2014.09.21 15:47:04 | 000,000,000 | ---D | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\ATI
[2014.10.22 19:10:25 | 000,000,000 | ---D | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\AVAST Software
[2014.10.23 22:08:27 | 000,000,000 | ---D | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\Clip2Net
[2014.10.04 17:57:19 | 000,000,000 | ---D | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\DAEMON Tools Lite
[2014.10.02 18:27:42 | 000,000,000 | ---D | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\FileZilla
[2014.09.21 18:05:44 | 000,000,000 | ---D | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\ICQ
[2014.09.20 17:00:18 | 000,000,000 | ---D | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\Identities
[2014.09.21 16:36:43 | 000,000,000 | ---D | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\Macromedia
[2009.07.14 09:48:45 | 000,000,000 | ---D | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\Media Center Programs
[2014.10.08 17:12:51 | 000,000,000 | --SD | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\Microsoft
[2014.09.20 17:14:41 | 000,000,000 | ---D | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\Mozilla
[2014.10.08 22:00:21 | 000,000,000 | ---D | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\OpenOffice
[2014.10.23 23:29:48 | 000,000,000 | ---D | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\Skype
[2014.10.24 06:23:47 | 000,000,000 | ---D | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\uTorrent
[2014.09.22 00:30:59 | 000,000,000 | ---D | M] -- C:\Users\Lukeš_CZ\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2014.09.20 20:04:47 | 000,163,840 | ---- | M] (Igor Pavlov) -- C:\Users\Lukeš_CZ\AppData\Roaming\Clip2Net\7z.exe
[2014.04.14 00:00:00 | 000,042,496 | ---- | M] () -- C:\Users\Lukeš_CZ\AppData\Roaming\uTorrent\uninstall.exe
[2014.04.14 00:00:00 | 000,398,760 | ---- | M] (BitTorrent, Inc.) -- C:\Users\Lukeš_CZ\AppData\Roaming\uTorrent\utorrent.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >
[2014.10.22 19:07:22 | 000,024,184 | ---- | M] () -- C:\Windows\system32\drivers\aswHwid.sys
[2014.10.22 19:27:16 | 000,026,136 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswKbd.sys
[2014.10.22 19:07:22 | 000,070,384 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswMonFlt.sys
[2014.10.22 19:27:07 | 000,271,288 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswNdisFlt.sys
[2014.10.22 19:07:22 | 000,081,768 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswRdr2.sys
[2014.10.22 19:07:22 | 000,049,944 | ---- | M] () -- C:\Windows\system32\drivers\aswRvrt.sys
[2014.10.22 19:07:17 | 000,787,800 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswSnx.sys
[2014.10.22 19:07:22 | 000,422,760 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswSP.sys
[2014.10.22 19:07:22 | 000,091,496 | ---- | M] (AVAST Software) -- C:\Windows\system32\drivers\aswStm.sys
[2014.10.22 19:07:22 | 000,206,248 | ---- | M] () -- C:\Windows\system32\drivers\aswVmm.sys

< %systemroot%\system32\*.* /3 >
[2014.10.22 08:43:24 | 000,000,197 | ---- | M] () -- C:\Windows\system32\2014-10-22-06-43-23.017-AvastVBoxSVC.exe-2916.log
[2014.10.22 08:52:34 | 000,000,247 | ---- | M] () -- C:\Windows\system32\2014-10-22-06-43-29.017-aswFe.exe-5916.log
[2014.10.22 08:52:46 | 000,000,247 | ---- | M] () -- C:\Windows\system32\2014-10-22-06-52-42.062-aswFe.exe-5572.log
[2014.10.22 15:49:42 | 000,000,197 | ---- | M] () -- C:\Windows\system32\2014-10-22-13-49-41.068-AvastVBoxSVC.exe-6004.log
[2014.10.22 15:59:26 | 000,000,247 | ---- | M] () -- C:\Windows\system32\2014-10-22-13-53-59.013-aswFe.exe-4020.log
[2014.10.22 15:59:40 | 000,000,247 | ---- | M] () -- C:\Windows\system32\2014-10-22-13-59-38.062-aswFe.exe-5796.log
[2014.10.22 18:27:53 | 000,000,197 | ---- | M] () -- C:\Windows\system32\2014-10-22-16-27-50.042-AvastVBoxSVC.exe-2676.log
[2014.10.22 18:40:22 | 000,000,197 | ---- | M] () -- C:\Windows\system32\2014-10-22-16-40-21.014-AvastVBoxSVC.exe-4296.log
[2014.10.22 18:45:33 | 000,000,247 | ---- | M] () -- C:\Windows\system32\2014-10-22-16-40-24.037-aswFe.exe-4240.log
[2014.10.22 18:45:46 | 000,000,197 | ---- | M] () -- C:\Windows\system32\2014-10-22-16-45-40.027-AvastVBoxSVC.exe-5100.log
[2014.10.24 14:21:08 | 000,017,072 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014.10.24 14:21:08 | 000,017,072 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014.10.22 19:07:22 | 000,291,352 | ---- | M] (AVAST Software) -- C:\Windows\system32\aswBoot.exe
[2014.10.24 01:34:22 | 000,141,004 | ---- | M] () -- C:\Windows\system32\perfc005.dat
[2014.10.24 01:34:22 | 000,121,596 | ---- | M] () -- C:\Windows\system32\perfc009.dat
[2014.10.24 01:34:22 | 000,668,376 | ---- | M] () -- C:\Windows\system32\perfh005.dat
[2014.10.24 01:34:22 | 000,653,724 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2014.10.24 01:34:22 | 001,582,262 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI

