prosím o preventivní kontrolu logu
děkuji
Logfile of random's system information tool 1.10 (written by random/random)
Run by Loznice at 2015-02-14 21:29:33
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 82 GB (27%) free of 305 GB
Total RAM: 3582 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:29:44, on 14.2.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17631)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe
C:\Program Files\EXPERTool\TBPanel.exe
C:\Windows\System32\rundll32.exe
C:\Windows\SOUNDMAN.EXE
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\D-Link\DWA-125 revA\AirGCFG.exe
C:\Program Files\D-Link\DWA-125 revA\WZCSLDR2.exe
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\TeamViewer\Version9\TeamViewer.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Loznice\Desktop\RSIT.exe
C:\Program Files\trend micro\Loznice.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hppp ... 579QF3MNHX
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... earchTerms}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hppp ... 579QF3MNHX
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hppp ... 579QF3MNHX
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files\XTab\SupTab.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: YTAHelperBHO - {FCE3FA8B-BA81-467C-81D8-E43C00D1BC71} - (no file)
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [D-Link D-Link DWA-125] C:\Program Files\D-Link\DWA-125 revA\AirGCFG.exe
O4 - HKLM\..\Run: [WZCSLDR2] C:\Program Files\D-Link\DWA-125 revA\WZCSLDR2.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [NvBackend] "C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe"
O4 - HKLM\..\Run: [ShadowPlay] C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: D_Link_DWA-125 Service (D_Link_DWA-125) - Wireless Service - C:\Program Files\D-Link\DWA-125 revA\ANIWZCSdS.exe
O23 - Service: D_Link_DWA-125_WPS Service (D_Link_DWA-125_WPS) - Unknown owner - C:\Program Files\D-Link\DWA-125 revA\ANIWConnService.exe
O23 - Service: IHProtect Service - XTab system - C:\Program Files\XTab\ProtectService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: Update SourceApp - Unknown owner - C:\Program Files\SourceApp\updateSourceApp.exe (file missing)
--
End of file - 7057 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Loznice\AppData\Roaming\Mozilla\Firefox\Profiles\rafcih7h.default-1422195535460
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
"fftoolbar2014@etech.com"=C:\Users\Loznice\AppData\Roaming\Mozilla\Firefox\Profiles\qnfc2upv.default\extensions\fftoolbar2014@etech.com
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 16.0.0.305 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.21.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}]
IETabPage Class - C:\Program Files\XTab\SupTab.dll [2014-12-29 513680]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-04-23 462752]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-04-23 171424]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCE3FA8B-BA81-467C-81D8-E43C00D1BC71}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\Windows\SOUNDMAN.EXE [2009-04-14 604704]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2015-01-30 978520]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816]
"D-Link D-Link DWA-125"=C:\Program Files\D-Link\DWA-125 revA\AirGCFG.exe [2010-05-21 1024000]
"WZCSLDR2"=C:\Program Files\D-Link\DWA-125 revA\WZCSLDR2.exe [2010-04-21 122880]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-02-11 137752]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-02-11 171032]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-02-11 172568]
"NvBackend"=C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2014-08-28 2404296]
"ShadowPlay"=C:\Windows\system32\nvspcap.dll [2014-08-28 1126480]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Cobian Backup 11 interface]
C:\Program Files\Cobian Backup 11\cbInterface.exe -service []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [2008-06-24 1840424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage]
C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload]
C:\Program Files\Samsung\Kies\Kies.exe /preload []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PowerDVD13Agent]
C:\Program Files\CyberLink\PowerDVD13\PowerDVD13Agent.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TBPanel]
C:\Program Files\EXPERTool\TBPanel.exe [2014-08-28 2194728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-02-11 228864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 4171480]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"msacm.l3codecp"=l3codecp.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-02-14 21:29:33 ----D---- C:\rsit
2015-02-14 21:29:33 ----D---- C:\Program Files\trend micro
2015-02-14 21:28:05 ----D---- C:\Windows\system32\appmgmt
2015-02-12 20:53:19 ----A---- C:\Windows\system32\jscript9diag.dll
2015-02-12 20:53:19 ----A---- C:\Windows\system32\jscript9.dll
2015-02-11 21:35:23 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-02-11 21:35:23 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-11 21:35:23 ----A---- C:\Windows\system32\iernonce.dll
2015-02-11 21:35:23 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-02-11 21:35:23 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-02-11 21:35:23 ----A---- C:\Windows\system32\iedkcs32.dll
2015-02-11 21:35:23 ----A---- C:\Windows\system32\ie4uinit.exe
2015-02-11 21:35:22 ----A---- C:\Windows\system32\urlmon.dll
2015-02-11 21:35:22 ----A---- C:\Windows\system32\jsproxy.dll
2015-02-11 21:35:22 ----A---- C:\Windows\system32\ieUnatt.exe
2015-02-11 21:35:22 ----A---- C:\Windows\system32\ieapfltr.dll
2015-02-11 21:35:22 ----A---- C:\Windows\system32\dxtmsft.dll
2015-02-11 21:35:21 ----A---- C:\Windows\system32\msfeeds.dll
2015-02-11 21:35:20 ----A---- C:\Windows\system32\wininet.dll
2015-02-11 21:35:20 ----A---- C:\Windows\system32\msrating.dll
2015-02-11 21:35:20 ----A---- C:\Windows\system32\iesetup.dll
2015-02-11 21:35:20 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-02-11 21:35:19 ----A---- C:\Windows\system32\ieui.dll
2015-02-11 21:35:19 ----A---- C:\Windows\system32\dxtrans.dll
2015-02-11 21:35:18 ----A---- C:\Windows\system32\ieframe.dll
2015-02-11 21:35:17 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-02-11 21:35:17 ----A---- C:\Windows\system32\mshtmled.dll
2015-02-11 21:35:17 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-02-11 21:35:16 ----A---- C:\Windows\system32\iertutil.dll
2015-02-11 21:35:15 ----A---- C:\Windows\system32\vbscript.dll
2015-02-11 21:35:15 ----A---- C:\Windows\system32\mshtml.dll
2015-02-11 21:30:45 ----A---- C:\Windows\system32\WindowsCodecs.dll
2015-02-11 21:30:42 ----A---- C:\Windows\system32\win32k.sys
2015-02-11 21:30:36 ----A---- C:\Windows\system32\sspisrv.dll
2015-02-11 21:30:36 ----A---- C:\Windows\system32\sspicli.dll
2015-02-11 21:30:36 ----A---- C:\Windows\system32\secur32.dll
2015-02-11 21:30:36 ----A---- C:\Windows\system32\msobjs.dll
2015-02-11 21:30:36 ----A---- C:\Windows\system32\msaudite.dll
2015-02-11 21:30:36 ----A---- C:\Windows\system32\lsass.exe
2015-02-11 21:30:36 ----A---- C:\Windows\system32\lsasrv.dll
2015-02-11 21:30:36 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-02-11 21:30:36 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-02-11 21:30:36 ----A---- C:\Windows\system32\drivers\cng.sys
2015-02-11 21:30:36 ----A---- C:\Windows\system32\auditpol.exe
2015-02-11 21:30:36 ----A---- C:\Windows\system32\adtschema.dll
2015-02-11 21:30:13 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-02-11 21:30:13 ----A---- C:\Windows\system32\ntkrnlpa.exe
2015-02-11 21:29:14 ----A---- C:\Windows\system32\oleaut32.dll
2015-02-11 21:27:41 ----A---- C:\Windows\system32\invagent.dll
2015-02-11 21:27:41 ----A---- C:\Windows\system32\generaltel.dll
2015-02-11 21:27:41 ----A---- C:\Windows\system32\devinv.dll
2015-02-11 21:27:41 ----A---- C:\Windows\system32\appraiser.dll
2015-02-11 21:27:41 ----A---- C:\Windows\system32\aitstatic.exe
2015-02-11 21:27:41 ----A---- C:\Windows\system32\aeinv.dll
2015-02-11 21:27:40 ----A---- C:\Windows\system32\aepic.dll
2015-02-11 21:27:40 ----A---- C:\Windows\system32\aepdu.dll
2015-02-11 21:25:33 ----A---- C:\Windows\system32\wdigest.dll
2015-02-11 21:25:33 ----A---- C:\Windows\system32\TSpkg.dll
2015-02-11 21:25:33 ----A---- C:\Windows\system32\schannel.dll
2015-02-11 21:25:33 ----A---- C:\Windows\system32\ncrypt.dll
2015-02-11 21:25:33 ----A---- C:\Windows\system32\msv1_0.dll
2015-02-11 21:25:33 ----A---- C:\Windows\system32\kerberos.dll
2015-02-11 21:25:32 ----A---- C:\Windows\system32\credssp.dll
2015-02-11 21:24:51 ----A---- C:\Windows\system32\crypt32.dll
2015-02-11 21:24:48 ----A---- C:\Windows\system32\scesrv.dll
2015-02-05 10:43:24 ----D---- C:\Program Files\GameSpy
2015-02-05 10:41:19 ----D---- C:\Windows\system32\URTTEMP
2015-02-05 10:39:32 ----A---- C:\Windows\system32\pbsvc.exe
2015-02-05 10:32:28 ----D---- C:\Program Files\Electronic Arts
2015-01-27 12:16:14 ----D---- C:\Program Files\Mozilla Firefox
2015-01-25 20:30:13 ----A---- C:\Windows\system32\drivers\PnkBstrK.sys
2015-01-25 20:30:07 ----A---- C:\Windows\system32\PnkBstrB.exe
2015-01-25 20:29:27 ----A---- C:\Windows\system32\PnkBstrA.exe
2015-01-25 15:25:07 ----D---- C:\Program Files\Enigma Software Group
2015-01-25 15:24:04 ----D---- C:\Windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP
2015-01-25 15:24:03 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2015-01-17 12:26:54 ----D---- C:\ProgramData\Spybot - Search & Destroy
2015-01-17 12:26:37 ----D---- C:\Program Files\Spybot - Search & Destroy
======List of files/folders modified in the last 1 month======
2015-02-14 21:29:33 ----RD---- C:\Program Files
2015-02-14 21:28:29 ----D---- C:\Windows\Temp
2015-02-14 21:28:05 ----SHD---- C:\Windows\Installer
2015-02-14 21:28:05 ----SD---- C:\Users\Loznice\AppData\Roaming\Microsoft
2015-02-14 21:28:05 ----D---- C:\Windows\system32\Tasks
2015-02-14 21:28:05 ----D---- C:\Windows\System32
2015-02-14 21:28:01 ----SHD---- C:\Config.Msi
2015-02-14 21:26:23 ----SHD---- C:\System Volume Information
2015-02-14 21:16:20 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-02-14 21:16:19 ----D---- C:\Windows\inf
2015-02-14 21:15:54 ----D---- C:\Windows\system32\config
2015-02-14 21:14:36 ----D---- C:\Windows\system32\NDF
2015-02-14 21:08:56 ----D---- C:\ProgramData\NVIDIA
2015-02-14 20:58:58 ----D---- C:\Windows
2015-02-14 20:56:03 ----D---- C:\Windows\system32\LogFiles
2015-02-13 03:01:02 ----D---- C:\Windows\winsxs
2015-02-13 03:00:51 ----D---- C:\Windows\system32\en-US
2015-02-12 05:12:44 ----D---- C:\Windows\Prefetch
2015-02-12 04:08:32 ----D---- C:\Windows\rescache
2015-02-12 03:29:34 ----D---- C:\Windows\system32\catroot
2015-02-12 03:29:18 ----SD---- C:\Windows\system32\CompatTel
2015-02-12 03:29:18 ----D---- C:\Windows\system32\drivers
2015-02-12 03:29:18 ----D---- C:\Windows\system32\cs-CZ
2015-02-12 03:29:18 ----D---- C:\Windows\system32\appraiser
2015-02-12 03:29:18 ----D---- C:\Windows\PolicyDefinitions
2015-02-12 03:29:17 ----D---- C:\Program Files\Internet Explorer
2015-02-12 03:13:48 ----D---- C:\Windows\system32\MRT
2015-02-12 03:09:32 ----D---- C:\Windows\Microsoft.NET
2015-02-12 03:08:19 ----A---- C:\Windows\system32\MRT.exe
2015-02-12 03:07:52 ----RSD---- C:\Windows\assembly
2015-02-12 03:06:48 ----D---- C:\ProgramData\Microsoft Help
2015-02-12 03:06:48 ----A---- C:\Windows\win.ini
2015-02-12 03:03:03 ----D---- C:\Program Files\Microsoft Security Client
2015-02-11 21:23:00 ----D---- C:\Windows\system32\catroot2
2015-02-09 15:04:08 ----D---- C:\Users\Loznice\AppData\Roaming\vlc
2015-02-05 19:30:22 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2015-02-05 10:42:27 ----D---- C:\Windows\Registration
2015-02-02 13:10:33 ----A---- C:\Windows\NeroDigital.ini
2015-01-29 15:49:20 ----D---- C:\Program Files\Mozilla Maintenance Service
2015-01-26 12:48:35 ----D---- C:\Program Files\Tomb Raider - Legend
2015-01-25 15:24:46 ----HD---- C:\Program Files\InstallShield Installation Information
2015-01-25 15:24:38 ----D---- C:\ProgramData\CyberLink
2015-01-25 15:24:03 ----D---- C:\Program Files\Common Files
2015-01-25 15:22:47 ----D---- C:\Program Files\Cobian Backup 11
2015-01-17 12:26:54 ----HD---- C:\ProgramData
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2014-11-15 239224]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 {122141c3-e1a4-4af5-b3d7-650743f49ec0}Gw;{122141c3-e1a4-4af5-b3d7-650743f49ec0}Gw; C:\Windows\system32\drivers\{122141c3-e1a4-4af5-b3d7-650743f49ec0}Gw.sys [2015-01-04 43152]
R1 anodlwf;ANOD Network Security Filter driver; C:\Windows\system32\DRIVERS\anodlwf.sys [2009-03-06 12800]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2014-11-15 95408]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 e1kexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver K; C:\Windows\system32\DRIVERS\e1k6032.sys [2009-07-13 164864]
R3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys []
R3 netr28u;D-Link dnetr28u USB Extensible Wireless LAN Card Driver; C:\Windows\system32\DRIVERS\Dnetr28u.sys [2010-05-05 855392]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2014-08-28 162592]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-08-28 20424]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad32v.sys [2014-08-28 34080]
R3 teamviewervpn;TeamViewer VPN Adapter; C:\Windows\system32\DRIVERS\teamviewervpn.sys [2013-09-11 25088]
S3 61883;61883 Unit Device; C:\Windows\system32\DRIVERS\61883.sys [2009-07-14 46976]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\Windows\system32\drivers\RTKVAC.SYS [2009-06-18 4172832]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 Avc;Zařízení AVC; C:\Windows\system32\DRIVERS\avc.sys [2009-07-14 40320]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-08-20 84248]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2011-02-11 9036800]
S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2009-07-14 52608]
S3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x32.sys [2009-07-13 347264]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-04-03 181912]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\drivers\usbscan.sys [2013-07-03 36352]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;SAMSUNG Android USB Driver; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 D_Link_DWA-125_WPS;D_Link_DWA-125_WPS Service; C:\Program Files\D-Link\DWA-125 revA\ANIWConnService.exe [2010-03-03 53248]
R2 IHProtect Service;IHProtect Service; C:\Program Files\XTab\ProtectService.exe [2014-12-29 158864]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\MsMpEng.exe [2015-01-30 22184]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-08-28 1721800]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-08-28 17551816]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-07-02 670552]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2015-01-25 76888]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-07-02 413128]
R2 TeamViewer9;TeamViewer 9; C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe [2015-02-09 5249808]
R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\NisSrv.exe [2015-01-30 284472]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 D_Link_DWA-125;D_Link_DWA-125 Service; C:\Program Files\D-Link\DWA-125 revA\ANIWZCSdS.exe [2010-04-21 126976]
S2 Update SourceApp;Update SourceApp; C:\Program Files\SourceApp\updateSourceApp.exe []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-05 267440]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-01-12 102912]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2015-01-27 114800]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-06-24 537896]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-04-22 1343400]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2014-03-04 31904]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
prosím o kontrola logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: prosím o kontrola logu
Zdravim 
Odinstalujte SpyHunter
Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Odinstalujte SpyHunter Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kód: Vybrat vše
CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: prosím o kontrola logu
Mimochodem, doufam, ze to dokoncite a nevykaslete se na to jako minule 
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: prosím o kontrola logu
Dobrý den
Za minule se omlouvám, protože mi odešla grafika a pak jsem se na to vybodl. Měl jsem se alespoň omluvit a ukončit vlákno, ale lenost byla silnější než já.
Tentokrát jsem také trochu v problémku, protože pc mi neříká pane. V průběhu dne situaci nějak vyřeším. Nejsem takový padouch jak to vypadá.
Zatím mockrát děkuji
Za minule se omlouvám, protože mi odešla grafika a pak jsem se na to vybodl. Měl jsem se alespoň omluvit a ukončit vlákno, ale lenost byla silnější než já.
Tentokrát jsem také trochu v problémku, protože pc mi neříká pane. V průběhu dne situaci nějak vyřeším. Nejsem takový padouch jak to vypadá.
Zatím mockrát děkuji Re: prosím o kontrola logu
Ja nerekl, ze jste padouch 
Jen na to nedokoncovani pozor. Jakmile to prekroci jistou mez, muze byt problem. Nekteri to dopracovali tak daleko, ze uz jejich zadosti zcela ignorujeme. Kdyz vam nekdo z 9 prohlidek nedokonci ani jednu, trpelivost dojde
To samozrejme neni vas pripad, ale proste pozor na to. Staci vzdycky hodit jen info, ze je to vyreseno jinak a vse bude v poradku
A pokud tedy neni pc vase, rovnou se zeptejte, jak je to s legalitou systemu. Ultimate neni zrovna bezna domaci verze a jiste vite, co rikaji pravidla fora
Jen na to nedokoncovani pozor. Jakmile to prekroci jistou mez, muze byt problem. Nekteri to dopracovali tak daleko, ze uz jejich zadosti zcela ignorujeme. Kdyz vam nekdo z 9 prohlidek nedokonci ani jednu, trpelivost dojde
To samozrejme neni vas pripad, ale proste pozor na to. Staci vzdycky hodit jen info, ze je to vyreseno jinak a vse bude v poradku
A pokud tedy neni pc vase, rovnou se zeptejte, jak je to s legalitou systemu. Ultimate neni zrovna bezna domaci verze a jiste vite, co rikaji pravidla fora
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: prosím o kontrola logu
OTL Extras logfile created on: 15.2.2015 10:45:08 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Loznice\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17633)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,50 Gb Total Physical Memory | 2,41 Gb Available Physical Memory | 69,04% Memory free
6,99 Gb Paging File | 5,89 Gb Available in Paging File | 84,22% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 297,99 Gb Total Space | 89,18 Gb Free Space | 29,93% Space Free | Partition Type: NTFS
Computer Name: LOZNICE-PC | User Name: Loznice | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-1066407315-1133105230-2838838912-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- Reg Error: Value error.
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{10FA24CB-8D05-4F34-BBD0-B24D2DAE9284}" = lport=138 | protocol=17 | dir=in | app=system |
"{111F18DB-3B96-4BFA-8167-D9BEAD8A8582}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{15C79412-B5AB-4E24-816F-8F7FB9F321B0}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{1801A8E4-F8FA-44C0-A6B3-2987947263CC}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{1A4E6A30-D099-44ED-818A-B399C834A7C2}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe |
"{30B468C0-C207-4582-BAEB-E02BCBB7EC71}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{30DC6259-1458-4394-9AFC-2228B53160E7}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{31CE1841-FE55-4890-82CC-96D5EC8CCED2}" = lport=443 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\netservice\nvnetworkservice.exe |
"{37C9F62F-0F63-4058-A906-B8DB60839451}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{4322AC8A-8C6E-4F0D-B65B-2ED95CE478B5}" = lport=445 | protocol=6 | dir=in | app=system |
"{4BC6DEC6-14F7-4A83-BCBB-F4B06ACBB966}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{55D7F076-C050-4E46-865C-010BDADC4A86}" = lport=137 | protocol=17 | dir=in | app=system |
"{5B864962-D16A-4DD1-898E-219A212F756F}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{5C59E151-9BB3-46F6-9DD5-402002E2C894}" = rport=138 | protocol=17 | dir=out | app=system |
"{8A02E03F-43F1-49C9-A736-0BB0C01AE399}" = rport=139 | protocol=6 | dir=out | app=system |
"{8FEB2695-B8D4-451F-B6B4-C521EE717908}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{9976F7EA-7BFD-412C-BD9C-3485AB27598C}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{9A9AD912-2836-40BA-9472-A0D15C9EFDA7}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{9B132269-ECC1-4AC6-B4D6-EEF9BC4D7893}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{A643B711-8998-4B7D-BFAC-639F67214A2E}" = rport=445 | protocol=6 | dir=out | app=system |
"{A86D8B78-E69F-432B-AA45-42004BBBED72}" = lport=47984 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{B622FD0B-D732-4D61-81BE-C2C5DD63F4FB}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{BA65B821-3553-49B7-BB56-57C9CA2DE3C3}" = rport=137 | protocol=17 | dir=out | app=system |
"{C91931DD-A4CA-4779-9F0C-92E675491C96}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{F47B37D7-667A-481C-ABB6-8CC17801C12B}" = lport=80 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\netservice\nvnetworkservice.exe |
"{F4C8AA8D-7B90-463B-9528-29284098631D}" = lport=139 | protocol=6 | dir=in | app=system |
"{FF153222-93B7-4024-9EBB-389C634D87B1}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01754321-C0FE-4388-B04C-EB97F321E6F2}" = protocol=17 | dir=in | app=c:\program files\electronic arts\crytek\crysis\bin32\crysis.exe |
"{071EEE9E-A47F-4E91-A353-6373B8C315D3}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version9\teamviewer_service.exe |
"{0CD4DF9C-0A1C-498B-8750-8B790D4F554B}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{15F1BC11-31DD-42CE-A930-267E8D564431}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version9\teamviewer_service.exe |
"{1A434BA4-856A-484A-B33A-90CDCA4A190E}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{50DEFE2F-3C90-41F2-B1F8-23648DAB4130}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{6A407435-F6EE-4426-8B21-1690A2B6AB9D}" = protocol=17 | dir=in | app=c:\program files\electronic arts\crytek\crysis\bin32\crysisdedicatedserver.exe |
"{797E2C63-1633-49B3-9979-36632DEF9CDE}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{8E0B2847-3F2C-4A32-8631-8B217D81FF28}" = dir=in | app=c:\users\loznice\desktop\videoperformersetup.exe |
"{93A403B6-6DD5-492E-AC55-F6B261832CC3}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{95F3153B-FE37-4C35-BE1B-5F374AA1B9C8}" = protocol=6 | dir=in | app=c:\windows\system32\muzapp.exe |
"{97B3081D-1D2A-4007-858B-B544CA47E3B1}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{9B33210E-D117-4B9F-B998-54F106503B85}" = protocol=6 | dir=in | app=c:\program files\electronic arts\crytek\crysis\bin32\crysis.exe |
"{9D41AD00-C870-498E-A7E9-D4332A4011BA}" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"{9F21B603-44BB-4593-87DD-B89BFAA76FC8}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{9F247A7A-A17F-44E9-A23F-FF796D6271B4}" = dir=out | app=c:\users\loznice\desktop\videoperformersetup.exe |
"{A32262D3-FA2D-4E20-8785-A58F83D03927}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{A4530859-77C4-40FF-A25D-E3EB6A206852}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version9\teamviewer.exe |
"{B96DE335-CCDC-4A4D-A819-150BC14F67BB}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{D3B42FC3-1EAA-4594-A9F8-1234326DF9DF}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{D5B97EC2-DAD7-4711-814F-6BF52AE3DCD3}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{DE42E1B3-1DE0-46CA-B7E5-BFD195124B54}" = protocol=6 | dir=in | app=c:\program files\electronic arts\crytek\crysis\bin32\crysisdedicatedserver.exe |
"{DE8D8641-EBED-4610-BE48-6CF119D0DB32}" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"{E098F789-DA33-48C3-B21E-9CF7F2176EC1}" = protocol=6 | dir=in | app=c:\program files\capcom\motogp 08\launcher.exe |
"{EF72E821-3AF8-441A-83FF-2068D6DB87E5}" = protocol=17 | dir=in | app=c:\program files\capcom\motogp 08\launcher.exe |
"{F6D7CDB9-573E-4AB8-AC45-D7A82D4F097E}" = protocol=17 | dir=in | app=c:\windows\system32\muzapp.exe |
"{F93B1959-271B-4201-9AB2-D93DBB774E25}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version9\teamviewer.exe |
"TCP Query User{030F7091-FC6C-444C-BBA3-2EA0522E1E39}C:\games\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"TCP Query User{1FB69A6D-CD20-442C-9043-56E1079374C6}C:\program files\codemasters\colin mcrae rally 2005\cmr5.exe" = protocol=6 | dir=in | app=c:\program files\codemasters\colin mcrae rally 2005\cmr5.exe |
"TCP Query User{21CBFF93-481E-4F28-853D-F848AB6AE71B}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{6E64A932-94F6-454E-AA6C-72884F96363C}C:\hry\far cry 3\bin\farcry3_d3d11.exe" = protocol=6 | dir=in | app=c:\hry\far cry 3\bin\farcry3_d3d11.exe |
"TCP Query User{B13F9768-EAE4-4EAB-8519-3260D349B7A7}C:\hry\far cry 3\bin\farcry3.exe" = protocol=6 | dir=in | app=c:\hry\far cry 3\bin\farcry3.exe |
"TCP Query User{E2E89EFC-A34F-4FA4-9A52-38604CDEE34A}C:\games\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"TCP Query User{F956F262-CBF0-496D-8AA1-B380A77ADA92}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe" = protocol=6 | dir=in | app=c:\windows\microsoft.net\framework\v2.0.50727\vbc.exe |
"UDP Query User{053385AB-EB89-4DA2-87BB-7ECE4CF8A5E5}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{1F9ED27B-7112-42A7-80D0-5A93FFB0A758}C:\program files\codemasters\colin mcrae rally 2005\cmr5.exe" = protocol=17 | dir=in | app=c:\program files\codemasters\colin mcrae rally 2005\cmr5.exe |
"UDP Query User{4A7EBB28-D16D-4BCA-87DE-7120EA1F0E10}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe" = protocol=17 | dir=in | app=c:\windows\microsoft.net\framework\v2.0.50727\vbc.exe |
"UDP Query User{73F20840-50AD-46D0-BEC8-8FF181692C3A}C:\hry\far cry 3\bin\farcry3.exe" = protocol=17 | dir=in | app=c:\hry\far cry 3\bin\farcry3.exe |
"UDP Query User{AD5B3737-D4C4-4AB1-A517-32732D4091E9}C:\hry\far cry 3\bin\farcry3_d3d11.exe" = protocol=17 | dir=in | app=c:\hry\far cry 3\bin\farcry3_d3d11.exe |
"UDP Query User{BB6794DC-CA8E-4F9A-A53D-2B42A516ACE0}C:\games\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"UDP Query User{EDE63E69-F33F-4EBE-99A2-DF9C5E858CF4}C:\games\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{000E79B7-E725-4F01-870A-C12942B7F8E4}" = Crysis(R)
"{123F4E9B-80E6-3A84-BDD4-3CB3AC59ABF0}" = Microsoft .NET Framework 4.5.1 (CSY)
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83217021FF}" = Java 7 Update 21
"{3911CF56-9EF2-39BA-846A-C27BD3CD0685}" = Microsoft .NET Framework 4.5.2
"{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}" = Microsoft ASP.NET MVC 4 Runtime
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4DC59BF3-0D72-3CE8-BFEF-1E8FAF689EB0}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x86)
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{80407BA7-7763-4395-AB98-5233F1B34E65}" = NVIDIA PhysX
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90140000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2010
"{90140000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90140000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2010
"{91140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029" = Microsoft .NET Framework 4.5.1 (čeština)
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{AC76BA86-0804-1033-1959-001802114130}" = Adobe Refresh Manager
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.10) - Czech
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovladač 3D Vision 340.52
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 340.52
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 340.52
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 2.1.1.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Ovladač řídící jednotky 3D Vision 340.50
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.13.1220
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 15.3.36
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Ovladač HD audia 1.3.30.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 15.3.36
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.23
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{D6F9CBDC-58B6-430A-8DD4-8F61CBC1ADF4}" = Microsoft Security Client
"{E45CACFE-0576-4375-A84F-C34B99A7B652}" = D-Link DWA-125
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe Flash Player ActiveX" = Adobe Flash Player 16 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 16 NPAPI
"Microsoft Security Client" = Microsoft Security Essentials
"Microsoft Visual Studio 2010 Tools for Office Runtime (x86)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x86)
"Mozilla Firefox 35.0.1 (x86 cs)" = Mozilla Firefox 35.0.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"PunkBusterSvc" = PunkBuster Services
"TeamViewer 9" = TeamViewer 9
"Visual C++ 6.0 Standard Edition" = Microsoft Visual C++ 6.0 Standard Edition
"VLC media player" = VLC media player
"WinRAR archiver" = WinRAR 4.20 (32-bit)
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1066407315-1133105230-2838838912-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"MyFreeCodec" = MyFreeCodec
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 25.1.2015 10:08:41 | Computer Name = Loznice-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: plugin-container.exe, verze: 35.0.0.5486,
časové razítko: 0x54af7153 Název chybujícího modulu: mozalloc.dll, verze: 35.0.0.5486,
časové razítko: 0x54af69d4 Kód výjimky: 0x80000003 Posun chyby: 0x00001425 ID chybujícího
procesu: 0xc40 Čas spuštění chybující aplikace: 0x01d038a7763e7eb3 Cesta k chybující
aplikaci: C:\Program Files\Mozilla Firefox\plugin-container.exe Cesta k chybujícímu
modulu: C:\Program Files\Mozilla Firefox\mozalloc.dll ID zprávy: a9c3af9c-a49b-11e4-a480-00219b176299
Error - 25.1.2015 10:24:46 | Computer Name = Loznice-PC | Source = MsiInstaller | ID = 11500
Description =
Error - 27.1.2015 6:10:32 | Computer Name = Loznice-PC | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Služba Šifrování selhala při volání OnIdentity() v objektu System
Writer. Details: AddWin32ServiceFiles: Unable to back up image of service PuranDefrag
since QueryServiceConfig API failed System Error: Systém nemůže nalézt uvedený soubor.
