Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Problém s IE

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Problém s IE

#16 Příspěvek od Márty84 »

Jak casto k tomu dochazi (pokazde, jednou za minutu, jednou za hodinu atd.)

Na jakych strankach se to kousne (porad u tech stejnych, nebo zcela nahodne u vsech, pripadne s jakym obsahem - jen s textem, nebo u pisnocek, videa...)


:arrow: Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
dol
Návštěvník
Návštěvník
Příspěvky: 101
Registrován: 12 úno 2009 09:42

Re: Problém s IE

#17 Příspěvek od dol »

Zdravím, ještě jsem pro odstranění uvedené závady na Seznamu (na jejich radu) v IE vymazal dočasné soubory, historii a cookies a přestože bych to nechtěl zakřiknout. už několik dní se IE nezasekl. Takže vaše pomoc byla úspěšná a moc díky.
Nahoru
dol
Návštěvník
Návštěvník
Příspěvky: 101
Registrován: 12 úno 2009 09:42

Re: Problém s IE

#18 Příspěvek od dol »

A teď se musím omluvit, zapomněl jsem "otočit " stránku, takže jsem vaše doporučení oldtimeru přehlédl. Mám ho ještě provést?
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Problém s IE

#19 Příspěvek od Márty84 »

No docasne soubory atd. odstrani i CCleaner, takze je to trochu divne :arcisit: , no ale hlavne ze to funguje. Pokud tedy vse bezi jak ma, nemusite krok s OTL provadet :wink:

PC tedy jeste par dnu sledujte a dejte vedet. Bud tema uzavreme, nebo kouknem hloubeji :James008:
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
dol
Návštěvník
Návštěvník
Příspěvky: 101
Registrován: 12 úno 2009 09:42

Re: Problém s IE

#20 Příspěvek od dol »

Vypadá to dobře, asi 2x se IE na chvilku zastavil, ale pak šel normálně. Snad jediné, co zůstalo, ale nevadí, je, že při rozklikávání složky v Oblíbených se ikony shora dolů jen pomalu objevují.
Ještě jednou díky, snad to vydrží.
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Problém s IE

#21 Příspěvek od Márty84 »

Logy vypadaji v poradku. Pokud chcete, spustte jeste to OTL, to ukaze pripadne smeti (ne havet, ale zbytecnosti a brzdy) a treba by se to jeste o fous zlepsilo. Jinak uz s tim nic vic takhle na dalku nenadelame :-)

Ale ted minimalne tyden nebudu u pc, takze bych pripadne logy zkontroloval az pak ;-)
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
dol
Návštěvník
Návštěvník
Příspěvky: 101
Registrován: 12 úno 2009 09:42

Re: Problém s IE

#22 Příspěvek od dol »

Nějak se mi nedaří. Před spuštěním jsem nahoře zaškrtnul Scan All Users, vpravo dole File-Lop Check a File- Purity Scan. Pak nahoře Run Scan.
V hlavičce se na okamžik objevilo Program neodpovídá, ale scanování se rozeběhlo. Po několika minutách se zastavilo a ve Správci úloh jsem zjistil, že program neodpovídá při trvalém zatížení procesoru 50%. Zkouším snímek při zastavení přiložit, ale nevím, zda se mi to podaří. Nevím, jak snímek pomocí Fast Stone Capture správně přiložit.
Celou akci jsem zopakoval a skenování se zastavilo přesně na stejném místě.
Přílohy
zastavení OTS.jpg
zastavení OTS.jpg (114.19 KiB) Zobrazeno 3059 x
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Problém s IE

#23 Příspěvek od Márty84 »

Stahnete nove OTL, mate starou verzi.

A zkuste tam pak zkopirovat tento upraveny text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
dol
Návštěvník
Návštěvník
Příspěvky: 101
Registrován: 12 úno 2009 09:42

Re: Problém s IE

#24 Příspěvek od dol »

Zdravím, snad se podařilo. Na konci údaje o mém počítači.

OTL logfile created on: 22. 8. 2016 11:14:20 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Admin\Desktop
An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.18427)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d. M. yyyy

2,00 Gb Total Physical Memory | 1,13 Gb Available Physical Memory | 56,34% Memory free
2,62 Gb Paging File | 1,47 Gb Available in Paging File | 55,92% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 100,25 Gb Total Space | 46,08 Gb Free Space | 45,97% Space Free | Partition Type: NTFS
Drive D: | 132,29 Gb Total Space | 75,05 Gb Free Space | 56,73% Space Free | Partition Type: NTFS

Computer Name: STOLNIPC | User Name: Admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2016/08/22 11:12:17 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Admin\Desktop\OTL.exe
PRC - [2016/07/29 08:33:00 | 000,288,920 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.3.31.5\GoogleCrashHandler.exe
PRC - [2016/06/25 01:45:12 | 000,082,128 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2016/02/09 03:31:39 | 002,412,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2016/02/08 21:43:15 | 000,524,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SettingSyncHost.exe
PRC - [2015/07/23 11:30:03 | 000,138,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\livecomm.exe
PRC - [2015/07/14 21:06:59 | 002,631,824 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2015/07/14 21:06:54 | 001,871,504 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2015/07/14 21:06:53 | 018,680,464 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
PRC - [2015/07/14 21:06:53 | 005,809,808 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
PRC - [2015/07/14 21:06:53 | 004,304,528 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
PRC - [2015/07/14 21:06:53 | 000,921,232 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
PRC - [2015/07/07 11:45:10 | 000,326,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MpCmdRun.exe
PRC - [2014/12/13 09:30:19 | 001,818,952 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2014/12/13 09:30:19 | 000,971,920 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2014/11/08 03:45:43 | 000,897,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SkyDrive.exe
PRC - [2014/10/29 05:18:49 | 000,070,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2014/10/29 05:18:49 | 000,067,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhostex.exe
PRC - [2014/10/29 05:10:01 | 000,029,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RuntimeBroker.exe
PRC - [2014/10/29 02:59:34 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dasHost.exe
PRC - [2014/10/29 02:59:18 | 000,299,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2009/12/02 20:40:40 | 000,068,136 | ---- | M] () -- C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe


========== Modules (No Company Name) ==========

MOD - [2015/07/14 21:06:59 | 000,011,920 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\Update Core\detoured.dll


========== Services (SafeList) ==========

SRV - [2016/06/25 01:45:12 | 000,082,128 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2016/05/23 15:17:32 | 000,324,224 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2016/02/08 21:37:24 | 001,175,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AppXDeploymentServer.dll -- (AppXSvc)
SRV - [2016/02/03 17:08:59 | 001,273,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\workfolderssvc.dll -- (workfolderssvc)
SRV - [2015/07/22 15:50:23 | 001,172,992 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\diagtrack.dll -- (DiagTrack)
SRV - [2015/07/16 20:42:44 | 000,064,512 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV - [2015/07/14 21:06:54 | 001,871,504 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2015/07/14 21:06:53 | 004,304,528 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe -- (NvStreamSvc)
SRV - [2015/07/14 21:06:53 | 000,921,232 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe -- (GfExperienceService)
SRV - [2015/07/07 11:45:10 | 000,284,520 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV - [2015/07/07 11:45:10 | 000,022,224 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV - [2015/05/30 21:24:56 | 000,193,536 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV - [2015/05/12 15:18:50 | 000,207,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV - [2015/05/07 17:05:40 | 000,367,104 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2015/02/21 01:24:23 | 000,667,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\lsm.dll -- (LSM)
SRV - [2014/12/13 09:03:05 | 000,410,768 | ---- | M] (NVIDIA Corporation) [On_Demand | Stopped] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2014/10/31 05:12:14 | 000,102,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV - [2014/10/29 05:13:19 | 002,948,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\WSService.dll -- (WSService)
SRV - [2014/10/29 03:57:59 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wephostsvc.dll -- (WEPHOSTSVC)
SRV - [2014/10/29 03:57:46 | 000,028,672 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\efssvc.dll -- (EFS)
SRV - [2014/10/29 03:52:18 | 000,052,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wiarpc.dll -- (WiaRpc)
SRV - [2014/10/29 03:51:55 | 000,017,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2014/10/29 03:51:28 | 000,010,752 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\svsvc.dll -- (svsvc)
SRV - [2014/10/29 03:47:57 | 000,098,304 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\fhsvc.dll -- (fhsvc)
SRV - [2014/10/29 03:33:49 | 000,187,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2014/10/29 03:23:51 | 000,250,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\BthHFSrv.dll -- (BthHFSrv)
SRV - [2014/10/29 03:17:53 | 000,142,848 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\NcaSvc.dll -- (NcaSvc)
SRV - [2014/10/29 03:14:41 | 000,423,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicheartbeat)
SRV - [2014/10/29 03:14:41 | 000,423,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicvss)
SRV - [2014/10/29 03:14:41 | 000,423,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmictimesync)
SRV - [2014/10/29 03:14:41 | 000,423,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicshutdown)
SRV - [2014/10/29 03:14:41 | 000,423,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicrdv)
SRV - [2014/10/29 03:14:41 | 000,423,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmickvpexchange)
SRV - [2014/10/29 03:14:41 | 000,423,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicguestinterface)
SRV - [2014/10/29 03:04:45 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\smphost.dll -- (smphost)
SRV - [2014/10/29 03:02:21 | 000,103,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV - [2014/10/29 03:01:27 | 000,046,592 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\keyiso.dll -- (KeyIso)
SRV - [2014/10/29 02:59:46 | 000,177,664 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\TimeBrokerServer.dll -- (TimeBroker)
SRV - [2014/10/29 02:59:06 | 000,436,224 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netprofmsvc.dll -- (netprofm)
SRV - [2014/10/29 02:57:20 | 000,126,464 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\ncbservice.dll -- (NcbService)
SRV - [2014/10/29 02:55:58 | 000,305,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wcmsvc.dll -- (Wcmsvc)
SRV - [2014/10/29 02:55:34 | 000,209,408 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\vaultsvc.dll -- (VaultSvc)
SRV - [2014/10/29 02:55:15 | 000,312,832 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\das.dll -- (DeviceAssociationService)
SRV - [2014/10/29 02:54:57 | 000,206,336 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\bisrv.dll -- (BrokerInfrastructure)
SRV - [2014/10/29 02:54:38 | 001,245,184 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\wlidsvc.dll -- (wlidsvc)
SRV - [2014/10/29 02:50:55 | 000,167,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\DeviceSetupManager.dll -- (DsmSvc)
SRV - [2014/10/29 02:40:35 | 000,425,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AppReadiness.dll -- (AppReadiness)
SRV - [2013/08/22 07:17:49 | 002,407,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\spool\drivers\w32x86\3\PrintConfig.dll -- (PrintNotify)
SRV - [2013/02/04 18:43:22 | 000,155,824 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2009/12/02 20:40:40 | 000,068,136 | ---- | M] () [Auto | Running] -- C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe -- (GEST Service)
SRV - [2009/04/30 12:23:26 | 000,090,112 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe -- (OMSI download service)


========== Driver Services (SafeList) ==========

DRV - [2016/08/22 08:11:02 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\gdrv.sys -- (gdrv)
DRV - [2016/06/11 20:30:07 | 000,047,968 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\stornvme.sys -- (stornvme)
DRV - [2016/01/24 20:24:22 | 000,365,912 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\spaceport.sys -- (spaceport)
DRV - [2015/11/10 03:56:32 | 000,178,840 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\nvhda32v.sys -- (NVHDA)
DRV - [2015/10/11 08:39:31 | 000,377,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\USBHUB3.SYS -- (USBHUB3)
DRV - [2015/09/29 14:30:04 | 000,131,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\tpm.sys -- (TPM)
DRV - [2015/07/14 21:06:52 | 000,018,576 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms)
DRV - [2015/07/07 11:45:06 | 000,233,304 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\System32\Drivers\WdFilter.sys -- (WdFilter)
DRV - [2015/07/07 11:45:06 | 000,084,824 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\Drivers\WdNisDrv.sys -- (WdNisDrv)
DRV - [2015/07/07 11:45:05 | 000,038,928 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\WdBoot.sys -- (WdBoot)
DRV - [2015/07/03 06:31:37 | 000,042,344 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\nvvad32v.sys -- (nvvad_WaveExtensible)
DRV - [2015/04/16 08:22:42 | 000,259,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\USBXHCI.SYS -- (USBXHCI)
DRV - [2015/03/20 03:47:40 | 000,065,536 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\ahcache.sys -- (ahcache)
DRV - [2015/03/09 03:18:05 | 000,049,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\bthhfenum.sys -- (BthHFEnum)
DRV - [2015/03/04 12:05:35 | 000,279,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\clfs.sys -- (CLFS)
DRV - [2015/01/27 01:23:46 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\wdcsam.sys -- (WDC_SAM)
DRV - [2014/12/13 12:02:10 | 008,536,208 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2014/11/10 19:47:26 | 000,069,440 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\wfplwfs.sys -- (WFPLWFS)
DRV - [2014/11/04 21:28:52 | 000,051,520 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\System32\Drivers\dam.sys -- (dam)
DRV - [2014/10/29 05:10:54 | 000,045,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\wpcfltr.sys -- (wpcfltr)
DRV - [2014/10/29 05:10:13 | 000,022,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2014/10/29 05:10:05 | 000,091,792 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\vmbus.sys -- (vmbus)
DRV - [2014/10/29 05:10:05 | 000,044,688 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\vmstorfl.sys -- (storflt)
DRV - [2014/10/29 04:01:33 | 000,026,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2014/10/29 04:01:08 | 000,071,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\netvsc63.sys -- (netvsc)
DRV - [2014/10/29 04:00:54 | 000,109,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV - [2014/10/29 04:00:52 | 000,056,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\mslldp.sys -- (MsLldp)
DRV - [2014/10/29 04:00:32 | 000,090,112 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\Drivers\Ndu.sys -- (Ndu)
DRV - [2014/10/17 05:15:58 | 000,036,160 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\intelpep.sys -- (intelpep)
DRV - [2014/10/17 05:01:38 | 000,076,096 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\pdc.sys -- (pdc)
DRV - [2014/10/07 06:13:01 | 000,163,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\UCX01000.SYS -- (UCX01000)
DRV - [2014/08/15 01:35:51 | 000,122,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\msgpioclx.sys -- (GPIOClx0101)
DRV - [2014/03/13 12:12:46 | 000,138,584 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\System32\drivers\wof.sys -- (Wof)
DRV - [2014/02/22 16:40:17 | 000,064,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\sdstor.sys -- (sdstor)
DRV - [2014/02/22 13:22:09 | 000,025,600 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\BasicRender.sys -- (BasicRender)
DRV - [2013/10/26 22:28:41 | 000,120,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SerCx2.sys -- (SerCx2)
DRV - [2013/09/14 14:42:36 | 000,142,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\VerifierExt.sys -- (VerifierExt)
DRV - [2013/08/22 13:12:54 | 000,030,048 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\terminpt.sys -- (terminpt)
DRV - [2013/08/22 08:13:53 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\condrv.sys -- (condrv)
DRV - [2013/08/22 07:35:20 | 000,061,280 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\acpiex.sys -- (acpiex)
DRV - [2013/08/22 07:33:32 | 000,058,208 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\mvumis.sys -- (mvumis)
DRV - [2013/08/22 07:33:31 | 000,033,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\msgpiowin32.sys -- (msgpiowin32)
DRV - [2013/08/22 07:33:30 | 000,068,960 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV - [2013/08/22 07:33:29 | 000,069,472 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\lsi_sss.sys -- (LSI_SSS)
DRV - [2013/08/22 07:33:26 | 000,086,368 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\3ware.sys -- (3ware)
DRV - [2013/08/22 07:33:25 | 000,773,472 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\adp80xx.sys -- (ADP80XX)
DRV - [2013/08/22 07:33:25 | 000,100,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV - [2013/08/22 07:33:24 | 000,073,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\EhStorClass.sys -- (EhStorClass)
DRV - [2013/08/22 07:33:01 | 000,276,832 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV - [2013/08/22 07:32:57 | 000,090,976 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\storahci.sys -- (storahci)
DRV - [2013/08/22 07:32:57 | 000,059,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SpbCx.sys -- (SpbCx)
DRV - [2013/08/22 07:32:57 | 000,058,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SerCx.sys -- (SerCx)
DRV - [2013/08/22 07:32:57 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\uaspstor.sys -- (UASPStor)
DRV - [2013/08/22 07:32:38 | 000,031,584 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\Drivers\cnghwassist.sys -- (cnghwassist)
DRV - [2013/08/22 07:24:56 | 000,023,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\uefi.sys -- (UEFI)
DRV - [2013/08/22 07:24:36 | 000,023,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV - [2013/08/22 07:20:22 | 000,042,304 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\storvsc.sys -- (storvsc)
DRV - [2013/08/22 06:11:04 | 000,043,520 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\BasicDisplay.sys -- (BasicDisplay)
DRV - [2013/08/22 06:10:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\HyperVideo.sys -- (HyperVideo)
DRV - [2013/08/22 06:10:37 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\mshidumdf.sys -- (mshidumdf)
DRV - [2013/08/22 06:10:28 | 000,008,704 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\acpitime.sys -- (acpitime)
DRV - [2013/08/22 06:10:21 | 000,009,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\acpipagr.sys -- (acpipagr)
DRV - [2013/08/22 06:10:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\npsvctrig.sys -- (npsvctrig)
DRV - [2013/08/22 06:10:01 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV - [2013/08/22 06:09:59 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\kdnic.sys -- (kdnic)
DRV - [2013/08/22 06:09:57 | 000,006,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\vms3cap.sys -- (s3cap)
DRV - [2013/08/22 06:09:50 | 000,011,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\vmgencounter.sys -- (gencounter)
DRV - [2013/08/22 06:09:37 | 000,023,808 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BthhfHid.sys -- (bthhfhid)
DRV - [2013/08/22 06:09:09 | 000,012,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\hyperkbd.sys -- (hyperkbd)
DRV - [2013/08/22 06:09:03 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2013/08/22 06:09:01 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\hidi2c.sys -- (hidi2c)
DRV - [2013/08/22 06:09:01 | 000,018,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2013/08/22 06:08:37 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\dmvsc.sys -- (dmvsc)
DRV - [2013/08/22 06:08:06 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV - [2013/08/22 03:58:35 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\fxppm.sys -- (FxPPM)
DRV - [2013/08/13 01:25:32 | 000,016,088 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\bcmfn2.sys -- (bcmfn2)
DRV - [2013/08/10 02:39:44 | 000,524,784 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\iaStorAV.sys -- (iaStorAV)
DRV - [2013/07/23 23:18:30 | 000,061,936 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\iaioi2c.sys -- (iaioi2c)
DRV - [2013/07/23 23:18:30 | 000,022,016 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\iaiogpio.sys -- (GPIO)
DRV - [2013/06/18 14:23:13 | 000,490,496 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\Rt630x86.sys -- (RTL8168)
DRV - [2011/05/31 22:18:34 | 001,311,232 | ---- | M] (NXP Semiconductors) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\Ph3xIB32.sys -- (Ph3xIB32)
DRV - [2009/08/24 11:14:30 | 000,044,544 | ---- | M] (AzureWave Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\azvusb.sys -- (azvusb)
DRV - [2008/05/16 12:33:14 | 000,115,752 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\s0016unic.sys -- (s0016unic)
DRV - [2008/05/16 12:33:14 | 000,025,512 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\s0016nd5.sys -- (s0016nd5)
DRV - [2008/05/16 12:33:14 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\s0016mdfl.sys -- (s0016mdfl)
DRV - [2008/05/16 12:33:12 | 000,120,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\s0016mdm.sys -- (s0016mdm)
DRV - [2008/05/16 12:33:12 | 000,114,216 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\s0016mgmt.sys -- (s0016mgmt)
DRV - [2008/05/16 12:33:12 | 000,110,632 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\s0016obex.sys -- (s0016obex)
DRV - [2008/05/16 12:33:12 | 000,089,256 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\s0016bus.sys -- (s0016bus)
DRV - [2006/12/18 18:53:04 | 001,121,536 | ---- | M] (Philips Semiconductors GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\3xHybrid.sys -- (3xHybrid)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/
IE - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = B7 60 30 B5 82 E5 D1 01 [binary data]
IE - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = 01 00 00 00 1A 00 00 00 6F 51 F7 3D 1E 52 5B 9C 12 B9 1D 1A D7 AF E0 7B 90 F1 B3 B0 7B 41 D1 CE 0F 2D 02 00 00 00 10 00 00 00 2F 49 58 77 6D 39 70 30 6D 25 32 62 55 25 33 64 [binary data]
IE - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001\..\SearchScopes,DefaultScope = {D626AECF-D0EC-458B-BA18-55300D0F02DF}
IE - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001\..\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}: "URL" = http://www.google.com/search?q={searchTerms}
IE - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?FORM=U453DF& ... -SearchBox
IE - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001\..\SearchScopes\{D626AECF-D0EC-458B-BA18-55300D0F02DF}: "URL" = https://www.google.com/search?q={search ... utEncoding?}
IE - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@garmin.com/GpsControl: C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.5: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.4: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)