< %SYSTEMDRIVE%\*.exe >
[2014.10.24 01:26:39 | 005,583,977 | R--- | M] (Swearware) -- C:\ComboFix.exe

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
No captured output from command...

< >

< type c:\boot.ini >> test.txt /c >
No captured output from command...

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014.10.24 17:53:58 | 000,000,512 | ---- | M] () MD5=61EC55B7A363DA290CAB963E67B12D52 -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2003.12.05 14:52:40 | 000,000,796 | ---- | M] () -- \Program Files\Rockstar Games\GTA San Andreas\data\Decision\Craig\crack1.ped

< *keygen* /s >

< *AntiWPA* /s >

[M.Lukes]

< *loader* /s >
[2010.03.09 04:28:40 | 005,297,608 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\Photodownloader.exe
[2010.03.09 01:38:58 | 000,011,161 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\bitmaps\main_window\C_LoadError.png
[2010.03.09 01:38:58 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\da_dk\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\de_de\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\en_us\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\es_es\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\fi_fi\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\fr_fr\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\it_it\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\ja_jp\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\ko_kr\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\nl_nl\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\no_no\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\pt_br\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\sv_se\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,308 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\zh_cn\Photodownloader.ini
[2010.03.09 01:39:00 | 000,000,011 | ---- | M] () -- \Program Files\Adobe\Adobe Bridge CS5\apd\shared_assets\locales\zh_tw\Photodownloader.ini
[2014.10.22 19:07:19 | 000,072,480 | ---- | M] () -- \Program Files\AVAST Software\Avast\aswWrcIELoader32.exe
[2014.01.24 18:35:00 | 000,145,792 | ---- | M] () -- \Program Files\Clip2Net\downloader.exe
[2010.03.18 23:21:56 | 000,063,312 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7Debug\coloader80.dll
[2010.03.18 00:17:14 | 000,004,096 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VS7Debug\coloader80.tlb
[2014.09.03 00:27:24 | 000,268,432 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2014.09.03 00:27:24 | 000,019,096 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2014.08.13 00:21:10 | 000,000,972 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_about.fen
[2014.08.13 00:21:10 | 000,000,686 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_advoptions.fen
[2014.08.13 00:21:10 | 000,000,770 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_debug.fen
[2014.08.13 00:21:10 | 000,000,706 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_download.fen
[2014.08.13 00:21:10 | 000,003,021 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_filestatus.fen
[2014.08.13 00:21:10 | 000,000,676 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_file_errors.fen
[2014.08.13 00:21:10 | 000,000,620 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_manage_devices.fen
[2014.08.13 00:21:10 | 000,002,336 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_onboard.fen
[2014.08.13 00:21:10 | 000,001,386 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_options.fen
[2014.08.13 00:21:10 | 000,001,330 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_pinwheel_72.png
[2014.08.13 00:21:10 | 000,002,541 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_pinwheel_72x2.png
[2014.08.13 00:21:10 | 000,002,131 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_prefs.fen
[2014.08.13 00:21:10 | 000,000,934 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_quota_error1.fen
[2014.08.13 00:21:10 | 000,001,057 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_quota_error2.fen
[2014.08.13 00:21:10 | 000,001,116 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_quota_error_estimate.fen
[2014.08.13 00:21:10 | 000,002,181 | ---- | M] () -- \Program Files\Google\Picasa3\runtime\gpuploader_welcome.fen
[2014.09.21 18:04:09 | 000,005,795 | ---- | M] () -- \Program Files\ICQ7.7\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2014.09.21 18:04:10 | 000,004,180 | ---- | M] () -- \Program Files\ICQ7.7\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2014.09.21 18:04:09 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7.7\imApp\theme\MUICoreLib\xtraLoader.swf
[2014.09.21 18:04:28 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.7\Xtraz\icq\content\profile_lightboxs\preloader.html
[2014.07.29 13:34:32 | 000,029,696 | ---- | M] () -- \Program Files\OpenOffice 4\program\javaloader.uno.dll
[2014.08.13 09:30:44 | 000,005,813 | ---- | M] () -- \Program Files\OpenOffice 4\program\pythonloader.py
[2014.07.29 13:34:34 | 000,020,992 | ---- | M] () -- \Program Files\OpenOffice 4\program\pythonloader.uno.dll
[2014.08.13 10:09:38 | 000,000,171 | ---- | M] () -- \Program Files\OpenOffice 4\program\pythonloader.uno.ini
[2014.08.13 09:11:40 | 000,003,868 | ---- | M] () -- \Program Files\OpenOffice 4\program\classes\unoloader.jar