.
Error - 27.1.2015 22:00:26 | Computer Name = Loznice-PC | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Služba Šifrování selhala při volání OnIdentity() v objektu System
Writer. Details: AddWin32ServiceFiles: Unable to back up image of service PuranDefrag
since QueryServiceConfig API failed System Error: Systém nemůže nalézt uvedený soubor.
.
Error - 29.1.2015 13:58:12 | Computer Name = Loznice-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_StiSvc, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: CNC190C.DLL, verze: 1.0.6.0,
časové razítko: 0x4733ccf5 Kód výjimky: 0xc0000005 Posun chyby: 0x000039d5 ID chybujícího
procesu: 0x810 Čas spuštění chybující aplikace: 0x01d03bed1045c6c2 Cesta k chybující
aplikaci: C:\Windows\system32\svchost.exe Cesta k chybujícímu modulu: C:\Windows\system32\CNC190C.DLL
ID
zprávy: 6397d520-a7e0-11e4-a503-00219b176299
Error - 5.2.2015 5:42:36 | Computer Name = Loznice-PC | Source = MsiInstaller | ID = 11500
Description =
Error - 5.2.2015 5:42:41 | Computer Name = Loznice-PC | Source = MsiInstaller | ID = 11500
Description =
Error - 5.2.2015 5:42:42 | Computer Name = Loznice-PC | Source = MsiInstaller | ID = 11500
Description =
Error - 5.2.2015 5:42:43 | Computer Name = Loznice-PC | Source = MsiInstaller | ID = 11500
Description =
Error - 11.2.2015 22:06:40 | Computer Name = Loznice-PC | Source = Windows Search Service | ID = 3007
Description =
[ System Events ]
Error - 25.9.2014 7:44:33 | Computer Name = Loznice-PC | Source = Service Control Manager | ID = 7038
Description = Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s
aktuálně konfigurovaným heslem z důvodu následující chyby: %%1330 Chcete-li zajistit
správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management
Console (MMC).
Error - 25.9.2014 7:44:33 | Computer Name = Loznice-PC | Source = Service Control Manager | ID = 7000
Description = Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku
následující chyby: %%1069
Error - 1.10.2014 2:46:20 | Computer Name = Loznice-PC | Source = Service Control Manager | ID = 7038
Description = Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s
aktuálně konfigurovaným heslem z důvodu následující chyby: %%1330 Chcete-li zajistit
správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management
Console (MMC).
Error - 1.10.2014 2:46:20 | Computer Name = Loznice-PC | Source = Service Control Manager | ID = 7000
Description = Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku
následující chyby: %%1069
Error - 3.10.2014 11:46:13 | Computer Name = Loznice-PC | Source = Service Control Manager | ID = 7038
Description = Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s
aktuálně konfigurovaným heslem z důvodu následující chyby: %%1330 Chcete-li zajistit
správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management
Console (MMC).
Error - 3.10.2014 11:46:13 | Computer Name = Loznice-PC | Source = Service Control Manager | ID = 7000
Description = Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku
následující chyby: %%1069
Error - 5.10.2014 5:21:11 | Computer Name = Loznice-PC | Source = Service Control Manager | ID = 7038
Description = Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s
aktuálně konfigurovaným heslem z důvodu následující chyby: %%1330 Chcete-li zajistit
správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management
Console (MMC).
Error - 5.10.2014 5:21:11 | Computer Name = Loznice-PC | Source = Service Control Manager | ID = 7000
Description = Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku
následující chyby: %%1069
Error - 6.10.2014 0:26:32 | Computer Name = Loznice-PC | Source = Service Control Manager | ID = 7038
Description = Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s
aktuálně konfigurovaným heslem z důvodu následující chyby: %%1330 Chcete-li zajistit
správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management
Console (MMC).
Error - 6.10.2014 0:26:32 | Computer Name = Loznice-PC | Source = Service Control Manager | ID = 7000
Description = Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku
následující chyby: %%1069
< End of report >
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Loznice\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17633)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,50 Gb Total Physical Memory | 2,41 Gb Available Physical Memory | 69,04% Memory free
6,99 Gb Paging File | 5,89 Gb Available in Paging File | 84,22% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 297,99 Gb Total Space | 89,18 Gb Free Space | 29,93% Space Free | Partition Type: NTFS
Computer Name: LOZNICE-PC | User Name: Loznice | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-1066407315-1133105230-2838838912-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- Reg Error: Value error.
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{10FA24CB-8D05-4F34-BBD0-B24D2DAE9284}" = lport=138 | protocol=17 | dir=in | app=system |
"{111F18DB-3B96-4BFA-8167-D9BEAD8A8582}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{15C79412-B5AB-4E24-816F-8F7FB9F321B0}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{1801A8E4-F8FA-44C0-A6B3-2987947263CC}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{1A4E6A30-D099-44ED-818A-B399C834A7C2}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe |
"{30B468C0-C207-4582-BAEB-E02BCBB7EC71}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{30DC6259-1458-4394-9AFC-2228B53160E7}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe |
"{31CE1841-FE55-4890-82CC-96D5EC8CCED2}" = lport=443 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\netservice\nvnetworkservice.exe |
"{37C9F62F-0F63-4058-A906-B8DB60839451}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{4322AC8A-8C6E-4F0D-B65B-2ED95CE478B5}" = lport=445 | protocol=6 | dir=in | app=system |
"{4BC6DEC6-14F7-4A83-BCBB-F4B06ACBB966}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{55D7F076-C050-4E46-865C-010BDADC4A86}" = lport=137 | protocol=17 | dir=in | app=system |
"{5B864962-D16A-4DD1-898E-219A212F756F}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{5C59E151-9BB3-46F6-9DD5-402002E2C894}" = rport=138 | protocol=17 | dir=out | app=system |
"{8A02E03F-43F1-49C9-A736-0BB0C01AE399}" = rport=139 | protocol=6 | dir=out | app=system |
"{8FEB2695-B8D4-451F-B6B4-C521EE717908}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{9976F7EA-7BFD-412C-BD9C-3485AB27598C}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{9A9AD912-2836-40BA-9472-A0D15C9EFDA7}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{9B132269-ECC1-4AC6-B4D6-EEF9BC4D7893}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{A643B711-8998-4B7D-BFAC-639F67214A2E}" = rport=445 | protocol=6 | dir=out | app=system |
"{A86D8B78-E69F-432B-AA45-42004BBBED72}" = lport=47984 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{B622FD0B-D732-4D61-81BE-C2C5DD63F4FB}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{BA65B821-3553-49B7-BB56-57C9CA2DE3C3}" = rport=137 | protocol=17 | dir=out | app=system |
"{C91931DD-A4CA-4779-9F0C-92E675491C96}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{F47B37D7-667A-481C-ABB6-8CC17801C12B}" = lport=80 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\netservice\nvnetworkservice.exe |
"{F4C8AA8D-7B90-463B-9528-29284098631D}" = lport=139 | protocol=6 | dir=in | app=system |
"{FF153222-93B7-4024-9EBB-389C634D87B1}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01754321-C0FE-4388-B04C-EB97F321E6F2}" = protocol=17 | dir=in | app=c:\program files\electronic arts\crytek\crysis\bin32\crysis.exe |
"{071EEE9E-A47F-4E91-A353-6373B8C315D3}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version9\teamviewer_service.exe |
"{0CD4DF9C-0A1C-498B-8750-8B790D4F554B}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{15F1BC11-31DD-42CE-A930-267E8D564431}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version9\teamviewer_service.exe |
"{1A434BA4-856A-484A-B33A-90CDCA4A190E}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{50DEFE2F-3C90-41F2-B1F8-23648DAB4130}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{6A407435-F6EE-4426-8B21-1690A2B6AB9D}" = protocol=17 | dir=in | app=c:\program files\electronic arts\crytek\crysis\bin32\crysisdedicatedserver.exe |
"{797E2C63-1633-49B3-9979-36632DEF9CDE}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{8E0B2847-3F2C-4A32-8631-8B217D81FF28}" = dir=in | app=c:\users\loznice\desktop\videoperformersetup.exe |
"{93A403B6-6DD5-492E-AC55-F6B261832CC3}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{95F3153B-FE37-4C35-BE1B-5F374AA1B9C8}" = protocol=6 | dir=in | app=c:\windows\system32\muzapp.exe |
"{97B3081D-1D2A-4007-858B-B544CA47E3B1}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{9B33210E-D117-4B9F-B998-54F106503B85}" = protocol=6 | dir=in | app=c:\program files\electronic arts\crytek\crysis\bin32\crysis.exe |
"{9D41AD00-C870-498E-A7E9-D4332A4011BA}" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"{9F21B603-44BB-4593-87DD-B89BFAA76FC8}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{9F247A7A-A17F-44E9-A23F-FF796D6271B4}" = dir=out | app=c:\users\loznice\desktop\videoperformersetup.exe |
"{A32262D3-FA2D-4E20-8785-A58F83D03927}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{A4530859-77C4-40FF-A25D-E3EB6A206852}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version9\teamviewer.exe |
"{B96DE335-CCDC-4A4D-A819-150BC14F67BB}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{D3B42FC3-1EAA-4594-A9F8-1234326DF9DF}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{D5B97EC2-DAD7-4711-814F-6BF52AE3DCD3}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{DE42E1B3-1DE0-46CA-B7E5-BFD195124B54}" = protocol=6 | dir=in | app=c:\program files\electronic arts\crytek\crysis\bin32\crysisdedicatedserver.exe |
"{DE8D8641-EBED-4610-BE48-6CF119D0DB32}" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"{E098F789-DA33-48C3-B21E-9CF7F2176EC1}" = protocol=6 | dir=in | app=c:\program files\capcom\motogp 08\launcher.exe |
"{EF72E821-3AF8-441A-83FF-2068D6DB87E5}" = protocol=17 | dir=in | app=c:\program files\capcom\motogp 08\launcher.exe |
"{F6D7CDB9-573E-4AB8-AC45-D7A82D4F097E}" = protocol=17 | dir=in | app=c:\windows\system32\muzapp.exe |
"{F93B1959-271B-4201-9AB2-D93DBB774E25}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version9\teamviewer.exe |
"TCP Query User{030F7091-FC6C-444C-BBA3-2EA0522E1E39}C:\games\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"TCP Query User{1FB69A6D-CD20-442C-9043-56E1079374C6}C:\program files\codemasters\colin mcrae rally 2005\cmr5.exe" = protocol=6 | dir=in | app=c:\program files\codemasters\colin mcrae rally 2005\cmr5.exe |
"TCP Query User{21CBFF93-481E-4F28-853D-F848AB6AE71B}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{6E64A932-94F6-454E-AA6C-72884F96363C}C:\hry\far cry 3\bin\farcry3_d3d11.exe" = protocol=6 | dir=in | app=c:\hry\far cry 3\bin\farcry3_d3d11.exe |
"TCP Query User{B13F9768-EAE4-4EAB-8519-3260D349B7A7}C:\hry\far cry 3\bin\farcry3.exe" = protocol=6 | dir=in | app=c:\hry\far cry 3\bin\farcry3.exe |
"TCP Query User{E2E89EFC-A34F-4FA4-9A52-38604CDEE34A}C:\games\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"TCP Query User{F956F262-CBF0-496D-8AA1-B380A77ADA92}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe" = protocol=6 | dir=in | app=c:\windows\microsoft.net\framework\v2.0.50727\vbc.exe |
"UDP Query User{053385AB-EB89-4DA2-87BB-7ECE4CF8A5E5}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{1F9ED27B-7112-42A7-80D0-5A93FFB0A758}C:\program files\codemasters\colin mcrae rally 2005\cmr5.exe" = protocol=17 | dir=in | app=c:\program files\codemasters\colin mcrae rally 2005\cmr5.exe |
"UDP Query User{4A7EBB28-D16D-4BCA-87DE-7120EA1F0E10}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe" = protocol=17 | dir=in | app=c:\windows\microsoft.net\framework\v2.0.50727\vbc.exe |
"UDP Query User{73F20840-50AD-46D0-BEC8-8FF181692C3A}C:\hry\far cry 3\bin\farcry3.exe" = protocol=17 | dir=in | app=c:\hry\far cry 3\bin\farcry3.exe |
"UDP Query User{AD5B3737-D4C4-4AB1-A517-32732D4091E9}C:\hry\far cry 3\bin\farcry3_d3d11.exe" = protocol=17 | dir=in | app=c:\hry\far cry 3\bin\farcry3_d3d11.exe |
"UDP Query User{BB6794DC-CA8E-4F9A-A53D-2B42A516ACE0}C:\games\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"UDP Query User{EDE63E69-F33F-4EBE-99A2-DF9C5E858CF4}C:\games\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{000E79B7-E725-4F01-870A-C12942B7F8E4}" = Crysis(R)
"{123F4E9B-80E6-3A84-BDD4-3CB3AC59ABF0}" = Microsoft .NET Framework 4.5.1 (CSY)
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83217021FF}" = Java 7 Update 21
"{3911CF56-9EF2-39BA-846A-C27BD3CD0685}" = Microsoft .NET Framework 4.5.2
"{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}" = Microsoft ASP.NET MVC 4 Runtime
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4DC59BF3-0D72-3CE8-BFEF-1E8FAF689EB0}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x86)
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{80407BA7-7763-4395-AB98-5233F1B34E65}" = NVIDIA PhysX
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90140000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2010
"{90140000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90140000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2010
"{91140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029" = Microsoft .NET Framework 4.5.1 (čeština)
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{AC76BA86-0804-1033-1959-001802114130}" = Adobe Refresh Manager
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.10) - Czech
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovladač 3D Vision 340.52
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 340.52
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 340.52
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 2.1.1.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Ovladač řídící jednotky 3D Vision 340.50
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.13.1220
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 15.3.36
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Ovladač HD audia 1.3.30.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 15.3.36
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.23
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{D6F9CBDC-58B6-430A-8DD4-8F61CBC1ADF4}" = Microsoft Security Client
"{E45CACFE-0576-4375-A84F-C34B99A7B652}" = D-Link DWA-125
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe Flash Player ActiveX" = Adobe Flash Player 16 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 16 NPAPI
"Microsoft Security Client" = Microsoft Security Essentials
"Microsoft Visual Studio 2010 Tools for Office Runtime (x86)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x86)
"Mozilla Firefox 35.0.1 (x86 cs)" = Mozilla Firefox 35.0.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"PunkBusterSvc" = PunkBuster Services
"TeamViewer 9" = TeamViewer 9
"Visual C++ 6.0 Standard Edition" = Microsoft Visual C++ 6.0 Standard Edition
"VLC media player" = VLC media player
"WinRAR archiver" = WinRAR 4.20 (32-bit)
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-1066407315-1133105230-2838838912-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"MyFreeCodec" = MyFreeCodec
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 25.1.2015 10:08:41 | Computer Name = Loznice-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: plugin-container.exe, verze: 35.0.0.5486,
časové razítko: 0x54af7153 Název chybujícího modulu: mozalloc.dll, verze: 35.0.0.5486,
časové razítko: 0x54af69d4 Kód výjimky: 0x80000003 Posun chyby: 0x00001425 ID chybujícího
procesu: 0xc40 Čas spuštění chybující aplikace: 0x01d038a7763e7eb3 Cesta k chybující
aplikaci: C:\Program Files\Mozilla Firefox\plugin-container.exe Cesta k chybujícímu
modulu: C:\Program Files\Mozilla Firefox\mozalloc.dll ID zprávy: a9c3af9c-a49b-11e4-a480-00219b176299
Error - 25.1.2015 10:24:46 | Computer Name = Loznice-PC | Source = MsiInstaller | ID = 11500
Description =
Error - 27.1.2015 6:10:32 | Computer Name = Loznice-PC | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Služba Šifrování selhala při volání OnIdentity() v objektu System
Writer. Details: AddWin32ServiceFiles: Unable to back up image of service PuranDefrag
since QueryServiceConfig API failed System Error: Systém nemůže nalézt uvedený soubor.
.
Error - 27.1.2015 22:00:26 | Computer Name = Loznice-PC | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Služba Šifrování selhala při volání OnIdentity() v objektu System
Writer. Details: AddWin32ServiceFiles: Unable to back up image of service PuranDefrag
since QueryServiceConfig API failed System Error: Systém nemůže nalézt uvedený soubor.
.
Error - 29.1.2015 13:58:12 | Computer Name = Loznice-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_StiSvc, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: CNC190C.DLL, verze: 1.0.6.0,
časové razítko: 0x4733ccf5 Kód výjimky: 0xc0000005 Posun chyby: 0x000039d5 ID chybujícího
procesu: 0x810 Čas spuštění chybující aplikace: 0x01d03bed1045c6c2 Cesta k chybující
aplikaci: C:\Windows\system32\svchost.exe Cesta k chybujícímu modulu: C:\Windows\system32\CNC190C.DLL
ID
zprávy: 6397d520-a7e0-11e4-a503-00219b176299
Error - 5.2.2015 5:42:36 | Computer Name = Loznice-PC | Source = MsiInstaller | ID = 11500
Description =
Error - 5.2.2015 5:42:41 | Computer Name = Loznice-PC | Source = MsiInstaller | ID = 11500
Description =
Error - 5.2.2015 5:42:42 | Computer Name = Loznice-PC | Source = MsiInstaller | ID = 11500
Description =
Error - 5.2.2015 5:42:43 | Computer Name = Loznice-PC | Source = MsiInstaller | ID = 11500
Description =
Error - 11.2.2015 22:06:40 | Computer Name = Loznice-PC | Source = Windows Search Service | ID = 3007
Description =
[ System Events ]
Error - 25.9.2014 7:44:33 | Computer Name = Loznice-PC | Source = Service Control Manager | ID = 7038
Description = Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s
aktuálně konfigurovaným heslem z důvodu následující chyby: %%1330 Chcete-li zajistit
správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management
Console (MMC).
Error - 25.9.2014 7:44:33 | Computer Name = Loznice-PC | Source = Service Control Manager | ID = 7000
Description = Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku
následující chyby: %%1069
Error - 1.10.2014 2:46:20 | Computer Name = Loznice-PC | Source = Service Control Manager | ID = 7038
Description = Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s
aktuálně konfigurovaným heslem z důvodu následující chyby: %%1330 Chcete-li zajistit
správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management
Console (MMC).
Error - 1.10.2014 2:46:20 | Computer Name = Loznice-PC | Source = Service Control Manager | ID = 7000
Description = Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku
následující chyby: %%1069
Error - 3.10.2014 11:46:13 | Computer Name = Loznice-PC | Source = Service Control Manager | ID = 7038
Description = Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s
aktuálně konfigurovaným heslem z důvodu následující chyby: %%1330 Chcete-li zajistit
správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management
Console (MMC).
Error - 3.10.2014 11:46:13 | Computer Name = Loznice-PC | Source = Service Control Manager | ID = 7000
Description = Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku
následující chyby: %%1069
Error - 5.10.2014 5:21:11 | Computer Name = Loznice-PC | Source = Service Control Manager | ID = 7038
Description = Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s
aktuálně konfigurovaným heslem z důvodu následující chyby: %%1330 Chcete-li zajistit
správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management
Console (MMC).
Error - 5.10.2014 5:21:11 | Computer Name = Loznice-PC | Source = Service Control Manager | ID = 7000
Description = Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku
následující chyby: %%1069
Error - 6.10.2014 0:26:32 | Computer Name = Loznice-PC | Source = Service Control Manager | ID = 7038
Description = Služba nvUpdatusService se nemohla přihlásit jako .\UpdatusUser s
aktuálně konfigurovaným heslem z důvodu následující chyby: %%1330 Chcete-li zajistit
správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management
Console (MMC).
Error - 6.10.2014 0:26:32 | Computer Name = Loznice-PC | Source = Service Control Manager | ID = 7000
Description = Služba NVIDIA Update Service Daemon neuspěla při spuštění v důsledku
následující chyby: %%1069
< End of report >
Re: prosím o kontrola logu
část první
OTL logfile created on: 15.2.2015 10:45:08 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Loznice\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17633)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,50 Gb Total Physical Memory | 2,41 Gb Available Physical Memory | 69,04% Memory free
6,99 Gb Paging File | 5,89 Gb Available in Paging File | 84,22% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 297,99 Gb Total Space | 89,18 Gb Free Space | 29,93% Space Free | Partition Type: NTFS
Computer Name: LOZNICE-PC | User Name: Loznice | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2015.02.15 10:42:21 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Loznice\Desktop\OTL.exe
PRC - [2015.02.09 18:56:21 | 005,249,808 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
PRC - [2015.02.09 18:56:20 | 014,433,552 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version9\TeamViewer.exe
PRC - [2015.02.09 18:10:54 | 000,229,648 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version9\tv_w32.exe
PRC - [2015.01.30 01:59:44 | 000,284,472 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\NisSrv.exe
PRC - [2015.01.30 01:59:44 | 000,022,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2015.01.30 01:53:04 | 000,978,520 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2015.01.27 12:16:21 | 000,338,032 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2014.12.29 02:29:00 | 000,158,864 | ---- | M] (XTab system) -- C:\Program Files\XTab\ProtectService.exe
PRC - [2014.12.29 02:28:58 | 000,673,936 | ---- | M] (XTab system) -- C:\Program Files\XTab\HPNotify.exe
PRC - [2014.12.29 02:28:58 | 000,048,272 | ---- | M] (SearchProtect) -- C:\Program Files\XTab\CmdShell.exe
PRC - [2014.12.19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2014.08.28 05:00:00 | 017,551,816 | R--- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
PRC - [2014.08.28 05:00:00 | 002,404,296 | R--- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2014.08.28 05:00:00 | 001,721,800 | R--- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2014.07.02 20:42:26 | 000,940,320 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2014.07.02 20:42:25 | 001,818,968 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2014.07.02 18:39:15 | 000,413,128 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2013.08.02 01:52:57 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2013.04.23 22:04:56 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010.05.21 10:18:50 | 001,024,000 | ---- | M] (D-Link Corp.) -- C:\Program Files\D-Link\DWA-125 revA\AirGCFG.exe
PRC - [2010.04.21 08:56:32 | 000,122,880 | ---- | M] (Wireless Service) -- C:\Program Files\D-Link\DWA-125 revA\WZCSLDR2.exe
PRC - [2010.03.03 08:45:46 | 000,053,248 | ---- | M] () -- C:\Program Files\D-Link\DWA-125 revA\ANIWConnService.exe
PRC - [2009.04.14 06:43:42 | 000,604,704 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SOUNDMAN.EXE
========== Modules (No Company Name) ==========
MOD - [2015.01.27 12:16:19 | 003,925,104 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2013.09.05 00:14:10 | 004,300,456 | ---- | M] () -- C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
MOD - [2013.04.25 12:48:54 | 000,315,392 | ---- | M] () -- C:\Program Files\D-Link\DWA-125 revA\ANPDApi.dll
MOD - [2010.03.19 18:14:20 | 000,294,912 | ---- | M] () -- C:\Program Files\D-Link\DWA-125 revA\wlanapp.dll
========== Services (SafeList) ==========
SRV - File not found [Auto | Stopped] -- C:\Program Files\SourceApp\updateSourceApp.exe -- (Update SourceApp)
SRV - [2015.02.09 18:56:21 | 005,249,808 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe -- (TeamViewer9)
SRV - [2015.02.05 19:30:22 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2015.01.30 01:59:44 | 000,284,472 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2015.01.30 01:59:44 | 000,022,184 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2015.01.27 12:16:19 | 000,114,800 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2015.01.12 02:55:46 | 000,102,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV - [2014.12.29 02:29:00 | 000,158,864 | ---- | M] (XTab system) [Auto | Running] -- C:\Program Files\XTab\ProtectService.exe -- (IHProtect Service)
SRV - [2014.12.19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2014.08.28 05:00:00 | 017,551,816 | R--- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV - [2014.08.28 05:00:00 | 001,721,800 | R--- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2014.07.02 18:39:15 | 000,413,128 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2013.12.19 00:41:02 | 030,814,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2013.05.27 05:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013.04.22 22:32:55 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010.04.21 08:56:32 | 000,126,976 | ---- | M] (Wireless Service) [Auto | Stopped] -- C:\Program Files\D-Link\DWA-125 revA\ANIWZCSdS.exe -- (D_Link_DWA-125)
SRV - [2010.03.03 08:45:46 | 000,053,248 | ---- | M] () [Auto | Running] -- C:\Program Files\D-Link\DWA-125 revA\ANIWConnService.exe -- (D_Link_DWA-125_WPS)
SRV - [2009.07.14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\synth3dvsc.sys -- (Synth3dVsc)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys -- (esgiguard)
DRV - [2015.02.15 02:27:24 | 000,039,464 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{1B9151A3-E723-4A37-96E6-939B7B7E239E}\MpKsl59418286.sys -- (MpKsl59418286)
DRV - [2015.01.04 15:44:00 | 000,043,152 | ---- | M] (StdLib) [Kernel | System | Running] -- C:\Windows\System32\drivers\{122141c3-e1a4-4af5-b3d7-650743f49ec0}Gw.sys -- ({122141c3-e1a4-4af5-b3d7-650743f49ec0}Gw)
DRV - [2014.11.15 14:46:08 | 000,095,408 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2014.08.28 05:00:00 | 010,681,176 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2014.08.28 05:00:00 | 000,162,592 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2014.08.28 05:00:00 | 000,034,080 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvvad32v.sys -- (nvvad_WaveExtensible)
DRV - [2014.08.28 05:00:00 | 000,020,424 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms)
DRV - [2013.10.02 01:42:31 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2013.09.11 16:05:13 | 000,025,088 | ---- | M] (TeamViewer GmbH) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\teamviewervpn.sys -- (teamviewervpn)
DRV - [2013.08.20 07:02:14 | 000,084,248 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudbus.sys -- (dg_ssudbus)
DRV - [2013.04.03 08:58:16 | 000,181,912 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudmdm.sys -- (ssudmdm)
DRV - [2012.08.23 15:44:32 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010.11.20 13:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010.11.20 13:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010.11.20 13:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010.11.20 10:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010.11.20 10:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010.11.20 10:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010.05.05 15:10:24 | 000,855,392 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Dnetr28u.sys -- (netr28u)
DRV - [2009.07.14 00:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2009.07.13 23:02:52 | 000,347,264 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvm62x32.sys -- (NVENETFD)
DRV - [2009.07.13 23:02:52 | 000,164,864 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\e1k6032.sys -- (e1kexpress)
DRV - [2009.06.18 18:45:02 | 004,172,832 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\RTKVAC.SYS -- (ALCXWDM)
DRV - [2009.03.06 17:09:52 | 000,012,800 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\anodlwf.sys -- (anodlwf)
DRV - [2004.08.13 08:56:20 | 000,005,810 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ASACPI.sys -- (MTsensor)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hppp ... XX9QF3MNHX
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... earchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... earchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hppp ... XX9QF3MNHX
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1066407315-1133105230-2838838912-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hppp ... XX9QF3MNHX
IE - HKU\S-1-5-21-1066407315-1133105230-2838838912-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... earchTerms}
IE - HKU\S-1-5-21-1066407315-1133105230-2838838912-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... earchTerms}
IE - HKU\S-1-5-21-1066407315-1133105230-2838838912-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-21-1066407315-1133105230-2838838912-1000\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE - HKU\S-1-5-21-1066407315-1133105230-2838838912-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IESR02
IE - HKU\S-1-5-21-1066407315-1133105230-2838838912-1000\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://www1.delta-search.com/?q={search ... 7&tsp=4980
IE - HKU\S-1-5-21-1066407315-1133105230-2838838912-1000\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://www.mystartsearch.com/web/?type= ... earchTerms}
IE - HKU\S-1-5-21-1066407315-1133105230-2838838912-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.highlightCount: 0
FF - prefs.js..browser.search.isUS: false
FF - prefs.js..browser.startup.homepage: "https://www.seznam.cz/"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:35.0.1
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.3: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.5: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\fftoolbar2014@etech.com: C:\Users\Loznice\AppData\Roaming\Mozilla\Firefox\Profiles\qnfc2upv.default\extensions\fftoolbar2014@etech.com
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 35.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 35.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2015.01.27 12:16:15 | 000,000,000 | ---D | M]
[2013.04.23 20:25:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Loznice\AppData\Roaming\Mozilla\Extensions
[2015.01.25 15:29:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Loznice\AppData\Roaming\Mozilla\Firefox\Profiles\rafcih7h.default-1422195535460\extensions
[2015.01.27 12:16:14 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2015.01.27 12:16:21 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
O1 HOSTS File: ([2015.02.14 21:09:43 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (IETabPage Class) - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files\XTab\SupTab.dll (Thinknice Co. Limited)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (no name) - {FCE3FA8B-BA81-467C-81D8-E43C00D1BC71} - No CLSID value found.