========== Chrome ==========

CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_1\
CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_1\
CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_1\
CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_1\
CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_1\
CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_0\
CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\
CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_1\
CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.14_0\

O1 HOSTS File: ([2016/07/22 07:45:05 | 000,000,035 | ---- | M]) - C:\Windows\System32\Drivers\etc\hosts
O4 - HKLM..\Run: [NvBackend] C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [ShadowPlay] C:\Windows\System32\nvspcap.dll (NVIDIA Corporation)
O4 - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd)
O4 - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001..\Run: [RemoTerm.exe] C:\Program Files\Common Files\PCTV Systems\RemoTerm\remoterm.exe (PCTV Systems S.à r.l.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
O16 - DPF: Garmin Communicator Plug-In https://static.garmincdn.com/gcp/ie/4.2 ... rol_32.CAB (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 81.200.55.86 81.200.55.34
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{422FBA08-0925-4009-AE87-F2C475D44A88}: DhcpNameServer = 81.200.55.86 81.200.55.34
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013/08/22 10:16:34 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs: wlidsvc - C:\Windows\System32\wlidsvc.dll (Microsoft Corporation)
NetSvcs: lfsvc - C:\Windows\System32\GeofenceMonitorService.dll (Microsoft Corporation)
NetSvcs: DsmSvc - C:\Windows\System32\DeviceSetupManager.dll (Microsoft Corporation)
NetSvcs: NcaSvc - C:\Windows\System32\NcaSvc.dll (Microsoft Corporation)
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\Windows\System32\SL_ANET.ACM (Sipro Lab Telecom Inc.)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\Windows\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.yv12 - C:\Windows\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2016/08/22 11:12:17 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Admin\Desktop\OTL.exe
[2016/08/18 18:50:01 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\KD srpen 2016.zip.53pquvo
[2016/08/09 19:42:27 | 015,158,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.UI.Xaml.dll
[2016/08/09 19:42:22 | 002,317,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll
[2016/08/09 19:42:22 | 000,227,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sppwinob.dll
[2016/08/09 19:42:21 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys
[2016/08/09 19:42:20 | 002,976,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcorets.dll
[2016/08/09 19:42:20 | 002,165,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2016/08/09 19:42:19 | 000,727,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2016/08/09 19:42:19 | 000,413,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\webio.dll
[2016/08/09 19:42:19 | 000,318,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\storport.sys
[2016/08/09 19:42:19 | 000,091,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncryptsslp.dll
[2016/08/09 19:42:18 | 003,273,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcore.dll
[2016/08/09 19:42:18 | 000,063,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dumpfve.sys
[2016/08/09 19:42:17 | 000,288,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Classpnp.sys
[2016/08/09 19:42:17 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.Devices.Geolocation.dll
[2016/08/09 19:42:17 | 000,047,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\stornvme.sys
[2016/08/09 19:42:16 | 001,192,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sppobjs.dll
[2016/08/09 19:42:16 | 000,099,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cryptxml.dll
[2016/08/09 19:42:15 | 000,363,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tpmvsc.dll
[2016/08/09 19:42:15 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\LocationApi.dll
[2016/08/09 19:42:15 | 000,030,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UserAccountBroker.exe
[2016/08/09 19:42:13 | 005,761,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2016/08/09 19:42:11 | 000,543,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FirewallAPI.dll
[2016/08/09 19:42:10 | 000,592,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fveapi.dll
[2016/08/09 19:42:10 | 000,334,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUSettingsProvider.dll
[2016/08/09 19:42:10 | 000,192,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpresult.exe
[2016/08/09 19:42:10 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wfapigp.dll
[2016/08/09 19:42:09 | 000,309,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fvecpl.dll
[2016/08/09 19:42:09 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\httpprxm.dll
[2016/08/09 19:42:09 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hbaapi.dll
[2016/08/09 19:42:09 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\httpprxp.dll
[2016/08/09 19:42:08 | 001,060,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certutil.exe
[2016/08/09 19:42:08 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BdeHdCfgLib.dll
[2016/08/09 19:42:08 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adhsvc.dll
[2016/08/09 19:42:08 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certenc.dll
[2016/08/09 19:42:08 | 000,026,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidparse.sys
[2016/08/09 19:42:07 | 002,464,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2016/08/09 19:42:07 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2016/08/09 19:42:07 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2016/08/09 19:42:07 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2016/08/09 19:41:40 | 003,479,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2016/08/09 19:41:40 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TpmTasks.dll
[2016/08/09 19:41:26 | 005,265,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.Data.Pdf.dll
[2016/08/09 19:41:25 | 005,270,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\glcndFilter.dll
[2016/08/09 19:41:06 | 004,608,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2016/08/09 19:41:05 | 002,055,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2016/08/09 19:41:05 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2016/08/09 19:41:04 | 000,689,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2016/08/09 19:41:04 | 000,330,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2016/08/09 19:41:02 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2016/08/09 19:40:31 | 001,491,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\GdiPlus.dll
[2016/07/29 22:13:56 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\YouTube Downloader
[2016/07/29 22:13:15 | 000,000,000 | ---D | C] -- C:\Program Files\YTD
[2016/07/29 18:18:46 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\tisk
[2016/07/23 17:42:32 | 000,000,000 | ---D | C] -- C:\Program Files\Defraggler
[2016/07/23 17:35:24 | 000,000,000 | ---D | C] -- C:\ProgramData\GPCWValidator
[2016/07/23 17:35:24 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\FileOpenerWindows
[2016/07/23 17:27:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2016/07/23 17:27:38 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2016/08/22 11:17:08 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2016/08/22 11:12:17 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Admin\Desktop\OTL.exe
[2016/08/22 10:57:16 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2016/08/22 09:38:01 | 000,000,966 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2016/08/22 08:38:00 | 000,000,962 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2016/08/22 08:11:02 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\Windows\gdrv.sys
[2016/08/22 08:10:54 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2016/08/22 08:10:49 | 1716,715,520 | -HS- | M] () -- C:\hiberfil.sys
[2016/08/21 16:02:59 | 000,113,647 | ---- | M] () -- C:\Users\Admin\Desktop\OTS přestal skenovat 2.jpg
[2016/08/21 15:43:27 | 000,116,931 | ---- | M] () -- C:\Users\Admin\Desktop\zastavení OTS.jpg
[2016/08/10 08:14:28 | 000,423,024 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2016/08/09 08:47:43 | 000,738,682 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2016/08/09 08:47:43 | 000,722,278 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2016/08/09 08:47:43 | 000,151,404 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2016/08/09 08:47:43 | 000,135,394 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2016/08/02 07:21:20 | 004,608,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2016/08/02 07:15:09 | 000,692,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2016/08/02 07:15:01 | 000,330,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2016/08/02 07:14:58 | 000,689,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2016/08/02 07:14:32 | 002,055,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2016/08/02 06:51:20 | 000,710,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2016/07/29 22:13:17 | 000,000,911 | ---- | M] () -- C:\Users\Admin\Desktop\YTD.lnk
[2016/07/29 22:09:17 | 000,170,200 | ---- | M] (Malwarebytes) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
[2016/07/27 21:25:30 | 000,406,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2016/07/23 17:42:38 | 000,001,879 | ---- | M] () -- C:\Users\Public\Desktop\Defraggler.lnk
[2016/07/23 17:37:31 | 000,000,981 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2016/07/23 17:33:04 | 000,064,434 | ---- | M] () -- C:\Users\Admin\Documents\cc_20160723_173226-23.7.2016.reg
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2016/08/22 11:17:08 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2016/08/21 16:02:59 | 000,113,647 | ---- | C] () -- C:\Users\Admin\Desktop\OTS přestal skenovat 2.jpg
[2016/08/21 15:43:27 | 000,116,931 | ---- | C] () -- C:\Users\Admin\Desktop\zastavení OTS.jpg
[2016/07/29 22:13:17 | 000,000,923 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD.lnk
[2016/07/29 22:13:17 | 000,000,911 | ---- | C] () -- C:\Users\Admin\Desktop\YTD.lnk
[2016/07/29 08:33:26 | 000,000,966 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2016/07/29 08:33:25 | 000,000,962 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2016/07/23 17:42:38 | 000,001,879 | ---- | C] () -- C:\Users\Public\Desktop\Defraggler.lnk
[2016/07/23 17:32:51 | 000,064,434 | ---- | C] () -- C:\Users\Admin\Documents\cc_20160723_173226-23.7.2016.reg
[2016/07/23 17:27:45 | 000,000,981 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2016/07/17 14:38:04 | 000,000,193 | ---- | C] () -- C:\Windows\WORDPAD.INI
[2015/01/05 19:16:26 | 000,652,096 | ---- | C] () -- C:\Windows\System32\nvmcumd.dll
[2014/12/17 14:17:03 | 000,007,601 | ---- | C] () -- C:\Users\Admin\AppData\Local\Resmon.ResmonCfg
[2014/12/15 12:37:04 | 004,151,176 | ---- | C] () -- C:\Windows\System32\nvcoproc.bin
[2014/12/10 20:23:36 | 000,000,384 | ---- | C] () -- C:\Windows\ODBC.INI
[2014/12/10 13:39:11 | 000,107,008 | ---- | C] () -- C:\Windows\System32\OEMLicense.dll
[2014/12/10 13:39:02 | 000,075,264 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2014/12/10 13:38:50 | 000,046,080 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2014/12/10 13:37:58 | 000,050,745 | ---- | C] () -- C:\Windows\System32\srms.dat
[2014/12/10 12:29:34 | 000,262,335 | ---- | C] () -- C:\Windows\System32\dfpinc.dat
[2014/12/10 12:29:00 | 000,002,255 | ---- | C] () -- C:\Windows\System32\WimBootCompress.ini

========== ZeroAccess Check ==========


[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2016/05/28 20:31:21 | 019,788,688 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2014/10/29 02:59:23 | 000,786,944 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2014/10/29 02:57:29 | 000,407,552 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2014/12/17 15:06:09 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\AVAST Software
[2016/07/23 17:35:24 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\FileOpenerWindows
[2016/08/22 08:51:18 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Garmin
[2015/01/18 09:22:16 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\LibreOffice
[2016/07/29 22:13:56 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\YouTube Downloader

========== Purity Check ==========



========== Custom Scans ==========

< >
[2013/08/22 09:23:44 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2016/07/29 08:33:25 | 000,000,962 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2016/07/29 08:33:26 | 000,000,966 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

< MD5 for: ATAPI.SYS >
[2013/08/22 07:33:25 | 000,023,392 | ---- | M] (Microsoft Corporation) MD5=72FCAE2CE6DFEAB2AB072435017F3417 -- C:\Windows\System32\Drivers\atapi.sys
[2013/08/22 07:33:25 | 000,023,392 | ---- | M] (Microsoft Corporation) MD5=72FCAE2CE6DFEAB2AB072435017F3417 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_74136ef4a48e4644\atapi.sys
[2013/08/22 07:33:25 | 000,023,392 | ---- | M] (Microsoft Corporation) MD5=72FCAE2CE6DFEAB2AB072435017F3417 -- C:\Windows\WinSxS\x86_mshdc.inf_31bf3856ad364e35_6.3.9600.16384_none_71d7eca13d2363da\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2014/02/22 13:24:36 | 000,792,576 | ---- | M] (Microsoft Corporation) MD5=1D31E78ED5C40B5C6CC8D3DE713177A5 -- C:\Windows\System32\autochk.exe
[2014/02/22 13:24:36 | 000,792,576 | ---- | M] (Microsoft Corporation) MD5=1D31E78ED5C40B5C6CC8D3DE713177A5 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.17031_none_76c6a414dd35029f\autochk.exe
[2015/01/09 16:41:35 | 000,023,596 | ---- | M] () MD5=83A4C9BE342BC296EC09492FF7594F13 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.16384_none_7693b1d0dd5ab82d\autochk.exe

< MD5 for: CDROM.SYS >
[2013/08/22 03:59:12 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=E2FC132D48EA4E8B04432C33EFB77801 -- C:\Windows\System32\Drivers\cdrom.sys
[2013/08/22 03:59:12 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=E2FC132D48EA4E8B04432C33EFB77801 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_9aa051086f0faf61\cdrom.sys
[2013/08/22 03:59:12 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=E2FC132D48EA4E8B04432C33EFB77801 -- C:\Windows\WinSxS\x86_cdrom.inf_31bf3856ad364e35_6.3.9600.16384_none_f4492069bf60ff88\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2015/01/26 12:41:30 | 000,351,507 | ---- | M] () MD5=19D3FE4509CC4C9EF4689B41E51E229E -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17238_none_e68e63af9529fa1e\explorer.exe
[2016/05/29 14:40:04 | 000,259,279 | ---- | M] () MD5=233904D607A2B86D1547B65FA6CDC3C4 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17415_none_e6a10675951c7085\explorer.exe
[2015/01/26 12:41:47 | 000,338,808 | ---- | M] () MD5=3A11FC6AEAFEF280A6AC446F1C4F1BF8 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17284_none_e65452eb95562077\explorer.exe
[2015/01/26 12:41:06 | 000,353,684 | ---- | M] () MD5=8CDECDF390F818CC230CA89423B70CD9 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16384_none_e6546b99955603fd\explorer.exe
[2016/02/09 03:31:39 | 002,412,576 | ---- | M] (Microsoft Corporation) MD5=97A7A0521E059D242907EFB73A844F29 -- C:\Windows\explorer.exe
[2016/02/09 03:31:39 | 002,412,576 | ---- | M] (Microsoft Corporation) MD5=97A7A0521E059D242907EFB73A844F29 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.18231_none_e6874ae19530625e\explorer.exe
[2015/01/26 12:41:14 | 000,345,618 | ---- | M] () MD5=9CC40BBBF7F0082B3C8300BB05EE3729 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17031_none_e6875ddd95304e6f\explorer.exe
[2015/01/26 12:41:23 | 000,345,492 | ---- | M] () MD5=D838CDA6680CFDA621671D59C4AF4016 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17039_none_e68f602d95291927\explorer.exe

< MD5 for: HAL.DLL >
[2015/01/26 14:14:18 | 000,043,164 | ---- | M] () MD5=39B592A28DD1F25F7364D87EFBDCA70A -- C:\Windows\WinSxS\x86_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.16384_none_3fc8b72b7543cc93\hal.dll
[2014/06/02 03:06:29 | 000,337,752 | ---- | M] (Microsoft Corporation) MD5=894E02AA20B793F4A0AF0E815D517F62 -- C:\Windows\System32\hal.dll
[2014/06/02 03:06:29 | 000,337,752 | ---- | M] (Microsoft Corporation) MD5=894E02AA20B793F4A0AF0E815D517F62 -- C:\Windows\WinSxS\x86_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.17196_none_3fbfcd3f754a3a85\hal.dll
[2015/01/26 14:14:20 | 000,014,045 | ---- | M] () MD5=970C464EEA25EDCB9B95EEF1904FF1F2 -- C:\Windows\WinSxS\x86_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.17031_none_3ffba96f751e1705\hal.dll

< MD5 for: SCECLI.DLL >
[2015/01/28 19:46:27 | 000,042,572 | ---- | M] () MD5=22CDB04B964A8D34C42BB7ED150784F8 -- C:\Windows\WinSxS\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.16384_none_ccada6e2f4b50450\scecli.dll
[2014/10/29 03:01:41 | 000,214,016 | ---- | M] (Microsoft Corporation) MD5=FB740FE549197E7B08021EF30327921D -- C:\Windows\System32\scecli.dll
[2014/10/29 03:01:41 | 000,214,016 | ---- | M] (Microsoft Corporation) MD5=FB740FE549197E7B08021EF30327921D -- C:\Windows\WinSxS\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.17415_none_ccfa41bef47b70d8\scecli.dll