[2014.07.29 09:07:24 | 000,013,501 | ---- | M] () -- \Program Files\OpenOffice 4\program\python-core-2.7.6\lib\unittest\loader.py
[2013.10.23 22:07:40 | 000,007,825 | ---- | M] () -- \Program Files\Steam\remoteui\static\libs\images\ajax-loader.gif
[2008.02.25 08:05:22 | 000,856,064 | ---- | M] () -- \Program Files\The KMPlayer\ImLoader.dll
[2014.07.24 14:53:16 | 000,072,638 | ---- | M] () -- \Users\Lukeš_CZ\AppData\Local\Skype\Apps\login\images\loader.gif
[2014.07.24 14:53:16 | 000,003,032 | ---- | M] () -- \Users\Lukeš_CZ\AppData\Local\Skype\Apps\login\images\loader.png
[2014.07.24 14:53:16 | 000,006,012 | ---- | M] () -- \Users\Lukeš_CZ\AppData\Local\Skype\Apps\login\images\normal\loader_15fps.gif
[2014.07.24 14:53:16 | 000,021,956 | ---- | M] () -- \Users\Lukeš_CZ\AppData\Local\Skype\Apps\login\images\normal\loader_30fps.gif
[2014.07.24 14:53:16 | 000,009,772 | ---- | M] () -- \Users\Lukeš_CZ\AppData\Local\Skype\Apps\login\images\retina\loader@2x.png
[2014.10.13 16:22:30 | 000,011,405 | ---- | M] () -- \Users\Lukeš_CZ\AppData\Roaming\Mozilla\Firefox\Profiles\9syyr5en.default-1413208004927\extensions\superstart@enjoyfreeware.org\modules\Preloader.jsm
[2014.09.20 17:39:48 | 000,011,405 | ---- | M] () -- \Users\Lukeš_CZ\Desktop\Původní data aplikace Firefox\0xrsabxe.default\extensions\superstart@enjoyfreeware.org\modules\Preloader.jsm
[2014.08.28 17:53:31 | 000,011,440 | ---- | M] () -- \Users\Lukeš_CZ\Documents\Původní data aplikace Firefox\0o62vnn7.default\extensions\superstart@enjoyfreeware.org\modules\Preloader.jsm
[2014.10.24 15:08:12 | 000,891,224 | ---- | M] () -- \Users\Lukeš_CZ\Downloads\amddriverdownloader.exe
[2014.09.22 18:34:14 | 015,998,040 | ---- | M] () -- \Users\Lukeš_CZ\Downloads\Muve_Downloader.exe
[2014.07.08 23:41:42 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_da-dk_d27ad29c5197f75f.manifest
[2014.07.08 23:41:30 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_de-de_cfa667d8536e4bf9.manifest
[2014.07.08 23:41:43 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_el-gr_783c956b4283b487.manifest
[2014.07.08 23:41:46 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_es-es_78629ab542734963.manifest
[2014.07.08 23:41:48 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_fi-fi_177d9f62378d3b8d.manifest
[2014.07.08 23:42:03 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_fr-fr_1b1a10b435455fc5.manifest
[2014.07.08 23:41:54 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_hu-hu_628a90fc19a52ee1.manifest
[2014.07.08 23:41:38 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_it-it_054206fb0c774543.manifest
[2014.07.08 23:41:54 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_ja-jp_a7678607ff92571e.manifest
[2014.07.08 23:41:47 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_ko-kr_4ad162bcf2031e34.manifest
[2014.07.08 23:41:38 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_nb-no_3363e3f1ca2849f0.manifest
[2014.07.08 23:41:34 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_nl-nl_31a32f2fcb5453c5.manifest
[2014.07.08 23:41:51 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_pl-pl_77df89b1b076c179.manifest
[2014.07.08 23:41:49 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_pt-br_7a337455af00555d.manifest
[2014.07.08 23:41:53 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_pt-pt_7b1543c1ae6fc539.manifest
[2014.07.08 23:41:40 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_ru-ru_c1b8558593515365.manifest
[2014.07.08 23:42:00 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_sv-se_5db33ffa8a7a5dc0.manifest
[2014.07.08 23:41:54 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_tr-tr_06c08a4179365fb1.manifest
[2014.07.08 23:41:56 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_zh-cn_d81da83f296e31d0.manifest
[2014.07.08 23:41:53 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_zh-hk_d6c8a0cd2a49a460.manifest
[2014.07.08 23:41:51 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_zh-tw_dc19e59526df0e40.manifest
[2014.07.08 23:41:40 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_da-dk_d2f9a1616abdb041.manifest
[2014.07.08 23:42:05 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_de-de_d025369d6c9404db.manifest
[2014.07.08 23:41:48 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_el-gr_78bb64305ba96d69.manifest
[2014.07.08 23:42:03 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_es-es_78e1697a5b990245.manifest
[2014.07.08 23:41:58 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_fi-fi_17fc6e2750b2f46f.manifest
[2014.07.08 23:41:43 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_fr-fr_1b98df794e6b18a7.manifest
[2014.07.08 23:41:35 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_hu-hu_63095fc132cae7c3.manifest
[2014.07.08 23:41:44 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_it-it_05c0d5c0259cfe25.manifest
[2014.07.08 23:42:04 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_ja-jp_a7e654cd18b81000.manifest
[2014.07.08 23:41:55 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_ko-kr_4b5031820b28d716.manifest
[2014.07.08 23:41:41 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_nb-no_33e2b2b6e34e02d2.manifest