O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [D-Link D-Link DWA-125] C:\Program Files\D-Link\DWA-125 revA\AirGCFG.exe (D-Link Corp.)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" File not found
O4 - HKLM..\Run: [NvBackend] C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [ShadowPlay] C:\Windows\System32\nvspcap.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [SoundMan] C:\Windows\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [WZCSLDR2] C:\Program Files\D-Link\DWA-125 revA\WZCSLDR2.exe (Wireless Service)
O4 - HKU\.DEFAULT..\RunOnce: [SPReview] C:\Windows\System32\SPReview\SPReview.exe (Microsoft Corporation)
O4 - HKU\S-1-5-18..\RunOnce: [SPReview] C:\Windows\System32\SPReview\SPReview.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\S-1-5-21-1066407315-1133105230-2838838912-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.60.116.1 10.60.1.5 10.60.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B49B1E4A-C181-4A99-AE9B-CCBD565BA8B8}: DhcpNameServer = 10.60.116.1 10.60.1.5 10.60.1.1
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3codecp - C:\Windows\System32\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2015.02.15 10:42:20 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Loznice\Desktop\OTL.exe
[2015.02.14 21:48:04 | 001,414,440 | ---- | C] (Nero AG) -- C:\Windows\System32\ShellManager310E2D762.dll
[2015.02.14 21:29:33 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2015.02.14 21:29:33 | 000,000,000 | ---D | C] -- C:\rsit
[2015.02.14 21:28:05 | 000,000,000 | ---D | C] -- C:\Windows\System32\appmgmt
[2015.02.12 20:53:19 | 004,300,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2015.02.12 20:53:19 | 000,620,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll
[2015.02.11 21:35:23 | 000,684,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2015.02.11 21:35:23 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
[2015.02.11 21:35:23 | 000,342,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2015.02.11 21:35:23 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollector.exe
[2015.02.11 21:35:23 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\JavaScriptCollectionAgent.dll
[2015.02.11 21:35:23 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwproxystub.dll
[2015.02.11 21:35:23 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2015.02.11 21:35:22 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2015.02.11 21:35:22 | 000,418,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2015.02.11 21:35:22 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2015.02.11 21:35:22 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2015.02.11 21:35:21 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2015.02.11 21:35:21 | 002,052,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2015.02.11 21:35:21 | 000,688,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2015.02.11 21:35:20 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2015.02.11 21:35:20 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2015.02.11 21:35:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollectorres.dll
[2015.02.11 21:35:19 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2015.02.11 21:35:19 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2015.02.11 21:35:17 | 001,155,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmlmedia.dll
[2015.02.11 21:35:17 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MshtmlDac.dll
[2015.02.11 21:30:42 | 002,380,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2015.02.11 21:30:36 | 000,686,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adtschema.dll
[2015.02.11 21:30:36 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msaudite.dll
[2015.02.11 21:30:36 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msobjs.dll
[2015.02.11 21:30:36 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\auditpol.exe
[2015.02.11 21:30:36 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll
[2015.02.11 21:30:13 | 003,972,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2015.02.11 21:30:13 | 003,917,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2015.02.11 21:27:41 | 001,167,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aitstatic.exe
[2015.02.11 21:27:41 | 000,886,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[2015.02.11 21:27:41 | 000,767,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appraiser.dll
[2015.02.11 21:27:41 | 000,621,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\invagent.dll
[2015.02.11 21:27:41 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\generaltel.dll
[2015.02.11 21:27:41 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\devinv.dll
[2015.02.11 21:27:40 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2015.02.11 21:27:40 | 000,159,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aepic.dll
[2015.02.11 21:25:33 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2015.02.07 16:30:50 | 000,000,000 | ---D | C] -- C:\Users\Loznice\AppData\Local\GameSpy
[2015.02.07 16:30:21 | 000,000,000 | ---D | C] -- C:\Users\Loznice\AppData\Local\ApplicationHistory
[2015.02.05 10:43:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameSpy
[2015.02.05 10:43:24 | 000,000,000 | ---D | C] -- C:\Program Files\GameSpy
[2015.02.05 10:41:19 | 000,000,000 | ---D | C] -- C:\Windows\System32\URTTEMP
[2015.02.05 10:38:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts
[2015.02.05 10:32:28 | 000,000,000 | ---D | C] -- C:\Program Files\Electronic Arts
[2015.01.27 12:16:14 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2015.01.25 15:25:07 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
[2015.01.25 15:24:03 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2015.01.17 12:26:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2015.01.05 09:33:58 | 001,522,664 | ---- | C] (Object Browser) -- C:\Users\Loznice\AppData\Roaming\AJYXH.exe
[2015.01.05 09:33:19 | 002,009,576 | ---- | C] (Object Browser) -- C:\Users\Loznice\AppData\Roaming\CGLSAU.exe
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2015.02.15 10:46:29 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2015.02.15 10:42:21 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Loznice\Desktop\OTL.exe
[2015.02.15 10:30:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2015.02.14 23:19:46 | 000,020,704 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2015.02.14 23:19:46 | 000,020,704 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2015.02.14 21:56:52 | 000,680,734 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2015.02.14 21:56:52 | 000,665,846 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2015.02.14 21:56:52 | 000,147,588 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2015.02.14 21:56:52 | 000,126,916 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2015.02.14 21:50:07 | 000,003,284 | ---- | M] () -- C:\Windows\System32\ANIWZCS{B49B1E4A-C181-4A99-AE9B-CCBD565BA8B8}
[2015.02.14 21:50:07 | 000,003,284 | ---- | M] () -- C:\Users\Loznice\AppData\Roaming\ANIWZCS{B49B1E4A-C181-4A99-AE9B-CCBD565BA8B8}
[2015.02.14 21:49:58 | 000,000,008 | ---- | M] () -- C:\Windows\System32\ANIWZCSUSERNAME{B49B1E4A-C181-4A99-AE9B-CCBD565BA8B8}
[2015.02.14 21:49:26 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015.02.14 21:49:20 | 2816,692,224 | -HS- | M] () -- C:\hiberfil.sys
[2015.02.14 21:47:27 | 000,001,024 | ---- | M] () -- C:\Users\Loznice\.rnd
[2015.02.14 21:29:24 | 001,107,968 | ---- | M] () -- C:\Users\Loznice\Desktop\RSIT.exe
[2015.02.14 21:08:54 | 000,338,800 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2015.02.13 16:24:38 | 000,417,234 | ---- | M] () -- C:\spyhunter.fix
[2015.02.13 08:15:36 | 002,114,711 | ---- | M] () -- C:\Users\Loznice\Desktop\20150210_102942.jpg
[2015.02.12 03:03:24 | 000,001,912 | ---- | M] () -- C:\Windows\epplauncher.mif
[2015.02.09 14:58:40 | 2846,171,752 | ---- | M] () -- C:\Users\Loznice\Desktop\Hobit---Neocekavana-cesta.CZ.2012.avi
[2015.02.07 16:30:21 | 000,000,095 | ---- | M] () -- C:\Users\Loznice\AppData\Local\fusioncache.dat
[2015.02.07 15:27:57 | 000,001,343 | ---- | M] () -- C:\Users\Loznice\Desktop\Daňové přiznání Vendl.xml
[2015.02.05 19:30:22 | 000,701,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2015.02.05 19:30:22 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2015.02.05 10:39:54 | 000,022,328 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2015.02.05 10:39:54 | 000,022,328 | ---- | M] () -- C:\Users\Loznice\AppData\Roaming\PnkBstrK.sys
[2015.02.05 10:39:38 | 000,103,736 | ---- | M] () -- C:\Windows\System32\PnkBstrB.ex0
[2015.02.05 10:39:36 | 000,669,184 | ---- | M] () -- C:\Windows\System32\pbsvc.exe
[2015.02.05 10:38:30 | 000,001,256 | ---- | M] () -- C:\Users\Public\Desktop\Crysis.lnk
[2015.02.04 03:54:02 | 000,482,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\generaltel.dll
[2015.02.04 03:53:44 | 000,621,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\invagent.dll
[2015.02.04 03:53:39 | 000,325,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devinv.dll
[2015.02.04 03:53:37 | 000,767,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\appraiser.dll
[2015.02.04 03:53:36 | 000,202,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2015.02.04 03:53:36 | 000,159,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aepic.dll
[2015.02.04 03:49:50 | 000,886,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[2015.02.03 13:41:47 | 000,281,688 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2015.02.02 13:10:33 | 000,000,069 | ---- | M] () -- C:\Windows\NeroDigital.ini
[2015.01.28 00:36:23 | 001,167,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aitstatic.exe
[2015.01.23 04:43:04 | 000,620,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll
[2015.01.23 04:17:45 | 004,300,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2015.02.15 10:46:29 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2015.02.14 21:48:04 | 000,773,120 | ---- | C] () -- C:\Windows\System32\NEROINSTAEC43759.DB
[2015.02.14 21:29:21 | 001,107,968 | ---- | C] () -- C:\Users\Loznice\Desktop\RSIT.exe
[2015.02.13 16:24:21 | 000,417,234 | ---- | C] () -- C:\spyhunter.fix
[2015.02.10 12:50:03 | 002,114,711 | ---- | C] () -- C:\Users\Loznice\Desktop\20150210_102942.jpg
[2015.02.09 11:53:02 | 2846,171,752 | ---- | C] () -- C:\Users\Loznice\Desktop\Hobit---Neocekavana-cesta.CZ.2012.avi
[2015.02.09 11:48:12 | 000,358,324 | ---- | C] () -- C:\Users\Loznice\Desktop\navod.pdf
[2015.02.07 16:30:21 | 000,000,095 | ---- | C] () -- C:\Users\Loznice\AppData\Local\fusioncache.dat
[2015.02.07 15:27:56 | 000,001,343 | ---- | C] () -- C:\Users\Loznice\Desktop\Daňové přiznání Vendl.xml
[2015.02.05 10:39:32 | 000,669,184 | ---- | C] () -- C:\Windows\System32\pbsvc.exe
[2015.02.05 10:38:30 | 000,001,256 | ---- | C] () -- C:\Users\Public\Desktop\Crysis.lnk
[2015.01.25 20:30:13 | 000,022,328 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2015.01.25 20:30:07 | 000,103,736 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2015.01.25 20:30:07 | 000,103,736 | ---- | C] () -- C:\Windows\System32\PnkBstrB.ex0
[2015.01.25 20:29:27 | 000,076,888 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2014.12.26 10:26:53 | 003,826,628 | ---- | C] () -- C:\Windows\System32\nvcoproc.bin
[2014.08.28 05:00:00 | 000,007,302 | ---- | C] () -- C:\Windows\cadx2.ini
[2013.11.21 14:44:27 | 000,000,167 | ---- | C] () -- C:\Windows\ODBCINST.INI
[2013.11.13 16:26:32 | 000,022,328 | ---- | C] () -- C:\Users\Loznice\AppData\Roaming\PnkBstrK.sys
[2013.06.13 11:08:17 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2013.04.25 12:52:11 | 000,003,284 | ---- | C] () -- C:\Users\Loznice\AppData\Roaming\ANIWZCS{B49B1E4A-C181-4A99-AE9B-CCBD565BA8B8}
[2013.04.25 12:46:50 | 000,014,051 | ---- | C] () -- C:\Windows\System32\RaCoInst.dat
[2013.04.25 12:46:50 | 000,012,800 | ---- | C] () -- C:\Windows\System32\drivers\anodlwf.sys
[2013.04.23 21:06:16 | 000,001,024 | ---- | C] () -- C:\Users\Loznice\.rnd
[2013.04.23 06:30:53 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
[2013.04.23 06:29:49 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2013.04.18 18:06:46 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2013.04.18 18:06:46 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2013.04.18 18:06:46 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2013.04.18 18:06:46 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
========== ZeroAccess Check ==========
[2009.07.14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014.06.25 02:41:30 | 012,874,240 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2013.08.20 10:21:25 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\7go
[2013.08.20 10:12:51 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Babylon
[2015.01.04 09:16:53 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Capcom
[2015.01.05 08:48:26 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Milestone
[2013.08.20 10:30:22 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\PerformerSoft
[2015.02.14 21:41:27 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Samsung
[2013.08.20 10:13:08 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\SeeSimilar02
[2015.01.05 09:31:29 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Seznam.cz
[2013.08.20 10:19:24 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\SpeedAnalysis2
[2014.02.05 21:18:19 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\TeamViewer
[2015.01.07 08:54:13 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Wargaming.net
========== Purity Check ==========
========== Custom Scans ==========
< >
[2009.07.14 05:53:46 | 000,032,534 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2009.07.14 05:53:47 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2013.04.23 20:27:48 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
< >
< MD5 for: AGP440.SYS >
[2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\drivers\AGP440.sys
[2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\AGP440.sys
[2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\AGP440.sys
[2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_a5025d31bee4647c\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.18231_none_df26d4d57fdef5b0\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.22414_none_dfc9143c98e9a6c4\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2009.07.14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2010.11.20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\System32\autochk.exe
[2010.11.20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe
< MD5 for: CDROM.SYS >
[2009.07.14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_5f7fb206051affbb\cdrom.sys
[2010.11.20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\drivers\cdrom.sys
[2010.11.20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_6381e09675524225\cdrom.sys
[2010.11.20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_61b0c5ce02098355\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\System32\cngaudit.dll
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2012.06.02 05:52:32 | 000,142,336 | ---- | M] (Microsoft Corporation) MD5=063DD65889D21035311463337BD268E7 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22010_none_788c7cc71232cc19\cryptsvc.dll
[2014.10.30 03:14:18 | 000,145,920 | ---- | M] (Microsoft Corporation) MD5=3031B5DC2A58A7BCE6651EA9B7DD6390 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22908_none_789f60191223613f\cryptsvc.dll
[2013.05.10 05:49:59 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=33ADF6E0853AB39EA1723BE82842C1D3 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18150_none_77d7a417f9359661\cryptsvc.dll
[2013.05.13 05:45:55 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=3897DFF247D9ED0006190349DE264E14 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18151_none_77d8a461f934afb8\cryptsvc.dll
[2014.07.07 02:40:07 | 000,143,872 | ---- | M] (Microsoft Corporation) MD5=623E143F2DF17C0106A9988F5D7DC878 -- C:\Windows\System32\cryptsvc.dll
[2014.07.07 02:40:07 | 000,143,872 | ---- | M] (Microsoft Corporation) MD5=623E143F2DF17C0106A9988F5D7DC878 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18526_none_77fe1d2ff917cf34\cryptsvc.dll
[2013.07.09 14:57:37 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=6DB499DEFCC827317C5371164A7CDB27 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22380_none_7840d305126b8725\cryptsvc.dll
[2013.07.09 05:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=7CA1BECEA5DE2643ADDAD32670E7A4C9 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18205_none_7812b70bf9088686\cryptsvc.dll
[2014.07.07 02:40:42 | 000,145,920 | ---- | M] (Microsoft Corporation) MD5=90BFC30E730A6760F1FEE2A55F8AB029 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22736_none_787cebf5123d8816\cryptsvc.dll
[2012.06.02 05:36:29 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=96C0E38905CFD788313BE8E11DAE3F2F -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17856_none_77ddc9e5f93000db\cryptsvc.dll
[2009.07.14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll
[2010.11.20 13:18:24 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_7807034ff91166f4\cryptsvc.dll
[2013.05.11 05:59:05 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=AC04D05309BB2C418D0D80B9FB014642 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22322_none_7883b3211239122d\cryptsvc.dll
[2013.05.10 06:06:21 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=E122AA1C9A3CC46FF9DDDE46E5EB0C58 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22321_none_7882b2d71239f8d6\cryptsvc.dll
[2012.06.02 05:41:59 | 000,141,312 | ---- | M] (Microsoft Corporation) MD5=EA8C26ECF1656D9647EF044F115EC6DA -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.21225_none_76a05147150ffad1\cryptsvc.dll
[2013.10.05 02:52:03 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=F2D9242C3BBD1C36467FCAE1AE01733F -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22473_none_784ea5b51260b460\cryptsvc.dll
[2012.06.02 05:45:21 | 000,139,264 | ---- | M] (Microsoft Corporation) MD5=F2FDE6C8DBAAD44CC58D1E07E4AF4EED -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.17035_none_760be2a9fbfa79d1\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2011.02.26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2011.02.26 06:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_525b5180f3f95373\explorer.exe
[2009.10.31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_51a66d6ddafc2ed1\explorer.exe
[2011.02.26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_51a3a583dafd0cef\explorer.exe
[2010.11.20 13:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe
[2009.08.03 06:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe
[2009.08.03 06:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe
[2009.10.31 07:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_52283b2af41f3691\explorer.exe
< MD5 for: HAL.DLL >
[2010.11.20 13:29:53 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\System32\hal.dll
[2010.11.20 13:29:53 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_ad305c8fb7ec5060\hal.dll
[2009.07.14 02:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) MD5=9A557EAE64ABAB3BA67A9BB035D24CB9 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_aaff48c7bafdccc6\hal.dll
< MD5 for: IASTORV.SYS >
[2011.03.11 06:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\System32\drivers\iaStorV.sys
[2011.03.11 06:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_0bcee2057afcc090\iaStorV.sys
[2011.03.11 06:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_b0daddb9e6380745\iaStorV.sys
[2011.03.11 06:43:55 | 000,332,160 | ---- | M] (Intel Corporation) MD5=71F1A494FEDF4B33C02C4A6A28D6D9E9 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16778_none_aef580fde910b4b0\iaStorV.sys
[2011.03.11 06:28:00 | 000,332,160 | ---- | M] (Intel Corporation) MD5=778D0E6D7D9EBA0C403BADBAAD41DB20 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_b152a892ff64119f\iaStorV.sys
[2009.07.14 02:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_aee7a89be91b9000\iaStorV.sys
[2010.11.20 13:29:54 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_668286aa35d55928\iaStorV.sys
[2010.11.20 13:29:54 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_b118bc63e60a139a\iaStorV.sys
[2011.03.11 06:52:21 | 000,332,160 | ---- | M] (Intel Corporation) MD5=B9039A34C2F8769490DCC494E2402445 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.20921_none_afae2d45020c148b\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2009.07.14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\drivers\isapnp.sys
[2009.07.14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\isapnp.sys
[2009.07.14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\isapnp.sys
[2009.07.14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\isapnp.sys
< MD5 for: LSASS.EXE >
[2014.05.30 08:34:43 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=0421593A1955FE63245B700560B44600 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22705_none_a8e74cccd4220539\lsass.exe
[2011.11.17 08:09:25 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=05F38CB7CAB3CE8E9A1812D517DA93EF -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.21092_none_a69c8e86d7476262\lsass.exe
[2015.01.10 07:57:41 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=0B0A841A8DE520CB85EA985DDD21CAE3 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22920_none_a8ccaf4ed436b8b6\lsass.exe
[2015.01.10 07:27:08 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=1BFCF24227B53F35BA534BF94F0DB95C -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18714_none_a851e1b1bb0d6530\lsass.exe
[2014.05.30 08:52:03 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=213601D688579B98F576BA7CA88496DE -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18489_none_a80b2dfdbb41b005\lsass.exe
[2013.09.25 01:54:21 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=559C7769B397F07E12725EE55337D4C6 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22465_none_a8a66792d452b56a\lsass.exe
[2014.04.12 03:06:16 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=627B40EB2595D8FCF1960F33389EB7D3 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22653_none_a8af3ab6d44c6119\lsass.exe
[2014.04.12 03:06:16 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=627B40EB2595D8FCF1960F33389EB7D3 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22712_none_a8d97c02d42cd525\lsass.exe
[2014.04.12 03:06:16 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=627B40EB2595D8FCF1960F33389EB7D3 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22736_none_a8c7dd52d4397263\lsass.exe
[2014.04.12 03:06:16 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=627B40EB2595D8FCF1960F33389EB7D3 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22807_none_a8e94f46d420350e\lsass.exe
[2014.04.12 03:06:16 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=627B40EB2595D8FCF1960F33389EB7D3 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22843_none_a8ba0e6ed4443f76\lsass.exe
[2014.04.12 03:06:16 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=627B40EB2595D8FCF1960F33389EB7D3 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22923_none_a8cfb02cd43404bb\lsass.exe
[2014.04.12 03:06:16 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=627B40EB2595D8FCF1960F33389EB7D3 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22925_none_a8d1b0c0d4323769\lsass.exe
[2012.08.24 17:53:44 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=7ABC23F3D86880AD62ACEDC7479608F8 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22099_none_a889f15ed46779fd\lsass.exe
[2013.09.25 01:49:20 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=803B370865D907EA21DC0C2B6A8936B5 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18270_none_a80cf783bb41b5b7\lsass.exe
[2011.11.17 06:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=81951F51E318AECC2D68559E47485CC4 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17725_none_a84828d7bb1480d7\lsass.exe
[2011.11.17 06:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=81951F51E318AECC2D68559E47485CC4 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17856_none_a828bb43bb2beb28\lsass.exe
[2011.11.17 06:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=81951F51E318AECC2D68559E47485CC4 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17940_none_a82d8b59bb293454\lsass.exe
[2012.06.02 05:40:31 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=A6034689ACF9D14973F8384AD5A5451E -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.21225_none_a6eb42a4d70be51e\lsass.exe
[2014.09.19 10:23:13 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=AC0D7A5778D5A8C17ECFEECB302B4FA4 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18606_none_a85eb04bbb037ec6\lsass.exe
[2015.01.14 06:40:26 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=BA0FE19728F5FA8473FB13C9C031FCC0 -- C:\Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18717_none_a854e28fbb0ab135\lsass.exe
[2015.01.14 06:40:26 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=BA0FE19728F5FA8473FB13C9C031FCC0 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18717_none_a854e28fbb0ab135\lsass.exe
[2015.01.15 08:42:17 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=BF08DE8E4FA1F143D41B3241F7FCE5F6 -- C:\Windows\System32\lsass.exe
[2015.01.15 08:42:17 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=BF08DE8E4FA1F143D41B3241F7FCE5F6 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18719_none_a856e323bb08e3e3\lsass.exe
[2011.11.17 06:36:26 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=C2243FF9E9AAD0C30E8B1A0914DA15B6 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16915_none_a66c9bbdbde5f8fa\lsass.exe
[2011.11.17 06:36:26 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=C2243FF9E9AAD0C30E8B1A0914DA15B6 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.17035_none_a656d407bdf6641e\lsass.exe
[2014.04.12 03:11:22 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=DD17E1573651293D4ED31053795B3471 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18443_none_a8306bf1bb26a837\lsass.exe
[2014.04.12 03:11:22 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=DD17E1573651293D4ED31053795B3471 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18496_none_a7fd5d33bb4c7ff1\lsass.exe
[2014.04.12 03:11:22 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=DD17E1573651293D4ED31053795B3471 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18526_none_a8490e8dbb13b981\lsass.exe
[2014.04.12 03:11:22 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=DD17E1573651293D4ED31053795B3471 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18637_none_a83f40d1bb1aebf0\lsass.exe
[2014.09.19 10:29:14 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F0F6E52554E314A71E776B1086B5B3DD -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22814_none_a8db7e7cd42b04fa\lsass.exe
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_a620e0e5be1ecda7\lsass.exe
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16484_none_a61fe281be1fb177\lsass.exe
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.20594_none_a69eaf60d7456d32\lsass.exe
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_a851f4adbb0d5141\lsass.exe
[2012.06.02 05:51:22 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=FA7B950E4CA6AA260C4EABA19E03644D -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22010_none_a8d76e24d42eb666\lsass.exe
[2011.11.17 06:24:04 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=FBCB2DFA40862DAA7B1534C9538208A5 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.21861_none_a8a284cad4562b09\lsass.exe
OTL logfile created on: 15.2.2015 10:45:08 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Loznice\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17633)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
3,50 Gb Total Physical Memory | 2,41 Gb Available Physical Memory | 69,04% Memory free
6,99 Gb Paging File | 5,89 Gb Available in Paging File | 84,22% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 297,99 Gb Total Space | 89,18 Gb Free Space | 29,93% Space Free | Partition Type: NTFS
Computer Name: LOZNICE-PC | User Name: Loznice | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2015.02.15 10:42:21 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Loznice\Desktop\OTL.exe
PRC - [2015.02.09 18:56:21 | 005,249,808 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
PRC - [2015.02.09 18:56:20 | 014,433,552 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version9\TeamViewer.exe
PRC - [2015.02.09 18:10:54 | 000,229,648 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version9\tv_w32.exe
PRC - [2015.01.30 01:59:44 | 000,284,472 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\NisSrv.exe
PRC - [2015.01.30 01:59:44 | 000,022,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2015.01.30 01:53:04 | 000,978,520 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2015.01.27 12:16:21 | 000,338,032 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2014.12.29 02:29:00 | 000,158,864 | ---- | M] (XTab system) -- C:\Program Files\XTab\ProtectService.exe
PRC - [2014.12.29 02:28:58 | 000,673,936 | ---- | M] (XTab system) -- C:\Program Files\XTab\HPNotify.exe
PRC - [2014.12.29 02:28:58 | 000,048,272 | ---- | M] (SearchProtect) -- C:\Program Files\XTab\CmdShell.exe
PRC - [2014.12.19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2014.08.28 05:00:00 | 017,551,816 | R--- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
PRC - [2014.08.28 05:00:00 | 002,404,296 | R--- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2014.08.28 05:00:00 | 001,721,800 | R--- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2014.07.02 20:42:26 | 000,940,320 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2014.07.02 20:42:25 | 001,818,968 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2014.07.02 18:39:15 | 000,413,128 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2013.08.02 01:52:57 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2013.04.23 22:04:56 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010.05.21 10:18:50 | 001,024,000 | ---- | M] (D-Link Corp.) -- C:\Program Files\D-Link\DWA-125 revA\AirGCFG.exe
PRC - [2010.04.21 08:56:32 | 000,122,880 | ---- | M] (Wireless Service) -- C:\Program Files\D-Link\DWA-125 revA\WZCSLDR2.exe
PRC - [2010.03.03 08:45:46 | 000,053,248 | ---- | M] () -- C:\Program Files\D-Link\DWA-125 revA\ANIWConnService.exe
PRC - [2009.04.14 06:43:42 | 000,604,704 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SOUNDMAN.EXE
========== Modules (No Company Name) ==========
MOD - [2015.01.27 12:16:19 | 003,925,104 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2013.09.05 00:14:10 | 004,300,456 | ---- | M] () -- C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
MOD - [2013.04.25 12:48:54 | 000,315,392 | ---- | M] () -- C:\Program Files\D-Link\DWA-125 revA\ANPDApi.dll
MOD - [2010.03.19 18:14:20 | 000,294,912 | ---- | M] () -- C:\Program Files\D-Link\DWA-125 revA\wlanapp.dll
========== Services (SafeList) ==========
SRV - File not found [Auto | Stopped] -- C:\Program Files\SourceApp\updateSourceApp.exe -- (Update SourceApp)