< MD5 for: SVCHOST.EXE >
[2015/01/28 19:50:49 | 000,007,517 | ---- | M] () MD5=73AA583D4FB0F05C313B38C091D94804 -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.16384_none_4a5b1e2820e75323\svchost.exe
[2014/10/29 05:17:51 | 000,033,088 | ---- | M] (Microsoft Corporation) MD5=D0ABC231C0B3E88C6B612B28ABBF734D -- C:\Windows\System32\svchost.exe
[2014/10/29 05:17:51 | 000,033,088 | ---- | M] (Microsoft Corporation) MD5=D0ABC231C0B3E88C6B612B28ABBF734D -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.17415_none_4aa7b90420adbfab\svchost.exe
[2016/03/10 14:07:16 | 000,960,480 | ---- | M] (MalwareBytes) MD5=F86A4139730504047F52CCFB8C47E9F5 -- C:\Program Files\Malwarebytes Anti-Malware\Chameleon\Windows\svchost.exe

< MD5 for: TCPIP.SYS >
[2015/01/28 20:29:10 | 000,269,467 | ---- | M] () MD5=00EAB7E27B0C1632C36C5553ABD7F999 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17136_none_47f5cc7581d59c80\tcpip.sys
[2015/01/28 20:29:29 | 000,197,174 | ---- | M] () MD5=053CFFA5A19455A31ABECC3E011DC7AD -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17336_none_47f5d04181d596ce\tcpip.sys
[2015/01/28 20:29:35 | 000,002,510 | ---- | M] () MD5=3B07748478F004D4D4C9634F7F48C696 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17415_none_480a71b581c642bc\tcpip.sys
[2015/01/28 20:28:50 | 000,268,710 | ---- | M] () MD5=3E98D9EB816FFC680AC9BBE019C54EA7 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17039_none_47f8cb6d81d2eb5e\tcpip.sys
[2016/07/16 11:16:43 | 000,234,122 | ---- | M] () MD5=57B46E772C960143288374FD27495267 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17485_none_47bec24181ff0653\tcpip.sys
[2015/01/28 20:28:28 | 000,287,906 | ---- | M] () MD5=57E96BA0CC548FDFD3E0C3D261FBE0D0 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16384_none_47bdd6d981ffd634\tcpip.sys
[2015/01/28 20:29:16 | 000,269,131 | ---- | M] () MD5=5DE2043BCA50652CFE70F4C79331227D -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17238_none_47f7ceef81d3cc55\tcpip.sys
[2015/01/28 20:28:57 | 000,270,000 | ---- | M] () MD5=7BE3F5C68BC357A39C80BFE71CF01DDF -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17085_none_47bebaa981ff11b7\tcpip.sys
[2015/01/28 20:29:23 | 000,195,995 | ---- | M] () MD5=822F4A892E2FCF967EB462F59FBA593B -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17278_none_47cc8f3f81f43c19\tcpip.sys
[2016/03/12 02:55:09 | 001,846,616 | ---- | M] (Microsoft Corporation) MD5=8E596E7D6E8C55433F93ACF667E37BBC -- C:\Windows\System32\Drivers\tcpip.sys
[2016/03/12 02:55:09 | 001,846,616 | ---- | M] (Microsoft Corporation) MD5=8E596E7D6E8C55433F93ACF667E37BBC -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.18265_none_47d4478581eeedc4\tcpip.sys
[2015/01/28 20:28:43 | 000,292,194 | ---- | M] () MD5=D98AC62CFD221A6F5A1A7AD73A370386 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16521_none_47fbb94f81d1dcd7\tcpip.sys
[2015/01/28 20:28:37 | 000,290,518 | ---- | M] () MD5=F17EF69AFA223B200500EA2E579FE955 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16456_none_47e0491781e5b236\tcpip.sys

< MD5 for: USERINIT.EXE >
[2015/01/28 20:41:31 | 000,004,269 | ---- | M] () MD5=1AE98168631581DE1343C3A87A6CBCA9 -- C:\Windows\WinSxS\x86_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.16384_none_70c87e9ced498d49\userinit.exe
[2014/10/29 03:05:25 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=D10643FC0095434C819316CA6CD748C0 -- C:\Windows\System32\userinit.exe
[2014/10/29 03:05:25 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=D10643FC0095434C819316CA6CD748C0 -- C:\Windows\WinSxS\x86_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.17415_none_71151978ed0ff9d1\userinit.exe

< MD5 for: WINLOGON.EXE >
[2016/01/05 16:59:45 | 000,465,408 | ---- | M] (Microsoft Corporation) MD5=2022624E358053908CB81B4E02245B8F -- C:\Windows\System32\winlogon.exe
[2016/01/05 16:59:45 | 000,465,408 | ---- | M] (Microsoft Corporation) MD5=2022624E358053908CB81B4E02245B8F -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.18188_none_04669569f087af83\winlogon.exe
[2015/01/28 20:52:42 | 000,087,679 | ---- | M] () MD5=46FB47056D0BA493D90A973B04E0666C -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.17031_none_0495b7e1f0655ba5\winlogon.exe
[2016/03/13 23:24:20 | 000,059,207 | ---- | M] () MD5=E3373AA38ED8998A1D8B41A5351A022D -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.18083_none_04619211f08c33a9\winlogon.exe
[2015/12/25 20:26:12 | 000,050,780 | ---- | M] () MD5=E8AB39AE14615D6BAFB9D92EB0C8E621 -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.17415_none_04af6079f0517dbb\winlogon.exe
[2015/01/28 20:52:40 | 000,093,433 | ---- | M] () MD5=F7C808B8059A76EF5F611BCE72A92075 -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.16384_none_0462c59df08b1133\winlogon.exe
[2016/03/10 14:07:16 | 000,960,480 | ---- | M] (MalwareBytes) MD5=F86A4139730504047F52CCFB8C47E9F5 -- C:\Program Files\Malwarebytes Anti-Malware\Chameleon\Windows\winlogon.exe

< >

< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[15 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[1 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2016/01/21 09:51:21 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Adobe
[2014/12/17 15:06:09 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\AVAST Software
[2014/12/10 22:10:29 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\FastStone
[2016/07/23 17:35:24 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\FileOpenerWindows
[2016/08/22 08:51:18 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Garmin
[2014/12/10 14:57:44 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Identities
[2015/01/18 09:22:16 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\LibreOffice
[2016/01/21 10:52:27 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Macromedia
[2016/07/22 08:31:28 | 000,000,000 | --SD | M] -- C:\Users\Admin\AppData\Roaming\Microsoft
[2014/12/10 21:58:27 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\NVIDIA
[2016/08/20 18:55:27 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Skype
[2016/08/17 21:38:23 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\vlc
[2016/07/29 22:13:56 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\YouTube Downloader
Nahoru
dol
Návštěvník
Návštěvník
Příspěvky: 101
Registrován: 12 úno 2009 09:42

Re: Problém s IE

#25 Příspěvek od dol »

Zdravím, snad se podařilo. Na konci údaje o mém počítači.

OTL logfile created on: 22. 8. 2016 11:14:20 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Admin\Desktop
An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.18427)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d. M. yyyy

2,00 Gb Total Physical Memory | 1,13 Gb Available Physical Memory | 56,34% Memory free
2,62 Gb Paging File | 1,47 Gb Available in Paging File | 55,92% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 100,25 Gb Total Space | 46,08 Gb Free Space | 45,97% Space Free | Partition Type: NTFS
Drive D: | 132,29 Gb Total Space | 75,05 Gb Free Space | 56,73% Space Free | Partition Type: NTFS

Computer Name: STOLNIPC | User Name: Admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2016/08/22 11:12:17 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Admin\Desktop\OTL.exe
PRC - [2016/07/29 08:33:00 | 000,288,920 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.3.31.5\GoogleCrashHandler.exe
PRC - [2016/06/25 01:45:12 | 000,082,128 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2016/02/09 03:31:39 | 002,412,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2016/02/08 21:43:15 | 000,524,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SettingSyncHost.exe
PRC - [2015/07/23 11:30:03 | 000,138,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\livecomm.exe
PRC - [2015/07/14 21:06:59 | 002,631,824 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2015/07/14 21:06:54 | 001,871,504 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2015/07/14 21:06:53 | 018,680,464 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
PRC - [2015/07/14 21:06:53 | 005,809,808 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
PRC - [2015/07/14 21:06:53 | 004,304,528 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
PRC - [2015/07/14 21:06:53 | 000,921,232 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
PRC - [2015/07/07 11:45:10 | 000,326,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MpCmdRun.exe
PRC - [2014/12/13 09:30:19 | 001,818,952 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2014/12/13 09:30:19 | 000,971,920 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2014/11/08 03:45:43 | 000,897,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SkyDrive.exe
PRC - [2014/10/29 05:18:49 | 000,070,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2014/10/29 05:18:49 | 000,067,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhostex.exe
PRC - [2014/10/29 05:10:01 | 000,029,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RuntimeBroker.exe
PRC - [2014/10/29 02:59:34 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dasHost.exe
PRC - [2014/10/29 02:59:18 | 000,299,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2009/12/02 20:40:40 | 000,068,136 | ---- | M] () -- C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe


========== Modules (No Company Name) ==========

MOD - [2015/07/14 21:06:59 | 000,011,920 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\Update Core\detoured.dll


========== Services (SafeList) ==========

SRV - [2016/06/25 01:45:12 | 000,082,128 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2016/05/23 15:17:32 | 000,324,224 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2016/02/08 21:37:24 | 001,175,040 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AppXDeploymentServer.dll -- (AppXSvc)
SRV - [2016/02/03 17:08:59 | 001,273,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\workfolderssvc.dll -- (workfolderssvc)
SRV - [2015/07/22 15:50:23 | 001,172,992 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\diagtrack.dll -- (DiagTrack)
SRV - [2015/07/16 20:42:44 | 000,064,512 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV - [2015/07/14 21:06:54 | 001,871,504 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2015/07/14 21:06:53 | 004,304,528 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe -- (NvStreamSvc)
SRV - [2015/07/14 21:06:53 | 000,921,232 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe -- (GfExperienceService)
SRV - [2015/07/07 11:45:10 | 000,284,520 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV - [2015/07/07 11:45:10 | 000,022,224 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV - [2015/05/30 21:24:56 | 000,193,536 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV - [2015/05/12 15:18:50 | 000,207,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV - [2015/05/07 17:05:40 | 000,367,104 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2015/02/21 01:24:23 | 000,667,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\lsm.dll -- (LSM)
SRV - [2014/12/13 09:03:05 | 000,410,768 | ---- | M] (NVIDIA Corporation) [On_Demand | Stopped] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2014/10/31 05:12:14 | 000,102,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV - [2014/10/29 05:13:19 | 002,948,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\WSService.dll -- (WSService)
SRV - [2014/10/29 03:57:59 | 000,020,992 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wephostsvc.dll -- (WEPHOSTSVC)
SRV - [2014/10/29 03:57:46 | 000,028,672 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\efssvc.dll -- (EFS)
SRV - [2014/10/29 03:52:18 | 000,052,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wiarpc.dll -- (WiaRpc)
SRV - [2014/10/29 03:51:55 | 000,017,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2014/10/29 03:51:28 | 000,010,752 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\svsvc.dll -- (svsvc)
SRV - [2014/10/29 03:47:57 | 000,098,304 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\fhsvc.dll -- (fhsvc)
SRV - [2014/10/29 03:33:49 | 000,187,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2014/10/29 03:23:51 | 000,250,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\BthHFSrv.dll -- (BthHFSrv)
SRV - [2014/10/29 03:17:53 | 000,142,848 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\NcaSvc.dll -- (NcaSvc)
SRV - [2014/10/29 03:14:41 | 000,423,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicheartbeat)
SRV - [2014/10/29 03:14:41 | 000,423,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicvss)
SRV - [2014/10/29 03:14:41 | 000,423,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmictimesync)
SRV - [2014/10/29 03:14:41 | 000,423,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicshutdown)
SRV - [2014/10/29 03:14:41 | 000,423,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicrdv)
SRV - [2014/10/29 03:14:41 | 000,423,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmickvpexchange)
SRV - [2014/10/29 03:14:41 | 000,423,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\icsvc.dll -- (vmicguestinterface)
SRV - [2014/10/29 03:04:45 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\smphost.dll -- (smphost)
SRV - [2014/10/29 03:02:21 | 000,103,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV - [2014/10/29 03:01:27 | 000,046,592 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\keyiso.dll -- (KeyIso)
SRV - [2014/10/29 02:59:46 | 000,177,664 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\TimeBrokerServer.dll -- (TimeBroker)
SRV - [2014/10/29 02:59:06 | 000,436,224 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netprofmsvc.dll -- (netprofm)
SRV - [2014/10/29 02:57:20 | 000,126,464 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\ncbservice.dll -- (NcbService)
SRV - [2014/10/29 02:55:58 | 000,305,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wcmsvc.dll -- (Wcmsvc)
SRV - [2014/10/29 02:55:34 | 000,209,408 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\vaultsvc.dll -- (VaultSvc)
SRV - [2014/10/29 02:55:15 | 000,312,832 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\das.dll -- (DeviceAssociationService)
SRV - [2014/10/29 02:54:57 | 000,206,336 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\bisrv.dll -- (BrokerInfrastructure)
SRV - [2014/10/29 02:54:38 | 001,245,184 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\wlidsvc.dll -- (wlidsvc)
SRV - [2014/10/29 02:50:55 | 000,167,424 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\DeviceSetupManager.dll -- (DsmSvc)
SRV - [2014/10/29 02:40:35 | 000,425,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AppReadiness.dll -- (AppReadiness)
SRV - [2013/08/22 07:17:49 | 002,407,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\spool\drivers\w32x86\3\PrintConfig.dll -- (PrintNotify)
SRV - [2013/02/04 18:43:22 | 000,155,824 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2009/12/02 20:40:40 | 000,068,136 | ---- | M] () [Auto | Running] -- C:\Program Files\GIGABYTE\EnergySaver\GSvr.exe -- (GEST Service)
SRV - [2009/04/30 12:23:26 | 000,090,112 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe -- (OMSI download service)