[2014.07.08 23:41:51 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_nl-nl_3221fdf4e47a0ca7.manifest
[2014.07.08 23:41:36 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_pl-pl_785e5876c99c7a5b.manifest
[2014.07.08 23:41:47 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_pt-br_7ab2431ac8260e3f.manifest
[2014.07.08 23:42:09 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_pt-pt_7b941286c7957e1b.manifest
[2014.07.08 23:41:30 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_ru-ru_c237244aac770c47.manifest
[2014.07.08 23:41:30 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_sv-se_5e320ebfa3a016a2.manifest
[2014.07.08 23:41:44 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_tr-tr_073f5906925c1893.manifest
[2014.07.08 23:42:02 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_zh-cn_d89c77044293eab2.manifest
[2014.07.08 23:41:52 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_zh-hk_d7476f92436f5d42.manifest
[2014.07.08 23:41:58 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_zh-tw_dc98b45a4004c722.manifest
[2014.07.08 23:41:47 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_cs-cz_4333c961966eb0bc.manifest
[2014.07.08 23:41:50 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_da-dk_e06da9888cb4acbb.manifest
[2014.07.08 23:41:33 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_de-de_dd993ec48e8b0155.manifest
[2014.07.08 23:41:29 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_el-gr_862f6c577da069e3.manifest
[2014.07.08 23:41:36 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_en-us_868a14bd7d690d1a.manifest
[2014.07.08 23:41:31 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_es-es_865571a17d8ffebf.manifest
[2014.07.08 23:41:47 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_fi-fi_2570764e72a9f0e9.manifest
[2014.07.08 23:41:59 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_fr-fr_290ce7a070621521.manifest
[2014.07.08 23:41:41 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_hu-hu_707d67e854c1e43d.manifest
[2014.07.08 23:41:38 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_it-it_1334dde74793fa9f.manifest
[2014.07.08 23:41:48 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_ja-jp_b55a5cf43aaf0c7a.manifest
[2014.07.08 23:41:30 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_ko-kr_58c439a92d1fd390.manifest
[2014.07.08 23:41:41 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_nb-no_4156bade0544ff4c.manifest
[2014.07.08 23:41:55 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_nl-nl_3f96061c06710921.manifest
[2014.07.08 23:41:38 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_pl-pl_85d2609deb9376d5.manifest
[2014.07.08 23:41:30 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_pt-br_88264b41ea1d0ab9.manifest
[2014.07.08 23:41:51 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_pt-pt_89081aade98c7a95.manifest
[2014.07.08 23:42:07 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_ru-ru_cfab2c71ce6e08c1.manifest
[2014.07.08 23:41:44 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_sv-se_6ba616e6c597131c.manifest
[2014.07.08 23:41:33 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_tr-tr_14b3612db453150d.manifest
[2014.07.08 23:41:58 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_zh-cn_e6107f2b648ae72c.manifest
[2014.07.08 23:42:00 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_zh-hk_e4bb77b9656659bc.manifest
[2014.07.08 23:41:41 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_zh-tw_ea0cbc8161fbc39c.manifest
[2014.07.08 23:42:05 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_cs-cz_43b29826af94699e.manifest
[2014.07.08 23:41:32 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_da-dk_e0ec784da5da659d.manifest
[2014.07.08 23:41:31 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_de-de_de180d89a7b0ba37.manifest
[2014.07.08 23:41:49 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_el-gr_86ae3b1c96c622c5.manifest
[2014.07.08 23:41:54 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_en-us_8708e382968ec5fc.manifest
[2014.07.08 23:41:33 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_es-es_86d4406696b5b7a1.manifest
[2014.07.08 23:41:32 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_fi-fi_25ef45138bcfa9cb.manifest
[2014.07.08 23:41:59 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_fr-fr_298bb6658987ce03.manifest
[2014.07.08 23:41:57 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_hu-hu_70fc36ad6de79d1f.manifest
[2014.07.08 23:41:29 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_it-it_13b3acac60b9b381.manifest
[2014.07.08 23:41:46 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_ja-jp_b5d92bb953d4c55c.manifest
[2014.07.08 23:41:48 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_ko-kr_5943086e46458c72.manifest
[2014.07.08 23:42:07 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_nb-no_41d589a31e6ab82e.manifest
[2014.07.08 23:42:07 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_nl-nl_4014d4e11f96c203.manifest
[2014.07.08 23:41:38 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_pl-pl_86512f6304b92fb7.manifest
[2014.07.08 23:42:08 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_pt-br_88a51a070342c39b.manifest