SRV - [2015.02.09 18:56:21 | 005,249,808 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe -- (TeamViewer9)
SRV - [2015.02.05 19:30:22 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2015.01.30 01:59:44 | 000,284,472 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2015.01.30 01:59:44 | 000,022,184 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2015.01.27 12:16:19 | 000,114,800 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2015.01.12 02:55:46 | 000,102,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV - [2014.12.29 02:29:00 | 000,158,864 | ---- | M] (XTab system) [Auto | Running] -- C:\Program Files\XTab\ProtectService.exe -- (IHProtect Service)
SRV - [2014.12.19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2014.08.28 05:00:00 | 017,551,816 | R--- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV - [2014.08.28 05:00:00 | 001,721,800 | R--- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2014.07.02 18:39:15 | 000,413,128 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2013.12.19 00:41:02 | 030,814,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2013.05.27 05:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013.04.22 22:32:55 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010.04.21 08:56:32 | 000,126,976 | ---- | M] (Wireless Service) [Auto | Stopped] -- C:\Program Files\D-Link\DWA-125 revA\ANIWZCSdS.exe -- (D_Link_DWA-125)
SRV - [2010.03.03 08:45:46 | 000,053,248 | ---- | M] () [Auto | Running] -- C:\Program Files\D-Link\DWA-125 revA\ANIWConnService.exe -- (D_Link_DWA-125_WPS)
SRV - [2009.07.14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\synth3dvsc.sys -- (Synth3dVsc)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys -- (esgiguard)
DRV - [2015.02.15 02:27:24 | 000,039,464 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{1B9151A3-E723-4A37-96E6-939B7B7E239E}\MpKsl59418286.sys -- (MpKsl59418286)
DRV - [2015.01.04 15:44:00 | 000,043,152 | ---- | M] (StdLib) [Kernel | System | Running] -- C:\Windows\System32\drivers\{122141c3-e1a4-4af5-b3d7-650743f49ec0}Gw.sys -- ({122141c3-e1a4-4af5-b3d7-650743f49ec0}Gw)
DRV - [2014.11.15 14:46:08 | 000,095,408 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2014.08.28 05:00:00 | 010,681,176 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2014.08.28 05:00:00 | 000,162,592 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2014.08.28 05:00:00 | 000,034,080 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvvad32v.sys -- (nvvad_WaveExtensible)
DRV - [2014.08.28 05:00:00 | 000,020,424 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms)
DRV - [2013.10.02 01:42:31 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2013.09.11 16:05:13 | 000,025,088 | ---- | M] (TeamViewer GmbH) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\teamviewervpn.sys -- (teamviewervpn)
DRV - [2013.08.20 07:02:14 | 000,084,248 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudbus.sys -- (dg_ssudbus)
DRV - [2013.04.03 08:58:16 | 000,181,912 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudmdm.sys -- (ssudmdm)
DRV - [2012.08.23 15:44:32 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010.11.20 13:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010.11.20 13:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010.11.20 13:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010.11.20 10:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010.11.20 10:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010.11.20 10:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010.05.05 15:10:24 | 000,855,392 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Dnetr28u.sys -- (netr28u)
DRV - [2009.07.14 00:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2009.07.13 23:02:52 | 000,347,264 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvm62x32.sys -- (NVENETFD)
DRV - [2009.07.13 23:02:52 | 000,164,864 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\e1k6032.sys -- (e1kexpress)
DRV - [2009.06.18 18:45:02 | 004,172,832 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\RTKVAC.SYS -- (ALCXWDM)
DRV - [2009.03.06 17:09:52 | 000,012,800 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\anodlwf.sys -- (anodlwf)
DRV - [2004.08.13 08:56:20 | 000,005,810 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ASACPI.sys -- (MTsensor)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hppp ... XX9QF3MNHX
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... earchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... earchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.mystartsearch.com/?type=hppp ... XX9QF3MNHX
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1066407315-1133105230-2838838912-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mystartsearch.com/?type=hppp ... XX9QF3MNHX
IE - HKU\S-1-5-21-1066407315-1133105230-2838838912-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.mystartsearch.com/web/?type= ... earchTerms}
IE - HKU\S-1-5-21-1066407315-1133105230-2838838912-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.mystartsearch.com/web/?type= ... earchTerms}
IE - HKU\S-1-5-21-1066407315-1133105230-2838838912-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-21-1066407315-1133105230-2838838912-1000\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE - HKU\S-1-5-21-1066407315-1133105230-2838838912-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IESR02
IE - HKU\S-1-5-21-1066407315-1133105230-2838838912-1000\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://www1.delta-search.com/?q={search ... 7&tsp=4980
IE - HKU\S-1-5-21-1066407315-1133105230-2838838912-1000\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://www.mystartsearch.com/web/?type= ... earchTerms}
IE - HKU\S-1-5-21-1066407315-1133105230-2838838912-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF - prefs.js..browser.search.highlightCount: 0
FF - prefs.js..browser.search.isUS: false
FF - prefs.js..browser.startup.homepage: "https://www.seznam.cz/"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:35.0.1
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.21.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.3: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.5: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\fftoolbar2014@etech.com: C:\Users\Loznice\AppData\Roaming\Mozilla\Firefox\Profiles\qnfc2upv.default\extensions\fftoolbar2014@etech.com
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 35.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 35.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2015.01.27 12:16:15 | 000,000,000 | ---D | M]
[2013.04.23 20:25:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Loznice\AppData\Roaming\Mozilla\Extensions
[2015.01.25 15:29:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Loznice\AppData\Roaming\Mozilla\Firefox\Profiles\rafcih7h.default-1422195535460\extensions
[2015.01.27 12:16:14 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2015.01.27 12:16:21 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
O1 HOSTS File: ([2015.02.14 21:09:43 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (IETabPage Class) - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files\XTab\SupTab.dll (Thinknice Co. Limited)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (no name) - {FCE3FA8B-BA81-467C-81D8-E43C00D1BC71} - No CLSID value found.
O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [D-Link D-Link DWA-125] C:\Program Files\D-Link\DWA-125 revA\AirGCFG.exe (D-Link Corp.)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" File not found
O4 - HKLM..\Run: [NvBackend] C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [ShadowPlay] C:\Windows\System32\nvspcap.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [SoundMan] C:\Windows\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [WZCSLDR2] C:\Program Files\D-Link\DWA-125 revA\WZCSLDR2.exe (Wireless Service)
O4 - HKU\.DEFAULT..\RunOnce: [SPReview] C:\Windows\System32\SPReview\SPReview.exe (Microsoft Corporation)
O4 - HKU\S-1-5-18..\RunOnce: [SPReview] C:\Windows\System32\SPReview\SPReview.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\S-1-5-21-1066407315-1133105230-2838838912-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.60.116.1 10.60.1.5 10.60.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B49B1E4A-C181-4A99-AE9B-CCBD565BA8B8}: DhcpNameServer = 10.60.116.1 10.60.1.5 10.60.1.1
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3codecp - C:\Windows\System32\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2015.02.15 10:42:20 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Loznice\Desktop\OTL.exe
[2015.02.14 21:48:04 | 001,414,440 | ---- | C] (Nero AG) -- C:\Windows\System32\ShellManager310E2D762.dll
[2015.02.14 21:29:33 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2015.02.14 21:29:33 | 000,000,000 | ---D | C] -- C:\rsit
[2015.02.14 21:28:05 | 000,000,000 | ---D | C] -- C:\Windows\System32\appmgmt
[2015.02.12 20:53:19 | 004,300,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2015.02.12 20:53:19 | 000,620,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll
[2015.02.11 21:35:23 | 000,684,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2015.02.11 21:35:23 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
[2015.02.11 21:35:23 | 000,342,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2015.02.11 21:35:23 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollector.exe
[2015.02.11 21:35:23 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\JavaScriptCollectionAgent.dll
[2015.02.11 21:35:23 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwproxystub.dll
[2015.02.11 21:35:23 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2015.02.11 21:35:22 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2015.02.11 21:35:22 | 000,418,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2015.02.11 21:35:22 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2015.02.11 21:35:22 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2015.02.11 21:35:21 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2015.02.11 21:35:21 | 002,052,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2015.02.11 21:35:21 | 000,688,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2015.02.11 21:35:20 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2015.02.11 21:35:20 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2015.02.11 21:35:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollectorres.dll
[2015.02.11 21:35:19 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2015.02.11 21:35:19 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2015.02.11 21:35:17 | 001,155,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmlmedia.dll
[2015.02.11 21:35:17 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MshtmlDac.dll
[2015.02.11 21:30:42 | 002,380,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2015.02.11 21:30:36 | 000,686,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adtschema.dll
[2015.02.11 21:30:36 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msaudite.dll
[2015.02.11 21:30:36 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msobjs.dll
[2015.02.11 21:30:36 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\auditpol.exe
[2015.02.11 21:30:36 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll
[2015.02.11 21:30:13 | 003,972,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2015.02.11 21:30:13 | 003,917,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2015.02.11 21:27:41 | 001,167,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aitstatic.exe
[2015.02.11 21:27:41 | 000,886,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[2015.02.11 21:27:41 | 000,767,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appraiser.dll
[2015.02.11 21:27:41 | 000,621,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\invagent.dll
[2015.02.11 21:27:41 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\generaltel.dll
[2015.02.11 21:27:41 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\devinv.dll
[2015.02.11 21:27:40 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2015.02.11 21:27:40 | 000,159,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aepic.dll
[2015.02.11 21:25:33 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2015.02.07 16:30:50 | 000,000,000 | ---D | C] -- C:\Users\Loznice\AppData\Local\GameSpy
[2015.02.07 16:30:21 | 000,000,000 | ---D | C] -- C:\Users\Loznice\AppData\Local\ApplicationHistory
[2015.02.05 10:43:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GameSpy
[2015.02.05 10:43:24 | 000,000,000 | ---D | C] -- C:\Program Files\GameSpy
[2015.02.05 10:41:19 | 000,000,000 | ---D | C] -- C:\Windows\System32\URTTEMP
[2015.02.05 10:38:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts
[2015.02.05 10:32:28 | 000,000,000 | ---D | C] -- C:\Program Files\Electronic Arts
[2015.01.27 12:16:14 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2015.01.25 15:25:07 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
[2015.01.25 15:24:03 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2015.01.17 12:26:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2015.01.05 09:33:58 | 001,522,664 | ---- | C] (Object Browser) -- C:\Users\Loznice\AppData\Roaming\AJYXH.exe
[2015.01.05 09:33:19 | 002,009,576 | ---- | C] (Object Browser) -- C:\Users\Loznice\AppData\Roaming\CGLSAU.exe
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 30 Days ==========
[2015.02.15 10:46:29 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2015.02.15 10:42:21 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Loznice\Desktop\OTL.exe
[2015.02.15 10:30:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2015.02.14 23:19:46 | 000,020,704 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2015.02.14 23:19:46 | 000,020,704 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2015.02.14 21:56:52 | 000,680,734 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2015.02.14 21:56:52 | 000,665,846 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2015.02.14 21:56:52 | 000,147,588 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2015.02.14 21:56:52 | 000,126,916 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2015.02.14 21:50:07 | 000,003,284 | ---- | M] () -- C:\Windows\System32\ANIWZCS{B49B1E4A-C181-4A99-AE9B-CCBD565BA8B8}
[2015.02.14 21:50:07 | 000,003,284 | ---- | M] () -- C:\Users\Loznice\AppData\Roaming\ANIWZCS{B49B1E4A-C181-4A99-AE9B-CCBD565BA8B8}
[2015.02.14 21:49:58 | 000,000,008 | ---- | M] () -- C:\Windows\System32\ANIWZCSUSERNAME{B49B1E4A-C181-4A99-AE9B-CCBD565BA8B8}
[2015.02.14 21:49:26 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015.02.14 21:49:20 | 2816,692,224 | -HS- | M] () -- C:\hiberfil.sys
[2015.02.14 21:47:27 | 000,001,024 | ---- | M] () -- C:\Users\Loznice\.rnd
[2015.02.14 21:29:24 | 001,107,968 | ---- | M] () -- C:\Users\Loznice\Desktop\RSIT.exe
[2015.02.14 21:08:54 | 000,338,800 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2015.02.13 16:24:38 | 000,417,234 | ---- | M] () -- C:\spyhunter.fix
[2015.02.13 08:15:36 | 002,114,711 | ---- | M] () -- C:\Users\Loznice\Desktop\20150210_102942.jpg
[2015.02.12 03:03:24 | 000,001,912 | ---- | M] () -- C:\Windows\epplauncher.mif
[2015.02.09 14:58:40 | 2846,171,752 | ---- | M] () -- C:\Users\Loznice\Desktop\Hobit---Neocekavana-cesta.CZ.2012.avi
[2015.02.07 16:30:21 | 000,000,095 | ---- | M] () -- C:\Users\Loznice\AppData\Local\fusioncache.dat
[2015.02.07 15:27:57 | 000,001,343 | ---- | M] () -- C:\Users\Loznice\Desktop\Daňové přiznání Vendl.xml
[2015.02.05 19:30:22 | 000,701,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2015.02.05 19:30:22 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2015.02.05 10:39:54 | 000,022,328 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2015.02.05 10:39:54 | 000,022,328 | ---- | M] () -- C:\Users\Loznice\AppData\Roaming\PnkBstrK.sys
[2015.02.05 10:39:38 | 000,103,736 | ---- | M] () -- C:\Windows\System32\PnkBstrB.ex0
[2015.02.05 10:39:36 | 000,669,184 | ---- | M] () -- C:\Windows\System32\pbsvc.exe
[2015.02.05 10:38:30 | 000,001,256 | ---- | M] () -- C:\Users\Public\Desktop\Crysis.lnk
[2015.02.04 03:54:02 | 000,482,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\generaltel.dll
[2015.02.04 03:53:44 | 000,621,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\invagent.dll
[2015.02.04 03:53:39 | 000,325,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devinv.dll
[2015.02.04 03:53:37 | 000,767,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\appraiser.dll
[2015.02.04 03:53:36 | 000,202,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aepdu.dll
[2015.02.04 03:53:36 | 000,159,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aepic.dll
[2015.02.04 03:49:50 | 000,886,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aeinv.dll
[2015.02.03 13:41:47 | 000,281,688 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2015.02.02 13:10:33 | 000,000,069 | ---- | M] () -- C:\Windows\NeroDigital.ini
[2015.01.28 00:36:23 | 001,167,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aitstatic.exe
[2015.01.23 04:43:04 | 000,620,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll
[2015.01.23 04:17:45 | 004,300,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2015.02.15 10:46:29 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2015.02.14 21:48:04 | 000,773,120 | ---- | C] () -- C:\Windows\System32\NEROINSTAEC43759.DB
[2015.02.14 21:29:21 | 001,107,968 | ---- | C] () -- C:\Users\Loznice\Desktop\RSIT.exe
[2015.02.13 16:24:21 | 000,417,234 | ---- | C] () -- C:\spyhunter.fix
[2015.02.10 12:50:03 | 002,114,711 | ---- | C] () -- C:\Users\Loznice\Desktop\20150210_102942.jpg
[2015.02.09 11:53:02 | 2846,171,752 | ---- | C] () -- C:\Users\Loznice\Desktop\Hobit---Neocekavana-cesta.CZ.2012.avi
[2015.02.09 11:48:12 | 000,358,324 | ---- | C] () -- C:\Users\Loznice\Desktop\navod.pdf
[2015.02.07 16:30:21 | 000,000,095 | ---- | C] () -- C:\Users\Loznice\AppData\Local\fusioncache.dat
[2015.02.07 15:27:56 | 000,001,343 | ---- | C] () -- C:\Users\Loznice\Desktop\Daňové přiznání Vendl.xml
[2015.02.05 10:39:32 | 000,669,184 | ---- | C] () -- C:\Windows\System32\pbsvc.exe
[2015.02.05 10:38:30 | 000,001,256 | ---- | C] () -- C:\Users\Public\Desktop\Crysis.lnk
[2015.01.25 20:30:13 | 000,022,328 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2015.01.25 20:30:07 | 000,103,736 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2015.01.25 20:30:07 | 000,103,736 | ---- | C] () -- C:\Windows\System32\PnkBstrB.ex0
[2015.01.25 20:29:27 | 000,076,888 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2014.12.26 10:26:53 | 003,826,628 | ---- | C] () -- C:\Windows\System32\nvcoproc.bin
[2014.08.28 05:00:00 | 000,007,302 | ---- | C] () -- C:\Windows\cadx2.ini
[2013.11.21 14:44:27 | 000,000,167 | ---- | C] () -- C:\Windows\ODBCINST.INI
[2013.11.13 16:26:32 | 000,022,328 | ---- | C] () -- C:\Users\Loznice\AppData\Roaming\PnkBstrK.sys
[2013.06.13 11:08:17 | 000,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2013.04.25 12:52:11 | 000,003,284 | ---- | C] () -- C:\Users\Loznice\AppData\Roaming\ANIWZCS{B49B1E4A-C181-4A99-AE9B-CCBD565BA8B8}
[2013.04.25 12:46:50 | 000,014,051 | ---- | C] () -- C:\Windows\System32\RaCoInst.dat
[2013.04.25 12:46:50 | 000,012,800 | ---- | C] () -- C:\Windows\System32\drivers\anodlwf.sys
[2013.04.23 21:06:16 | 000,001,024 | ---- | C] () -- C:\Users\Loznice\.rnd
[2013.04.23 06:30:53 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe
[2013.04.23 06:29:49 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2013.04.18 18:06:46 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2013.04.18 18:06:46 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2013.04.18 18:06:46 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2013.04.18 18:06:46 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
========== ZeroAccess Check ==========
[2009.07.14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014.06.25 02:41:30 | 012,874,240 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2013.08.20 10:21:25 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\7go
[2013.08.20 10:12:51 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Babylon
[2015.01.04 09:16:53 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Capcom
[2015.01.05 08:48:26 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Milestone
[2013.08.20 10:30:22 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\PerformerSoft
[2015.02.14 21:41:27 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Samsung
[2013.08.20 10:13:08 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\SeeSimilar02
[2015.01.05 09:31:29 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Seznam.cz
[2013.08.20 10:19:24 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\SpeedAnalysis2
[2014.02.05 21:18:19 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\TeamViewer
[2015.01.07 08:54:13 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Wargaming.net
========== Purity Check ==========
========== Custom Scans ==========
< >
[2009.07.14 05:53:46 | 000,032,534 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2009.07.14 05:53:47 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2013.04.23 20:27:48 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
< >
< MD5 for: AGP440.SYS >
[2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\drivers\AGP440.sys
[2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\AGP440.sys
[2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\AGP440.sys
[2009.07.14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_a5025d31bee4647c\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.18231_none_df26d4d57fdef5b0\atapi.sys
[2009.07.14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.22414_none_dfc9143c98e9a6c4\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2009.07.14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2010.11.20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\System32\autochk.exe
[2010.11.20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe
< MD5 for: CDROM.SYS >
[2009.07.14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_5f7fb206051affbb\cdrom.sys
[2010.11.20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\drivers\cdrom.sys
[2010.11.20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_6381e09675524225\cdrom.sys
[2010.11.20 09:38:10 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_61b0c5ce02098355\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\System32\cngaudit.dll
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2012.06.02 05:52:32 | 000,142,336 | ---- | M] (Microsoft Corporation) MD5=063DD65889D21035311463337BD268E7 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22010_none_788c7cc71232cc19\cryptsvc.dll
[2014.10.30 03:14:18 | 000,145,920 | ---- | M] (Microsoft Corporation) MD5=3031B5DC2A58A7BCE6651EA9B7DD6390 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22908_none_789f60191223613f\cryptsvc.dll
[2013.05.10 05:49:59 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=33ADF6E0853AB39EA1723BE82842C1D3 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18150_none_77d7a417f9359661\cryptsvc.dll
[2013.05.13 05:45:55 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=3897DFF247D9ED0006190349DE264E14 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18151_none_77d8a461f934afb8\cryptsvc.dll
[2014.07.07 02:40:07 | 000,143,872 | ---- | M] (Microsoft Corporation) MD5=623E143F2DF17C0106A9988F5D7DC878 -- C:\Windows\System32\cryptsvc.dll
[2014.07.07 02:40:07 | 000,143,872 | ---- | M] (Microsoft Corporation) MD5=623E143F2DF17C0106A9988F5D7DC878 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18526_none_77fe1d2ff917cf34\cryptsvc.dll
[2013.07.09 14:57:37 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=6DB499DEFCC827317C5371164A7CDB27 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22380_none_7840d305126b8725\cryptsvc.dll
[2013.07.09 05:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=7CA1BECEA5DE2643ADDAD32670E7A4C9 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18205_none_7812b70bf9088686\cryptsvc.dll
[2014.07.07 02:40:42 | 000,145,920 | ---- | M] (Microsoft Corporation) MD5=90BFC30E730A6760F1FEE2A55F8AB029 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22736_none_787cebf5123d8816\cryptsvc.dll
[2012.06.02 05:36:29 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=96C0E38905CFD788313BE8E11DAE3F2F -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17856_none_77ddc9e5f93000db\cryptsvc.dll
[2009.07.14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll
[2010.11.20 13:18:24 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_7807034ff91166f4\cryptsvc.dll
[2013.05.11 05:59:05 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=AC04D05309BB2C418D0D80B9FB014642 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22322_none_7883b3211239122d\cryptsvc.dll
[2013.05.10 06:06:21 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=E122AA1C9A3CC46FF9DDDE46E5EB0C58 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22321_none_7882b2d71239f8d6\cryptsvc.dll
[2012.06.02 05:41:59 | 000,141,312 | ---- | M] (Microsoft Corporation) MD5=EA8C26ECF1656D9647EF044F115EC6DA -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.21225_none_76a05147150ffad1\cryptsvc.dll
[2013.10.05 02:52:03 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=F2D9242C3BBD1C36467FCAE1AE01733F -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22473_none_784ea5b51260b460\cryptsvc.dll
[2012.06.02 05:45:21 | 000,139,264 | ---- | M] (Microsoft Corporation) MD5=F2FDE6C8DBAAD44CC58D1E07E4AF4EED -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.17035_none_760be2a9fbfa79d1\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2011.02.26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2011.02.26 06:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_525b5180f3f95373\explorer.exe
[2009.10.31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_51a66d6ddafc2ed1\explorer.exe
[2011.02.26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_51a3a583dafd0cef\explorer.exe
[2010.11.20 13:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe
[2009.08.03 06:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe
[2009.08.03 06:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe
[2009.10.31 07:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_52283b2af41f3691\explorer.exe
< MD5 for: HAL.DLL >
[2010.11.20 13:29:53 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\System32\hal.dll
[2010.11.20 13:29:53 | 000,194,432 | ---- | M] (Microsoft Corporation) MD5=1BF0D4727FDB437D513CFF8A9359C050 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_ad305c8fb7ec5060\hal.dll
[2009.07.14 02:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) MD5=9A557EAE64ABAB3BA67A9BB035D24CB9 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_aaff48c7bafdccc6\hal.dll
< MD5 for: IASTORV.SYS >
[2011.03.11 06:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\System32\drivers\iaStorV.sys
[2011.03.11 06:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_0bcee2057afcc090\iaStorV.sys
[2011.03.11 06:38:51 | 000,332,160 | ---- | M] (Intel Corporation) MD5=5CD5F9A5444E6CDCB0AC89BD62D8B76E -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_b0daddb9e6380745\iaStorV.sys
[2011.03.11 06:43:55 | 000,332,160 | ---- | M] (Intel Corporation) MD5=71F1A494FEDF4B33C02C4A6A28D6D9E9 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16778_none_aef580fde910b4b0\iaStorV.sys
[2011.03.11 06:28:00 | 000,332,160 | ---- | M] (Intel Corporation) MD5=778D0E6D7D9EBA0C403BADBAAD41DB20 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_b152a892ff64119f\iaStorV.sys
[2009.07.14 02:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_aee7a89be91b9000\iaStorV.sys
[2010.11.20 13:29:54 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_668286aa35d55928\iaStorV.sys
[2010.11.20 13:29:54 | 000,332,160 | ---- | M] (Intel Corporation) MD5=A3CAE5D281DB4CFF7CFF8233507EE5AD -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_b118bc63e60a139a\iaStorV.sys
[2011.03.11 06:52:21 | 000,332,160 | ---- | M] (Intel Corporation) MD5=B9039A34C2F8769490DCC494E2402445 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.20921_none_afae2d45020c148b\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2009.07.14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\drivers\isapnp.sys
[2009.07.14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\isapnp.sys
[2009.07.14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\isapnp.sys
[2009.07.14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\isapnp.sys
< MD5 for: LSASS.EXE >
[2014.05.30 08:34:43 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=0421593A1955FE63245B700560B44600 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22705_none_a8e74cccd4220539\lsass.exe
[2011.11.17 08:09:25 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=05F38CB7CAB3CE8E9A1812D517DA93EF -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.21092_none_a69c8e86d7476262\lsass.exe
[2015.01.10 07:57:41 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=0B0A841A8DE520CB85EA985DDD21CAE3 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22920_none_a8ccaf4ed436b8b6\lsass.exe
[2015.01.10 07:27:08 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=1BFCF24227B53F35BA534BF94F0DB95C -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18714_none_a851e1b1bb0d6530\lsass.exe
[2014.05.30 08:52:03 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=213601D688579B98F576BA7CA88496DE -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18489_none_a80b2dfdbb41b005\lsass.exe
[2013.09.25 01:54:21 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=559C7769B397F07E12725EE55337D4C6 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22465_none_a8a66792d452b56a\lsass.exe
[2014.04.12 03:06:16 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=627B40EB2595D8FCF1960F33389EB7D3 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22653_none_a8af3ab6d44c6119\lsass.exe
[2014.04.12 03:06:16 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=627B40EB2595D8FCF1960F33389EB7D3 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22712_none_a8d97c02d42cd525\lsass.exe
[2014.04.12 03:06:16 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=627B40EB2595D8FCF1960F33389EB7D3 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22736_none_a8c7dd52d4397263\lsass.exe
[2014.04.12 03:06:16 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=627B40EB2595D8FCF1960F33389EB7D3 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22807_none_a8e94f46d420350e\lsass.exe
[2014.04.12 03:06:16 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=627B40EB2595D8FCF1960F33389EB7D3 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22843_none_a8ba0e6ed4443f76\lsass.exe
[2014.04.12 03:06:16 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=627B40EB2595D8FCF1960F33389EB7D3 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22923_none_a8cfb02cd43404bb\lsass.exe
[2014.04.12 03:06:16 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=627B40EB2595D8FCF1960F33389EB7D3 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22925_none_a8d1b0c0d4323769\lsass.exe