========== Driver Services (SafeList) ==========

DRV - [2016/08/22 08:11:02 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\gdrv.sys -- (gdrv)
DRV - [2016/06/11 20:30:07 | 000,047,968 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\stornvme.sys -- (stornvme)
DRV - [2016/01/24 20:24:22 | 000,365,912 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\spaceport.sys -- (spaceport)
DRV - [2015/11/10 03:56:32 | 000,178,840 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\nvhda32v.sys -- (NVHDA)
DRV - [2015/10/11 08:39:31 | 000,377,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\USBHUB3.SYS -- (USBHUB3)
DRV - [2015/09/29 14:30:04 | 000,131,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\tpm.sys -- (TPM)
DRV - [2015/07/14 21:06:52 | 000,018,576 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms)
DRV - [2015/07/07 11:45:06 | 000,233,304 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\System32\Drivers\WdFilter.sys -- (WdFilter)
DRV - [2015/07/07 11:45:06 | 000,084,824 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\Drivers\WdNisDrv.sys -- (WdNisDrv)
DRV - [2015/07/07 11:45:05 | 000,038,928 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\WdBoot.sys -- (WdBoot)
DRV - [2015/07/03 06:31:37 | 000,042,344 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\nvvad32v.sys -- (nvvad_WaveExtensible)
DRV - [2015/04/16 08:22:42 | 000,259,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\USBXHCI.SYS -- (USBXHCI)
DRV - [2015/03/20 03:47:40 | 000,065,536 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\ahcache.sys -- (ahcache)
DRV - [2015/03/09 03:18:05 | 000,049,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\bthhfenum.sys -- (BthHFEnum)
DRV - [2015/03/04 12:05:35 | 000,279,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\clfs.sys -- (CLFS)
DRV - [2015/01/27 01:23:46 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\wdcsam.sys -- (WDC_SAM)
DRV - [2014/12/13 12:02:10 | 008,536,208 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2014/11/10 19:47:26 | 000,069,440 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\wfplwfs.sys -- (WFPLWFS)
DRV - [2014/11/04 21:28:52 | 000,051,520 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\System32\Drivers\dam.sys -- (dam)
DRV - [2014/10/29 05:10:54 | 000,045,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\wpcfltr.sys -- (wpcfltr)
DRV - [2014/10/29 05:10:13 | 000,022,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2014/10/29 05:10:05 | 000,091,792 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\vmbus.sys -- (vmbus)
DRV - [2014/10/29 05:10:05 | 000,044,688 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\vmstorfl.sys -- (storflt)
DRV - [2014/10/29 04:01:33 | 000,026,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2014/10/29 04:01:08 | 000,071,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\netvsc63.sys -- (netvsc)
DRV - [2014/10/29 04:00:54 | 000,109,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV - [2014/10/29 04:00:52 | 000,056,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\mslldp.sys -- (MsLldp)
DRV - [2014/10/29 04:00:32 | 000,090,112 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\Drivers\Ndu.sys -- (Ndu)
DRV - [2014/10/17 05:15:58 | 000,036,160 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\intelpep.sys -- (intelpep)
DRV - [2014/10/17 05:01:38 | 000,076,096 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\pdc.sys -- (pdc)
DRV - [2014/10/07 06:13:01 | 000,163,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\UCX01000.SYS -- (UCX01000)
DRV - [2014/08/15 01:35:51 | 000,122,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\msgpioclx.sys -- (GPIOClx0101)
DRV - [2014/03/13 12:12:46 | 000,138,584 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\System32\drivers\wof.sys -- (Wof)
DRV - [2014/02/22 16:40:17 | 000,064,344 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\sdstor.sys -- (sdstor)
DRV - [2014/02/22 13:22:09 | 000,025,600 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\BasicRender.sys -- (BasicRender)
DRV - [2013/10/26 22:28:41 | 000,120,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SerCx2.sys -- (SerCx2)
DRV - [2013/09/14 14:42:36 | 000,142,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\VerifierExt.sys -- (VerifierExt)
DRV - [2013/08/22 13:12:54 | 000,030,048 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\terminpt.sys -- (terminpt)
DRV - [2013/08/22 08:13:53 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\condrv.sys -- (condrv)
DRV - [2013/08/22 07:35:20 | 000,061,280 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\acpiex.sys -- (acpiex)
DRV - [2013/08/22 07:33:32 | 000,058,208 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\mvumis.sys -- (mvumis)
DRV - [2013/08/22 07:33:31 | 000,033,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\msgpiowin32.sys -- (msgpiowin32)
DRV - [2013/08/22 07:33:30 | 000,068,960 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV - [2013/08/22 07:33:29 | 000,069,472 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\lsi_sss.sys -- (LSI_SSS)
DRV - [2013/08/22 07:33:26 | 000,086,368 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\3ware.sys -- (3ware)
DRV - [2013/08/22 07:33:25 | 000,773,472 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\adp80xx.sys -- (ADP80XX)
DRV - [2013/08/22 07:33:25 | 000,100,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV - [2013/08/22 07:33:24 | 000,073,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\EhStorClass.sys -- (EhStorClass)
DRV - [2013/08/22 07:33:01 | 000,276,832 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV - [2013/08/22 07:32:57 | 000,090,976 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\storahci.sys -- (storahci)
DRV - [2013/08/22 07:32:57 | 000,059,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SpbCx.sys -- (SpbCx)
DRV - [2013/08/22 07:32:57 | 000,058,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\SerCx.sys -- (SerCx)
DRV - [2013/08/22 07:32:57 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\uaspstor.sys -- (UASPStor)
DRV - [2013/08/22 07:32:38 | 000,031,584 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\Drivers\cnghwassist.sys -- (cnghwassist)
DRV - [2013/08/22 07:24:56 | 000,023,904 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\uefi.sys -- (UEFI)
DRV - [2013/08/22 07:24:36 | 000,023,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV - [2013/08/22 07:20:22 | 000,042,304 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\storvsc.sys -- (storvsc)
DRV - [2013/08/22 06:11:04 | 000,043,520 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\BasicDisplay.sys -- (BasicDisplay)
DRV - [2013/08/22 06:10:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\HyperVideo.sys -- (HyperVideo)
DRV - [2013/08/22 06:10:37 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\mshidumdf.sys -- (mshidumdf)
DRV - [2013/08/22 06:10:28 | 000,008,704 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\acpitime.sys -- (acpitime)
DRV - [2013/08/22 06:10:21 | 000,009,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\acpipagr.sys -- (acpipagr)
DRV - [2013/08/22 06:10:04 | 000,018,432 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\npsvctrig.sys -- (npsvctrig)
DRV - [2013/08/22 06:10:01 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV - [2013/08/22 06:09:59 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\kdnic.sys -- (kdnic)
DRV - [2013/08/22 06:09:57 | 000,006,528 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\vms3cap.sys -- (s3cap)
DRV - [2013/08/22 06:09:50 | 000,011,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\vmgencounter.sys -- (gencounter)
DRV - [2013/08/22 06:09:37 | 000,023,808 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BthhfHid.sys -- (bthhfhid)
DRV - [2013/08/22 06:09:09 | 000,012,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\hyperkbd.sys -- (hyperkbd)
DRV - [2013/08/22 06:09:03 | 000,048,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2013/08/22 06:09:01 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\hidi2c.sys -- (hidi2c)
DRV - [2013/08/22 06:09:01 | 000,018,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2013/08/22 06:08:37 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\dmvsc.sys -- (dmvsc)
DRV - [2013/08/22 06:08:06 | 000,013,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV - [2013/08/22 03:58:35 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\fxppm.sys -- (FxPPM)
DRV - [2013/08/13 01:25:32 | 000,016,088 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\bcmfn2.sys -- (bcmfn2)
DRV - [2013/08/10 02:39:44 | 000,524,784 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\iaStorAV.sys -- (iaStorAV)
DRV - [2013/07/23 23:18:30 | 000,061,936 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\iaioi2c.sys -- (iaioi2c)
DRV - [2013/07/23 23:18:30 | 000,022,016 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\iaiogpio.sys -- (GPIO)
DRV - [2013/06/18 14:23:13 | 000,490,496 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\Rt630x86.sys -- (RTL8168)
DRV - [2011/05/31 22:18:34 | 001,311,232 | ---- | M] (NXP Semiconductors) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\Ph3xIB32.sys -- (Ph3xIB32)
DRV - [2009/08/24 11:14:30 | 000,044,544 | ---- | M] (AzureWave Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\azvusb.sys -- (azvusb)
DRV - [2008/05/16 12:33:14 | 000,115,752 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\s0016unic.sys -- (s0016unic)
DRV - [2008/05/16 12:33:14 | 000,025,512 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\s0016nd5.sys -- (s0016nd5)
DRV - [2008/05/16 12:33:14 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\s0016mdfl.sys -- (s0016mdfl)
DRV - [2008/05/16 12:33:12 | 000,120,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\s0016mdm.sys -- (s0016mdm)
DRV - [2008/05/16 12:33:12 | 000,114,216 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\s0016mgmt.sys -- (s0016mgmt)
DRV - [2008/05/16 12:33:12 | 000,110,632 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\s0016obex.sys -- (s0016obex)
DRV - [2008/05/16 12:33:12 | 000,089,256 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\s0016bus.sys -- (s0016bus)
DRV - [2006/12/18 18:53:04 | 001,121,536 | ---- | M] (Philips Semiconductors GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\3xHybrid.sys -- (3xHybrid)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/
IE - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = B7 60 30 B5 82 E5 D1 01 [binary data]
IE - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = 01 00 00 00 1A 00 00 00 6F 51 F7 3D 1E 52 5B 9C 12 B9 1D 1A D7 AF E0 7B 90 F1 B3 B0 7B 41 D1 CE 0F 2D 02 00 00 00 10 00 00 00 2F 49 58 77 6D 39 70 30 6D 25 32 62 55 25 33 64 [binary data]
IE - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001\..\SearchScopes,DefaultScope = {D626AECF-D0EC-458B-BA18-55300D0F02DF}
IE - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001\..\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}: "URL" = http://www.google.com/search?q={searchTerms}
IE - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?FORM=U453DF& ... -SearchBox
IE - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001\..\SearchScopes\{D626AECF-D0EC-458B-BA18-55300D0F02DF}: "URL" = https://www.google.com/search?q={search ... utEncoding?}
IE - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF - HKLM\Software\MozillaPlugins\@garmin.com/GpsControl: C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.5: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.4: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)



========== Chrome ==========

CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.9_1\
CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_1\
CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\14.1_1\
CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.8_1\
CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.1_1\
CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.4_0\
CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.0_1\
CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_1\
CHR - Extension: No name found = C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5216.530.0.14_0\

O1 HOSTS File: ([2016/07/22 07:45:05 | 000,000,035 | ---- | M]) - C:\Windows\System32\Drivers\etc\hosts
O4 - HKLM..\Run: [NvBackend] C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [ShadowPlay] C:\Windows\System32\nvspcap.dll (NVIDIA Corporation)
O4 - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd)
O4 - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001..\Run: [RemoTerm.exe] C:\Program Files\Common Files\PCTV Systems\RemoTerm\remoterm.exe (PCTV Systems S.à r.l.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)
O16 - DPF: Garmin Communicator Plug-In https://static.garmincdn.com/gcp/ie/4.2 ... rol_32.CAB (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 81.200.55.86 81.200.55.34
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{422FBA08-0925-4009-AE87-F2C475D44A88}: DhcpNameServer = 81.200.55.86 81.200.55.34
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013/08/22 10:16:34 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs: wlidsvc - C:\Windows\System32\wlidsvc.dll (Microsoft Corporation)
NetSvcs: lfsvc - C:\Windows\System32\GeofenceMonitorService.dll (Microsoft Corporation)
NetSvcs: DsmSvc - C:\Windows\System32\DeviceSetupManager.dll (Microsoft Corporation)
NetSvcs: NcaSvc - C:\Windows\System32\NcaSvc.dll (Microsoft Corporation)
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\Windows\System32\SL_ANET.ACM (Sipro Lab Telecom Inc.)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\Windows\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.yv12 - C:\Windows\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2016/08/22 11:12:17 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Admin\Desktop\OTL.exe
[2016/08/18 18:50:01 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\KD srpen 2016.zip.53pquvo
[2016/08/09 19:42:27 | 015,158,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.UI.Xaml.dll
[2016/08/09 19:42:22 | 002,317,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll
[2016/08/09 19:42:22 | 000,227,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sppwinob.dll
[2016/08/09 19:42:21 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidclass.sys
[2016/08/09 19:42:20 | 002,976,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcorets.dll
[2016/08/09 19:42:20 | 002,165,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2016/08/09 19:42:19 | 000,727,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2016/08/09 19:42:19 | 000,413,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\webio.dll
[2016/08/09 19:42:19 | 000,318,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\storport.sys
[2016/08/09 19:42:19 | 000,091,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncryptsslp.dll
[2016/08/09 19:42:18 | 003,273,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcore.dll
[2016/08/09 19:42:18 | 000,063,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dumpfve.sys
[2016/08/09 19:42:17 | 000,288,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Classpnp.sys
[2016/08/09 19:42:17 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.Devices.Geolocation.dll
[2016/08/09 19:42:17 | 000,047,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\stornvme.sys
[2016/08/09 19:42:16 | 001,192,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sppobjs.dll
[2016/08/09 19:42:16 | 000,099,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cryptxml.dll
[2016/08/09 19:42:15 | 000,363,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tpmvsc.dll
[2016/08/09 19:42:15 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\LocationApi.dll
[2016/08/09 19:42:15 | 000,030,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UserAccountBroker.exe
[2016/08/09 19:42:13 | 005,761,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2016/08/09 19:42:11 | 000,543,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FirewallAPI.dll
[2016/08/09 19:42:10 | 000,592,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fveapi.dll
[2016/08/09 19:42:10 | 000,334,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WUSettingsProvider.dll
[2016/08/09 19:42:10 | 000,192,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpresult.exe
[2016/08/09 19:42:10 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wfapigp.dll
[2016/08/09 19:42:09 | 000,309,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fvecpl.dll
[2016/08/09 19:42:09 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\httpprxm.dll
[2016/08/09 19:42:09 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hbaapi.dll
[2016/08/09 19:42:09 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\httpprxp.dll
[2016/08/09 19:42:08 | 001,060,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certutil.exe
[2016/08/09 19:42:08 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BdeHdCfgLib.dll
[2016/08/09 19:42:08 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adhsvc.dll
[2016/08/09 19:42:08 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certenc.dll
[2016/08/09 19:42:08 | 000,026,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidparse.sys
[2016/08/09 19:42:07 | 002,464,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2016/08/09 19:42:07 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2016/08/09 19:42:07 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2016/08/09 19:42:07 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2016/08/09 19:41:40 | 003,479,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2016/08/09 19:41:40 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TpmTasks.dll
[2016/08/09 19:41:26 | 005,265,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Windows.Data.Pdf.dll
[2016/08/09 19:41:25 | 005,270,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\glcndFilter.dll
[2016/08/09 19:41:06 | 004,608,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2016/08/09 19:41:05 | 002,055,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2016/08/09 19:41:05 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2016/08/09 19:41:04 | 000,689,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2016/08/09 19:41:04 | 000,330,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2016/08/09 19:41:02 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2016/08/09 19:40:31 | 001,491,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\GdiPlus.dll
[2016/07/29 22:13:56 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\YouTube Downloader
[2016/07/29 22:13:15 | 000,000,000 | ---D | C] -- C:\Program Files\YTD
[2016/07/29 18:18:46 | 000,000,000 | ---D | C] -- C:\Users\Admin\Desktop\tisk
[2016/07/23 17:42:32 | 000,000,000 | ---D | C] -- C:\Program Files\Defraggler
[2016/07/23 17:35:24 | 000,000,000 | ---D | C] -- C:\ProgramData\GPCWValidator
[2016/07/23 17:35:24 | 000,000,000 | ---D | C] -- C:\Users\Admin\AppData\Roaming\FileOpenerWindows
[2016/07/23 17:27:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2016/07/23 17:27:38 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2016/08/22 11:17:08 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2016/08/22 11:12:17 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Admin\Desktop\OTL.exe
[2016/08/22 10:57:16 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2016/08/22 09:38:01 | 000,000,966 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2016/08/22 08:38:00 | 000,000,962 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2016/08/22 08:11:02 | 000,017,488 | ---- | M] (Windows (R) 2000 DDK provider) -- C:\Windows\gdrv.sys
[2016/08/22 08:10:54 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2016/08/22 08:10:49 | 1716,715,520 | -HS- | M] () -- C:\hiberfil.sys
[2016/08/21 16:02:59 | 000,113,647 | ---- | M] () -- C:\Users\Admin\Desktop\OTS přestal skenovat 2.jpg
[2016/08/21 15:43:27 | 000,116,931 | ---- | M] () -- C:\Users\Admin\Desktop\zastavení OTS.jpg
[2016/08/10 08:14:28 | 000,423,024 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2016/08/09 08:47:43 | 000,738,682 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2016/08/09 08:47:43 | 000,722,278 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2016/08/09 08:47:43 | 000,151,404 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2016/08/09 08:47:43 | 000,135,394 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2016/08/02 07:21:20 | 004,608,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2016/08/02 07:15:09 | 000,692,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2016/08/02 07:15:01 | 000,330,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2016/08/02 07:14:58 | 000,689,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2016/08/02 07:14:32 | 002,055,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2016/08/02 06:51:20 | 000,710,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2016/07/29 22:13:17 | 000,000,911 | ---- | M] () -- C:\Users\Admin\Desktop\YTD.lnk
[2016/07/29 22:09:17 | 000,170,200 | ---- | M] (Malwarebytes) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
[2016/07/27 21:25:30 | 000,406,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2016/07/23 17:42:38 | 000,001,879 | ---- | M] () -- C:\Users\Public\Desktop\Defraggler.lnk
[2016/07/23 17:37:31 | 000,000,981 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2016/07/23 17:33:04 | 000,064,434 | ---- | M] () -- C:\Users\Admin\Documents\cc_20160723_173226-23.7.2016.reg
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2016/08/22 11:17:08 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2016/08/21 16:02:59 | 000,113,647 | ---- | C] () -- C:\Users\Admin\Desktop\OTS přestal skenovat 2.jpg
[2016/08/21 15:43:27 | 000,116,931 | ---- | C] () -- C:\Users\Admin\Desktop\zastavení OTS.jpg
[2016/07/29 22:13:17 | 000,000,923 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD.lnk
[2016/07/29 22:13:17 | 000,000,911 | ---- | C] () -- C:\Users\Admin\Desktop\YTD.lnk
[2016/07/29 08:33:26 | 000,000,966 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2016/07/29 08:33:25 | 000,000,962 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2016/07/23 17:42:38 | 000,001,879 | ---- | C] () -- C:\Users\Public\Desktop\Defraggler.lnk
[2016/07/23 17:32:51 | 000,064,434 | ---- | C] () -- C:\Users\Admin\Documents\cc_20160723_173226-23.7.2016.reg
[2016/07/23 17:27:45 | 000,000,981 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2016/07/17 14:38:04 | 000,000,193 | ---- | C] () -- C:\Windows\WORDPAD.INI
[2015/01/05 19:16:26 | 000,652,096 | ---- | C] () -- C:\Windows\System32\nvmcumd.dll
[2014/12/17 14:17:03 | 000,007,601 | ---- | C] () -- C:\Users\Admin\AppData\Local\Resmon.ResmonCfg
[2014/12/15 12:37:04 | 004,151,176 | ---- | C] () -- C:\Windows\System32\nvcoproc.bin
[2014/12/10 20:23:36 | 000,000,384 | ---- | C] () -- C:\Windows\ODBC.INI
[2014/12/10 13:39:11 | 000,107,008 | ---- | C] () -- C:\Windows\System32\OEMLicense.dll
[2014/12/10 13:39:02 | 000,075,264 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2014/12/10 13:38:50 | 000,046,080 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2014/12/10 13:37:58 | 000,050,745 | ---- | C] () -- C:\Windows\System32\srms.dat
[2014/12/10 12:29:34 | 000,262,335 | ---- | C] () -- C:\Windows\System32\dfpinc.dat
[2014/12/10 12:29:00 | 000,002,255 | ---- | C] () -- C:\Windows\System32\WimBootCompress.ini

========== ZeroAccess Check ==========


[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2016/05/28 20:31:21 | 019,788,688 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2014/10/29 02:59:23 | 000,786,944 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2014/10/29 02:57:29 | 000,407,552 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2014/12/17 15:06:09 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\AVAST Software
[2016/07/23 17:35:24 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\FileOpenerWindows
[2016/08/22 08:51:18 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Garmin
[2015/01/18 09:22:16 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\LibreOffice
[2016/07/29 22:13:56 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\YouTube Downloader

========== Purity Check ==========



========== Custom Scans ==========

< >
[2013/08/22 09:23:44 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2016/07/29 08:33:25 | 000,000,962 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2016/07/29 08:33:26 | 000,000,966 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

< MD5 for: ATAPI.SYS >
[2013/08/22 07:33:25 | 000,023,392 | ---- | M] (Microsoft Corporation) MD5=72FCAE2CE6DFEAB2AB072435017F3417 -- C:\Windows\System32\Drivers\atapi.sys
[2013/08/22 07:33:25 | 000,023,392 | ---- | M] (Microsoft Corporation) MD5=72FCAE2CE6DFEAB2AB072435017F3417 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_74136ef4a48e4644\atapi.sys
[2013/08/22 07:33:25 | 000,023,392 | ---- | M] (Microsoft Corporation) MD5=72FCAE2CE6DFEAB2AB072435017F3417 -- C:\Windows\WinSxS\x86_mshdc.inf_31bf3856ad364e35_6.3.9600.16384_none_71d7eca13d2363da\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2014/02/22 13:24:36 | 000,792,576 | ---- | M] (Microsoft Corporation) MD5=1D31E78ED5C40B5C6CC8D3DE713177A5 -- C:\Windows\System32\autochk.exe
[2014/02/22 13:24:36 | 000,792,576 | ---- | M] (Microsoft Corporation) MD5=1D31E78ED5C40B5C6CC8D3DE713177A5 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.17031_none_76c6a414dd35029f\autochk.exe
[2015/01/09 16:41:35 | 000,023,596 | ---- | M] () MD5=83A4C9BE342BC296EC09492FF7594F13 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.16384_none_7693b1d0dd5ab82d\autochk.exe