[2014.07.08 23:41:37 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_pt-pt_8986e97302b23377.manifest
[2014.07.08 23:42:04 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_ru-ru_d029fb36e793c1a3.manifest
[2014.07.08 23:41:44 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_sv-se_6c24e5abdebccbfe.manifest
[2014.07.08 23:41:52 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_tr-tr_15322ff2cd78cdef.manifest
[2014.07.08 23:41:41 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_zh-cn_e68f4df07db0a00e.manifest
[2014.07.08 23:42:05 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_zh-hk_e53a467e7e8c129e.manifest
[2014.07.08 23:42:08 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_zh-tw_ea8b8b467b217c7e.manifest
[2014.08.19 05:02:14 | 000,004,249 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.18574_none_41b5027dc90a17c6.manifest
[2014.08.19 05:09:41 | 000,004,249 | ---- | M] () -- \Windows\SoftwareDistribution\Download\207dd9e4e8239e6f1a46e64e9a49c0ab\x86_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.22780_none_422fd01ae2336b4c.manifest
[2012.10.04 18:45:38 | 000,003,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\35b8ab475f97c94a8377dea1daeca5a8\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17135_none_0abe3b21dcfb1c4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:48:05 | 000,003,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\35b8ab475f97c94a8377dea1daeca5a8\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21335_none_0b47d9d2f618b93c\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:40:37 | 000,003,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\35b8ab475f97c94a8377dea1daeca5a8\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:29:45 | 000,003,584 | ---- | M] () -- \Windows\SoftwareDistribution\Download\35b8ab475f97c94a8377dea1daeca5a8\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 03:48:15 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2009.07.14 06:54:01 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2014.10.15 19:36:02 | 000,002,777 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_cs-cz_3540f2755b51fb60.manifest
[2014.10.15 19:36:02 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_cs-cz_3540f2755b51fb60_winload.exe.mui_3bc5b827
[2014.10.15 19:36:02 | 000,030,272 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_cs-cz_3540f2755b51fb60_winresume.exe.mui_ff8b5358
[2014.10.15 19:36:02 | 000,002,777 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_en-us_78973dd1424c57be.manifest
[2014.10.15 19:36:02 | 000,033,344 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_en-us_78973dd1424c57be_winload.exe.mui_3bc5b827
[2014.10.15 19:36:02 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_en-us_78973dd1424c57be_winresume.exe.mui_ff8b5358
[2014.10.15 19:36:03 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.18574_none_5ced2dcdcb19ba9a.manifest
[2014.10.15 19:36:03 | 000,521,384 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.18574_none_5ced2dcdcb19ba9a_winload.exe_75835076
[2014.10.15 19:36:03 | 000,455,752 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.18574_none_5ced2dcdcb19ba9a_winresume.exe_85cd1215
[2009.07.14 04:17:38 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 04:17:38 | 000,017,472 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23_spldr.sys_98bd87a0
[2009.07.26 19:50:45 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2009.07.14 04:29:12 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4.manifest
[2014.07.08 23:41:55 | 000,002,777 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_cs-cz_3540f2755b51fb60.manifest
[2014.07.08 23:41:53 | 000,002,777 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_en-us_78973dd1424c57be.manifest
[2014.07.08 23:42:00 | 000,002,777 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_cs-cz_35bfc13a7477b442.manifest
[2014.07.08 23:41:44 | 000,002,777 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_en-us_79160c965b7210a0.manifest
[2009.07.14 03:47:46 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9.manifest
[2010.11.20 05:02:40 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2014.08.19 05:02:10 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.18574_none_5ced2dcdcb19ba9a.manifest
[2014.08.19 05:09:35 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22780_none_5d67fb6ae4430e20.manifest
[2009.07.14 03:52:31 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:56:23 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17179_none_0a96fc99dd17f16b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:44:10 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21386_none_0b12ca80f6405e48\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:45:15 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 03:48:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_0cb36eedda15c917\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.04 12:35:49 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22616_none_0d44e078f32df860\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.04.12 04:03:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22653_none_0d169feaf3511c1f\api-ms-win-core-libraryloader-l1-1-0.dll