[2012.08.24 17:53:44 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=7ABC23F3D86880AD62ACEDC7479608F8 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22099_none_a889f15ed46779fd\lsass.exe
[2013.09.25 01:49:20 | 000,022,016 | ---- | M] (Microsoft Corporation) MD5=803B370865D907EA21DC0C2B6A8936B5 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18270_none_a80cf783bb41b5b7\lsass.exe
[2011.11.17 06:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=81951F51E318AECC2D68559E47485CC4 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17725_none_a84828d7bb1480d7\lsass.exe
[2011.11.17 06:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=81951F51E318AECC2D68559E47485CC4 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17856_none_a828bb43bb2beb28\lsass.exe
[2011.11.17 06:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=81951F51E318AECC2D68559E47485CC4 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17940_none_a82d8b59bb293454\lsass.exe
[2012.06.02 05:40:31 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=A6034689ACF9D14973F8384AD5A5451E -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.21225_none_a6eb42a4d70be51e\lsass.exe
[2014.09.19 10:23:13 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=AC0D7A5778D5A8C17ECFEECB302B4FA4 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18606_none_a85eb04bbb037ec6\lsass.exe
[2015.01.14 06:40:26 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=BA0FE19728F5FA8473FB13C9C031FCC0 -- C:\Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18717_none_a854e28fbb0ab135\lsass.exe
[2015.01.14 06:40:26 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=BA0FE19728F5FA8473FB13C9C031FCC0 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18717_none_a854e28fbb0ab135\lsass.exe
[2015.01.15 08:42:17 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=BF08DE8E4FA1F143D41B3241F7FCE5F6 -- C:\Windows\System32\lsass.exe
[2015.01.15 08:42:17 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=BF08DE8E4FA1F143D41B3241F7FCE5F6 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18719_none_a856e323bb08e3e3\lsass.exe
[2011.11.17 06:36:26 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=C2243FF9E9AAD0C30E8B1A0914DA15B6 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16915_none_a66c9bbdbde5f8fa\lsass.exe
[2011.11.17 06:36:26 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=C2243FF9E9AAD0C30E8B1A0914DA15B6 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.17035_none_a656d407bdf6641e\lsass.exe
[2014.04.12 03:11:22 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=DD17E1573651293D4ED31053795B3471 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18443_none_a8306bf1bb26a837\lsass.exe
[2014.04.12 03:11:22 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=DD17E1573651293D4ED31053795B3471 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18496_none_a7fd5d33bb4c7ff1\lsass.exe
[2014.04.12 03:11:22 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=DD17E1573651293D4ED31053795B3471 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18526_none_a8490e8dbb13b981\lsass.exe
[2014.04.12 03:11:22 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=DD17E1573651293D4ED31053795B3471 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18637_none_a83f40d1bb1aebf0\lsass.exe
[2014.09.19 10:29:14 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F0F6E52554E314A71E776B1086B5B3DD -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22814_none_a8db7e7cd42b04fa\lsass.exe
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_a620e0e5be1ecda7\lsass.exe
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16484_none_a61fe281be1fb177\lsass.exe
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.20594_none_a69eaf60d7456d32\lsass.exe
[2009.07.14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_a851f4adbb0d5141\lsass.exe
[2012.06.02 05:51:22 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=FA7B950E4CA6AA260C4EABA19E03644D -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22010_none_a8d76e24d42eb666\lsass.exe
[2011.11.17 06:24:04 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=FBCB2DFA40862DAA7B1534C9538208A5 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.21861_none_a8a284cad4562b09\lsass.exe
Re: prosím o kontrola logu
< MD5 for: NDIS.SYS >
[2012.08.22 18:05:16 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=15B74B6283CEBCCE3054C1001CA01B5E -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.22097_none_aa0491cf93ad1c31\ndis.sys
[2009.07.14 02:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_a79d81ea7d62a289\ndis.sys
[2012.08.22 18:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\System32\drivers\ndis.sys
[2012.08.22 18:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17939_none_a9bdfee47a5cd154\ndis.sys
[2010.11.20 13:30:06 | 000,712,576 | ---- | M] (Microsoft Corporation) MD5=E7C54812A2AAF43316EB6930C1FFA108 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_a9ce95b27a512623\ndis.sys
< MD5 for: NETLOGON.DLL >
[2010.11.20 13:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\System32\netlogon.dll
[2010.11.20 13:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_ffbf212e963c0162\netlogon.dll
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_fd8e0d66994d7dc8\netlogon.dll
< MD5 for: NVRAID.SYS >
[2009.07.14 02:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) MD5=3F3D04B1D08D43C16EA7963954EC768D -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvraid.sys
[2010.11.20 13:30:06 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=AF2EEC9580C1D32FB7EAF105D9784061 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_dd659ed032d28a14\nvraid.sys
[2010.11.20 13:30:06 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=AF2EEC9580C1D32FB7EAF105D9784061 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_3be22d131d40bd72\nvraid.sys
[2011.03.11 06:39:00 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=B3E25EE28883877076E0E1FF877D02E0 -- C:\Windows\System32\drivers\nvraid.sys
[2011.03.11 06:39:00 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=B3E25EE28883877076E0E1FF877D02E0 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_0276fc3b3ea60d41\nvraid.sys
[2011.03.11 06:39:00 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=B3E25EE28883877076E0E1FF877D02E0 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_3ba44e691d6eb11d\nvraid.sys
[2011.03.11 06:28:10 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=E3B840350A72CA6F39BD2BEF85A2BCFB -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_3c1c1942369abb77\nvraid.sys
[2011.03.11 06:44:01 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=F1B0BED906F97E16F6D0C3629D2F21C6 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16778_none_39bef1ad20475e88\nvraid.sys
[2011.03.11 06:52:25 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=FCD5C3542A85EEBA7D0833B7E5086C10 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.20921_none_3a779df43942be63\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2011.03.11 06:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\System32\drivers\nvstor.sys
[2011.03.11 06:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_0276fc3b3ea60d41\nvstor.sys
[2011.03.11 06:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_3ba44e691d6eb11d\nvstor.sys
[2011.03.11 06:44:01 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4520B63899E867F354EE012D34E11536 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16778_none_39bef1ad20475e88\nvstor.sys
[2011.03.11 06:28:10 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=66D468654A58594F5F3BA63D5AD5B1AF -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_3c1c1942369abb77\nvstor.sys
[2011.03.11 06:52:25 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=8A7583A3B58D3EEB28BB26626526BC91 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.20921_none_3a779df43942be63\nvstor.sys
[2010.11.20 13:30:06 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_dd659ed032d28a14\nvstor.sys
[2010.11.20 13:30:06 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_3be22d131d40bd72\nvstor.sys
[2009.07.14 02:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvstor.sys
< MD5 for: SCECLI.DLL >
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll
[2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\System32\scecli.dll
[2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_3a154c47375d881d\scecli.dll
< MD5 for: SMSS.EXE >
[2013.03.19 03:43:41 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=0294CC751D7FAEB13621EEFB8A749429 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22280_none_ae7bdfb790cddbcf\smss.exe
[2009.07.14 02:14:39 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=16742790895960690237A5143CEDEC8B -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_ac10fe207a85352b\smss.exe
[2013.03.19 03:51:05 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=37F4765554F2CD34AAAB616F696E5539 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.21490_none_ac8ab2c593af8bd4\smss.exe
[2013.07.08 04:02:28 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=634E0B45780F502304592C5615A31089 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22379_none_ae8fb42390bda114\smss.exe
[2013.03.19 03:50:03 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=B24BF638652522BB5E14AB7993FD4A5D -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.17273_none_ac19b4ca7a7f0306\smss.exe
[2013.08.29 01:51:28 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D2A72C71CD6C18A99E920EC5761F0C7D -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22436_none_aeb7f4db909fe272\smss.exe
[2014.04.12 03:06:24 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D8A5E3B8EB601B897AC78B060177E460 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22653_none_ae9f57f190b2c89d\smss.exe
[2014.04.12 03:06:24 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D8A5E3B8EB601B897AC78B060177E460 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22780_none_ae7be93590cdcd92\smss.exe
[2014.04.12 03:06:24 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D8A5E3B8EB601B897AC78B060177E460 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22908_none_aeda6eb19085b310\smss.exe
[2014.04.12 03:06:24 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D8A5E3B8EB601B897AC78B060177E460 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22921_none_aebdccd3909c3991\smss.exe
[2014.04.12 03:06:24 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D8A5E3B8EB601B897AC78B060177E460 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22923_none_aebfcd67909a6c3f\smss.exe
[2013.03.19 03:49:16 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=DE91DCC7BC55E940979097E98F743205 -- C:\Windows\System32\smss.exe
[2013.03.19 03:49:16 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=DE91DCC7BC55E940979097E98F743205 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18113_none_ae40f33e7774c473\smss.exe
[2013.05.06 04:02:20 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=EC745C0949B101129AB6D39CD63808A6 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22318_none_aecf9361908de017\smss.exe
< MD5 for: SVCHOST.EXE >
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
< MD5 for: TCPIP.SYS >
[2011.04.25 05:56:06 | 001,286,016 | ---- | M] (Microsoft Corporation) MD5=0158D5E9982E9D6A90DFC802F618E130 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16802_none_b347f075c77b9c9d\tcpip.sys
[2011.04.25 05:31:30 | 001,290,624 | ---- | M] (Microsoft Corporation) MD5=24326784DF8F3D5F5BBB9F878CE33C14 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_b52f4dc5c4a121e0\tcpip.sys
[2009.07.14 02:19:10 | 001,285,712 | ---- | M] (Microsoft Corporation) MD5=2CC3D75488ABD3EC628BBB9A4FC84EFC -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_b2f46875c7b9d667\tcpip.sys
[2013.01.03 06:01:49 | 001,303,912 | ---- | M] (Microsoft Corporation) MD5=34AE5CC0C7417AB701C2AA8A7BC75417 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21415_none_b3c99dece09ecc3b\tcpip.sys
[2010.11.20 13:30:12 | 001,290,112 | ---- | M] (Microsoft Corporation) MD5=37E8FA3779668837CA9E2C36D2415949 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_b5257c3dc4a85a01\tcpip.sys
[2013.01.04 05:56:23 | 001,308,504 | ---- | M] (Microsoft Corporation) MD5=4A95845C5F33A4DDEB6AEF6367FB6520 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22209_none_b5becc06ddb98192\tcpip.sys
[2013.07.06 06:05:35 | 001,293,760 | ---- | M] (Microsoft Corporation) MD5=4E8B9BE71B807B3BAEDB7F4243F85E3C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18203_none_b52f2f65c4a146e5\tcpip.sys
[2013.07.06 05:57:37 | 001,309,120 | ---- | M] (Microsoft Corporation) MD5=528F7CC60391DD0FAB0344F32F051FDF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22378_none_b5721e2eddf328f9\tcpip.sys
[2014.04.05 03:25:01 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=5579DD18546999F5D0EC39D018726C6B -- C:\Windows\System32\drivers\tcpip.sys
[2014.04.05 03:25:01 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=5579DD18546999F5D0EC39D018726C6B -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18438_none_b513c4dfc4b513b9\tcpip.sys
[2013.05.08 07:15:22 | 001,309,032 | ---- | M] (Microsoft Corporation) MD5=6088D01FAD49729EA0A5A3D9B9BA8B84 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22319_none_b5b3fe00ddc19aaa\tcpip.sys
[2013.09.07 03:06:48 | 001,309,120 | ---- | M] (Microsoft Corporation) MD5=6C4F3D92764FFA22D28061A4D9235446 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22444_none_b58e8eb0ddde6cf1\tcpip.sys
[2011.04.25 07:31:09 | 001,301,376 | ---- | M] (Microsoft Corporation) MD5=6D4728CFF2724FF3A4654971D61D0F1C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_b5ad1a5addc7c444\tcpip.sys
[2013.01.03 06:05:20 | 001,293,672 | ---- | M] (Microsoft Corporation) MD5=7C0507D2391AF5933600CBCED799F277 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18042_none_b502eb9fc4c2a304\tcpip.sys
[2011.04.25 05:44:18 | 001,298,816 | ---- | M] (Microsoft Corporation) MD5=8861B9A06BA99C6E1D62D0C86DFAB86C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20951_none_b39a7d5ae0c2aec5\tcpip.sys
[2013.01.04 05:55:21 | 001,287,528 | ---- | M] (Microsoft Corporation) MD5=BBCEAEFF1FD72A026F827CBB2F4AA8AD -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.17206_none_b34bcf71c7782cb0\tcpip.sys
[2013.09.08 03:07:12 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=CA59F7C570AF70BC174F477CFE2D9EE3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18254_none_b4fa2013c4c8ebf1\tcpip.sys
[2013.05.08 06:38:00 | 001,293,672 | ---- | M] (Microsoft Corporation) MD5=D32FDAC73FCD76B85389C39BC1087F2A -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18148_none_b508ef41c4bd3835\tcpip.sys
[2012.10.03 17:44:01 | 001,308,040 | ---- | M] (Microsoft Corporation) MD5=D490DD0A91B4EAC3B4EE08D11EE37C31 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_b5a428d6ddce3d9a\tcpip.sys
[2013.11.26 12:07:37 | 001,309,632 | ---- | M] (Microsoft Corporation) MD5=DC08335B30D83FB61E9EFE6FDD09D40D -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22525_none_b5a530b8ddcd4b8d\tcpip.sys
[2012.10.03 17:58:30 | 001,293,680 | ---- | M] (Microsoft Corporation) MD5=E23A56F843E2AEBBB209D0ACCA73C640 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_b4ef7439c4d0da52\tcpip.sys
[2014.04.05 03:16:21 | 001,310,144 | ---- | M] (Microsoft Corporation) MD5=EA47AB18E289333AB94397D77CA6E3A1 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22648_none_b59293a4dddacc9b\tcpip.sys
< MD5 for: USERINIT.EXE >
[2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe
[2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009.10.28 07:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_6fc699643622d177\winlogon.exe
[2009.10.28 06:52:08 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=3BABE6767C78FBF5FB8435FEED187F30 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_703394514f56f7c2\winlogon.exe
[2014.07.16 03:56:14 | 000,304,640 | ---- | M] (Microsoft Corporation) MD5=4F37B93C14AEE313BEC52A23AFB15C2E -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.22750_none_7224b2134c7555fa\winlogon.exe
[2014.07.17 02:39:27 | 000,304,128 | ---- | M] (Microsoft Corporation) MD5=52449FD429D6053B78AE564DEF303870 -- C:\Windows\System32\winlogon.exe
[2014.07.17 02:39:27 | 000,304,128 | ---- | M] (Microsoft Corporation) MD5=52449FD429D6053B78AE564DEF303870 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.18540_none_71a5e34e334f9d18\winlogon.exe
[2010.11.20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
[2009.07.14 02:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe
[2014.03.04 10:17:02 | 000,304,128 | ---- | M] (Microsoft Corporation) MD5=998507B046BA314CE8245364C686FA67 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.18409_none_71da23b23327143c\winlogon.exe
[2014.03.04 11:39:02 | 000,304,640 | ---- | M] (Microsoft Corporation) MD5=D53972F87D850CD2EB4B29B60CAFDD77 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.22616_none_7255f1994c4f8119\winlogon.exe
< MD5 for: WS2_32.DLL >
[2010.11.20 13:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\System32\ws2_32.dll
[2010.11.20 13:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_f4bf1aae2c981ecf\ws2_32.dll
[2009.07.14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[5 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\Windows\SoftwareDistribution\Download\2ab181628e74db96bfd31820cd1a85c1\*.tmp files -> C:\Windows\SoftwareDistribution\Download\2ab181628e74db96bfd31820cd1a85c1\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\e3a33a7a500e9cfca5629669b76be23b\*.tmp files -> C:\Windows\SoftwareDistribution\Download\e3a33a7a500e9cfca5629669b76be23b\*.tmp -> ]
[34 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
[2007.11.07 07:03:18 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2013.08.20 10:21:25 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\7go
[2013.04.29 15:45:02 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Adobe
[2013.08.20 10:12:51 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Babylon
[2015.01.04 09:16:53 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Capcom
[2013.04.23 20:33:21 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\CyberLink
[2014.03.22 14:16:01 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\dvdcss
[2013.04.22 21:13:04 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Identities
[2013.04.25 12:46:42 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\InstallShield
[2013.04.23 20:53:10 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Macromedia
[2009.07.14 10:20:06 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Media Center Programs
[2015.02.14 21:28:05 | 000,000,000 | --SD | M] -- C:\Users\Loznice\AppData\Roaming\Microsoft
[2015.01.05 08:48:26 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Milestone
[2013.04.23 20:25:23 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Mozilla
[2013.04.23 21:11:28 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Nero
[2013.08.20 10:30:22 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\PerformerSoft
[2015.02.14 21:41:27 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Samsung
[2013.11.13 16:30:16 | 000,000,000 | RH-D | M] -- C:\Users\Loznice\AppData\Roaming\SecuROM
[2013.08.20 10:13:08 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\SeeSimilar02
[2015.01.05 09:31:29 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Seznam.cz
[2013.08.20 10:19:24 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\SpeedAnalysis2
[2014.02.05 21:18:19 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\TeamViewer
[2015.02.09 15:04:08 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\vlc
[2015.01.07 08:54:13 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Wargaming.net
[2013.04.23 20:24:44 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\WinRAR
< %APPDATA%\*.exe /s >
[2015.01.05 09:33:58 | 001,522,664 | ---- | M] (Object Browser) -- C:\Users\Loznice\AppData\Roaming\AJYXH.exe
[2015.01.05 09:33:19 | 002,009,576 | ---- | M] (Object Browser) -- C:\Users\Loznice\AppData\Roaming\CGLSAU.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2015.02.14 23:19:46 | 000,020,704 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2015.02.14 23:19:46 | 000,020,704 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2015.02.14 21:49:58 | 000,000,008 | ---- | M] () -- C:\Windows\system32\ANIWZCSUSERNAME{B49B1E4A-C181-4A99-AE9B-CCBD565BA8B8}
[2015.02.14 21:50:07 | 000,003,284 | ---- | M] () -- C:\Windows\system32\ANIWZCS{B49B1E4A-C181-4A99-AE9B-CCBD565BA8B8}
[2015.02.14 21:08:54 | 000,338,800 | ---- | M] () -- C:\Windows\system32\FNTCACHE.DAT
[2015.02.14 21:47:19 | 000,000,188 | ---- | M] () -- C:\Windows\system32\MsiExec.exe.log
[2015.02.14 21:56:52 | 000,147,588 | ---- | M] () -- C:\Windows\system32\perfc005.dat
[2015.02.14 21:56:52 | 000,126,916 | ---- | M] () -- C:\Windows\system32\perfc009.dat
[2015.02.14 21:56:52 | 000,680,734 | ---- | M] () -- C:\Windows\system32\perfh005.dat
[2015.02.14 21:56:52 | 000,665,846 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2015.02.14 21:56:52 | 001,619,980 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI
[2015.02.12 20:52:39 | 000,005,092 | ---- | M] () -- C:\Windows\system32\TeamViewer9_Hooks.log
< %SYSTEMDRIVE%\*.exe >
[2007.11.07 07:03:18 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2015.02.15 10:46:29 | 000,000,512 | ---- | M] () MD5=B1328F04B3C7AE0778E0E7283BDDC812 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2015.01.25 15:23:28 | 014,959,814 | ---- | M] () -- \Users\Loznice\AppData\Local\Temp\SpyHunter-4.1.11.0-+-Crack.rar
[252 \Users\Loznice\AppData\Local\Temp\*.tmp files -> \Users\Loznice\AppData\Local\Temp\*.tmp -> ]
[2014.11.29 16:19:56 | 000,000,776 | ---- | M] () -- \Users\Loznice\AppData\Roaming\Microsoft\Windows\Recent\Colin McRae Rally Remastered + Crack - Skidrow.lnk
[2015.01.04 09:45:00 | 000,000,609 | ---- | M] () -- \Users\Loznice\AppData\Roaming\Microsoft\Windows\Recent\MotoGp-08-crack-by-hori14.lnk
[2007.12.25 22:28:50 | 007,701,544 | ---- | M] () -- \Users\Loznice\Desktop\HRY\Crysis CZ\patch & crack\crysis creck+key\Crack.exe
[2010.02.14 22:21:27 | 004,705,491 | ---- | M] () -- \Users\Loznice\Desktop\hudba\2010 - Destruction - A Savage Symphony - The History Of Annihilation (320)\10 - Cracked Brain (live).mp3
< *keygen* /s >
< *AntiWPA* /s >
< *loader* /s >
[2014.09.03 00:27:24 | 000,268,432 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2014.09.03 00:27:24 | 000,019,096 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2014.08.28 05:00:00 | 001,171,400 | R--- | M] () -- \Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\ExtensionLoader.dll
[2013.12.20 01:37:56 | 000,065,344 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2013.12.20 01:37:44 | 000,073,536 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2013.04.23 21:12:20 | 000,003,784 | ---- | M] () -- \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\55HNWD0C\bundleloader[1].js
[2013.04.23 21:12:30 | 000,000,723 | ---- | M] () -- \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\55HNWD0C\downloaderror[1].js
[2013.04.23 21:12:30 | 000,001,174 | ---- | M] () -- \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\55HNWD0C\downloader[1].js
[2013.08.20 10:12:54 | 000,000,936 | ---- | M] () -- \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JWR54ORY\downloader[1].htm
[2014.02.20 13:57:00 | 000,000,195 | ---- | M] () -- \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JWR54ORY\downloader[2].htm
[2014.02.20 13:57:15 | 000,000,068 | ---- | M] () -- \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JWR54ORY\downloader[3].htm
[1 \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JWR54ORY\*.tmp files -> \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JWR54ORY\*.tmp -> ]
[2015.01.05 09:02:50 | 000,031,516 | ---- | M] () -- \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NEXDAFT1\cz.seznam.software.libfoxloader-3.1.2-win32[1].zip
[2013.08.20 10:13:05 | 000,000,806 | ---- | M] () -- \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NEXDAFT1\downloader[1].htm
[2013.08.20 10:18:37 | 000,000,936 | ---- | M] () -- \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NEXDAFT1\downloader[2].htm
[2013.08.20 10:18:51 | 000,000,806 | ---- | M] () -- \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OUQCL7SE\downloader[1].htm
[2014.12.29 17:13:42 | 000,002,193 | ---- | M] () -- \Users\Loznice\AppData\Local\Temp\c2b2E3\images\loader.gif
[2014.12.29 17:14:02 | 000,002,193 | ---- | M] () -- \Users\Loznice\AppData\Local\Temp\e5e5d\images\loader.gif
[2013.08.20 10:33:05 | 000,003,208 | ---- | M] () -- \Users\Loznice\AppData\Local\Temp\ibtmpc810551\config\ajax-loader.gif
[2013.08.20 10:33:05 | 000,006,820 | ---- | M] () -- \Users\Loznice\AppData\Local\Temp\ibtmpc810551\config\ajax-loader2.gif
[2012.11.28 14:24:29 | 000,067,584 | ---- | M] () -- \Users\Loznice\Desktop\HRY\FAR CRY 3\FarCry 3 - D1\Crack\ubiorbitapi_r2_loader.dll
[2012.11.28 22:54:12 | 000,003,072 | ---- | M] () -- \Users\Loznice\Desktop\HRY\FAR CRY 3\FarCry 3 - D1\Crack\uplay_r1_loader.dll
[2007.03.16 17:56:16 | 000,019,968 | -H-- | M] () -- \Users\Loznice\Desktop\HRY\hry\Bus Driver CZ\Bus Driver\lib\loaders.dll
[2007.03.11 17:51:00 | 000,005,422 | ---- | M] () -- \Users\Loznice\Documents\Mozilla\Firefox\Profiles\co2oqsqv.default\extensions\{463F6CA5-EE3C-4be1-B7E6-7FEE11953374}\components\ModuleLoader.js
[2013.03.09 08:17:04 | 000,019,080 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000000000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8
[2010.03.24 19:12:34 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000000000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2013.03.09 08:17:04 | 000,268,440 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000000000000F01FEC\14.0.4763\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8
[2010.03.24 19:12:34 | 000,249,680 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000000000000F01FEC\14.0.4763\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2009.07.14 13:25:34 | 002,202,645 | R--- | M] () -- \Windows\Setup\SCRIPTS\Windows7Loader.exe
[2015.01.16 07:24:33 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_cs-cz_35c794147472469a.manifest
[2015.01.16 07:24:56 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_da-dk_d301743b6ab84299.manifest
[2015.01.16 07:24:55 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_de-de_d02d09776c8e9733.manifest
[2015.01.16 07:24:26 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_el-gr_78c3370a5ba3ffc1.manifest
[2015.01.16 07:23:55 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_en-us_791ddf705b6ca2f8.manifest
[2015.01.16 07:24:46 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_es-es_78e93c545b93949d.manifest
[2015.01.16 07:24:39 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_fi-fi_1804410150ad86c7.manifest
[2015.01.16 07:23:57 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_fr-fr_1ba0b2534e65aaff.manifest
[2015.01.16 07:24:18 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_hu-hu_6311329b32c57a1b.manifest
[2015.01.16 07:24:05 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_it-it_05c8a89a2597907d.manifest
[2015.01.16 07:24:01 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ja-jp_a7ee27a718b2a258.manifest
[2015.01.16 07:24:02 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ko-kr_4b58045c0b23696e.manifest
[2015.01.16 07:24:19 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_nb-no_33ea8590e348952a.manifest
[2015.01.16 07:24:56 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_nl-nl_3229d0cee4749eff.manifest
[2015.01.16 07:24:20 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pl-pl_78662b50c9970cb3.manifest
[2015.01.16 07:24:20 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pt-br_7aba15f4c820a097.manifest
[2015.01.16 07:24:38 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pt-pt_7b9be560c7901073.manifest
[2015.01.16 07:24:49 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ru-ru_c23ef724ac719e9f.manifest
[2015.01.16 07:24:27 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_sv-se_5e39e199a39aa8fa.manifest
[2015.01.16 07:23:58 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_tr-tr_07472be09256aaeb.manifest
[2015.01.16 07:24:17 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-cn_d8a449de428e7d0a.manifest
[2015.01.16 07:24:44 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-hk_d74f426c4369ef9a.manifest
[2015.01.16 07:24:10 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-tw_dca087343fff597a.manifest
[2015.01.14 07:45:13 | 000,004,224 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22923_none_5dabdf9ce40faccd.manifest
[2015.01.16 07:24:27 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_cs-cz_43ba6b00af8efbf6.manifest
[2015.01.16 07:24:44 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_da-dk_e0f44b27a5d4f7f5.manifest
[2015.01.16 07:24:30 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_de-de_de1fe063a7ab4c8f.manifest
[2015.01.16 07:24:16 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_el-gr_86b60df696c0b51d.manifest
[2015.01.16 07:24:11 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_en-us_8710b65c96895854.manifest
[2015.01.16 07:24:01 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_es-es_86dc134096b049f9.manifest
[2015.01.16 07:24:30 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_fi-fi_25f717ed8bca3c23.manifest
[2015.01.16 07:23:57 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_fr-fr_2993893f8982605b.manifest
[2015.01.16 07:24:42 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_hu-hu_710409876de22f77.manifest
[2015.01.16 07:24:01 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_it-it_13bb7f8660b445d9.manifest
[2015.01.16 07:24:41 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ja-jp_b5e0fe9353cf57b4.manifest
[2015.01.16 07:24:57 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ko-kr_594adb4846401eca.manifest
[2015.01.16 07:24:43 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_nb-no_41dd5c7d1e654a86.manifest
[2015.01.16 07:24:30 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_nl-nl_401ca7bb1f91545b.manifest
[2015.01.16 07:24:43 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pl-pl_8659023d04b3c20f.manifest
[2015.01.16 07:24:36 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pt-br_88acece1033d55f3.manifest
[2015.01.16 07:24:54 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pt-pt_898ebc4d02acc5cf.manifest
[2015.01.16 07:24:50 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ru-ru_d031ce10e78e53fb.manifest
[2015.01.16 07:24:48 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_sv-se_6c2cb885deb75e56.manifest
[2015.01.16 07:24:41 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_tr-tr_153a02cccd736047.manifest
[2015.01.16 07:24:05 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-cn_e69720ca7dab3266.manifest
[2015.01.16 07:24:37 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-hk_e54219587e86a4f6.manifest
[2015.01.16 07:24:33 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-tw_ea935e207b1c0ed6.manifest