< MD5 for: CDROM.SYS >
[2013/08/22 03:59:12 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=E2FC132D48EA4E8B04432C33EFB77801 -- C:\Windows\System32\Drivers\cdrom.sys
[2013/08/22 03:59:12 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=E2FC132D48EA4E8B04432C33EFB77801 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_9aa051086f0faf61\cdrom.sys
[2013/08/22 03:59:12 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=E2FC132D48EA4E8B04432C33EFB77801 -- C:\Windows\WinSxS\x86_cdrom.inf_31bf3856ad364e35_6.3.9600.16384_none_f4492069bf60ff88\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2015/01/26 12:41:30 | 000,351,507 | ---- | M] () MD5=19D3FE4509CC4C9EF4689B41E51E229E -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17238_none_e68e63af9529fa1e\explorer.exe
[2016/05/29 14:40:04 | 000,259,279 | ---- | M] () MD5=233904D607A2B86D1547B65FA6CDC3C4 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17415_none_e6a10675951c7085\explorer.exe
[2015/01/26 12:41:47 | 000,338,808 | ---- | M] () MD5=3A11FC6AEAFEF280A6AC446F1C4F1BF8 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17284_none_e65452eb95562077\explorer.exe
[2015/01/26 12:41:06 | 000,353,684 | ---- | M] () MD5=8CDECDF390F818CC230CA89423B70CD9 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16384_none_e6546b99955603fd\explorer.exe
[2016/02/09 03:31:39 | 002,412,576 | ---- | M] (Microsoft Corporation) MD5=97A7A0521E059D242907EFB73A844F29 -- C:\Windows\explorer.exe
[2016/02/09 03:31:39 | 002,412,576 | ---- | M] (Microsoft Corporation) MD5=97A7A0521E059D242907EFB73A844F29 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.18231_none_e6874ae19530625e\explorer.exe
[2015/01/26 12:41:14 | 000,345,618 | ---- | M] () MD5=9CC40BBBF7F0082B3C8300BB05EE3729 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17031_none_e6875ddd95304e6f\explorer.exe
[2015/01/26 12:41:23 | 000,345,492 | ---- | M] () MD5=D838CDA6680CFDA621671D59C4AF4016 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17039_none_e68f602d95291927\explorer.exe

< MD5 for: HAL.DLL >
[2015/01/26 14:14:18 | 000,043,164 | ---- | M] () MD5=39B592A28DD1F25F7364D87EFBDCA70A -- C:\Windows\WinSxS\x86_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.16384_none_3fc8b72b7543cc93\hal.dll
[2014/06/02 03:06:29 | 000,337,752 | ---- | M] (Microsoft Corporation) MD5=894E02AA20B793F4A0AF0E815D517F62 -- C:\Windows\System32\hal.dll
[2014/06/02 03:06:29 | 000,337,752 | ---- | M] (Microsoft Corporation) MD5=894E02AA20B793F4A0AF0E815D517F62 -- C:\Windows\WinSxS\x86_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.17196_none_3fbfcd3f754a3a85\hal.dll
[2015/01/26 14:14:20 | 000,014,045 | ---- | M] () MD5=970C464EEA25EDCB9B95EEF1904FF1F2 -- C:\Windows\WinSxS\x86_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.17031_none_3ffba96f751e1705\hal.dll

< MD5 for: SCECLI.DLL >
[2015/01/28 19:46:27 | 000,042,572 | ---- | M] () MD5=22CDB04B964A8D34C42BB7ED150784F8 -- C:\Windows\WinSxS\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.16384_none_ccada6e2f4b50450\scecli.dll
[2014/10/29 03:01:41 | 000,214,016 | ---- | M] (Microsoft Corporation) MD5=FB740FE549197E7B08021EF30327921D -- C:\Windows\System32\scecli.dll
[2014/10/29 03:01:41 | 000,214,016 | ---- | M] (Microsoft Corporation) MD5=FB740FE549197E7B08021EF30327921D -- C:\Windows\WinSxS\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.17415_none_ccfa41bef47b70d8\scecli.dll

< MD5 for: SVCHOST.EXE >
[2015/01/28 19:50:49 | 000,007,517 | ---- | M] () MD5=73AA583D4FB0F05C313B38C091D94804 -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.16384_none_4a5b1e2820e75323\svchost.exe
[2014/10/29 05:17:51 | 000,033,088 | ---- | M] (Microsoft Corporation) MD5=D0ABC231C0B3E88C6B612B28ABBF734D -- C:\Windows\System32\svchost.exe
[2014/10/29 05:17:51 | 000,033,088 | ---- | M] (Microsoft Corporation) MD5=D0ABC231C0B3E88C6B612B28ABBF734D -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.17415_none_4aa7b90420adbfab\svchost.exe
[2016/03/10 14:07:16 | 000,960,480 | ---- | M] (MalwareBytes) MD5=F86A4139730504047F52CCFB8C47E9F5 -- C:\Program Files\Malwarebytes Anti-Malware\Chameleon\Windows\svchost.exe

< MD5 for: TCPIP.SYS >
[2015/01/28 20:29:10 | 000,269,467 | ---- | M] () MD5=00EAB7E27B0C1632C36C5553ABD7F999 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17136_none_47f5cc7581d59c80\tcpip.sys
[2015/01/28 20:29:29 | 000,197,174 | ---- | M] () MD5=053CFFA5A19455A31ABECC3E011DC7AD -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17336_none_47f5d04181d596ce\tcpip.sys
[2015/01/28 20:29:35 | 000,002,510 | ---- | M] () MD5=3B07748478F004D4D4C9634F7F48C696 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17415_none_480a71b581c642bc\tcpip.sys
[2015/01/28 20:28:50 | 000,268,710 | ---- | M] () MD5=3E98D9EB816FFC680AC9BBE019C54EA7 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17039_none_47f8cb6d81d2eb5e\tcpip.sys
[2016/07/16 11:16:43 | 000,234,122 | ---- | M] () MD5=57B46E772C960143288374FD27495267 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17485_none_47bec24181ff0653\tcpip.sys
[2015/01/28 20:28:28 | 000,287,906 | ---- | M] () MD5=57E96BA0CC548FDFD3E0C3D261FBE0D0 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16384_none_47bdd6d981ffd634\tcpip.sys
[2015/01/28 20:29:16 | 000,269,131 | ---- | M] () MD5=5DE2043BCA50652CFE70F4C79331227D -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17238_none_47f7ceef81d3cc55\tcpip.sys
[2015/01/28 20:28:57 | 000,270,000 | ---- | M] () MD5=7BE3F5C68BC357A39C80BFE71CF01DDF -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17085_none_47bebaa981ff11b7\tcpip.sys
[2015/01/28 20:29:23 | 000,195,995 | ---- | M] () MD5=822F4A892E2FCF967EB462F59FBA593B -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17278_none_47cc8f3f81f43c19\tcpip.sys
[2016/03/12 02:55:09 | 001,846,616 | ---- | M] (Microsoft Corporation) MD5=8E596E7D6E8C55433F93ACF667E37BBC -- C:\Windows\System32\Drivers\tcpip.sys
[2016/03/12 02:55:09 | 001,846,616 | ---- | M] (Microsoft Corporation) MD5=8E596E7D6E8C55433F93ACF667E37BBC -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.18265_none_47d4478581eeedc4\tcpip.sys
[2015/01/28 20:28:43 | 000,292,194 | ---- | M] () MD5=D98AC62CFD221A6F5A1A7AD73A370386 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16521_none_47fbb94f81d1dcd7\tcpip.sys
[2015/01/28 20:28:37 | 000,290,518 | ---- | M] () MD5=F17EF69AFA223B200500EA2E579FE955 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16456_none_47e0491781e5b236\tcpip.sys

< MD5 for: USERINIT.EXE >
[2015/01/28 20:41:31 | 000,004,269 | ---- | M] () MD5=1AE98168631581DE1343C3A87A6CBCA9 -- C:\Windows\WinSxS\x86_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.16384_none_70c87e9ced498d49\userinit.exe
[2014/10/29 03:05:25 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=D10643FC0095434C819316CA6CD748C0 -- C:\Windows\System32\userinit.exe
[2014/10/29 03:05:25 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=D10643FC0095434C819316CA6CD748C0 -- C:\Windows\WinSxS\x86_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.17415_none_71151978ed0ff9d1\userinit.exe

< MD5 for: WINLOGON.EXE >
[2016/01/05 16:59:45 | 000,465,408 | ---- | M] (Microsoft Corporation) MD5=2022624E358053908CB81B4E02245B8F -- C:\Windows\System32\winlogon.exe
[2016/01/05 16:59:45 | 000,465,408 | ---- | M] (Microsoft Corporation) MD5=2022624E358053908CB81B4E02245B8F -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.18188_none_04669569f087af83\winlogon.exe
[2015/01/28 20:52:42 | 000,087,679 | ---- | M] () MD5=46FB47056D0BA493D90A973B04E0666C -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.17031_none_0495b7e1f0655ba5\winlogon.exe
[2016/03/13 23:24:20 | 000,059,207 | ---- | M] () MD5=E3373AA38ED8998A1D8B41A5351A022D -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.18083_none_04619211f08c33a9\winlogon.exe
[2015/12/25 20:26:12 | 000,050,780 | ---- | M] () MD5=E8AB39AE14615D6BAFB9D92EB0C8E621 -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.17415_none_04af6079f0517dbb\winlogon.exe
[2015/01/28 20:52:40 | 000,093,433 | ---- | M] () MD5=F7C808B8059A76EF5F611BCE72A92075 -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.16384_none_0462c59df08b1133\winlogon.exe
[2016/03/10 14:07:16 | 000,960,480 | ---- | M] (MalwareBytes) MD5=F86A4139730504047F52CCFB8C47E9F5 -- C:\Program Files\Malwarebytes Anti-Malware\Chameleon\Windows\winlogon.exe

< >

< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[15 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[1 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2016/01/21 09:51:21 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Adobe
[2014/12/17 15:06:09 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\AVAST Software
[2014/12/10 22:10:29 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\FastStone
[2016/07/23 17:35:24 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\FileOpenerWindows
[2016/08/22 08:51:18 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Garmin
[2014/12/10 14:57:44 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Identities
[2015/01/18 09:22:16 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\LibreOffice
[2016/01/21 10:52:27 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Macromedia
[2016/07/22 08:31:28 | 000,000,000 | --SD | M] -- C:\Users\Admin\AppData\Roaming\Microsoft
[2014/12/10 21:58:27 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\NVIDIA
[2016/08/20 18:55:27 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Skype
[2016/08/17 21:38:23 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\vlc
[2016/07/29 22:13:56 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\YouTube Downloader
Nahoru
dol
Návštěvník
Návštěvník
Příspěvky: 101
Registrován: 12 úno 2009 09:42

Re: Problém s IE

#26 Příspěvek od dol »

< %APPDATA%\*.exe /s >
[2016/07/20 12:55:36 | 000,072,384 | ---- | M] () -- C:\Users\Admin\AppData\Roaming\FileOpenerWindows\wfo.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2014/11/08 03:52:50 | 003,999,232 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\SyncEngine.dll

< %systemroot%\Tasks\*.job >
[2016/08/22 08:38:00 | 000,000,962 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2016/08/22 11:39:40 | 000,000,966 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >
[2014/11/08 03:52:50 | 003,999,232 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\SyncEngine.dll

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >

< %SYSTEMDRIVE%\*.exe >

< >

< *crack* /s >
[2016/08/20 21:12:56 | 000,000,764 | ---- | M] () -- \Users\Admin\AppData\Roaming\Microsoft\Office\Naposledy otevřené\jak crack.LNK
[2016/08/20 21:12:56 | 000,000,874 | ---- | M] () -- \Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\jak crack.lnk