< *minodlogin* /s >

< *tnod* /s >

< *AutoKMS* /s >

< *activator* /s >

< *serial* /s >
[2014.05.13 23:17:02 | 000,434,368 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30514.0\System.Runtime.Serialization.dll
[2014.10.19 14:42:45 | 001,164,288 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30514.0\System.Runtime.Serialization.ni.dll
[2010.03.18 19:31:26 | 000,370,552 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\.NETFramework\v3.5\Profile\Client\System.Runtime.Serialization.dll
[2010.03.18 19:31:26 | 000,042,904 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\.NETFramework\v3.5\Profile\Client\System.Runtime.Serialization.Formatters.Soap.dll
[2010.03.18 19:31:26 | 000,429,432 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\.NETFramework\v4.0\System.Runtime.Serialization.dll
[2010.03.18 19:31:26 | 000,032,664 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\.NETFramework\v4.0\System.Runtime.Serialization.Formatters.Soap.dll
[2010.03.18 19:31:26 | 000,429,432 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\.NETFramework\v4.0\Profile\Client\System.Runtime.Serialization.dll
[2010.03.18 19:31:26 | 000,032,664 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\.NETFramework\v4.0\Profile\Client\System.Runtime.Serialization.Formatters.Soap.dll
[2014.07.11 00:24:10 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2010.11.05 03:53:39 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2014.10.15 20:20:19 | 000,000,024 | ---- | M] () -- \Users\Lukeš_CZ\AppData\Local\Google\Picasa2\cache\cacheindex_serial.pmp
[2013.07.08 14:43:48 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.06.24 01:43:20 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013.07.08 14:45:28 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2014.07.11 00:24:10 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014.10.15 20:07:11 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\91eb4f41130c65ef17f0fee1d3ab48fb\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.10.15 23:00:35 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\b1e0939384cc320d6ac7b8921ccc2877\System.Runtime.Serialization.ni.dll
[2014.09.21 02:48:58 | 000,309,760 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\e67230bbca0858b6ff4caccfb4595fa8\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.09.21 02:48:58 | 000,000,580 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\e67230bbca0858b6ff4caccfb4595fa8\System.Runtime.Serialization.Formatters.Soap.ni.dll.aux
[2014.10.16 18:35:26 | 002,822,144 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\f9f13cd8fe1cefaad78579a7c3a41464\System.Runtime.Serialization.ni.dll
[2014.10.16 18:35:26 | 000,001,308 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\f9f13cd8fe1cefaad78579a7c3a41464\System.Runtime.Serialization.ni.dll.aux
[2014.09.21 02:50:48 | 000,026,624 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\94ce7a3b39b335283a0087f9964e9099\System.Xml.Serialization.ni.dll
[2014.09.21 02:50:47 | 000,000,376 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\94ce7a3b39b335283a0087f9964e9099\System.Xml.Serialization.ni.dll.aux
[2013.09.11 22:33:38 | 001,052,320 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\271D3094BCCDF293393A43ACD974EFD3\4.5.50938\System.Runtime.Serialization.dll.x86
[2013.09.11 22:33:38 | 001,052,320 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\271D3094BCCDF293393A43ACD974EFD3\4.5.50938\System.Runtime.Serialization.dll_gac_x86
[2013.09.11 22:33:38 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.09.11 22:33:38 | 000,133,344 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013.09.11 21:21:54 | 000,022,176 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Json\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Json.dll
[2013.09.11 21:21:54 | 000,022,208 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Primitives\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Primitives.dll
[2013.09.11 22:33:38 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2013.09.11 21:21:54 | 000,022,176 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Xml\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Xml.dll
[2014.07.23 01:17:44 | 001,050,840 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013.09.11 21:21:54 | 000,036,480 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2013.09.11 21:21:54 | 000,022,656 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.XmlSerializer\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Xml.XmlSerializer.dll
[2014.06.24 01:43:20 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.05 03:53:33 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.07.11 00:24:11 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2014.07.23 01:17:44 | 001,050,840 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2013.09.11 22:33:38 | 000,133,344 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2013.09.11 21:21:54 | 000,022,176 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Json.dll
[2013.09.11 21:21:54 | 000,022,208 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2013.09.11 21:21:54 | 000,022,176 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2013.09.11 21:21:54 | 000,036,480 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2013.09.11 21:21:54 | 000,022,656 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.XmlSerializer.dll
[2013.09.11 22:33:38 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.09.11 22:33:38 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2009.07.26 19:51:08 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009.07.14 01:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\drivers\serial.sys
[2009.07.26 19:51:20 | 000,009,728 | ---- | M] () -- \Windows\System32\drivers\cs-CZ\serial.sys.mui
[2009.07.14 04:09:30 | 000,010,240 | ---- | M] () -- \Windows\System32\drivers\en-US\serial.sys.mui
[2009.07.14 00:13:45 | 001,068,032 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\mdmmotsm.inf_x86_neutral_c1415d9789c54b89\smserial.sys
[2009.07.14 01:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_x86_neutral_c1a802e06677f73f\serial.sys
[2009.07.14 00:09:18 | 000,031,232 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_x86_neutral_63e72c669d043f14\grserial.sys
[2009.07.14 04:10:04 | 000,005,120 | ---- | M] () -- \Windows\System32\en-US\serialui.dll.mui
[2009.07.26 19:48:43 | 000,005,120 | ---- | M] () -- \Windows\System32\sk-SK\serialui.dll.mui
[2009.07.14 04:18:03 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009.07.14 04:18:03 | 000,015,952 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486_kdcom.dll_db5e7744
[2009.07.26 19:52:14 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2009.07.14 06:56:40 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_919783112bf8b64b_serialui.dll.mui_7d29d2a3
[2009.07.26 19:49:01 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_sk-sk_79d39f727217a41c_serialui.dll.mui_7d29d2a3
[2009.07.14 04:18:51 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2009.07.14 03:52:33 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896.manifest
[2010.11.20 05:06:16 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c.manifest
[2014.07.02 07:57:49 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.18523_none_a6803b1074d97c29.manifest
[2014.07.14 04:04:09 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.18532_none_a681522274d87bdf.manifest
[2014.07.02 08:07:46 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22733_none_8fb394768e7ff5d7.manifest
[2014.07.14 04:04:27 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22743_none_8fb494c08e7f0f2e.manifest
[2009.07.26 19:50:40 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2009.07.14 04:28:14 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_en-us_8f71d563bf7aa3c2.manifest
[2014.07.02 08:50:42 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18523_cs-cz_342b81c984259c43.manifest