[2015.01.16 07:24:39 | 000,004,200 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.22923_none_4273b44ce20009f9.manifest
[2015.01.12 23:09:27 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_da-dk_d2ff73a76aba0feb.manifest
[2015.01.12 23:09:23 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_de-de_d02b08e36c906485.manifest
[2015.01.12 23:09:27 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_el-gr_78c136765ba5cd13.manifest
[2015.01.12 23:09:31 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_en-us_791bdedc5b6e704a.manifest
[2015.01.12 23:09:17 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_es-es_78e73bc05b9561ef.manifest
[2015.01.12 23:09:23 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_fi-fi_1802406d50af5419.manifest
[2015.01.12 23:09:20 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_fr-fr_1b9eb1bf4e677851.manifest
[2015.01.12 23:09:32 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_hu-hu_630f320732c7476d.manifest
[2015.01.12 23:09:21 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_it-it_05c6a80625995dcf.manifest
[2015.01.12 23:09:23 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_ja-jp_a7ec271318b46faa.manifest
[2015.01.12 23:09:22 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_ko-kr_4b5603c80b2536c0.manifest
[2015.01.12 23:09:23 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_nb-no_33e884fce34a627c.manifest
[2015.01.12 23:09:28 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_nl-nl_3227d03ae4766c51.manifest
[2015.01.12 23:09:30 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_pl-pl_78642abcc998da05.manifest
[2015.01.12 23:09:11 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_pt-br_7ab81560c8226de9.manifest
[2015.01.12 23:09:25 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_pt-pt_7b99e4ccc791ddc5.manifest
[2015.01.12 23:09:23 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_ru-ru_c23cf690ac736bf1.manifest
[2015.01.12 23:09:29 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_sv-se_5e37e105a39c764c.manifest
[2015.01.12 23:09:33 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_tr-tr_07452b4c9258783d.manifest
[2015.01.12 23:09:32 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_zh-cn_d8a2494a42904a5c.manifest
[2015.01.12 23:09:33 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_zh-hk_d74d41d8436bbcec.manifest
[2015.01.12 23:09:22 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_zh-tw_dc9e86a0400126cc.manifest
[2015.01.12 23:09:24 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_cs-cz_43b86a6caf90c948.manifest
[2015.01.12 23:09:25 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_da-dk_e0f24a93a5d6c547.manifest
[2015.01.12 23:09:18 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_de-de_de1ddfcfa7ad19e1.manifest
[2015.01.12 23:09:19 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_el-gr_86b40d6296c2826f.manifest
[2015.01.12 23:09:17 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_en-us_870eb5c8968b25a6.manifest
[2015.01.12 23:09:22 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_es-es_86da12ac96b2174b.manifest
[2015.01.12 23:09:31 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_fi-fi_25f517598bcc0975.manifest
[2015.01.12 23:09:33 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_fr-fr_299188ab89842dad.manifest
[2015.01.12 23:09:17 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_hu-hu_710208f36de3fcc9.manifest
[2015.01.12 23:09:29 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_it-it_13b97ef260b6132b.manifest
[2015.01.12 23:09:17 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_ja-jp_b5defdff53d12506.manifest
[2015.01.12 23:09:18 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_ko-kr_5948dab44641ec1c.manifest
[2015.01.12 23:09:19 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_nb-no_41db5be91e6717d8.manifest
[2015.01.12 23:09:12 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_nl-nl_401aa7271f9321ad.manifest
[2015.01.12 23:09:12 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_pl-pl_865701a904b58f61.manifest
[2015.01.12 23:09:15 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_pt-br_88aaec4d033f2345.manifest
[2015.01.12 23:09:32 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_pt-pt_898cbbb902ae9321.manifest
[2015.01.12 23:09:29 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_ru-ru_d02fcd7ce790214d.manifest
[2015.01.12 23:09:33 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_sv-se_6c2ab7f1deb92ba8.manifest
[2015.01.12 23:09:25 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_tr-tr_15380238cd752d99.manifest
[2015.01.12 23:09:27 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_zh-cn_e69520367dacffb8.manifest
[2015.01.12 23:09:13 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_zh-hk_e54018c47e887248.manifest
[2015.01.12 23:09:13 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_zh-tw_ea915d8c7b1ddc28.manifest
[2015.01.12 04:35:24 | 000,004,249 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.22921_none_4271b3b8e201d74b.manifest
[2015.01.16 07:24:56 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_da-dk_d301743b6ab84299.manifest
[2015.01.16 07:24:55 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_de-de_d02d09776c8e9733.manifest
[2015.01.16 07:24:26 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_el-gr_78c3370a5ba3ffc1.manifest
[2015.01.16 07:23:55 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_en-us_791ddf705b6ca2f8.manifest
[2015.01.16 07:24:46 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_es-es_78e93c545b93949d.manifest
[2015.01.16 07:24:39 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_fi-fi_1804410150ad86c7.manifest
[2015.01.16 07:23:57 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_fr-fr_1ba0b2534e65aaff.manifest
[2015.01.16 07:24:18 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_hu-hu_6311329b32c57a1b.manifest
[2015.01.16 07:24:05 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_it-it_05c8a89a2597907d.manifest
[2015.01.16 07:24:01 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ja-jp_a7ee27a718b2a258.manifest
[2015.01.16 07:24:02 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ko-kr_4b58045c0b23696e.manifest
[2015.01.16 07:24:19 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_nb-no_33ea8590e348952a.manifest
[2015.01.16 07:24:56 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_nl-nl_3229d0cee4749eff.manifest
[2015.01.16 07:24:20 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pl-pl_78662b50c9970cb3.manifest
[2015.01.16 07:24:20 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pt-br_7aba15f4c820a097.manifest
[2015.01.16 07:24:38 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pt-pt_7b9be560c7901073.manifest
[2015.01.16 07:24:49 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ru-ru_c23ef724ac719e9f.manifest
[2015.01.16 07:24:27 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_sv-se_5e39e199a39aa8fa.manifest
[2015.01.16 07:23:58 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_tr-tr_07472be09256aaeb.manifest
[2015.01.16 07:24:17 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-cn_d8a449de428e7d0a.manifest
[2015.01.16 07:24:44 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-hk_d74f426c4369ef9a.manifest
[2015.01.16 07:24:10 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-tw_dca087343fff597a.manifest
[2015.01.16 07:24:27 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_cs-cz_43ba6b00af8efbf6.manifest
[2015.01.16 07:24:44 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_da-dk_e0f44b27a5d4f7f5.manifest
[2015.01.16 07:24:30 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_de-de_de1fe063a7ab4c8f.manifest
[2015.01.16 07:24:16 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_el-gr_86b60df696c0b51d.manifest
[2015.01.16 07:24:11 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_en-us_8710b65c96895854.manifest
[2015.01.16 07:24:01 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_es-es_86dc134096b049f9.manifest
[2015.01.16 07:24:30 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_fi-fi_25f717ed8bca3c23.manifest
[2015.01.16 07:23:57 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_fr-fr_2993893f8982605b.manifest
[2015.01.16 07:24:42 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_hu-hu_710409876de22f77.manifest
[2015.01.16 07:24:01 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_it-it_13bb7f8660b445d9.manifest
[2015.01.16 07:24:41 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ja-jp_b5e0fe9353cf57b4.manifest
[2015.01.16 07:24:57 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ko-kr_594adb4846401eca.manifest
[2015.01.16 07:24:43 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_nb-no_41dd5c7d1e654a86.manifest
[2015.01.16 07:24:30 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_nl-nl_401ca7bb1f91545b.manifest
[2015.01.16 07:24:43 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pl-pl_8659023d04b3c20f.manifest
[2015.01.16 07:24:36 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pt-br_88acece1033d55f3.manifest
[2015.01.16 07:24:54 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pt-pt_898ebc4d02acc5cf.manifest
[2015.01.16 07:24:50 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ru-ru_d031ce10e78e53fb.manifest
[2015.01.16 07:24:48 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_sv-se_6c2cb885deb75e56.manifest
[2015.01.16 07:24:41 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_tr-tr_153a02cccd736047.manifest
[2015.01.16 07:24:05 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-cn_e69720ca7dab3266.manifest
[2015.01.16 07:24:37 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-hk_e54219587e86a4f6.manifest
[2015.01.16 07:24:33 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-tw_ea935e207b1c0ed6.manifest
[2015.01.16 07:24:39 | 000,004,200 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.22923_none_4273b44ce20009f9.manifest
[2013.08.02 02:48:15 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2009.07.14 05:54:01 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2014.10.15 21:04:30 | 000,002,777 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_cs-cz_3540f2755b51fb60.manifest
[2014.10.15 21:04:30 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_cs-cz_3540f2755b51fb60_winload.exe.mui_3bc5b827
[2014.10.15 21:04:30 | 000,030,272 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_cs-cz_3540f2755b51fb60_winresume.exe.mui_ff8b5358
[2014.10.15 21:04:34 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.18574_none_5ced2dcdcb19ba9a.manifest
[2014.10.15 21:04:34 | 000,521,384 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.18574_none_5ced2dcdcb19ba9a_winload.exe_75835076
[2014.10.15 21:04:35 | 000,455,752 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.18574_none_5ced2dcdcb19ba9a_winresume.exe_85cd1215
[2009.07.14 03:17:38 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 03:17:38 | 000,017,472 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23_spldr.sys_98bd87a0
[2009.07.14 09:42:11 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2014.07.08 22:41:55 | 000,002,777 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_cs-cz_3540f2755b51fb60.manifest
[2014.07.08 22:42:00 | 000,002,777 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_cs-cz_35bfc13a7477b442.manifest
[2014.12.13 02:50:10 | 000,002,777 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22908_cs-cz_35e2355e745d8d6b.manifest
[2015.01.12 23:09:15 | 000,002,777 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_cs-cz_35c59380747413ec.manifest
[2015.01.16 07:24:33 | 000,002,777 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_cs-cz_35c794147472469a.manifest
[2009.07.14 02:47:46 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9.manifest
[2009.08.19 08:38:48 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16411_none_5b44c087cdc549ed.manifest
[2009.08.19 08:21:21 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20509_none_5be12f8ee6d3987e.manifest
[2010.11.20 04:02:40 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2014.08.19 04:02:10 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.18574_none_5ced2dcdcb19ba9a.manifest
[2014.08.19 04:09:35 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22780_none_5d67fb6ae4430e20.manifest
[2014.12.12 07:03:57 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22908_none_5dc680e6e3faf39e.manifest
[2015.01.12 04:35:19 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22921_none_5da9df08e4117a1f.manifest
[2015.01.14 07:45:13 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22923_none_5dabdf9ce40faccd.manifest
[2009.07.14 02:52:31 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:45:38 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17135_none_0abe3b21dcfb1c4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:56:23 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17179_none_0a96fc99dd17f16b\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 05:43:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17206_none_0adfad15dce1def6\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:48:05 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21335_none_0b47d9d2f618b93c\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:44:10 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21386_none_0b12ca80f6405e48\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 05:39:49 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21416_none_0b5e7bdaf60797d8\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:40:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:45:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 02:48:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_0cb36eedda15c917\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 05:43:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22209_none_0d52a9aaf32333d8\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 06:53:29 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22411_none_0d3fdb3af3327f5f\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.04 11:35:49 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22616_none_0d44e078f32df860\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.04.12 03:03:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22653_none_0d169feaf3511c1f\api-ms-win-core-libraryloader-l1-1-0.dll
< *minodlogin* /s >
< *tnod* /s >
< *AutoKMS* /s >
[1 \Windows\*.tmp files -> \Windows\*.tmp -> ]
[2013.04.23 20:08:13 | 000,000,715 | ---- | M] () -- \Windows\AutoKMS\AutoKMS.ini
[2014.09.15 08:41:54 | 000,118,006 | ---- | M] () -- \Windows\AutoKMS\AutoKMS.log
< *activator* /s >
[2013.03.20 06:24:05 | 000,139,016 | ---- | M] () -- \Files\subsys\Activator\_PyActivator.pyd
< *serial* /s >
[2014.05.13 22:17:02 | 000,434,368 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30514.0\System.Runtime.Serialization.dll
[2014.09.02 21:53:22 | 001,164,288 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30514.0\System.Runtime.Serialization.ni.dll
[2014.07.10 23:24:10 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2010.11.05 02:53:39 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2015.02.05 10:28:09 | 000,000,650 | ---- | M] () -- \Users\Loznice\AppData\Roaming\Microsoft\Windows\Recent\serial.lnk
[2013.01.12 22:55:08 | 000,000,136 | ---- | M] () -- \Users\Loznice\Desktop\HRY\Crysis CZ\serial.txt
[2015.02.05 10:41:17 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC\System.Runtime.Serialization.Formatters.Soap\1.0.5000.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013.07.08 13:43:48 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.06.24 00:43:20 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.13 03:37:50 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2014.07.10 23:24:10 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014.10.16 08:59:45 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\91eb4f41130c65ef17f0fee1d3ab48fb\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.10.16 10:06:55 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\b1e0939384cc320d6ac7b8921ccc2877\System.Runtime.Serialization.ni.dll
[2015.01.23 03:04:22 | 000,306,176 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\a94049de665f1854ea5df1a857b2c68f\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2015.01.23 03:04:22 | 000,000,440 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\a94049de665f1854ea5df1a857b2c68f\System.Runtime.Serialization.Formatters.Soap.ni.dll.aux
[2015.01.23 03:05:48 | 002,855,424 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\187177229c00aec6dec613ea4b9ff209\System.Runtime.Serialization.ni.dll
[2015.01.23 03:05:48 | 000,000,996 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\187177229c00aec6dec613ea4b9ff209\System.Runtime.Serialization.ni.dll.aux
[2015.01.23 09:45:33 | 000,025,600 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\ad0261438ff8f46e093faa717226ebef\System.Xml.Serialization.ni.dll
[2015.01.23 09:45:33 | 000,000,284 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\ad0261438ff8f46e093faa717226ebef\System.Xml.Serialization.ni.dll.aux
[2014.04.12 00:48:40 | 001,051,888 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\65FC11932FE9AB9348A62CB73DDC6058\4.5.51209\System.Runtime.Serialization.dll.x86
[2014.04.12 00:48:40 | 001,051,888 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\65FC11932FE9AB9348A62CB73DDC6058\4.5.51209\System.Runtime.Serialization.dll_gac_x86
[2013.09.11 22:33:38 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.04.12 00:48:40 | 000,133,432 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2014.04.11 23:08:06 | 000,029,472 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Json\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Json.dll
[2014.04.11 23:08:06 | 000,029,512 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Primitives\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Primitives.dll
[2013.09.11 22:33:38 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2014.04.11 23:08:06 | 000,029,976 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Xml\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Xml.dll
[2014.07.23 00:17:44 | 001,050,840 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014.04.11 23:08:06 | 000,045,800 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2014.04.11 23:08:06 | 000,029,928 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.XmlSerializer\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Xml.XmlSerializer.dll
[2003.02.21 07:26:56 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Serialization.Formatters.Soap.dll
[2014.06.24 00:43:20 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.05 02:53:33 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.07.10 23:24:11 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2014.07.23 00:17:44 | 001,050,840 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2014.04.12 00:48:40 | 000,133,432 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2014.04.11 23:08:06 | 000,029,472 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Json.dll
[2014.04.11 23:08:06 | 000,029,512 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2014.04.11 23:08:06 | 000,029,976 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2014.04.11 23:08:06 | 000,045,800 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2014.04.11 23:08:06 | 000,029,928 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.XmlSerializer.dll
[2013.09.11 22:33:38 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.09.11 22:33:38 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2009.07.14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2009.07.14 09:43:17 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009.07.14 00:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\drivers\serial.sys
[2009.07.14 09:43:30 | 000,009,728 | ---- | M] () -- \Windows\System32\drivers\cs-CZ\serial.sys.mui
[2009.07.13 23:13:45 | 001,068,032 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\mdmmotsm.inf_x86_neutral_c1415d9789c54b89\smserial.sys
[2009.07.14 00:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_x86_neutral_c1a802e06677f73f\serial.sys
[2009.07.13 23:09:18 | 000,031,232 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_x86_neutral_63e72c669d043f14\grserial.sys
[2009.07.14 03:18:03 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009.07.14 03:18:03 | 000,015,952 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486_kdcom.dll_db5e7744
[2009.07.14 09:43:55 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2009.07.14 03:18:51 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2009.07.14 02:52:33 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896.manifest
[2012.10.06 19:07:20 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.17136_none_a6a4fe887487d009.manifest
[2012.10.06 19:58:54 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.21337_none_8fd740dc8e2f4a01.manifest
[2010.11.20 04:06:16 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c.manifest
[2012.10.05 18:15:39 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285.manifest
[2014.07.02 06:57:49 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.18523_none_a6803b1074d97c29.manifest
[2014.07.14 03:04:09 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.18532_none_a681522274d87bdf.manifest
[2012.10.05 18:17:50 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d.manifest
[2014.07.02 07:07:46 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22733_none_8fb394768e7ff5d7.manifest
[2014.07.14 03:04:27 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22743_none_8fb494c08e7f0f2e.manifest
[2009.07.14 09:42:43 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2012.10.06 20:19:17 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.17136_cs-cz_3450454183d3f023.manifest
[2012.10.06 20:26:57 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.21337_cs-cz_1d8287959d7b6a1b.manifest
[2012.10.05 20:04:43 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f.manifest
[2014.07.02 07:50:42 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18523_cs-cz_342b81c984259c43.manifest
[2014.07.14 04:14:58 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18532_cs-cz_342c98db84249bf9.manifest
[2012.10.05 20:02:24 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797.manifest
[2014.07.02 21:15:55 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22733_cs-cz_1d5edb2f9dcc15f1.manifest
[2014.07.14 04:04:07 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22743_cs-cz_1d5fdb799dcb2f48.manifest
[2009.07.14 02:51:52 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9.manifest
[2012.10.06 19:11:48 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.17136_none_d6e834229c2ed13c.manifest
[2012.10.06 20:03:01 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.21337_none_c01a7676b5d64b34.manifest
[2010.11.20 04:05:38 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f.manifest
[2012.10.05 18:15:03 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8.manifest
[2014.07.02 07:00:03 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.18523_none_d6c370aa9c807d5c.manifest
[2014.07.14 03:06:40 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.18532_none_d6c487bc9c7f7d12.manifest
[2012.10.05 18:17:15 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0.manifest
[2014.07.02 07:10:04 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22733_none_bff6ca10b626f70a.manifest
[2014.07.14 03:06:53 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22743_none_bff7ca5ab6261061.manifest
[2009.07.14 02:49:26 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009.07.14 02:45:27 | 000,000,866 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_2c93290b67c98d09.manifest
[2009.07.14 02:57:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b.manifest
[2012.10.06 19:09:38 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.17136_none_dbc2dfefdd056b7e.manifest
[2012.10.06 20:00:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.21337_none_c4f52243f6ace576.manifest
[2010.11.20 04:10:46 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1.manifest
[2012.10.05 18:19:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa.manifest
[2014.07.02 06:58:58 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18523_none_db9e1c77dd57179e.manifest
[2014.07.14 03:05:25 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18532_none_db9f3389dd561754.manifest
[2012.10.05 18:22:10 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2.manifest
[2014.07.02 07:08:55 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22733_none_c4d175ddf6fd914c.manifest
[2014.07.14 03:05:41 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22743_none_c4d27627f6fcaaa3.manifest
[2009.06.10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2014.06.24 00:43:20 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7601.18523_none_1c70653de072abde\System.Runtime.Serialization.Formatters.Soap.dll
[2014.06.24 00:43:36 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7601.22733_none_05a3bea3fa19258c\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.14 09:43:23 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.07.08 13:43:48 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7601.18523_cs-cz_d5997ba9da0ab4d7\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 22:14:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896\System.Runtime.Serialization.dll
[2012.10.06 11:54:26 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.17136_none_a6a4fe887487d009\System.Runtime.Serialization.dll
[2012.10.06 11:57:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.21337_none_8fd740dc8e2f4a01\System.Runtime.Serialization.dll
[2010.11.05 02:52:39 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c\System.Runtime.Serialization.dll
[2012.10.05 11:53:24 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285\System.Runtime.Serialization.dll
[2014.03.09 22:47:42 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.18523_none_a6803b1074d97c29\System.Runtime.Serialization.dll
[2014.07.10 23:24:11 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.18532_none_a681522274d87bdf\System.Runtime.Serialization.dll
[2012.10.06 11:57:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d\System.Runtime.Serialization.dll
[2014.03.17 15:38:28 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22733_none_8fb394768e7ff5d7\System.Runtime.Serialization.dll
[2014.07.08 00:27:52 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22743_none_8fb494c08e7f0f2e\System.Runtime.Serialization.dll
[2009.07.14 09:43:37 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2009.07.14 09:43:37 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.17136_cs-cz_3450454183d3f023\System.RunTime.Serialization.Resources.dll
[2009.07.14 09:43:37 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.21337_cs-cz_1d8287959d7b6a1b\System.RunTime.Serialization.Resources.dll
[2010.11.13 02:55:26 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f\System.RunTime.Serialization.Resources.dll
[2010.11.13 03:37:50 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18523_cs-cz_342b81c984259c43\System.RunTime.Serialization.Resources.dll
[2010.11.13 03:37:50 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18532_cs-cz_342c98db84249bf9\System.RunTime.Serialization.Resources.dll
[2010.11.13 03:37:50 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797\System.RunTime.Serialization.Resources.dll
[2010.11.13 03:37:50 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22733_cs-cz_1d5edb2f9dcc15f1\System.RunTime.Serialization.Resources.dll
[2010.11.13 03:37:50 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22743_cs-cz_1d5fdb799dcb2f48\System.RunTime.Serialization.Resources.dll
[2009.06.10 22:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9\System.Runtime.Serialization.dll
[2012.10.06 11:54:25 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.17136_none_d6e834229c2ed13c\System.Runtime.Serialization.dll
[2012.10.06 11:57:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.21337_none_c01a7676b5d64b34\System.Runtime.Serialization.dll
[2010.11.05 02:52:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f\System.Runtime.Serialization.dll
[2012.10.05 11:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8\System.Runtime.Serialization.dll
[2014.03.09 22:47:42 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.18523_none_d6c370aa9c807d5c\System.Runtime.Serialization.dll
[2014.07.10 23:24:10 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.18532_none_d6c487bc9c7f7d12\System.Runtime.Serialization.dll
[2012.10.06 11:57:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0\System.Runtime.Serialization.dll
[2014.03.17 15:38:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22733_none_bff6ca10b626f70a\System.Runtime.Serialization.dll
[2014.07.08 00:27:52 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22743_none_bff7ca5ab6261061\System.Runtime.Serialization.dll
[2009.07.13 23:13:45 | 001,068,032 | ---- | M] () -- \Windows\winsxs\x86_mdmmotsm.inf_31bf3856ad364e35_6.1.7600.16385_none_7a97936f8a972896\smserial.sys
[2009.07.14 09:43:15 | 000,011,776 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_c002c1170ca9a88f\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.05 02:53:33 | 000,011,776 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_c233d4df09982c29\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.05 02:53:33 | 000,011,776 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_cs-cz_c227ede109a14864\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.05 02:53:33 | 000,011,776 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.22731_cs-cz_c2a4bc1222c8ce98\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.07.14 09:43:17 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009.07.14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2009.07.14 09:43:37 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_5d4a68b4b3d26ecc\System.RunTime.Serialization.Resources.dll
[2010.11.05 02:53:39 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_5f7b7c7cb0c0f266\System.RunTime.Serialization.Resources.dll
[2010.11.05 02:53:39 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_cs-cz_5f6f957eb0ca0ea1\System.RunTime.Serialization.Resources.dll
[2010.11.05 02:53:39 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.22733_cs-cz_5fee6443c9efc783\System.RunTime.Serialization.Resources.dll
[2009.07.14 09:43:30 | 000,009,728 | ---- | M] () -- \Windows\winsxs\x86_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_c48c78a9ad8ff996\serial.sys.mui
[2009.07.14 00:45:33 | 000,083,456 | ---- | M] () -- \Windows\winsxs\x86_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_f86e06d519b1d9a4\serial.sys
[2009.07.13 23:09:18 | 000,031,232 | ---- | M] () -- \Windows\winsxs\x86_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_7280378295916274\grserial.sys
[2009.06.10 22:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b\System.Runtime.Serialization.dll
[2012.10.06 11:54:25 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.17136_none_dbc2dfefdd056b7e\System.Runtime.Serialization.dll
[2012.10.06 11:57:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.21337_none_c4f52243f6ace576\System.Runtime.Serialization.dll