< *keygen* /s >

< *AntiWPA* /s >

< *loader* /s >
[2016/07/23 22:52:27 | 000,000,155 | ---- | M] () -- \$RECYCLE.BIN\S-1-5-21-4140605027-1625828158-2128847343-1001\$RAL5W4U\Navigace\garmin POI Loader Software Update Collection.URL
[2016/07/23 22:52:35 | 000,000,128 | ---- | M] () -- \$RECYCLE.BIN\S-1-5-21-4140605027-1625828158-2128847343-1001\$RAL5W4U\TV,radio,tisk,Nej.cz\http--downloader.zex.cz-index.phpurl=.URL
[2008/03/12 21:11:24 | 000,240,727 | ---- | M] () -- \Program Files\Garmin\MS_Loader_v3\MS Loader.exe
[2015/02/12 21:07:35 | 000,000,047 | ---- | M] () -- \Program Files\Garmin\MS_Loader_v3\MS Loader.ini
[2008/03/12 21:12:48 | 000,233,633 | ---- | M] () -- \Program Files\Garmin\MS_Loader_v3\tools\Asociace souborů s MS Loaderem (GDB, GPX, MPS).exe
[2014/05/25 20:45:54 | 000,006,866 | ---- | M] () -- \Program Files\LibreOffice 4\program\pythonloader.py
[2014/12/13 01:14:52 | 000,000,171 | ---- | M] () -- \Program Files\LibreOffice 4\program\pythonloader.uno.ini
[2014/12/13 01:12:52 | 000,047,392 | ---- | M] () -- \Program Files\LibreOffice 4\program\pythonloaderlo.dll
[2014/12/12 02:22:06 | 000,124,429 | ---- | M] () -- \Program Files\LibreOffice 4\program\classes\libloader-1.1.6.jar
[2014/12/12 03:02:50 | 000,013,883 | ---- | M] () -- \Program Files\LibreOffice 4\program\python-core-3.3.3\lib\unittest\loader.py
[2014/12/12 03:02:50 | 000,050,271 | ---- | M] () -- \Program Files\LibreOffice 4\program\python-core-3.3.3\lib\unittest\test\test_loader.py
[2014/12/13 01:11:04 | 000,084,256 | ---- | M] () -- \Program Files\LibreOffice 4\URE\bin\javaloaderlo.dll
[2014/12/12 01:58:10 | 000,004,766 | ---- | M] () -- \Program Files\LibreOffice 4\URE\java\unoloader.jar
[2015/06/17 11:06:28 | 000,057,592 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\Display.PhysX.{1DCB2C30-D5E1-4D60-8766-50F37C998C4C}\files\Common\PhysXLoader.dll
[2015/06/17 11:06:28 | 000,065,784 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\Display.PhysX.{1DCB2C30-D5E1-4D60-8766-50F37C998C4C}\files\Common\PhysXLoader64.dll
[2015/06/17 11:06:28 | 000,073,976 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\Display.PhysX.{1DCB2C30-D5E1-4D60-8766-50F37C998C4C}\files\Common\PhysXUpdateLoader.dll
[2015/06/17 11:06:28 | 000,090,872 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\Display.PhysX.{1DCB2C30-D5E1-4D60-8766-50F37C998C4C}\files\Common\PhysXUpdateLoader64.dll
[2015/07/14 21:06:54 | 000,916,112 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\installer.{3F511CBE-C302-4B04-B03E-1E4F06486EA0}\NVDownloader.dll
[2015/07/14 21:05:59 | 000,028,430 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\installer.{3F511CBE-C302-4B04-B03E-1E4F06486EA0}\NVI2DownloaderExt.CFG
[2015/07/14 21:06:55 | 000,828,048 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\installer.{3F511CBE-C302-4B04-B03E-1E4F06486EA0}\NVI2DownloaderExt.DLL
[2015/07/14 21:06:43 | 001,176,720 | ---- | M] () -- \Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\ExtensionLoader.dll
[2014/06/10 17:42:34 | 000,065,344 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2014/06/10 17:42:30 | 000,070,464 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2008/10/08 19:16:46 | 000,291,840 | ---- | M] () -- \Program Files\RajcePhotoDownloader\RajcePhotoDownloader.exe
[2015/07/23 11:30:02 | 000,000,856 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x86__8wekyb3d8bbwe\js\HtmlFileLoader.js
[2013/08/22 13:13:14 | 000,001,160 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\modernpeople\appframe\backgroundloader.js
[2013/08/22 13:13:14 | 000,004,996 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\modernshareanything\sharedataloader.js
[2013/08/22 13:13:14 | 000,002,125 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\modernsharetarget\sharemaildataloader.js
[2013/08/22 13:14:50 | 000,043,128 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x86__8wekyb3d8bbwe\Framework\imageLoader.js
[2016/01/12 06:42:50 | 001,188,288 | ---- | M] () -- \ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience\ExtensionLoader.dll
[2016/01/12 06:43:48 | 000,923,072 | ---- | M] () -- \ProgramData\NVIDIA Corporation\GeForce Experience\Update\NVI2\NVDownloader.dll
[2016/08/21 12:34:11 | 000,000,640 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\CLR_v2.0_32\UsageLogs\RajcePhotoDownloader.exe.log
[2016/03/01 15:16:45 | 000,000,213 | R--- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\FileHistory\Data\1659\C\Users\Admin\Favorites\Navigace\garmin POI Loader Software Update Collection.URL
[2016/03/01 15:16:48 | 000,000,188 | R--- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\FileHistory\Data\1659\C\Users\Admin\Favorites\TV,radio,tisk,Nej.cz\http--downloader.zex.cz-index.phpurl=.URL
[2016/07/16 05:35:18 | 000,000,213 | R--- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\FileHistory\Data\2313\C\Users\Admin\Favorites\Navigace\garmin POI Loader Software Update Collection.URL
[2016/07/16 05:35:30 | 000,000,188 | R--- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\FileHistory\Data\2313\C\Users\Admin\Favorites\TV,radio,tisk,Nej.cz\http--downloader.zex.cz-index.phpurl=.URL
[2016/07/19 14:21:28 | 000,000,155 | R--- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\FileHistory\Data\2330\C\Users\Admin\Favorites\Links\Importováno z aplikace IE\Navigace\garmin POI Loader Software Update Collection.URL
[2016/07/19 14:21:22 | 000,000,128 | R--- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\FileHistory\Data\2330\C\Users\Admin\Favorites\Links\Importováno z aplikace IE\TV,radio,tisk,Nej.cz\http--downloader.zex.cz-index.phpurl=.URL
[2016/08/21 12:31:39 | 000,002,099 | R--- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\FileHistory\Data\2486\C\Users\Admin\Desktop\vše o rajče\Rajce Photo Downloader.lnk
[2016/07/27 17:00:51 | 000,000,314 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\0823ZR0P\EBLoader[1].js
[2016/07/26 13:56:18 | 000,286,934 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\1PMPFUAG\9b5c1f3b-1-loader.js,prototype.js,scriptaculous.js,builder.js,effects.js,controls.js,basic.js,functions.js,search-suggestor.js,sc.js,shopping-cart[1].js
[2016/08/21 12:25:47 | 000,002,545 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\1PMPFUAG\bigLoader[1].gif
[2016/08/18 11:51:10 | 000,004,178 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\22E9YXLQ\ajax-loader[1].gif
[2016/08/21 14:20:16 | 000,006,029 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\22E9YXLQ\loader[1].gif
[2016/08/18 13:46:24 | 000,782,885 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\22E9YXLQ\loader[1].js
[2016/08/19 17:44:09 | 000,326,264 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\3VNT2JO3\90fc7575-1-loader.js,prototype.js,scriptaculous.js,builder.js,effects.js,controls.js,basic.js,functions.js,search-suggestor.js,promo.js,product.js,product-gallery.js,swipe-detecti[1].js
[2016/07/25 17:28:17 | 000,038,489 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\3VNT2JO3\cssloader-bc5f73394bbc-1468306843[1].css
[2016/07/25 17:28:17 | 000,141,525 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\3VNT2JO3\cssloader-e68ec2cf6f67-1435740713[1].css
[2016/08/16 08:02:44 | 000,056,183 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\5VAVMSO1\cssloader-d08232e16c03-1471003507[1].css
[2016/08/20 19:40:06 | 000,004,782 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\5VAVMSO1\loader-foto[1].gif
[2016/08/19 10:03:46 | 000,056,183 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\B511IVGS\cssloader-d08232e16c03-1471517848[1].css
[2016/08/12 09:52:39 | 000,000,314 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\B511IVGS\EBLoader[1].js
[2016/08/21 18:39:49 | 000,002,883 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\B511IVGS\QuickLoader[1].js
[2016/08/19 13:25:24 | 000,000,411 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\F7SS18HO\HSAppsLoader[1].css
[2016/08/11 10:23:34 | 000,627,079 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\F7SS18HO\jsloader-326ce303dd5c-1470216705[2].js
[2016/08/19 13:25:24 | 000,019,318 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\F7SS18HO\MapAppLoader[1].js
[2016/08/19 17:44:09 | 000,002,435 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\IIE1GIVR\90fc7575-1-deferred-loader[1].js
[2016/08/16 08:02:44 | 000,150,750 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\IIE1GIVR\cssloader-31cd3993ba2b-1470912062[1].css
[2016/08/19 17:45:42 | 000,122,583 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\IWQQ9Q14\prototype.js,scriptaculous.js,effects.js,controls.js,common.js,deferred-loader[1].js
[2016/08/21 14:57:38 | 000,007,825 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\P27EXNRB\ajax-loader[1].gif
[2016/07/25 14:20:07 | 000,324,917 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\QBIPNVFV\9b5c1f3b-1-loader.js,prototype.js,scriptaculous.js,builder.js,effects.js,controls.js,basic.js,functions.js,search-suggestor.js,promo.js,product.js,product-gallery.js,swipe-detecti[1].js
[2016/08/21 19:36:30 | 000,003,951 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\VNF9UY2P\ajax-loader4[1].gif
[2016/07/25 19:05:58 | 000,005,962 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\VNF9UY2P\ASXLoader[1].js
[2016/08/21 12:31:39 | 000,000,856 | ---- | M] () -- \Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Rajce Photo Downloader.lnk
[2016/08/21 12:31:39 | 000,002,099 | ---- | M] () -- \Users\Admin\Desktop\vše o rajče\Rajce Photo Downloader.lnk
[2012/07/22 19:51:59 | 000,548,125 | ---- | M] () -- \Users\Admin\Desktop\vše o rajče\RajcePhotoDownloader-instalace-1.0.1.0.exe
[2016/08/10 08:17:46 | 000,000,213 | ---- | M] () -- \Users\Admin\Favorites\Navigace\garmin POI Loader Software Update Collection.url
[2016/08/10 08:17:59 | 000,000,188 | ---- | M] () -- \Users\Admin\Favorites\TV,radio,tisk,Nej.cz\http--downloader.zex.cz-index.phpurl=.url
[2016/01/12 06:42:50 | 001,188,288 | ---- | M] () -- \Users\All Users\NVIDIA Corporation\GeForce Experience\Update\GFExperience\ExtensionLoader.dll
[2016/01/12 06:43:48 | 000,923,072 | ---- | M] () -- \Users\All Users\NVIDIA Corporation\GeForce Experience\Update\NVI2\NVDownloader.dll
[2016/08/21 12:31:11 | 000,036,940 | ---- | M] () -- \Windows\Prefetch\RAJCEPHOTODOWNLOADER-INSTALAC-280F2293.pf
[2016/08/21 12:31:09 | 000,032,412 | ---- | M] () -- \Windows\Prefetch\RAJCEPHOTODOWNLOADER-INSTALAC-995AA388.pf
[2016/08/21 12:31:11 | 000,021,698 | ---- | M] () -- \Windows\Prefetch\RAJCEPHOTODOWNLOADER-INSTALAC-B7F50D7A.pf
[2016/08/21 12:31:52 | 000,084,038 | ---- | M] () -- \Windows\Prefetch\RAJCEPHOTODOWNLOADER.EXE-B6BBF112.pf
[2013/08/22 06:17:27 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 06:17:25 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 06:17:24 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 06:17:20 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 06:17:34 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 06:17:33 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-1.dll
[2014/10/29 03:51:40 | 000,041,472 | ---- | M] () -- \Windows\System32\dmloader.dll
[2013/08/22 08:13:52 | 000,003,584 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 08:13:52 | 000,003,072 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 08:13:52 | 000,002,560 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-stringloader-l1-1-1.dll
[2016/08/22 08:16:16 | 000,003,528 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\Uploader
[2013/08/22 09:25:10 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2014/12/10 14:54:29 | 000,069,632 | ---- | M] () -- \Windows\System32\winevt\Logs\Microsoft-Windows-User-Loader%4Operational.evtx
[2014/12/10 12:37:56 | 000,000,463 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_c8152575187d59c5.manifest
[2015/01/28 21:23:43 | 000,009,592 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_c8152575187d59c5_winload.efi.mui_35ee487d
[2015/01/28 21:23:43 | 000,009,586 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_c8152575187d59c5_winload.exe.mui_3bc5b827
[2015/01/28 21:23:43 | 000,007,884 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_c8152575187d59c5_winresume.efi.mui_f412814e
[2015/01/28 21:23:43 | 000,007,897 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_c8152575187d59c5_winresume.exe.mui_ff8b5358
[2014/12/10 12:36:49 | 000,000,460 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_en-us_0b6b70d0ff77b623.manifest
[2015/01/28 21:23:44 | 000,009,327 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_en-us_0b6b70d0ff77b623_winload.efi.mui_35ee487d
[2015/01/28 21:23:44 | 000,009,319 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_en-us_0b6b70d0ff77b623_winload.exe.mui_3bc5b827
[2015/01/28 21:23:44 | 000,007,776 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_en-us_0b6b70d0ff77b623_winresume.efi.mui_f412814e
[2015/01/28 21:23:44 | 000,007,771 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_en-us_0b6b70d0ff77b623_winresume.exe.mui_ff8b5358
[2016/08/09 22:09:53 | 000,000,579 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18379_none_efd6228788340b8a.manifest
[2016/08/19 13:35:44 | 000,586,974 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18379_none_efd6228788340b8a_winload.efi_75834aa0
[2016/08/19 13:35:46 | 000,535,539 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18379_none_efd6228788340b8a_winload.exe_75835076
[2016/08/19 13:35:49 | 000,530,110 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18379_none_efd6228788340b8a_winresume.efi_85cd069f
[2016/08/19 13:35:52 | 000,482,048 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18379_none_efd6228788340b8a_winresume.exe_85cd1215
[2015/06/10 11:20:22 | 000,000,612 | ---- | M] () -- \Windows\WinSxS\FileMaps\programdata_microsoft_diagnosis_asimovuploader_0413bca0c3dfdda4.cdf-ms
[2013/08/22 10:16:34 | 000,000,592 | ---- | M] () -- \Windows\WinSxS\FileMaps\programdata_microsoft_network_downloader_7fafaef6d33e4371.cdf-ms
[2013/10/12 00:38:36 | 000,000,459 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_c7e2333118a30f53.manifest
[2013/08/22 13:10:34 | 000,000,457 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_en-us_0b387e8cff9d6bb1.manifest
[2014/12/10 12:17:38 | 000,000,463 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_c8152575187d59c5.manifest
[2014/12/10 12:17:38 | 000,000,460 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_en-us_0b6b70d0ff77b623.manifest
[2013/08/22 10:07:38 | 000,000,537 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16384_none_efc67eb988407586.manifest
[2014/12/10 11:52:43 | 000,000,540 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16411_none_f00f2f35880a6311.manifest
[2014/12/10 11:53:58 | 000,000,540 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16415_none_f013305d8806c86d.manifest
[2014/12/10 11:48:49 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16496_none_efbdb1478846c14c.manifest
[2014/12/10 12:21:29 | 000,000,540 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_eff970fd881abff8.manifest
[2014/12/10 13:27:23 | 000,000,540 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17238_none_f00076cf88146ba7.manifest
[2015/10/14 07:51:40 | 000,000,577 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18066_none_efddebe3882eac1f.manifest
[2016/03/09 09:02:34 | 000,000,578 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18194_none_efbb7d718848ca6b.manifest
[2016/02/11 19:42:58 | 000,000,582 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18202_none_f01ace0f8801996b.manifest
[2016/04/15 20:57:49 | 000,000,579 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18233_none_effb5e9588190695.manifest
[2016/04/15 20:58:50 | 000,000,573 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18258_none_efeac02f8824bd2a.manifest
[2016/04/15 20:45:33 | 000,000,571 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18264_none_efdbef1b883073bf.manifest
[2016/07/15 17:11:31 | 000,000,579 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18378_none_efd5223d8834f233.manifest
[2016/08/09 19:39:28 | 000,000,579 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18379_none_efd6228788340b8a.manifest
[2015/01/09 16:41:19 | 000,008,359 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.3.9600.16384_none_da93e078ab3c6498\dmloader.dll
[2014/10/29 03:51:40 | 000,041,472 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.3.9600.17415_none_dae07b54ab02d120\dmloader.dll
[2013/08/22 08:13:52 | 000,003,584 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 08:13:52 | 000,003,072 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 08:13:52 | 000,002,560 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 06:17:27 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 06:17:25 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 06:17:24 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 06:17:20 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 06:17:34 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 06:17:33 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-stringloader-l1-1-1.dll