[2014.07.02 07:39:48 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18523_en-us_8f47fbdfbfd0e755.manifest
[2014.07.14 05:14:58 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18532_cs-cz_342c98db84249bf9.manifest
[2014.07.14 03:45:53 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18532_en-us_8f4912f1bfcfe70b.manifest
[2014.07.02 22:15:55 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22733_cs-cz_1d5edb2f9dcc15f1.manifest
[2014.07.02 07:46:32 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22733_en-us_787b5545d9776103.manifest
[2014.07.14 05:04:07 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22743_cs-cz_1d5fdb799dcb2f48.manifest
[2014.07.14 03:46:55 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22743_en-us_787c558fd9767a5a.manifest
[2009.07.14 03:51:52 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9.manifest
[2010.11.20 05:05:38 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f.manifest
[2014.07.02 08:00:03 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.18523_none_d6c370aa9c807d5c.manifest
[2014.07.14 04:06:40 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.18532_none_d6c487bc9c7f7d12.manifest
[2014.07.02 08:10:04 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22733_none_bff6ca10b626f70a.manifest
[2014.07.14 04:06:53 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22743_none_bff7ca5ab6261061.manifest
[2009.07.14 03:49:26 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009.07.14 03:45:27 | 000,000,866 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_2c93290b67c98d09.manifest
[2009.07.14 03:57:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b.manifest
[2010.11.20 05:10:46 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1.manifest
[2014.07.02 07:58:58 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18523_none_db9e1c77dd57179e.manifest
[2014.07.14 04:05:25 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18532_none_db9f3389dd561754.manifest
[2014.07.02 08:08:55 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22733_none_c4d175ddf6fd914c.manifest
[2014.07.14 04:05:41 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22743_none_c4d27627f6fcaaa3.manifest
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2014.06.24 01:43:20 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7601.18523_none_1c70653de072abde\System.Runtime.Serialization.Formatters.Soap.dll
[2014.06.24 01:43:36 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7601.22733_none_05a3bea3fa19258c\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.26 19:51:17 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.07.08 14:43:48 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7601.18523_cs-cz_d5997ba9da0ab4d7\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 23:14:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896\System.Runtime.Serialization.dll
[2010.11.05 03:52:39 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c\System.Runtime.Serialization.dll
[2014.03.09 23:47:42 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.18523_none_a6803b1074d97c29\System.Runtime.Serialization.dll
[2014.07.11 00:24:11 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.18532_none_a681522274d87bdf\System.Runtime.Serialization.dll
[2014.03.17 16:38:28 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22733_none_8fb394768e7ff5d7\System.Runtime.Serialization.dll
[2014.07.08 01:27:52 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22743_none_8fb494c08e7f0f2e\System.Runtime.Serialization.dll
[2009.07.26 19:51:24 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2013.07.08 14:45:28 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18523_cs-cz_342b81c984259c43\System.RunTime.Serialization.Resources.dll
[2013.07.08 14:45:28 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18532_cs-cz_342c98db84249bf9\System.RunTime.Serialization.Resources.dll
[2013.07.09 08:47:35 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22733_cs-cz_1d5edb2f9dcc15f1\System.RunTime.Serialization.Resources.dll
[2013.07.09 08:47:35 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22743_cs-cz_1d5fdb799dcb2f48\System.RunTime.Serialization.Resources.dll
[2009.06.10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9\System.Runtime.Serialization.dll
[2010.11.05 03:52:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f\System.Runtime.Serialization.dll
[2014.03.09 23:47:42 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.18523_none_d6c370aa9c807d5c\System.Runtime.Serialization.dll
[2014.07.11 00:24:10 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.18532_none_d6c487bc9c7f7d12\System.Runtime.Serialization.dll
[2014.03.17 16:38:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22733_none_bff6ca10b626f70a\System.Runtime.Serialization.dll
[2014.07.08 01:27:52 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22743_none_bff7ca5ab6261061\System.Runtime.Serialization.dll
[2009.07.14 00:13:45 | 001,068,032 | ---- | M] () -- \Windows\winsxs\x86_mdmmotsm.inf_31bf3856ad364e35_6.1.7600.16385_none_7a97936f8a972896\smserial.sys
[2009.07.26 19:51:06 | 000,011,776 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_c002c1170ca9a88f\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.05 03:53:33 | 000,011,776 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_c233d4df09982c29\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.05 03:53:33 | 000,011,776 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_cs-cz_c227ede109a14864\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.05 03:53:33 | 000,011,776 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.22731_cs-cz_c2a4bc1222c8ce98\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.07.26 19:51:08 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009.07.14 04:10:04 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_919783112bf8b64b\serialui.dll.mui
[2009.07.26 19:48:43 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_sk-sk_79d39f727217a41c\serialui.dll.mui
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2009.07.26 19:51:24 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_5d4a68b4b3d26ecc\System.RunTime.Serialization.Resources.dll
[2010.11.05 03:53:39 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_5f7b7c7cb0c0f266\System.RunTime.Serialization.Resources.dll
[2010.11.05 03:53:39 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_cs-cz_5f6f957eb0ca0ea1\System.RunTime.Serialization.Resources.dll
[2010.11.05 03:53:39 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.22733_cs-cz_5fee6443c9efc783\System.RunTime.Serialization.Resources.dll
[2009.07.26 19:51:20 | 000,009,728 | ---- | M] () -- \Windows\winsxs\x86_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_c48c78a9ad8ff996\serial.sys.mui
[2009.07.14 04:09:30 | 000,010,240 | ---- | M] () -- \Windows\winsxs\x86_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_en-us_07e2c405948a55f4\serial.sys.mui
[2009.07.14 01:45:33 | 000,083,456 | ---- | M] () -- \Windows\winsxs\x86_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_f86e06d519b1d9a4\serial.sys
[2009.07.14 00:09:18 | 000,031,232 | ---- | M] () -- \Windows\winsxs\x86_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_7280378295916274\grserial.sys
[2009.06.10 23:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b\System.Runtime.Serialization.dll
[2010.11.05 03:52:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1\System.Runtime.Serialization.dll
[2014.03.09 23:47:42 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18523_none_db9e1c77dd57179e\System.Runtime.Serialization.dll
[2014.07.11 00:24:10 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18532_none_db9f3389dd561754\System.Runtime.Serialization.dll
[2014.03.17 16:38:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22733_none_c4d175ddf6fd914c\System.Runtime.Serialization.dll
[2014.07.08 01:27:52 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22743_none_c4d27627f6fcaaa3\System.Runtime.Serialization.dll