[2010.11.05 02:52:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1\System.Runtime.Serialization.dll
[2012.10.05 11:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa\System.Runtime.Serialization.dll
[2014.03.09 22:47:42 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18523_none_db9e1c77dd57179e\System.Runtime.Serialization.dll
[2014.07.10 23:24:10 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18532_none_db9f3389dd561754\System.Runtime.Serialization.dll
[2012.10.06 11:57:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2\System.Runtime.Serialization.dll
[2014.03.17 15:38:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22733_none_c4d175ddf6fd914c\System.Runtime.Serialization.dll
[2014.07.08 00:27:52 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22743_none_c4d27627f6fcaaa3\System.Runtime.Serialization.dll
< *w7lxe* /s >
[2012.08.22 18:05:16 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=15B74B6283CEBCCE3054C1001CA01B5E -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.22097_none_aa0491cf93ad1c31\ndis.sys
[2009.07.14 02:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_a79d81ea7d62a289\ndis.sys
[2012.08.22 18:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\System32\drivers\ndis.sys
[2012.08.22 18:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17939_none_a9bdfee47a5cd154\ndis.sys
[2010.11.20 13:30:06 | 000,712,576 | ---- | M] (Microsoft Corporation) MD5=E7C54812A2AAF43316EB6930C1FFA108 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_a9ce95b27a512623\ndis.sys
< MD5 for: NETLOGON.DLL >
[2010.11.20 13:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\System32\netlogon.dll
[2010.11.20 13:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_ffbf212e963c0162\netlogon.dll
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_fd8e0d66994d7dc8\netlogon.dll
< MD5 for: NVRAID.SYS >
[2009.07.14 02:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) MD5=3F3D04B1D08D43C16EA7963954EC768D -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvraid.sys
[2010.11.20 13:30:06 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=AF2EEC9580C1D32FB7EAF105D9784061 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_dd659ed032d28a14\nvraid.sys
[2010.11.20 13:30:06 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=AF2EEC9580C1D32FB7EAF105D9784061 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_3be22d131d40bd72\nvraid.sys
[2011.03.11 06:39:00 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=B3E25EE28883877076E0E1FF877D02E0 -- C:\Windows\System32\drivers\nvraid.sys
[2011.03.11 06:39:00 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=B3E25EE28883877076E0E1FF877D02E0 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_0276fc3b3ea60d41\nvraid.sys
[2011.03.11 06:39:00 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=B3E25EE28883877076E0E1FF877D02E0 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_3ba44e691d6eb11d\nvraid.sys
[2011.03.11 06:28:10 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=E3B840350A72CA6F39BD2BEF85A2BCFB -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_3c1c1942369abb77\nvraid.sys
[2011.03.11 06:44:01 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=F1B0BED906F97E16F6D0C3629D2F21C6 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16778_none_39bef1ad20475e88\nvraid.sys
[2011.03.11 06:52:25 | 000,117,120 | ---- | M] (NVIDIA Corporation) MD5=FCD5C3542A85EEBA7D0833B7E5086C10 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.20921_none_3a779df43942be63\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2011.03.11 06:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\System32\drivers\nvstor.sys
[2011.03.11 06:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_0276fc3b3ea60d41\nvstor.sys
[2011.03.11 06:39:00 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4380E59A170D88C4F1022EFF6719A8A4 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_3ba44e691d6eb11d\nvstor.sys
[2011.03.11 06:44:01 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=4520B63899E867F354EE012D34E11536 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16778_none_39bef1ad20475e88\nvstor.sys
[2011.03.11 06:28:10 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=66D468654A58594F5F3BA63D5AD5B1AF -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_3c1c1942369abb77\nvstor.sys
[2011.03.11 06:52:25 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=8A7583A3B58D3EEB28BB26626526BC91 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.20921_none_3a779df43942be63\nvstor.sys
[2010.11.20 13:30:06 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_dd659ed032d28a14\nvstor.sys
[2010.11.20 13:30:06 | 000,143,744 | ---- | M] (NVIDIA Corporation) MD5=9283C58EBAA2618F93482EB5DABCEC82 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_3be22d131d40bd72\nvstor.sys
[2009.07.14 02:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvstor.sys
< MD5 for: SCECLI.DLL >
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll
[2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\System32\scecli.dll
[2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_3a154c47375d881d\scecli.dll
< MD5 for: SMSS.EXE >
[2013.03.19 03:43:41 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=0294CC751D7FAEB13621EEFB8A749429 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22280_none_ae7bdfb790cddbcf\smss.exe
[2009.07.14 02:14:39 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=16742790895960690237A5143CEDEC8B -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_ac10fe207a85352b\smss.exe
[2013.03.19 03:51:05 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=37F4765554F2CD34AAAB616F696E5539 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.21490_none_ac8ab2c593af8bd4\smss.exe
[2013.07.08 04:02:28 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=634E0B45780F502304592C5615A31089 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22379_none_ae8fb42390bda114\smss.exe
[2013.03.19 03:50:03 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=B24BF638652522BB5E14AB7993FD4A5D -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.17273_none_ac19b4ca7a7f0306\smss.exe
[2013.08.29 01:51:28 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D2A72C71CD6C18A99E920EC5761F0C7D -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22436_none_aeb7f4db909fe272\smss.exe
[2014.04.12 03:06:24 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D8A5E3B8EB601B897AC78B060177E460 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22653_none_ae9f57f190b2c89d\smss.exe
[2014.04.12 03:06:24 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D8A5E3B8EB601B897AC78B060177E460 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22780_none_ae7be93590cdcd92\smss.exe
[2014.04.12 03:06:24 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D8A5E3B8EB601B897AC78B060177E460 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22908_none_aeda6eb19085b310\smss.exe
[2014.04.12 03:06:24 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D8A5E3B8EB601B897AC78B060177E460 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22921_none_aebdccd3909c3991\smss.exe
[2014.04.12 03:06:24 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=D8A5E3B8EB601B897AC78B060177E460 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22923_none_aebfcd67909a6c3f\smss.exe
[2013.03.19 03:49:16 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=DE91DCC7BC55E940979097E98F743205 -- C:\Windows\System32\smss.exe
[2013.03.19 03:49:16 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=DE91DCC7BC55E940979097E98F743205 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18113_none_ae40f33e7774c473\smss.exe
[2013.05.06 04:02:20 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=EC745C0949B101129AB6D39CD63808A6 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22318_none_aecf9361908de017\smss.exe
< MD5 for: SVCHOST.EXE >
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
< MD5 for: TCPIP.SYS >
[2011.04.25 05:56:06 | 001,286,016 | ---- | M] (Microsoft Corporation) MD5=0158D5E9982E9D6A90DFC802F618E130 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16802_none_b347f075c77b9c9d\tcpip.sys
[2011.04.25 05:31:30 | 001,290,624 | ---- | M] (Microsoft Corporation) MD5=24326784DF8F3D5F5BBB9F878CE33C14 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_b52f4dc5c4a121e0\tcpip.sys
[2009.07.14 02:19:10 | 001,285,712 | ---- | M] (Microsoft Corporation) MD5=2CC3D75488ABD3EC628BBB9A4FC84EFC -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_b2f46875c7b9d667\tcpip.sys
[2013.01.03 06:01:49 | 001,303,912 | ---- | M] (Microsoft Corporation) MD5=34AE5CC0C7417AB701C2AA8A7BC75417 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21415_none_b3c99dece09ecc3b\tcpip.sys
[2010.11.20 13:30:12 | 001,290,112 | ---- | M] (Microsoft Corporation) MD5=37E8FA3779668837CA9E2C36D2415949 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_b5257c3dc4a85a01\tcpip.sys
[2013.01.04 05:56:23 | 001,308,504 | ---- | M] (Microsoft Corporation) MD5=4A95845C5F33A4DDEB6AEF6367FB6520 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22209_none_b5becc06ddb98192\tcpip.sys
[2013.07.06 06:05:35 | 001,293,760 | ---- | M] (Microsoft Corporation) MD5=4E8B9BE71B807B3BAEDB7F4243F85E3C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18203_none_b52f2f65c4a146e5\tcpip.sys
[2013.07.06 05:57:37 | 001,309,120 | ---- | M] (Microsoft Corporation) MD5=528F7CC60391DD0FAB0344F32F051FDF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22378_none_b5721e2eddf328f9\tcpip.sys
[2014.04.05 03:25:01 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=5579DD18546999F5D0EC39D018726C6B -- C:\Windows\System32\drivers\tcpip.sys
[2014.04.05 03:25:01 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=5579DD18546999F5D0EC39D018726C6B -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18438_none_b513c4dfc4b513b9\tcpip.sys
[2013.05.08 07:15:22 | 001,309,032 | ---- | M] (Microsoft Corporation) MD5=6088D01FAD49729EA0A5A3D9B9BA8B84 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22319_none_b5b3fe00ddc19aaa\tcpip.sys
[2013.09.07 03:06:48 | 001,309,120 | ---- | M] (Microsoft Corporation) MD5=6C4F3D92764FFA22D28061A4D9235446 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22444_none_b58e8eb0ddde6cf1\tcpip.sys
[2011.04.25 07:31:09 | 001,301,376 | ---- | M] (Microsoft Corporation) MD5=6D4728CFF2724FF3A4654971D61D0F1C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_b5ad1a5addc7c444\tcpip.sys
[2013.01.03 06:05:20 | 001,293,672 | ---- | M] (Microsoft Corporation) MD5=7C0507D2391AF5933600CBCED799F277 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18042_none_b502eb9fc4c2a304\tcpip.sys
[2011.04.25 05:44:18 | 001,298,816 | ---- | M] (Microsoft Corporation) MD5=8861B9A06BA99C6E1D62D0C86DFAB86C -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20951_none_b39a7d5ae0c2aec5\tcpip.sys
[2013.01.04 05:55:21 | 001,287,528 | ---- | M] (Microsoft Corporation) MD5=BBCEAEFF1FD72A026F827CBB2F4AA8AD -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.17206_none_b34bcf71c7782cb0\tcpip.sys
[2013.09.08 03:07:12 | 001,294,272 | ---- | M] (Microsoft Corporation) MD5=CA59F7C570AF70BC174F477CFE2D9EE3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18254_none_b4fa2013c4c8ebf1\tcpip.sys
[2013.05.08 06:38:00 | 001,293,672 | ---- | M] (Microsoft Corporation) MD5=D32FDAC73FCD76B85389C39BC1087F2A -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18148_none_b508ef41c4bd3835\tcpip.sys
[2012.10.03 17:44:01 | 001,308,040 | ---- | M] (Microsoft Corporation) MD5=D490DD0A91B4EAC3B4EE08D11EE37C31 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_b5a428d6ddce3d9a\tcpip.sys
[2013.11.26 12:07:37 | 001,309,632 | ---- | M] (Microsoft Corporation) MD5=DC08335B30D83FB61E9EFE6FDD09D40D -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22525_none_b5a530b8ddcd4b8d\tcpip.sys
[2012.10.03 17:58:30 | 001,293,680 | ---- | M] (Microsoft Corporation) MD5=E23A56F843E2AEBBB209D0ACCA73C640 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_b4ef7439c4d0da52\tcpip.sys
[2014.04.05 03:16:21 | 001,310,144 | ---- | M] (Microsoft Corporation) MD5=EA47AB18E289333AB94397D77CA6E3A1 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22648_none_b59293a4dddacc9b\tcpip.sys
< MD5 for: USERINIT.EXE >
[2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe
[2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009.10.28 07:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_6fc699643622d177\winlogon.exe
[2009.10.28 06:52:08 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=3BABE6767C78FBF5FB8435FEED187F30 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_703394514f56f7c2\winlogon.exe
[2014.07.16 03:56:14 | 000,304,640 | ---- | M] (Microsoft Corporation) MD5=4F37B93C14AEE313BEC52A23AFB15C2E -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.22750_none_7224b2134c7555fa\winlogon.exe
[2014.07.17 02:39:27 | 000,304,128 | ---- | M] (Microsoft Corporation) MD5=52449FD429D6053B78AE564DEF303870 -- C:\Windows\System32\winlogon.exe
[2014.07.17 02:39:27 | 000,304,128 | ---- | M] (Microsoft Corporation) MD5=52449FD429D6053B78AE564DEF303870 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.18540_none_71a5e34e334f9d18\winlogon.exe
[2010.11.20 13:17:54 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
[2009.07.14 02:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe
[2014.03.04 10:17:02 | 000,304,128 | ---- | M] (Microsoft Corporation) MD5=998507B046BA314CE8245364C686FA67 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.18409_none_71da23b23327143c\winlogon.exe
[2014.03.04 11:39:02 | 000,304,640 | ---- | M] (Microsoft Corporation) MD5=D53972F87D850CD2EB4B29B60CAFDD77 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.22616_none_7255f1994c4f8119\winlogon.exe
< MD5 for: WS2_32.DLL >
[2010.11.20 13:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\System32\ws2_32.dll
[2010.11.20 13:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_f4bf1aae2c981ecf\ws2_32.dll
[2009.07.14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[5 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\Windows\SoftwareDistribution\Download\2ab181628e74db96bfd31820cd1a85c1\*.tmp files -> C:\Windows\SoftwareDistribution\Download\2ab181628e74db96bfd31820cd1a85c1\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\e3a33a7a500e9cfca5629669b76be23b\*.tmp files -> C:\Windows\SoftwareDistribution\Download\e3a33a7a500e9cfca5629669b76be23b\*.tmp -> ]
[34 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
[2007.11.07 07:03:18 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2013.08.20 10:21:25 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\7go
[2013.04.29 15:45:02 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Adobe
[2013.08.20 10:12:51 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Babylon
[2015.01.04 09:16:53 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Capcom
[2013.04.23 20:33:21 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\CyberLink
[2014.03.22 14:16:01 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\dvdcss
[2013.04.22 21:13:04 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Identities
[2013.04.25 12:46:42 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\InstallShield
[2013.04.23 20:53:10 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Macromedia
[2009.07.14 10:20:06 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Media Center Programs
[2015.02.14 21:28:05 | 000,000,000 | --SD | M] -- C:\Users\Loznice\AppData\Roaming\Microsoft
[2015.01.05 08:48:26 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Milestone
[2013.04.23 20:25:23 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Mozilla
[2013.04.23 21:11:28 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Nero
[2013.08.20 10:30:22 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\PerformerSoft
[2015.02.14 21:41:27 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Samsung
[2013.11.13 16:30:16 | 000,000,000 | RH-D | M] -- C:\Users\Loznice\AppData\Roaming\SecuROM
[2013.08.20 10:13:08 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\SeeSimilar02
[2015.01.05 09:31:29 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Seznam.cz
[2013.08.20 10:19:24 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\SpeedAnalysis2
[2014.02.05 21:18:19 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\TeamViewer
[2015.02.09 15:04:08 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\vlc
[2015.01.07 08:54:13 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\Wargaming.net
[2013.04.23 20:24:44 | 000,000,000 | ---D | M] -- C:\Users\Loznice\AppData\Roaming\WinRAR
< %APPDATA%\*.exe /s >
[2015.01.05 09:33:58 | 001,522,664 | ---- | M] (Object Browser) -- C:\Users\Loznice\AppData\Roaming\AJYXH.exe
[2015.01.05 09:33:19 | 002,009,576 | ---- | M] (Object Browser) -- C:\Users\Loznice\AppData\Roaming\CGLSAU.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2015.02.14 23:19:46 | 000,020,704 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2015.02.14 23:19:46 | 000,020,704 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2015.02.14 21:49:58 | 000,000,008 | ---- | M] () -- C:\Windows\system32\ANIWZCSUSERNAME{B49B1E4A-C181-4A99-AE9B-CCBD565BA8B8}
[2015.02.14 21:50:07 | 000,003,284 | ---- | M] () -- C:\Windows\system32\ANIWZCS{B49B1E4A-C181-4A99-AE9B-CCBD565BA8B8}
[2015.02.14 21:08:54 | 000,338,800 | ---- | M] () -- C:\Windows\system32\FNTCACHE.DAT
[2015.02.14 21:47:19 | 000,000,188 | ---- | M] () -- C:\Windows\system32\MsiExec.exe.log
[2015.02.14 21:56:52 | 000,147,588 | ---- | M] () -- C:\Windows\system32\perfc005.dat
[2015.02.14 21:56:52 | 000,126,916 | ---- | M] () -- C:\Windows\system32\perfc009.dat
[2015.02.14 21:56:52 | 000,680,734 | ---- | M] () -- C:\Windows\system32\perfh005.dat
[2015.02.14 21:56:52 | 000,665,846 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2015.02.14 21:56:52 | 001,619,980 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI
[2015.02.12 20:52:39 | 000,005,092 | ---- | M] () -- C:\Windows\system32\TeamViewer9_Hooks.log
< %SYSTEMDRIVE%\*.exe >
[2007.11.07 07:03:18 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2015.02.15 10:46:29 | 000,000,512 | ---- | M] () MD5=B1328F04B3C7AE0778E0E7283BDDC812 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2015.01.25 15:23:28 | 014,959,814 | ---- | M] () -- \Users\Loznice\AppData\Local\Temp\SpyHunter-4.1.11.0-+-Crack.rar
[252 \Users\Loznice\AppData\Local\Temp\*.tmp files -> \Users\Loznice\AppData\Local\Temp\*.tmp -> ]
[2014.11.29 16:19:56 | 000,000,776 | ---- | M] () -- \Users\Loznice\AppData\Roaming\Microsoft\Windows\Recent\Colin McRae Rally Remastered + Crack - Skidrow.lnk
[2015.01.04 09:45:00 | 000,000,609 | ---- | M] () -- \Users\Loznice\AppData\Roaming\Microsoft\Windows\Recent\MotoGp-08-crack-by-hori14.lnk
[2007.12.25 22:28:50 | 007,701,544 | ---- | M] () -- \Users\Loznice\Desktop\HRY\Crysis CZ\patch & crack\crysis creck+key\Crack.exe
[2010.02.14 22:21:27 | 004,705,491 | ---- | M] () -- \Users\Loznice\Desktop\hudba\2010 - Destruction - A Savage Symphony - The History Of Annihilation (320)\10 - Cracked Brain (live).mp3
< *keygen* /s >
< *AntiWPA* /s >
< *loader* /s >
[2014.09.03 00:27:24 | 000,268,432 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2014.09.03 00:27:24 | 000,019,096 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2014.08.28 05:00:00 | 001,171,400 | R--- | M] () -- \Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\ExtensionLoader.dll
[2013.12.20 01:37:56 | 000,065,344 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2013.12.20 01:37:44 | 000,073,536 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2013.04.23 21:12:20 | 000,003,784 | ---- | M] () -- \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\55HNWD0C\bundleloader[1].js
[2013.04.23 21:12:30 | 000,000,723 | ---- | M] () -- \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\55HNWD0C\downloaderror[1].js
[2013.04.23 21:12:30 | 000,001,174 | ---- | M] () -- \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\55HNWD0C\downloader[1].js
[2013.08.20 10:12:54 | 000,000,936 | ---- | M] () -- \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JWR54ORY\downloader[1].htm
[2014.02.20 13:57:00 | 000,000,195 | ---- | M] () -- \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JWR54ORY\downloader[2].htm
[2014.02.20 13:57:15 | 000,000,068 | ---- | M] () -- \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JWR54ORY\downloader[3].htm
[1 \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JWR54ORY\*.tmp files -> \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JWR54ORY\*.tmp -> ]
[2015.01.05 09:02:50 | 000,031,516 | ---- | M] () -- \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NEXDAFT1\cz.seznam.software.libfoxloader-3.1.2-win32[1].zip
[2013.08.20 10:13:05 | 000,000,806 | ---- | M] () -- \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NEXDAFT1\downloader[1].htm
[2013.08.20 10:18:37 | 000,000,936 | ---- | M] () -- \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NEXDAFT1\downloader[2].htm
[2013.08.20 10:18:51 | 000,000,806 | ---- | M] () -- \Users\Loznice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OUQCL7SE\downloader[1].htm
[2014.12.29 17:13:42 | 000,002,193 | ---- | M] () -- \Users\Loznice\AppData\Local\Temp\c2b2E3\images\loader.gif
[2014.12.29 17:14:02 | 000,002,193 | ---- | M] () -- \Users\Loznice\AppData\Local\Temp\e5e5d\images\loader.gif
[2013.08.20 10:33:05 | 000,003,208 | ---- | M] () -- \Users\Loznice\AppData\Local\Temp\ibtmpc810551\config\ajax-loader.gif
[2013.08.20 10:33:05 | 000,006,820 | ---- | M] () -- \Users\Loznice\AppData\Local\Temp\ibtmpc810551\config\ajax-loader2.gif
[2012.11.28 14:24:29 | 000,067,584 | ---- | M] () -- \Users\Loznice\Desktop\HRY\FAR CRY 3\FarCry 3 - D1\Crack\ubiorbitapi_r2_loader.dll
[2012.11.28 22:54:12 | 000,003,072 | ---- | M] () -- \Users\Loznice\Desktop\HRY\FAR CRY 3\FarCry 3 - D1\Crack\uplay_r1_loader.dll
[2007.03.16 17:56:16 | 000,019,968 | -H-- | M] () -- \Users\Loznice\Desktop\HRY\hry\Bus Driver CZ\Bus Driver\lib\loaders.dll
[2007.03.11 17:51:00 | 000,005,422 | ---- | M] () -- \Users\Loznice\Documents\Mozilla\Firefox\Profiles\co2oqsqv.default\extensions\{463F6CA5-EE3C-4be1-B7E6-7FEE11953374}\components\ModuleLoader.js
[2013.03.09 08:17:04 | 000,019,080 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000000000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8
[2010.03.24 19:12:34 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000000000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2013.03.09 08:17:04 | 000,268,440 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000000000000F01FEC\14.0.4763\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8
[2010.03.24 19:12:34 | 000,249,680 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000000000000F01FEC\14.0.4763\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.923C1899_09AE_418B_B39D_A7A9EB6A7951
[2009.07.14 13:25:34 | 002,202,645 | R--- | M] () -- \Windows\Setup\SCRIPTS\Windows7Loader.exe
[2015.01.16 07:24:33 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_cs-cz_35c794147472469a.manifest
[2015.01.16 07:24:56 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_da-dk_d301743b6ab84299.manifest
[2015.01.16 07:24:55 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_de-de_d02d09776c8e9733.manifest
[2015.01.16 07:24:26 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_el-gr_78c3370a5ba3ffc1.manifest
[2015.01.16 07:23:55 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_en-us_791ddf705b6ca2f8.manifest
[2015.01.16 07:24:46 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_es-es_78e93c545b93949d.manifest
[2015.01.16 07:24:39 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_fi-fi_1804410150ad86c7.manifest
[2015.01.16 07:23:57 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_fr-fr_1ba0b2534e65aaff.manifest
[2015.01.16 07:24:18 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_hu-hu_6311329b32c57a1b.manifest
[2015.01.16 07:24:05 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_it-it_05c8a89a2597907d.manifest
[2015.01.16 07:24:01 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ja-jp_a7ee27a718b2a258.manifest
[2015.01.16 07:24:02 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ko-kr_4b58045c0b23696e.manifest
[2015.01.16 07:24:19 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_nb-no_33ea8590e348952a.manifest
[2015.01.16 07:24:56 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_nl-nl_3229d0cee4749eff.manifest
[2015.01.16 07:24:20 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pl-pl_78662b50c9970cb3.manifest
[2015.01.16 07:24:20 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pt-br_7aba15f4c820a097.manifest
[2015.01.16 07:24:38 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pt-pt_7b9be560c7901073.manifest
[2015.01.16 07:24:49 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ru-ru_c23ef724ac719e9f.manifest
[2015.01.16 07:24:27 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_sv-se_5e39e199a39aa8fa.manifest
[2015.01.16 07:23:58 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_tr-tr_07472be09256aaeb.manifest
[2015.01.16 07:24:17 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-cn_d8a449de428e7d0a.manifest
[2015.01.16 07:24:44 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-hk_d74f426c4369ef9a.manifest
[2015.01.16 07:24:10 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-tw_dca087343fff597a.manifest
[2015.01.14 07:45:13 | 000,004,224 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22923_none_5dabdf9ce40faccd.manifest
[2015.01.16 07:24:27 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_cs-cz_43ba6b00af8efbf6.manifest
[2015.01.16 07:24:44 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_da-dk_e0f44b27a5d4f7f5.manifest
[2015.01.16 07:24:30 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_de-de_de1fe063a7ab4c8f.manifest
[2015.01.16 07:24:16 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_el-gr_86b60df696c0b51d.manifest
[2015.01.16 07:24:11 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_en-us_8710b65c96895854.manifest
[2015.01.16 07:24:01 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_es-es_86dc134096b049f9.manifest
[2015.01.16 07:24:30 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_fi-fi_25f717ed8bca3c23.manifest
[2015.01.16 07:23:57 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_fr-fr_2993893f8982605b.manifest
[2015.01.16 07:24:42 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_hu-hu_710409876de22f77.manifest
[2015.01.16 07:24:01 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_it-it_13bb7f8660b445d9.manifest
[2015.01.16 07:24:41 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ja-jp_b5e0fe9353cf57b4.manifest
[2015.01.16 07:24:57 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ko-kr_594adb4846401eca.manifest
[2015.01.16 07:24:43 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_nb-no_41dd5c7d1e654a86.manifest
[2015.01.16 07:24:30 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_nl-nl_401ca7bb1f91545b.manifest
[2015.01.16 07:24:43 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pl-pl_8659023d04b3c20f.manifest
[2015.01.16 07:24:36 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pt-br_88acece1033d55f3.manifest
[2015.01.16 07:24:54 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pt-pt_898ebc4d02acc5cf.manifest
[2015.01.16 07:24:50 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ru-ru_d031ce10e78e53fb.manifest
[2015.01.16 07:24:48 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_sv-se_6c2cb885deb75e56.manifest
[2015.01.16 07:24:41 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_tr-tr_153a02cccd736047.manifest
[2015.01.16 07:24:05 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-cn_e69720ca7dab3266.manifest
[2015.01.16 07:24:37 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-hk_e54219587e86a4f6.manifest
[2015.01.16 07:24:33 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-tw_ea935e207b1c0ed6.manifest
[2015.01.16 07:24:39 | 000,004,200 | ---- | M] () -- \Windows\SoftwareDistribution\Download\2079b988478ffe9fc8059ab7e3ea5fd5\x86_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.22923_none_4273b44ce20009f9.manifest
[2015.01.12 23:09:27 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_da-dk_d2ff73a76aba0feb.manifest
[2015.01.12 23:09:23 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_de-de_d02b08e36c906485.manifest
[2015.01.12 23:09:27 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_el-gr_78c136765ba5cd13.manifest
[2015.01.12 23:09:31 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_en-us_791bdedc5b6e704a.manifest
[2015.01.12 23:09:17 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_es-es_78e73bc05b9561ef.manifest
[2015.01.12 23:09:23 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_fi-fi_1802406d50af5419.manifest
[2015.01.12 23:09:20 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_fr-fr_1b9eb1bf4e677851.manifest
[2015.01.12 23:09:32 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_hu-hu_630f320732c7476d.manifest
[2015.01.12 23:09:21 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_it-it_05c6a80625995dcf.manifest
[2015.01.12 23:09:23 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_ja-jp_a7ec271318b46faa.manifest
[2015.01.12 23:09:22 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_ko-kr_4b5603c80b2536c0.manifest
[2015.01.12 23:09:23 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_nb-no_33e884fce34a627c.manifest
[2015.01.12 23:09:28 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_nl-nl_3227d03ae4766c51.manifest
[2015.01.12 23:09:30 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_pl-pl_78642abcc998da05.manifest
[2015.01.12 23:09:11 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_pt-br_7ab81560c8226de9.manifest
[2015.01.12 23:09:25 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_pt-pt_7b99e4ccc791ddc5.manifest
[2015.01.12 23:09:23 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_ru-ru_c23cf690ac736bf1.manifest
[2015.01.12 23:09:29 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_sv-se_5e37e105a39c764c.manifest
[2015.01.12 23:09:33 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_tr-tr_07452b4c9258783d.manifest
[2015.01.12 23:09:32 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_zh-cn_d8a2494a42904a5c.manifest
[2015.01.12 23:09:33 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_zh-hk_d74d41d8436bbcec.manifest
[2015.01.12 23:09:22 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_zh-tw_dc9e86a0400126cc.manifest
[2015.01.12 23:09:24 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_cs-cz_43b86a6caf90c948.manifest
[2015.01.12 23:09:25 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_da-dk_e0f24a93a5d6c547.manifest
[2015.01.12 23:09:18 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_de-de_de1ddfcfa7ad19e1.manifest
[2015.01.12 23:09:19 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_el-gr_86b40d6296c2826f.manifest
[2015.01.12 23:09:17 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_en-us_870eb5c8968b25a6.manifest
[2015.01.12 23:09:22 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_es-es_86da12ac96b2174b.manifest