< *minodlogin* /s >

< *tnod* /s >

< *AutoKMS* /s >

< *activator* /s >

< *serial* /s >
[2014/12/12 02:22:08 | 000,021,786 | ---- | M] () -- \Program Files\LibreOffice 4\program\classes\libserializer-1.1.6.jar
[2014/07/09 03:45:06 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2013/10/12 00:41:32 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2016/08/21 19:36:29 | 000,000,208 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\22E9YXLQ\serial[1].gif
[2013/08/17 02:06:37 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/06/24 00:12:42 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013/10/12 00:41:38 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2014/07/09 03:45:06 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2016/07/19 12:52:54 | 002,803,200 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\f45b7f93a128f8ef2708fe0956257b90\System.Runtime.Serialization.ni.dll
[2016/07/19 12:52:54 | 000,000,980 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\f45b7f93a128f8ef2708fe0956257b90\System.Runtime.Serialization.ni.dll.aux
[2013/08/22 10:14:45 | 000,001,032 | ---- | M] () -- \Windows\inf\c_multiportserial.inf
[2013/10/12 00:41:42 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/10 02:55:16 | 000,142,104 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 02:55:16 | 000,029,392 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Json\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Json.dll
[2013/08/10 02:55:16 | 000,029,432 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Primitives\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Primitives.dll
[2014/06/05 05:33:00 | 000,113,952 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2013/08/10 02:55:16 | 000,029,896 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Xml\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Xml.dll
[2014/07/24 05:20:32 | 001,059,536 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013/08/10 02:55:49 | 000,045,720 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2013/08/10 02:55:49 | 000,029,848 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.XmlSerializer\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Xml.XmlSerializer.dll
[2014/06/24 00:12:42 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/17 02:06:37 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/07/09 03:45:07 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2014/07/24 05:20:32 | 001,059,536 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2013/08/10 02:55:16 | 000,142,104 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 02:55:16 | 000,029,392 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Json.dll
[2013/08/10 02:55:16 | 000,029,432 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2013/08/10 02:55:16 | 000,029,896 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2013/08/10 02:55:49 | 000,045,720 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2013/08/10 02:55:49 | 000,029,848 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.XmlSerializer.dll
[2013/10/12 00:41:42 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/06/05 05:33:00 | 000,113,952 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2013/08/22 05:27:52 | 000,008,827 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~x86~cs-CZ~6.3.9600.16384.cat
[2013/08/22 04:54:10 | 000,000,777 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~x86~cs-CZ~6.3.9600.16384.mum
[2013/08/22 07:59:42 | 000,008,827 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~x86~en-US~6.3.9600.16384.cat
[2013/08/22 07:22:54 | 000,000,777 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~x86~en-US~6.3.9600.16384.mum
[2013/08/22 07:46:30 | 000,008,827 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~x86~~6.3.9600.16384.cat
[2013/08/22 01:42:42 | 000,000,509 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~x86~~6.3.9600.16384.mum
[2014/10/29 03:46:05 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2013/08/22 05:27:52 | 000,008,827 | ---- | M] () -- \Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~x86~cs-CZ~6.3.9600.16384.cat
[2013/08/22 07:59:42 | 000,008,827 | ---- | M] () -- \Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~x86~en-US~6.3.9600.16384.cat
[2013/08/22 07:46:30 | 000,008,827 | ---- | M] () -- \Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~x86~~6.3.9600.16384.cat
[2013/10/12 00:41:24 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2013/08/22 06:11:47 | 000,077,312 | ---- | M] () -- \Windows\System32\Drivers\serial.sys
[2013/10/12 00:40:42 | 000,009,728 | ---- | M] () -- \Windows\System32\Drivers\cs-CZ\serial.sys.mui
[2013/08/22 13:10:55 | 000,010,240 | ---- | M] () -- \Windows\System32\Drivers\en-US\serial.sys.mui
[2013/08/22 13:10:55 | 000,000,232 | ---- | M] () -- \Windows\System32\DriverStore\en-US\c_multiportserial.inf_loc
[2013/08/22 01:53:50 | 000,001,032 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\c_multiportserial.inf_x86_7875073d426d59a6\c_multiportserial.inf
[2013/06/18 14:35:27 | 001,068,032 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\mdmmotsm.inf_x86_c1415d9789c54b89\smserial.sys
[2013/08/22 06:11:47 | 000,077,312 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_x86_a3be8eb95e2e314b\serial.sys
[2013/08/22 13:11:02 | 000,005,120 | ---- | M] () -- \Windows\System32\en-US\serialui.dll.mui
[2013/08/22 10:09:08 | 000,000,418 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_61eedd30ec040245.manifest
[2013/08/22 10:09:01 | 000,000,430 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.primitives_b03f5f7f11d50a3a_4.0.9600.16384_none_dde82ee214ba2d3d.manifest
[2013/08/22 10:08:53 | 000,000,400 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.16384_none_ed2ffed67c428df1.manifest
[2014/12/12 13:09:46 | 000,000,399 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.17226_none_ed29d1947c4825ff.manifest
[2014/12/12 13:07:43 | 000,000,401 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.17231_none_ed2b43c67c46bf31.manifest
[2014/12/12 13:09:46 | 000,000,399 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.20708_none_d659fa3a95f18ab6.manifest
[2014/12/12 13:07:43 | 000,000,401 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.20717_none_d65b114c95f08a6c.manifest
[2013/10/12 00:39:28 | 000,000,445 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.16384_cs-cz_25789e4d6d93f144.manifest
[2013/08/22 13:10:41 | 000,000,149 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.16384_en-us_80951863a93f3c56.manifest
[2015/12/18 14:04:20 | 000,000,557 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.17187_cs-cz_25785c236d943aac.manifest
[2014/12/10 13:09:57 | 000,000,448 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.17238_cs-cz_257343c56d98d5eb.manifest
[2014/12/10 13:09:57 | 000,000,149 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.17238_en-us_808fbddba94420fd.manifest
[2015/12/18 14:04:19 | 000,000,558 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.20681_cs-cz_0eab3b9d873b0509.manifest
[2014/12/10 13:09:57 | 000,000,448 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.20720_cs-cz_0ea55085874053af.manifest
[2014/12/10 13:09:57 | 000,000,148 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.20720_en-us_69c1ca9bc2eb9ec1.manifest
[2013/10/12 00:39:26 | 000,000,406 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.16384_cs-cz_7adb458f8b8eae0b.manifest
[2013/08/22 13:10:41 | 000,000,152 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.16384_en-us_d5f7bfa5c739f91d.manifest
[2014/12/12 13:09:46 | 000,000,405 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.17226_cs-cz_7ad5184d8b944619.manifest
[2014/12/12 13:09:46 | 000,000,151 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.17226_en-us_d5f19263c73f912b.manifest
[2014/12/12 13:07:42 | 000,000,406 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.17231_cs-cz_7ad68a7f8b92df4b.manifest
[2014/12/12 13:07:42 | 000,000,152 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.17231_en-us_d5f30495c73e2a5d.manifest
[2014/12/12 13:09:46 | 000,000,406 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.20708_cs-cz_640540f3a53daad0.manifest
[2014/12/12 13:09:46 | 000,000,151 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.20708_en-us_bf21bb09e0e8f5e2.manifest
[2014/12/12 13:07:42 | 000,000,406 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.20717_cs-cz_64065805a53caa86.manifest
[2014/12/12 13:07:42 | 000,000,152 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.20717_en-us_bf22d21be0e7f598.manifest
[2013/08/22 10:09:01 | 000,000,419 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_0d0d9cf22bac10f4.manifest
[2013/08/22 10:09:04 | 000,000,471 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.16384_none_c8108d2e85eed25d.manifest
[2015/03/13 13:49:03 | 000,000,570 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.17187_none_c8104b0485ef1bc5.manifest
[2014/12/10 13:09:57 | 000,000,471 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.17238_none_c80b32a685f3b704.manifest
[2015/03/13 13:49:03 | 000,000,566 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.20681_none_b1432a7e9f95e622.manifest
[2014/12/10 13:09:57 | 000,000,465 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.20720_none_b13d3f669f9b34c8.manifest
[2013/08/22 10:08:53 | 000,000,422 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.16384_none_1d733470a3e98f24.manifest
[2014/12/12 13:09:46 | 000,000,421 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.17226_none_1d6d072ea3ef2732.manifest
[2014/12/12 13:07:43 | 000,000,422 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.17231_none_1d6e7960a3edc064.manifest
[2014/12/12 13:09:46 | 000,000,421 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.20708_none_069d2fd4bd988be9.manifest
[2014/12/12 13:07:43 | 000,000,423 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.20717_none_069e46e6bd978b9f.manifest
[2013/08/22 10:09:06 | 000,000,447 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.xml.serialization_b77a5c561934e089_4.0.9600.16384_none_5aaf0d34c0033202.manifest
[2013/08/22 10:09:01 | 000,000,420 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_3cc4c9f9340d8755.manifest
[2013/10/12 00:36:59 | 000,000,276 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_c_multiportserial.inf-languagepack_31bf3856ad364e35_6.3.9600.16384_cs-cz_66e4d271c97553ae.manifest
[2013/08/22 13:10:11 | 000,000,281 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_c_multiportserial.inf-languagepack_31bf3856ad364e35_6.3.9600.16384_en-us_aa3b1dcdb06fb00c.manifest
[2013/08/22 13:10:23 | 000,000,249 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_c_multiportserial.inf.resources_31bf3856ad364e35_6.3.9600.16384_en-us_d9cc5062cae5e3b5.manifest
[2013/08/22 10:06:07 | 000,000,206 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_c_multiportserial.inf_31bf3856ad364e35_6.3.9600.16384_none_35926e7cc5e64dc9.manifest
[2013/08/22 08:13:49 | 000,000,295 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.3.9600.16384_none_a65551a5c8448453.manifest
[2013/08/22 10:07:10 | 000,001,508 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-serial-classextension_31bf3856ad364e35_6.3.9600.16384_none_cab476b774cd222a.manifest
[2013/08/22 10:06:52 | 000,000,107 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.3.9600.16384_none_c15c976f220f8cd6.manifest
[2013/08/22 10:08:54 | 000,000,411 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_224de03de4c02966.manifest
[2014/12/12 13:09:46 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17226_none_2247b2fbe4c5c174.manifest
[2014/12/12 13:07:43 | 000,000,412 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17231_none_2249252de4c45aa6.manifest
[2014/12/12 13:09:46 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20708_none_0b77dba1fe6f262b.manifest
[2014/12/12 13:07:42 | 000,000,411 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20717_none_0b78f2b3fe6e25e1.manifest
[2013/08/10 02:55:16 | 000,142,104 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_4.0.9600.16384_none_0dbd81c1c9e100df\System.Runtime.Serialization.Formatters.Soap.dll
[2015/01/08 20:39:57 | 000,000,531 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.16384_none_63202903e7dbbda6\System.Runtime.Serialization.Formatters.Soap.dll
[2014/06/24 00:12:42 | 000,131,072 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.17226_none_6319fbc1e7e155b4\System.Runtime.Serialization.Formatters.Soap.dll
[2015/01/08 20:39:58 | 000,000,491 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.20708_none_4c4a2468018aba6b\System.Runtime.Serialization.Formatters.Soap.dll
[2013/10/12 00:41:42 | 000,027,920 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_4.0.9600.16384_cs-cz_c6e6982dc37909d8\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2015/01/08 20:39:59 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.3.9600.16384_cs-cz_1c493f6fe173c69f\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/17 02:06:37 | 000,011,776 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.3.9600.17226_cs-cz_1c43122de1795ead\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2015/01/08 20:39:59 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.3.9600.20708_cs-cz_05733ad3fb22c364\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/10 02:55:16 | 000,029,392 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_61eedd30ec040245\System.Runtime.Serialization.Json.dll
[2013/08/10 02:55:16 | 000,029,432 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.primitives_b03f5f7f11d50a3a_4.0.9600.16384_none_dde82ee214ba2d3d\System.Runtime.Serialization.Primitives.dll
[2015/01/08 20:40:01 | 000,000,663 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.16384_none_ed2ffed67c428df1\System.Runtime.Serialization.dll
[2015/01/08 20:40:04 | 000,000,436 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.17226_none_ed29d1947c4825ff\System.Runtime.Serialization.dll
[2014/07/09 03:45:07 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.17231_none_ed2b43c67c46bf31\System.Runtime.Serialization.dll
[2015/01/08 20:40:06 | 000,000,452 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.20708_none_d659fa3a95f18ab6\System.Runtime.Serialization.dll
[2015/01/08 20:40:08 | 000,000,632 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.20717_none_d65b114c95f08a6c\System.Runtime.Serialization.dll
[2015/01/08 20:40:09 | 000,004,288 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.16384_cs-cz_25789e4d6d93f144\System.RunTime.Serialization.resources.dll
[2015/12/25 20:15:20 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.17187_cs-cz_25785c236d943aac\System.RunTime.Serialization.resources.dll
[2014/06/05 05:33:00 | 000,113,952 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.17238_cs-cz_257343c56d98d5eb\System.RunTime.Serialization.resources.dll
[2015/12/25 20:15:20 | 000,003,283 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.20681_cs-cz_0eab3b9d873b0509\System.RunTime.Serialization.resources.dll
[2015/12/25 20:15:21 | 000,003,283 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.20720_cs-cz_0ea55085874053af\System.RunTime.Serialization.resources.dll
[2015/01/08 20:40:10 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.16384_cs-cz_7adb458f8b8eae0b\System.RunTime.Serialization.Resources.dll
[2015/01/08 20:40:10 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.17226_cs-cz_7ad5184d8b944619\System.RunTime.Serialization.Resources.dll
[2013/10/12 00:41:38 | 000,090,112 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.17231_cs-cz_7ad68a7f8b92df4b\System.RunTime.Serialization.Resources.dll
[2015/01/08 20:40:10 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.20708_cs-cz_640540f3a53daad0\System.RunTime.Serialization.Resources.dll
[2015/01/08 20:40:11 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.20717_cs-cz_64065805a53caa86\System.RunTime.Serialization.Resources.dll
[2013/08/10 02:55:16 | 000,029,896 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_0d0d9cf22bac10f4\System.Runtime.Serialization.Xml.dll
[2015/01/08 20:40:13 | 000,018,929 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.16384_none_c8108d2e85eed25d\System.Runtime.Serialization.dll
[2015/03/17 10:46:51 | 000,011,811 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.17187_none_c8104b0485ef1bc5\System.Runtime.Serialization.dll
[2014/07/24 05:20:32 | 001,059,536 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.17238_none_c80b32a685f3b704\System.Runtime.Serialization.dll
[2015/03/17 10:46:54 | 000,012,410 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.20681_none_b1432a7e9f95e622\System.Runtime.Serialization.dll
[2015/01/08 20:40:16 | 000,004,122 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.20720_none_b13d3f669f9b34c8\System.Runtime.Serialization.dll
[2015/01/08 20:40:18 | 000,000,663 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.16384_none_1d733470a3e98f24\System.Runtime.Serialization.dll
[2015/01/08 20:40:20 | 000,000,436 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.17226_none_1d6d072ea3ef2732\System.Runtime.Serialization.dll
[2014/07/09 03:45:06 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.17231_none_1d6e7960a3edc064\System.Runtime.Serialization.dll
[2015/01/08 20:40:23 | 000,000,452 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.20708_none_069d2fd4bd988be9\System.Runtime.Serialization.dll
[2015/01/08 20:40:25 | 000,000,632 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.20717_none_069e46e6bd978b9f\System.Runtime.Serialization.dll
[2013/08/10 02:55:49 | 000,045,720 | ---- | M] () -- \Windows\WinSxS\msil_system.xml.serialization_b77a5c561934e089_4.0.9600.16384_none_5aaf0d34c0033202\System.Xml.Serialization.dll
[2013/08/10 02:55:49 | 000,029,848 | ---- | M] () -- \Windows\WinSxS\msil_system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_3cc4c9f9340d8755\System.Xml.XmlSerializer.dll
[2013/08/22 13:10:55 | 000,000,232 | ---- | M] () -- \Windows\WinSxS\x86_c_multiportserial.inf.resources_31bf3856ad364e35_6.3.9600.16384_en-us_d9cc5062cae5e3b5\c_multiportserial.inf_loc
[2013/08/22 01:53:50 | 000,001,032 | ---- | M] () -- \Windows\WinSxS\x86_c_multiportserial.inf_31bf3856ad364e35_6.3.9600.16384_none_35926e7cc5e64dc9\c_multiportserial.inf
[2013/06/18 14:35:27 | 001,068,032 | ---- | M] () -- \Windows\WinSxS\x86_mdmmotsm.inf_31bf3856ad364e35_6.3.9600.16384_none_0f6101d344dd2863\smserial.sys
[2015/01/28 19:19:19 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_54cc2f7ac6efa85c\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/17 02:06:37 | 000,011,776 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.17226_cs-cz_550ef6e8c6bd4fde\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2015/01/28 19:19:23 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.20708_cs-cz_55b0527fdfc8c56f\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/10/12 00:41:24 | 000,005,120 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_e30aa618ff4459ba\serialui.dll.mui
[2013/08/22 13:11:02 | 000,005,120 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.3.9600.16384_en-us_2660f174e63eb618\serialui.dll.mui
[2015/01/28 20:40:58 | 000,001,912 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.3.9600.16384_none_89a166153a4451f7\serialui.dll
[2014/10/29 03:46:05 | 000,015,360 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.3.9600.17415_none_89ee00f13a0abe7f\serialui.dll
[2015/01/28 20:47:32 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_f213d7186e186e99\System.RunTime.Serialization.Resources.dll
[2013/10/12 00:41:32 | 000,090,112 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.3.9600.17226_cs-cz_f2569e866de6161b\System.RunTime.Serialization.Resources.dll
[2015/01/28 20:47:33 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.3.9600.20708_cs-cz_f2f7fa1d86f18bac\System.RunTime.Serialization.Resources.dll
[2013/10/12 00:40:42 | 000,009,728 | ---- | M] () -- \Windows\WinSxS\x86_msports.inf.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_5955e70d67d5f963\serial.sys.mui
[2013/08/22 13:10:55 | 000,010,240 | ---- | M] () -- \Windows\WinSxS\x86_msports.inf.resources_31bf3856ad364e35_6.3.9600.16384_en-us_9cac32694ed055c1\serial.sys.mui
[2013/08/22 06:11:47 | 000,077,312 | ---- | M] () -- \Windows\WinSxS\x86_msports.inf_31bf3856ad364e35_6.3.9600.16384_none_8d377538d3f7d971\serial.sys
[2015/01/28 21:14:11 | 000,000,663 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_224de03de4c02966\System.Runtime.Serialization.dll
[2015/01/28 21:14:13 | 000,000,436 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17226_none_2247b2fbe4c5c174\System.Runtime.Serialization.dll
[2014/07/09 03:45:06 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17231_none_2249252de4c45aa6\System.Runtime.Serialization.dll
[2015/01/28 21:14:16 | 000,000,452 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20708_none_0b77dba1fe6f262b\System.Runtime.Serialization.dll
[2015/01/28 21:14:18 | 000,000,632 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20717_none_0b78f2b3fe6e25e1\System.Runtime.Serialization.dll

< *w7lxe* /s >

========== Alternate Data Streams ==========

@Alternate Data Stream - 237 bytes -> C:\Users\Admin\OneDrive:ms-properties

< End of report >


OS Win 8.1 x32, MB GigaByte EP31-DS3L, CPU INTEL DualCore E5200, RAM DDR II 2GB CL5, GK NVIDIA GeForce GT 610, SEAGATE BARRACUDA 7200.12 250GB SATAII/300, LG GSA-H20L, Case Midi Tower KME ATX DX-6282, Seasonic Energy Knight SS-400ET-400W, TVK Pinnacle PCTV 310i
Nahoru
dol
Návštěvník
Návštěvník
Příspěvky: 101
Registrován: 12 úno 2009 09:42

Re: Problém s IE

#27 Příspěvek od dol »

OTL Extras logfile created on: 22. 8. 2016 11:14:20 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Admin\Desktop
An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.18427)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d. M. yyyy

2,00 Gb Total Physical Memory | 1,13 Gb Available Physical Memory | 56,34% Memory free
2,62 Gb Paging File | 1,47 Gb Available in Paging File | 55,92% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 100,25 Gb Total Space | 46,08 Gb Free Space | 45,97% Space Free | Partition Type: NTFS
Drive D: | 132,29 Gb Total Space | 75,05 Gb Free Space | 56,73% Space Free | Partition Type: NTFS

Computer Name: STOLNIPC | User Name: Admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- C:\Users\Admin\AppData\Roaming\FileOpenerWindows\wfo.exe "%1" ()
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00E573EE-E464-4675-B998-C3D99B364D3A}" = lport=35043 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{029B16ED-E96C-4100-9316-3E3C466E386D}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\google\chrome\application\chrome.exe |
"{1A958CFB-CEA8-4ABE-A85B-EE721D7A808C}" = lport=443 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\netservice\nvnetworkservice.exe |
"{39CD5260-A7F0-40B5-B133-E49732A79A6B}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{402B4E84-5444-4A70-9C6D-968330A78087}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{42F3B784-294B-404F-9EF3-DECD179D5454}" = lport=47984 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe |
"{551233AD-3614-4B21-BC1C-D46A9B4014BB}" = lport=137 | protocol=17 | dir=in | app=system |
"{647E0957-DFE3-494B-ABF2-7B8B5FFE959C}" = rport=137 | protocol=17 | dir=out | app=system |
"{6595A665-5FE3-4358-BCE1-5B091F3B9341}" = lport=138 | protocol=17 | dir=in | app=system |
"{776D55C6-553C-4F14-B993-AB50AAE13966}" = lport=139 | protocol=6 | dir=in | app=system |
"{7B085C5C-2C0D-484D-8551-2F4F584E2E15}" = lport=47998 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamuseragent.exe |
"{8537A519-301B-4B8B-9D6F-5601468E1807}" = lport=1900 | protocol=17 | dir=in | name=upnp device discovery (udp 1900) |
"{982788F6-36BD-497E-95C7-44C832AD2407}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A025B1F5-6611-4DD9-860C-CDC8D3EDB58B}" = lport=47995 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{ADF4F584-B066-4DA1-8BDB-980D83AB51B1}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{B4787907-C55B-4419-B8FB-8EE083F0E163}" = rport=138 | protocol=17 | dir=out | app=system |
"{BCCAEA61-AB78-4470-AEDF-34800621D422}" = rport=139 | protocol=6 | dir=out | app=system |
"{C581C596-0575-43D3-9E3F-45A00C03ACA8}" = lport=80 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\netservice\nvnetworkservice.exe |
"{C99CFBBB-1BCB-4ADC-97EC-9FE098392255}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe |
"{D128E1CA-C990-4CE6-AEB9-58D09353759B}" = rport=445 | protocol=6 | dir=out | app=system |
"{E4060D3C-9EEF-4897-8F76-92AF879644DE}" = lport=2869 | protocol=6 | dir=in | name=upnp device discovery (tcp 2869) |
"{FCF1C3F2-9D56-474B-860E-DE3F391FEFF2}" = lport=445 | protocol=6 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02AA9F66-B18A-4A71-9EF3-358713A0B329}" = dir=in | name=skype |
"{1EFF51FB-4642-48C2-A992-C2D60447EDFD}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{268028B2-8CDE-449F-98FD-833CB4226509}" = dir=in | app=c:\program files\pctv systems\tvcenter\tvcenter.exe |
"{26C4ADDF-6098-4675-9DFE-F8B894C0448C}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{28821E1C-BA82-4FC5-93A8-30C31502483D}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{2DF2E2B0-A588-4810-90EB-4C394CAB983F}" = dir=in | name=junipernetworks.junospulsevpn |
"{331D3F10-92E3-4211-9259-CAF9D02FCE86}" = dir=out | name=junipernetworks.junospulsevpn |
"{36D490A6-0B75-48CB-B2A9-9098C284F1DD}" = dir=out | name=@{microsoft.xboxlivegames_2.0.139.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{46E0ECFD-6EB5-4024-8C85-DF8A471C9AE6}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9654.21234_x86__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{66592336-31E0-4D07-A458-F3C979EDF3ED}" = dir=out | name=windows_ie_ac_001 |
"{78164516-85FD-46E8-B80C-8A5EA72FC41E}" = dir=out | name=@{microsoft.zunemusic_2.6.672.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{835E0E77-65D1-4FAA-AA5E-AC67565A94FB}" = dir=out | name=sonicwall.mobileconnect |
"{8A179BEF-25DA-4374-A746-13F48E00FCFC}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{90625EE3-B033-410D-B9C9-81568C8A7EC7}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9654.21234_x86__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{A8EC6AA9-475F-415D-AFA2-A4809C08010E}" = dir=in | app=c:\program files\common files\pctv systems\pvr\videocontrol.exe |
"{A9080F4C-BE69-49F6-87CD-FAE444526D27}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{AC82B68C-FE9F-488D-8DD7-DDDEA732EB63}" = dir=out | name=@{microsoft.bingmaps_2.1.3230.2048_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{AF4CD98F-A6B6-4B1C-8D65-661A94CE0BDE}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{BD8B437E-E713-4FFC-8F37-2FFE22189784}" = dir=in | app=c:\program files\common files\pctv systems\streamingserver\strmserver.exe |
"{C6182E4B-10FC-4083-A766-458080D68E73}" = dir=in | name=f5.vpn.client |
"{C76037D5-3380-4F4D-9075-1D7D77B2C462}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{C976CD2C-7A6F-40E9-BA67-24881E020BD8}" = dir=out | name=@{microsoft.zunevideo_2.6.446.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{D0DED6F5-4F8B-49E6-BC14-4F492A29AB93}" = dir=out | name=skype |
"{E14FCA83-4A91-4DD3-9F18-7E7F65F5BDB7}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{E20BB53A-3BDC-460D-BAEE-FFDC117AB485}" = dir=in | name=sonicwall.mobileconnect |
"{E36F2301-C9C6-40CE-B52A-CAC0A6F8B69C}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{E6A4BE21-4183-455E-8C07-84C78011B261}" = dir=out | name=checkpoint.vpn |
"{E85D7DB8-699D-4C3D-9972-A98788C2670D}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{FA35BA80-EA4B-48FD-9FEF-74E9E0B3FEC7}" = dir=in | name=checkpoint.vpn |
"{FE5EA256-AD54-4FD8-B211-1263089653FF}" = dir=out | name=f5.vpn.client |
"TCP Query User{23603669-CAF2-43E9-ADAD-BBFFBF9D16EC}C:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe |
"TCP Query User{42272E6D-494C-4435-ADE9-1114E434D71F}C:\program files\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files\skype\phone\skype.exe |
"UDP Query User{0DA4B934-E9C4-4F88-996F-B3E7DAE4A89B}C:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe |
"UDP Query User{65724714-DD80-48F0-8E10-9A1A4635676C}C:\program files\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files\skype\phone\skype.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{1D4E90DA-C33C-40ED-BA00-75F6E6DF9CB0}" = LibreOffice 4.3.5.2
"{23A4DBD1-D847-4957-995D-8B1CC527E2E2}" = Garmin BaseCamp
"{2FFE93F0-BB72-4E52-8761-354D1AAA9387}" = Sony Ericsson PC Suite 6.011.00
"{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}" = Google Earth
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{71DBFBF2-F7EB-4268-8485-9471D83C4E66}" = Garmin Communicator Plugin
"{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}" = Avanquest update
"{7A11431C-3B45-4932-9D83-2F4A609C18F3}" = Adresy CR v2
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{7ED169D4-5053-4166-93DF-53B12AE6C539}" = Energy Saver Advance B10.0309.1
"{8E2A1F3F-0E67-4B33-B8F4-A2A53FDDD844}" = TOPO Czech PRO 2013
"{90280405-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional s aplikací FrontPage
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-0804-1033-1959-001824191728}" = Adobe Refresh Manager
"{AC76BA86-7AD7-1029-7B44-AC0F074E4100}" = Adobe Acrobat Reader DC - Czech
"{AFBAB9A0-DDE8-49AE-8C17-A01B61BEE64B}" = Garmin MapSource
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovladač 3D Vision 347.09
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 347.09
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 347.09
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 2.5.11.45
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Ovladač řídící jednotky 3D Vision 352.65
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.14.0702
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 2.5.11.45
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GfExperienceService" = NVIDIA GeForce Experience Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 2.5.11.45
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController" = SHIELD Wireless Controller Driver
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.30
"{B455E95A-B804-439F-B533-336B1635AE97}" = NVIDIA PhysX
"{DCDA6CEA-6963-4D7E-A779-F8378AD64287}" = CYKLO Czech 2013 NT
"{E31435FE-F0B7-4A62-BE46-BD166A1EEFFB}" = Garmin USB Drivers
"{E91C4E61-DA0E-4A46-AEA6-512BB3698A3F}" = Mariáš 3.2
"{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion 2.10.236
"{F1FF593E-FB5A-487A-872F-1CCCA6F70095}" = TVCenter
"{FC965A47-4839-40CA-B618-18F486F042C6}" = Skype™ 7.26
"{FEFCFE7F-221D-4E54-BE2A-A572E4F6B3CB}" = ATLAS Czech 2013.5 NT
"7-Zip" = 7-Zip 9.20
"98157A226B40B173301B0F53C8E98C47805D5152" = Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0)
"CCleaner" = CCleaner
"CzechRep_by_Dave_Luv" = CzechRep_by_Dave_Luv
"Defraggler" = Defraggler
"ESET Online Scanner" = ESET Online Scanner v3
"FastStone Capture" = FastStone Capture 5.3
"Google Chrome" = Google Chrome
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware verze 2.2.1.1043
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"rajce.net_is1" = Rajče průvodce verze 1.59.52.267
"RajcePhotoDownloader_is1" = RajcePhotoDownloader
"Recuva" = Recuva
"VLC media player" = VLC media player