< *w7lxe* /s >

< End of report >

[Márty84]

Napiste mi velikost adresare plochy (C:\Users\Lukeš_CZ\Desktop)




Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne
Znovu spustte OTL jako spravce
Do spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)

Kód: Vybrat vše

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[Purity]
[CreateRestorePoint]

:services
gupdate
AdobeFlashPlayerUpdateSvc
gupdatem
gusvc

:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\Windows\tasks\Adobe Flash Player Updater.job

:otl
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-2539830454-3853352712-3909248287-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
[11 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu se objevi novy log, ten sem dejte.

[M.Lukes]

Velikost plochy je 53,4MB - Velikost na disku je 54,5MB

Zde je LOG:

All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 41620 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 195 bytes
->FireFox cache emptied: 369110108 bytes
->Flash cache emptied: 2840 bytes

User: Lukeš_CZ
->Temp folder emptied: 529736 bytes
->Temporary Internet Files folder emptied: 1090839 bytes
->FireFox cache emptied: 18975707 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 877 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 5923 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 372,00 mb


[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Guest
->Flash cache emptied: 0 bytes

User: Lukeš_CZ
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb

Restore point Set: OTL Restore Point
========== SERVICES/DRIVERS ==========
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service AdobeFlashPlayerUpdateSvc stopped successfully!
Service AdobeFlashPlayerUpdateSvc deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
Service gusvc stopped successfully!
Service gusvc deleted successfully!
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
C:\Windows\tasks\Adobe Flash Player Updater.job moved successfully.
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-2539830454-3853352712-3909248287-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1EBB.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5E64.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP8545.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9050.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9429.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9C05.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPB4D5.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPCC37.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPCDBB.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPE7C0.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPEE96.tmp folder deleted successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6}\ deleted successfully.

OTL by OldTimer - Version 3.2.69.0 log created on 10242014_202459

Files\Folders moved on Reboot...
File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...