[2015.01.12 23:09:31 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_fi-fi_25f517598bcc0975.manifest
[2015.01.12 23:09:33 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_fr-fr_299188ab89842dad.manifest
[2015.01.12 23:09:17 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_hu-hu_710208f36de3fcc9.manifest
[2015.01.12 23:09:29 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_it-it_13b97ef260b6132b.manifest
[2015.01.12 23:09:17 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_ja-jp_b5defdff53d12506.manifest
[2015.01.12 23:09:18 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_ko-kr_5948dab44641ec1c.manifest
[2015.01.12 23:09:19 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_nb-no_41db5be91e6717d8.manifest
[2015.01.12 23:09:12 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_nl-nl_401aa7271f9321ad.manifest
[2015.01.12 23:09:12 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_pl-pl_865701a904b58f61.manifest
[2015.01.12 23:09:15 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_pt-br_88aaec4d033f2345.manifest
[2015.01.12 23:09:32 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_pt-pt_898cbbb902ae9321.manifest
[2015.01.12 23:09:29 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_ru-ru_d02fcd7ce790214d.manifest
[2015.01.12 23:09:33 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_sv-se_6c2ab7f1deb92ba8.manifest
[2015.01.12 23:09:25 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_tr-tr_15380238cd752d99.manifest
[2015.01.12 23:09:27 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_zh-cn_e69520367dacffb8.manifest
[2015.01.12 23:09:13 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_zh-hk_e54018c47e887248.manifest
[2015.01.12 23:09:13 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_zh-tw_ea915d8c7b1ddc28.manifest
[2015.01.12 04:35:24 | 000,004,249 | ---- | M] () -- \Windows\SoftwareDistribution\Download\64052560141f3836868bc48df78adb1e\x86_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.22921_none_4271b3b8e201d74b.manifest
[2015.01.16 07:24:56 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_da-dk_d301743b6ab84299.manifest
[2015.01.16 07:24:55 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_de-de_d02d09776c8e9733.manifest
[2015.01.16 07:24:26 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_el-gr_78c3370a5ba3ffc1.manifest
[2015.01.16 07:23:55 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_en-us_791ddf705b6ca2f8.manifest
[2015.01.16 07:24:46 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_es-es_78e93c545b93949d.manifest
[2015.01.16 07:24:39 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_fi-fi_1804410150ad86c7.manifest
[2015.01.16 07:23:57 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_fr-fr_1ba0b2534e65aaff.manifest
[2015.01.16 07:24:18 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_hu-hu_6311329b32c57a1b.manifest
[2015.01.16 07:24:05 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_it-it_05c8a89a2597907d.manifest
[2015.01.16 07:24:01 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ja-jp_a7ee27a718b2a258.manifest
[2015.01.16 07:24:02 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ko-kr_4b58045c0b23696e.manifest
[2015.01.16 07:24:19 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_nb-no_33ea8590e348952a.manifest
[2015.01.16 07:24:56 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_nl-nl_3229d0cee4749eff.manifest
[2015.01.16 07:24:20 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pl-pl_78662b50c9970cb3.manifest
[2015.01.16 07:24:20 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pt-br_7aba15f4c820a097.manifest
[2015.01.16 07:24:38 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pt-pt_7b9be560c7901073.manifest
[2015.01.16 07:24:49 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ru-ru_c23ef724ac719e9f.manifest
[2015.01.16 07:24:27 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_sv-se_5e39e199a39aa8fa.manifest
[2015.01.16 07:23:58 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_tr-tr_07472be09256aaeb.manifest
[2015.01.16 07:24:17 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-cn_d8a449de428e7d0a.manifest
[2015.01.16 07:24:44 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-hk_d74f426c4369ef9a.manifest
[2015.01.16 07:24:10 | 000,002,777 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-tw_dca087343fff597a.manifest
[2015.01.16 07:24:27 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_cs-cz_43ba6b00af8efbf6.manifest
[2015.01.16 07:24:44 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_da-dk_e0f44b27a5d4f7f5.manifest
[2015.01.16 07:24:30 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_de-de_de1fe063a7ab4c8f.manifest
[2015.01.16 07:24:16 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_el-gr_86b60df696c0b51d.manifest
[2015.01.16 07:24:11 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_en-us_8710b65c96895854.manifest
[2015.01.16 07:24:01 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_es-es_86dc134096b049f9.manifest
[2015.01.16 07:24:30 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_fi-fi_25f717ed8bca3c23.manifest
[2015.01.16 07:23:57 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_fr-fr_2993893f8982605b.manifest
[2015.01.16 07:24:42 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_hu-hu_710409876de22f77.manifest
[2015.01.16 07:24:01 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_it-it_13bb7f8660b445d9.manifest
[2015.01.16 07:24:41 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ja-jp_b5e0fe9353cf57b4.manifest
[2015.01.16 07:24:57 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ko-kr_594adb4846401eca.manifest
[2015.01.16 07:24:43 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_nb-no_41dd5c7d1e654a86.manifest
[2015.01.16 07:24:30 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_nl-nl_401ca7bb1f91545b.manifest
[2015.01.16 07:24:43 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pl-pl_8659023d04b3c20f.manifest
[2015.01.16 07:24:36 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pt-br_88acece1033d55f3.manifest
[2015.01.16 07:24:54 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_pt-pt_898ebc4d02acc5cf.manifest
[2015.01.16 07:24:50 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_ru-ru_d031ce10e78e53fb.manifest
[2015.01.16 07:24:48 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_sv-se_6c2cb885deb75e56.manifest
[2015.01.16 07:24:41 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_tr-tr_153a02cccd736047.manifest
[2015.01.16 07:24:05 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-cn_e69720ca7dab3266.manifest
[2015.01.16 07:24:37 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-hk_e54219587e86a4f6.manifest
[2015.01.16 07:24:33 | 000,002,780 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_zh-tw_ea935e207b1c0ed6.manifest
[2015.01.16 07:24:39 | 000,004,200 | ---- | M] () -- \Windows\SoftwareDistribution\Download\cef3bf5457f9631d6519b4523d8f744f\x86_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.22923_none_4273b44ce20009f9.manifest
[2013.08.02 02:48:15 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2009.07.14 05:54:01 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2014.10.15 21:04:30 | 000,002,777 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_cs-cz_3540f2755b51fb60.manifest
[2014.10.15 21:04:30 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_cs-cz_3540f2755b51fb60_winload.exe.mui_3bc5b827
[2014.10.15 21:04:30 | 000,030,272 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_cs-cz_3540f2755b51fb60_winresume.exe.mui_ff8b5358
[2014.10.15 21:04:34 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.18574_none_5ced2dcdcb19ba9a.manifest
[2014.10.15 21:04:34 | 000,521,384 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.18574_none_5ced2dcdcb19ba9a_winload.exe_75835076
[2014.10.15 21:04:35 | 000,455,752 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.18574_none_5ced2dcdcb19ba9a_winresume.exe_85cd1215
[2009.07.14 03:17:38 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 03:17:38 | 000,017,472 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23_spldr.sys_98bd87a0
[2009.07.14 09:42:11 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_3318c4cd5e5d0f86.manifest
[2014.07.08 22:41:55 | 000,002,777 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_cs-cz_3540f2755b51fb60.manifest
[2014.07.08 22:42:00 | 000,002,777 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_cs-cz_35bfc13a7477b442.manifest
[2014.12.13 02:50:10 | 000,002,777 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22908_cs-cz_35e2355e745d8d6b.manifest
[2015.01.12 23:09:15 | 000,002,777 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_cs-cz_35c59380747413ec.manifest
[2015.01.16 07:24:33 | 000,002,777 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_cs-cz_35c794147472469a.manifest
[2009.07.14 02:47:46 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9.manifest
[2009.08.19 08:38:48 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16411_none_5b44c087cdc549ed.manifest
[2009.08.19 08:21:21 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20509_none_5be12f8ee6d3987e.manifest
[2010.11.20 04:02:40 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_5d2e241dcae8f953.manifest
[2014.08.19 04:02:10 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.18574_none_5ced2dcdcb19ba9a.manifest
[2014.08.19 04:09:35 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22780_none_5d67fb6ae4430e20.manifest
[2014.12.12 07:03:57 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22908_none_5dc680e6e3faf39e.manifest
[2015.01.12 04:35:19 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22921_none_5da9df08e4117a1f.manifest
[2015.01.14 07:45:13 | 000,004,224 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22923_none_5dabdf9ce40faccd.manifest
[2009.07.14 02:52:31 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:45:38 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17135_none_0abe3b21dcfb1c4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:56:23 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17179_none_0a96fc99dd17f16b\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 05:43:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17206_none_0adfad15dce1def6\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:48:05 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21335_none_0b47d9d2f618b93c\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:44:10 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21386_none_0b12ca80f6405e48\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 05:39:49 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21416_none_0b5e7bdaf60797d8\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:40:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:45:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 02:48:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_0cb36eedda15c917\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 05:43:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22209_none_0d52a9aaf32333d8\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 06:53:29 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22411_none_0d3fdb3af3327f5f\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.04 11:35:49 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22616_none_0d44e078f32df860\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.04.12 03:03:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22653_none_0d169feaf3511c1f\api-ms-win-core-libraryloader-l1-1-0.dll
< *minodlogin* /s >
< *tnod* /s >
< *AutoKMS* /s >
[1 \Windows\*.tmp files -> \Windows\*.tmp -> ]
[2013.04.23 20:08:13 | 000,000,715 | ---- | M] () -- \Windows\AutoKMS\AutoKMS.ini
[2014.09.15 08:41:54 | 000,118,006 | ---- | M] () -- \Windows\AutoKMS\AutoKMS.log
< *activator* /s >
[2013.03.20 06:24:05 | 000,139,016 | ---- | M] () -- \Files\subsys\Activator\_PyActivator.pyd
< *serial* /s >
[2014.05.13 22:17:02 | 000,434,368 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30514.0\System.Runtime.Serialization.dll
[2014.09.02 21:53:22 | 001,164,288 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30514.0\System.Runtime.Serialization.ni.dll
[2014.07.10 23:24:10 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2010.11.05 02:53:39 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2015.02.05 10:28:09 | 000,000,650 | ---- | M] () -- \Users\Loznice\AppData\Roaming\Microsoft\Windows\Recent\serial.lnk
[2013.01.12 22:55:08 | 000,000,136 | ---- | M] () -- \Users\Loznice\Desktop\HRY\Crysis CZ\serial.txt
[2015.02.05 10:41:17 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC\System.Runtime.Serialization.Formatters.Soap\1.0.5000.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013.07.08 13:43:48 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.06.24 00:43:20 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.13 03:37:50 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2014.07.10 23:24:10 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014.10.16 08:59:45 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\91eb4f41130c65ef17f0fee1d3ab48fb\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.10.16 10:06:55 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\b1e0939384cc320d6ac7b8921ccc2877\System.Runtime.Serialization.ni.dll
[2015.01.23 03:04:22 | 000,306,176 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\a94049de665f1854ea5df1a857b2c68f\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2015.01.23 03:04:22 | 000,000,440 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\a94049de665f1854ea5df1a857b2c68f\System.Runtime.Serialization.Formatters.Soap.ni.dll.aux
[2015.01.23 03:05:48 | 002,855,424 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\187177229c00aec6dec613ea4b9ff209\System.Runtime.Serialization.ni.dll
[2015.01.23 03:05:48 | 000,000,996 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\187177229c00aec6dec613ea4b9ff209\System.Runtime.Serialization.ni.dll.aux
[2015.01.23 09:45:33 | 000,025,600 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\ad0261438ff8f46e093faa717226ebef\System.Xml.Serialization.ni.dll
[2015.01.23 09:45:33 | 000,000,284 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\ad0261438ff8f46e093faa717226ebef\System.Xml.Serialization.ni.dll.aux
[2014.04.12 00:48:40 | 001,051,888 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\65FC11932FE9AB9348A62CB73DDC6058\4.5.51209\System.Runtime.Serialization.dll.x86
[2014.04.12 00:48:40 | 001,051,888 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\65FC11932FE9AB9348A62CB73DDC6058\4.5.51209\System.Runtime.Serialization.dll_gac_x86
[2013.09.11 22:33:38 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.04.12 00:48:40 | 000,133,432 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2014.04.11 23:08:06 | 000,029,472 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Json\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Json.dll
[2014.04.11 23:08:06 | 000,029,512 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Primitives\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Primitives.dll
[2013.09.11 22:33:38 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2014.04.11 23:08:06 | 000,029,976 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Xml\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Xml.dll
[2014.07.23 00:17:44 | 001,050,840 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014.04.11 23:08:06 | 000,045,800 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2014.04.11 23:08:06 | 000,029,928 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.XmlSerializer\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Xml.XmlSerializer.dll
[2003.02.21 07:26:56 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Serialization.Formatters.Soap.dll
[2014.06.24 00:43:20 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.05 02:53:33 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.07.10 23:24:11 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2014.07.23 00:17:44 | 001,050,840 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2014.04.12 00:48:40 | 000,133,432 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2014.04.11 23:08:06 | 000,029,472 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Json.dll
[2014.04.11 23:08:06 | 000,029,512 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2014.04.11 23:08:06 | 000,029,976 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2014.04.11 23:08:06 | 000,045,800 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2014.04.11 23:08:06 | 000,029,928 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.XmlSerializer.dll
[2013.09.11 22:33:38 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.09.11 22:33:38 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2009.07.14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2009.07.14 09:43:17 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009.07.14 00:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\drivers\serial.sys
[2009.07.14 09:43:30 | 000,009,728 | ---- | M] () -- \Windows\System32\drivers\cs-CZ\serial.sys.mui
[2009.07.13 23:13:45 | 001,068,032 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\mdmmotsm.inf_x86_neutral_c1415d9789c54b89\smserial.sys
[2009.07.14 00:45:33 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_x86_neutral_c1a802e06677f73f\serial.sys
[2009.07.13 23:09:18 | 000,031,232 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_x86_neutral_63e72c669d043f14\grserial.sys
[2009.07.14 03:18:03 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009.07.14 03:18:03 | 000,015,952 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486_kdcom.dll_db5e7744
[2009.07.14 09:43:55 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2009.07.14 03:18:51 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2009.07.14 02:52:33 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896.manifest
[2012.10.06 19:07:20 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.17136_none_a6a4fe887487d009.manifest
[2012.10.06 19:58:54 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.21337_none_8fd740dc8e2f4a01.manifest
[2010.11.20 04:06:16 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c.manifest
[2012.10.05 18:15:39 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285.manifest
[2014.07.02 06:57:49 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.18523_none_a6803b1074d97c29.manifest
[2014.07.14 03:04:09 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.18532_none_a681522274d87bdf.manifest
[2012.10.05 18:17:50 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d.manifest
[2014.07.02 07:07:46 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22733_none_8fb394768e7ff5d7.manifest
[2014.07.14 03:04:27 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22743_none_8fb494c08e7f0f2e.manifest
[2009.07.14 09:42:43 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2012.10.06 20:19:17 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.17136_cs-cz_3450454183d3f023.manifest
[2012.10.06 20:26:57 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.21337_cs-cz_1d8287959d7b6a1b.manifest
[2012.10.05 20:04:43 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f.manifest
[2014.07.02 07:50:42 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18523_cs-cz_342b81c984259c43.manifest
[2014.07.14 04:14:58 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18532_cs-cz_342c98db84249bf9.manifest
[2012.10.05 20:02:24 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797.manifest
[2014.07.02 21:15:55 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22733_cs-cz_1d5edb2f9dcc15f1.manifest
[2014.07.14 04:04:07 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22743_cs-cz_1d5fdb799dcb2f48.manifest
[2009.07.14 02:51:52 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9.manifest
[2012.10.06 19:11:48 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.17136_none_d6e834229c2ed13c.manifest
[2012.10.06 20:03:01 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.21337_none_c01a7676b5d64b34.manifest
[2010.11.20 04:05:38 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f.manifest
[2012.10.05 18:15:03 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8.manifest
[2014.07.02 07:00:03 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.18523_none_d6c370aa9c807d5c.manifest
[2014.07.14 03:06:40 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.18532_none_d6c487bc9c7f7d12.manifest
[2012.10.05 18:17:15 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0.manifest
[2014.07.02 07:10:04 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22733_none_bff6ca10b626f70a.manifest
[2014.07.14 03:06:53 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22743_none_bff7ca5ab6261061.manifest
[2009.07.14 02:49:26 | 000,002,762 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_118be3420dfe8486.manifest
[2009.07.14 02:45:27 | 000,000,866 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_2c93290b67c98d09.manifest
[2009.07.14 02:57:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b.manifest
[2012.10.06 19:09:38 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.17136_none_dbc2dfefdd056b7e.manifest
[2012.10.06 20:00:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.21337_none_c4f52243f6ace576.manifest
[2010.11.20 04:10:46 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1.manifest
[2012.10.05 18:19:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa.manifest
[2014.07.02 06:58:58 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18523_none_db9e1c77dd57179e.manifest
[2014.07.14 03:05:25 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18532_none_db9f3389dd561754.manifest
[2012.10.05 18:22:10 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2.manifest
[2014.07.02 07:08:55 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22733_none_c4d175ddf6fd914c.manifest
[2014.07.14 03:05:41 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22743_none_c4d27627f6fcaaa3.manifest
[2009.06.10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2014.06.24 00:43:20 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7601.18523_none_1c70653de072abde\System.Runtime.Serialization.Formatters.Soap.dll
[2014.06.24 00:43:36 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7601.22733_none_05a3bea3fa19258c\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.14 09:43:23 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.07.08 13:43:48 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7601.18523_cs-cz_d5997ba9da0ab4d7\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 22:14:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896\System.Runtime.Serialization.dll
[2012.10.06 11:54:26 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.17136_none_a6a4fe887487d009\System.Runtime.Serialization.dll
[2012.10.06 11:57:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.21337_none_8fd740dc8e2f4a01\System.Runtime.Serialization.dll
[2010.11.05 02:52:39 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c\System.Runtime.Serialization.dll
[2012.10.05 11:53:24 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285\System.Runtime.Serialization.dll
[2014.03.09 22:47:42 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.18523_none_a6803b1074d97c29\System.Runtime.Serialization.dll
[2014.07.10 23:24:11 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.18532_none_a681522274d87bdf\System.Runtime.Serialization.dll
[2012.10.06 11:57:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d\System.Runtime.Serialization.dll
[2014.03.17 15:38:28 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22733_none_8fb394768e7ff5d7\System.Runtime.Serialization.dll
[2014.07.08 00:27:52 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22743_none_8fb494c08e7f0f2e\System.Runtime.Serialization.dll
[2009.07.14 09:43:37 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2009.07.14 09:43:37 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.17136_cs-cz_3450454183d3f023\System.RunTime.Serialization.Resources.dll
[2009.07.14 09:43:37 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.21337_cs-cz_1d8287959d7b6a1b\System.RunTime.Serialization.Resources.dll
[2010.11.13 02:55:26 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f\System.RunTime.Serialization.Resources.dll
[2010.11.13 03:37:50 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18523_cs-cz_342b81c984259c43\System.RunTime.Serialization.Resources.dll
[2010.11.13 03:37:50 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18532_cs-cz_342c98db84249bf9\System.RunTime.Serialization.Resources.dll
[2010.11.13 03:37:50 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797\System.RunTime.Serialization.Resources.dll
[2010.11.13 03:37:50 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22733_cs-cz_1d5edb2f9dcc15f1\System.RunTime.Serialization.Resources.dll
[2010.11.13 03:37:50 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22743_cs-cz_1d5fdb799dcb2f48\System.RunTime.Serialization.Resources.dll
[2009.06.10 22:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9\System.Runtime.Serialization.dll
[2012.10.06 11:54:25 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.17136_none_d6e834229c2ed13c\System.Runtime.Serialization.dll
[2012.10.06 11:57:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.21337_none_c01a7676b5d64b34\System.Runtime.Serialization.dll
[2010.11.05 02:52:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f\System.Runtime.Serialization.dll
[2012.10.05 11:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8\System.Runtime.Serialization.dll
[2014.03.09 22:47:42 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.18523_none_d6c370aa9c807d5c\System.Runtime.Serialization.dll
[2014.07.10 23:24:10 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.18532_none_d6c487bc9c7f7d12\System.Runtime.Serialization.dll
[2012.10.06 11:57:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0\System.Runtime.Serialization.dll
[2014.03.17 15:38:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22733_none_bff6ca10b626f70a\System.Runtime.Serialization.dll
[2014.07.08 00:27:52 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22743_none_bff7ca5ab6261061\System.Runtime.Serialization.dll
[2009.07.13 23:13:45 | 001,068,032 | ---- | M] () -- \Windows\winsxs\x86_mdmmotsm.inf_31bf3856ad364e35_6.1.7600.16385_none_7a97936f8a972896\smserial.sys
[2009.07.14 09:43:15 | 000,011,776 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_c002c1170ca9a88f\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.05 02:53:33 | 000,011,776 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_c233d4df09982c29\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.05 02:53:33 | 000,011,776 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_cs-cz_c227ede109a14864\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.05 02:53:33 | 000,011,776 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.22731_cs-cz_c2a4bc1222c8ce98\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.07.14 09:43:17 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009.07.14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2009.07.14 09:43:37 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_5d4a68b4b3d26ecc\System.RunTime.Serialization.Resources.dll
[2010.11.05 02:53:39 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_5f7b7c7cb0c0f266\System.RunTime.Serialization.Resources.dll
[2010.11.05 02:53:39 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_cs-cz_5f6f957eb0ca0ea1\System.RunTime.Serialization.Resources.dll
[2010.11.05 02:53:39 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.22733_cs-cz_5fee6443c9efc783\System.RunTime.Serialization.Resources.dll
[2009.07.14 09:43:30 | 000,009,728 | ---- | M] () -- \Windows\winsxs\x86_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_c48c78a9ad8ff996\serial.sys.mui
[2009.07.14 00:45:33 | 000,083,456 | ---- | M] () -- \Windows\winsxs\x86_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_f86e06d519b1d9a4\serial.sys
[2009.07.13 23:09:18 | 000,031,232 | ---- | M] () -- \Windows\winsxs\x86_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_7280378295916274\grserial.sys
[2009.06.10 22:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b\System.Runtime.Serialization.dll
[2012.10.06 11:54:25 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.17136_none_dbc2dfefdd056b7e\System.Runtime.Serialization.dll
[2012.10.06 11:57:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.21337_none_c4f52243f6ace576\System.Runtime.Serialization.dll
[2010.11.05 02:52:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1\System.Runtime.Serialization.dll
[2012.10.05 11:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa\System.Runtime.Serialization.dll
[2014.03.09 22:47:42 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18523_none_db9e1c77dd57179e\System.Runtime.Serialization.dll
[2014.07.10 23:24:10 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18532_none_db9f3389dd561754\System.Runtime.Serialization.dll
[2012.10.06 11:57:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2\System.Runtime.Serialization.dll
[2014.03.17 15:38:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22733_none_c4d175ddf6fd914c\System.Runtime.Serialization.dll
[2014.07.08 00:27:52 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22743_none_c4d27627f6fcaaa3\System.Runtime.Serialization.dll
< *w7lxe* /s >
Re: prosím o kontrola logu
a koneček
========== Alternate Data Streams ==========
@Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT
@Alternate Data Stream - 118 bytes -> C:\ProgramData\Temp:56E2E879
< End of report >
děkuji
========== Alternate Data Streams ==========
@Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT
@Alternate Data Stream - 118 bytes -> C:\ProgramData\Temp:56E2E879
< End of report >
děkuji
Re: prosím o kontrola logu
No, nevim, jestli jste se uz majitele ptal, nicmene ja uz odpoved znam 
A pravidla fora hovori jasne http://forum.viry.cz/viewtopic.php?f=12&t=115512
A pravidla fora hovori jasne http://forum.viry.cz/viewtopic.php?f=12&t=115512
Pomáhat NELZE:
2) Pokud stroj uživatele prokazatelně obsahuje nelegální hostitelský čí ochranný software
(operační systém, antivir, firewall, atd.), je nutné navést uživatele k nápravě, např. skrze neplacený software,
a začít řešit, až v době kdy je PC "v pořádku". V případě že uživatel nechce na pravidla přistoupit,
je nutné jej vyzvat ať fórum opustí, a vrátí se až je splní.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: prosím o kontrola logu
Majitele jsem se ptal. On původ nezná, protože není prvním majitelem atd.
Mě situace o legálnosti na počátku vůbec nenapadla, protože u sebe tento problém nemusím řešit.
Díky
Mě situace o legálnosti na počátku vůbec nenapadla, protože u sebe tento problém nemusím řešit.
Díky
Re: prosím o kontrola logu
No je tam tzv ochcavadlo licence, cili je jasne, ze legalni nebude. A pravidla mi nedovoluji pokracovat.
Muzete tam udelat beznou udrzbu - ADWClenaer, CClenaer, Defraggler. Treba se pc ulevi.
Vic poradit nemuzu
Muzete tam udelat beznou udrzbu - ADWClenaer, CClenaer, Defraggler. Treba se pc ulevi.
Vic poradit nemuzu
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Přispějete na provoz fóra?