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 9. 8. 2016 13:37:22 | Computer Name = StolniPC | Source = Application Hang | ID = 1002
Description = Program LiveComm.exe verze 17.5.9600.20911 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID
procesu: da4 Čas spuštění: 01d1f263f662ef70 Čas ukončení: 4294967295 Cesta k aplikaci:
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\LiveComm.exe

ID
hlášení: ea1e7ecf-5e57-11e6-9ae7-00241d14a3fa Úplný název chybujícího balíčku: microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe

ID
aplikace související s chybujícím balíčkem: ppleae38af2e007f4358a809ac99a64a67c1


Error - 13. 8. 2016 2:13:10 | Computer Name = StolniPC | Source = Application Hang | ID = 1002
Description = Program wwahost.exe verze 6.3.9600.17415 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID
procesu: bc8 Čas spuštění: 01d1f5290a809edf Čas ukončení: 4294967295 Cesta k aplikaci:
C:\Windows\system32\wwahost.exe ID hlášení: fe236b3b-611c-11e6-9aeb-00241d14a3fa

Úplný
název chybujícího balíčku: Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c ID aplikace
související s chybujícím balíčkem: App

Error - 13. 8. 2016 2:31:38 | Computer Name = StolniPC | Source = Application Hang | ID = 1002
Description = Program wwahost.exe verze 6.3.9600.17415 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID
procesu: 1358 Čas spuštění: 01d1f52ba0162290 Čas ukončení: 4294967295 Cesta k aplikaci:
C:\Windows\system32\wwahost.exe ID hlášení: 93e176fc-611f-11e6-9aeb-00241d14a3fa

Úplný
název chybujícího balíčku: Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c ID aplikace
související s chybujícím balíčkem: App

Error - 20. 8. 2016 15:13:34 | Computer Name = StolniPC | Source = .NET Runtime | ID = 1026
Description =

Error - 20. 8. 2016 15:13:35 | Computer Name = StolniPC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Marias.App.exe, verze: 3.2.0.0, časové razítko:
0x545e7804 Název chybujícího modulu: KERNELBASE.dll, verze: 6.3.9600.18340, časové
razítko: 0x57365497 Kód výjimky: 0xe0434352 Posun chyby: 0x000136ea ID chybujícího
procesu: 0xb64 Čas spuštění chybující aplikace: 0x01d1fb16f1b1dd5a Cesta k chybující
aplikaci: C:\Program Files\Mariáš 3.2\Marias.App.exe Cesta k chybujícímu modulu:
C:\Windows\system32\KERNELBASE.dll ID zprávy: 30a76dcd-670a-11e6-9af4-00241d14a3fa
Úplný
název chybujícího balíčku: ID aplikace související s chybujícím balíčkem:

Error - 21. 8. 2016 6:32:54 | Computer Name = StolniPC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro c:\program files\sony ericsson\sony
ericsson pc suite\Drivers\DPInst64.exe se nezdařilo. Závislé sestavení Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 21. 8. 2016 6:34:15 | Computer Name = StolniPC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro c:\program files\Sony\sony pc companion\Drivers\DPInst64.exe
se nezdařilo. Závislé sestavení Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 21. 8. 2016 6:34:19 | Computer Name = StolniPC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro c:\program files\sony ericsson\sony
ericsson pc suite\Drivers\DPInst64.exe se nezdařilo. Závislé sestavení Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 21. 8. 2016 6:34:42 | Computer Name = StolniPC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro c:\program files\Sony\sony pc companion\Drivers\DPInst64.exe
se nezdařilo. Závislé sestavení Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 21. 8. 2016 9:47:56 | Computer Name = StolniPC | Source = Application Hang | ID = 1002
Description = Program OTS.exe verze 3.1.47.2 přestal spolupracovat se systémem Windows
a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému,
vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu: f4c Čas
spuštění: 01d1fbaecacfdf08 Čas ukončení: 0 Cesta k aplikaci: C:\Users\Admin\Desktop\OTS.exe

ID
hlášení: ba66f5cf-67a5-11e6-9af5-00241d14a3fa Úplný název chybujícího balíčku: ID
aplikace související s chybujícím balíčkem:

[ System Events ]
Error - 3. 12. 2015 6:04:54 | Computer Name = StolniPC | Source = Schannel | ID = 36888
Description = Výstraha o závažné chybě byla vygenerována a zaslána na vzdálený koncový
bod. To může vést k ukončení připojení. Kód závažné chyby definovaný protokolem
TLS: 10. Stav chyby Windows SChannel: 10

Error - 3. 12. 2015 6:04:54 | Computer Name = StolniPC | Source = Schannel | ID = 36888
Description = Výstraha o závažné chybě byla vygenerována a zaslána na vzdálený koncový
bod. To může vést k ukončení připojení. Kód závažné chyby definovaný protokolem
TLS: 10. Stav chyby Windows SChannel: 10

Error - 5. 12. 2015 10:45:48 | Computer Name = StolniPC | Source = Service Control Manager | ID = 7023
Description = Služba Zjišťování interaktivních služeb byla ukončena s následující
chybou: %%1

Error - 5. 12. 2015 11:07:56 | Computer Name = StolniPC | Source = Schannel | ID = 36887
Description = Ze vzdáleného koncového bodu byla přijata následující výstraha o závažné
chybě. Kód výstrahy o závažné chybě definovaný protokolem TLS: 20

Error - 6. 12. 2015 14:04:19 | Computer Name = StolniPC | Source = Schannel | ID = 36887
Description = Ze vzdáleného koncového bodu byla přijata následující výstraha o závažné
chybě. Kód výstrahy o závažné chybě definovaný protokolem TLS: 80

Error - 8. 12. 2015 6:30:11 | Computer Name = StolniPC | Source = Schannel | ID = 36888
Description = Výstraha o závažné chybě byla vygenerována a zaslána na vzdálený koncový
bod. To může vést k ukončení připojení. Kód závažné chyby definovaný protokolem
TLS: 10. Stav chyby Windows SChannel: 10

Error - 8. 12. 2015 6:30:11 | Computer Name = StolniPC | Source = Schannel | ID = 36888
Description = Výstraha o závažné chybě byla vygenerována a zaslána na vzdálený koncový
bod. To může vést k ukončení připojení. Kód závažné chyby definovaný protokolem
TLS: 10. Stav chyby Windows SChannel: 10

Error - 10. 12. 2015 8:14:15 | Computer Name = StolniPC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Instalace se nezdařila: Instalování následující aktualizace se nezdařilo
z důvodu chyby (0x80240055): Aktualizace zabezpečení aplikace Internet Explorer
Flash Player pro systém Windows 8.1 (KB3119147).

Error - 10. 12. 2015 8:15:14 | Computer Name = StolniPC | Source = DCOM | ID = 10010
Description =

Error - 10. 12. 2015 8:15:14 | Computer Name = StolniPC | Source = DCOM | ID = 10010
Description =


< End of report >
Nahoru
dol
Návštěvník
Návštěvník
Příspěvky: 101
Registrován: 12 úno 2009 09:42

Re: Problém s IE

#28 Příspěvek od dol »

========== Purity Check ==========



========== Custom Scans ==========

< >
[2013/08/22 09:23:44 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2016/07/29 08:33:25 | 000,000,962 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2016/07/29 08:33:26 | 000,000,966 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

< MD5 for: ATAPI.SYS >
[2013/08/22 07:33:25 | 000,023,392 | ---- | M] (Microsoft Corporation) MD5=72FCAE2CE6DFEAB2AB072435017F3417 -- C:\Windows\System32\Drivers\atapi.sys
[2013/08/22 07:33:25 | 000,023,392 | ---- | M] (Microsoft Corporation) MD5=72FCAE2CE6DFEAB2AB072435017F3417 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_74136ef4a48e4644\atapi.sys
[2013/08/22 07:33:25 | 000,023,392 | ---- | M] (Microsoft Corporation) MD5=72FCAE2CE6DFEAB2AB072435017F3417 -- C:\Windows\WinSxS\x86_mshdc.inf_31bf3856ad364e35_6.3.9600.16384_none_71d7eca13d2363da\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2014/02/22 13:24:36 | 000,792,576 | ---- | M] (Microsoft Corporation) MD5=1D31E78ED5C40B5C6CC8D3DE713177A5 -- C:\Windows\System32\autochk.exe
[2014/02/22 13:24:36 | 000,792,576 | ---- | M] (Microsoft Corporation) MD5=1D31E78ED5C40B5C6CC8D3DE713177A5 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.17031_none_76c6a414dd35029f\autochk.exe
[2015/01/09 16:41:35 | 000,023,596 | ---- | M] () MD5=83A4C9BE342BC296EC09492FF7594F13 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.16384_none_7693b1d0dd5ab82d\autochk.exe

< MD5 for: CDROM.SYS >
[2013/08/22 03:59:12 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=E2FC132D48EA4E8B04432C33EFB77801 -- C:\Windows\System32\Drivers\cdrom.sys
[2013/08/22 03:59:12 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=E2FC132D48EA4E8B04432C33EFB77801 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_9aa051086f0faf61\cdrom.sys
[2013/08/22 03:59:12 | 000,124,928 | ---- | M] (Microsoft Corporation) MD5=E2FC132D48EA4E8B04432C33EFB77801 -- C:\Windows\WinSxS\x86_cdrom.inf_31bf3856ad364e35_6.3.9600.16384_none_f4492069bf60ff88\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2015/01/26 12:41:30 | 000,351,507 | ---- | M] () MD5=19D3FE4509CC4C9EF4689B41E51E229E -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17238_none_e68e63af9529fa1e\explorer.exe
[2016/05/29 14:40:04 | 000,259,279 | ---- | M] () MD5=233904D607A2B86D1547B65FA6CDC3C4 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17415_none_e6a10675951c7085\explorer.exe
[2015/01/26 12:41:47 | 000,338,808 | ---- | M] () MD5=3A11FC6AEAFEF280A6AC446F1C4F1BF8 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17284_none_e65452eb95562077\explorer.exe
[2015/01/26 12:41:06 | 000,353,684 | ---- | M] () MD5=8CDECDF390F818CC230CA89423B70CD9 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16384_none_e6546b99955603fd\explorer.exe
[2016/02/09 03:31:39 | 002,412,576 | ---- | M] (Microsoft Corporation) MD5=97A7A0521E059D242907EFB73A844F29 -- C:\Windows\explorer.exe
[2016/02/09 03:31:39 | 002,412,576 | ---- | M] (Microsoft Corporation) MD5=97A7A0521E059D242907EFB73A844F29 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.18231_none_e6874ae19530625e\explorer.exe
[2015/01/26 12:41:14 | 000,345,618 | ---- | M] () MD5=9CC40BBBF7F0082B3C8300BB05EE3729 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17031_none_e6875ddd95304e6f\explorer.exe
[2015/01/26 12:41:23 | 000,345,492 | ---- | M] () MD5=D838CDA6680CFDA621671D59C4AF4016 -- C:\Windows\WinSxS\x86_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17039_none_e68f602d95291927\explorer.exe

< MD5 for: HAL.DLL >
[2015/01/26 14:14:18 | 000,043,164 | ---- | M] () MD5=39B592A28DD1F25F7364D87EFBDCA70A -- C:\Windows\WinSxS\x86_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.16384_none_3fc8b72b7543cc93\hal.dll
[2014/06/02 03:06:29 | 000,337,752 | ---- | M] (Microsoft Corporation) MD5=894E02AA20B793F4A0AF0E815D517F62 -- C:\Windows\System32\hal.dll
[2014/06/02 03:06:29 | 000,337,752 | ---- | M] (Microsoft Corporation) MD5=894E02AA20B793F4A0AF0E815D517F62 -- C:\Windows\WinSxS\x86_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.17196_none_3fbfcd3f754a3a85\hal.dll
[2015/01/26 14:14:20 | 000,014,045 | ---- | M] () MD5=970C464EEA25EDCB9B95EEF1904FF1F2 -- C:\Windows\WinSxS\x86_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.17031_none_3ffba96f751e1705\hal.dll

< MD5 for: SCECLI.DLL >
[2015/01/28 19:46:27 | 000,042,572 | ---- | M] () MD5=22CDB04B964A8D34C42BB7ED150784F8 -- C:\Windows\WinSxS\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.16384_none_ccada6e2f4b50450\scecli.dll
[2014/10/29 03:01:41 | 000,214,016 | ---- | M] (Microsoft Corporation) MD5=FB740FE549197E7B08021EF30327921D -- C:\Windows\System32\scecli.dll
[2014/10/29 03:01:41 | 000,214,016 | ---- | M] (Microsoft Corporation) MD5=FB740FE549197E7B08021EF30327921D -- C:\Windows\WinSxS\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.17415_none_ccfa41bef47b70d8\scecli.dll

< MD5 for: SVCHOST.EXE >
[2015/01/28 19:50:49 | 000,007,517 | ---- | M] () MD5=73AA583D4FB0F05C313B38C091D94804 -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.16384_none_4a5b1e2820e75323\svchost.exe
[2014/10/29 05:17:51 | 000,033,088 | ---- | M] (Microsoft Corporation) MD5=D0ABC231C0B3E88C6B612B28ABBF734D -- C:\Windows\System32\svchost.exe
[2014/10/29 05:17:51 | 000,033,088 | ---- | M] (Microsoft Corporation) MD5=D0ABC231C0B3E88C6B612B28ABBF734D -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.17415_none_4aa7b90420adbfab\svchost.exe
[2016/03/10 14:07:16 | 000,960,480 | ---- | M] (MalwareBytes) MD5=F86A4139730504047F52CCFB8C47E9F5 -- C:\Program Files\Malwarebytes Anti-Malware\Chameleon\Windows\svchost.exe

< MD5 for: TCPIP.SYS >
[2015/01/28 20:29:10 | 000,269,467 | ---- | M] () MD5=00EAB7E27B0C1632C36C5553ABD7F999 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17136_none_47f5cc7581d59c80\tcpip.sys
[2015/01/28 20:29:29 | 000,197,174 | ---- | M] () MD5=053CFFA5A19455A31ABECC3E011DC7AD -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17336_none_47f5d04181d596ce\tcpip.sys
[2015/01/28 20:29:35 | 000,002,510 | ---- | M] () MD5=3B07748478F004D4D4C9634F7F48C696 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17415_none_480a71b581c642bc\tcpip.sys
[2015/01/28 20:28:50 | 000,268,710 | ---- | M] () MD5=3E98D9EB816FFC680AC9BBE019C54EA7 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17039_none_47f8cb6d81d2eb5e\tcpip.sys
[2016/07/16 11:16:43 | 000,234,122 | ---- | M] () MD5=57B46E772C960143288374FD27495267 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17485_none_47bec24181ff0653\tcpip.sys
[2015/01/28 20:28:28 | 000,287,906 | ---- | M] () MD5=57E96BA0CC548FDFD3E0C3D261FBE0D0 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16384_none_47bdd6d981ffd634\tcpip.sys
[2015/01/28 20:29:16 | 000,269,131 | ---- | M] () MD5=5DE2043BCA50652CFE70F4C79331227D -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17238_none_47f7ceef81d3cc55\tcpip.sys
[2015/01/28 20:28:57 | 000,270,000 | ---- | M] () MD5=7BE3F5C68BC357A39C80BFE71CF01DDF -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17085_none_47bebaa981ff11b7\tcpip.sys
[2015/01/28 20:29:23 | 000,195,995 | ---- | M] () MD5=822F4A892E2FCF967EB462F59FBA593B -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17278_none_47cc8f3f81f43c19\tcpip.sys
[2016/03/12 02:55:09 | 001,846,616 | ---- | M] (Microsoft Corporation) MD5=8E596E7D6E8C55433F93ACF667E37BBC -- C:\Windows\System32\Drivers\tcpip.sys
[2016/03/12 02:55:09 | 001,846,616 | ---- | M] (Microsoft Corporation) MD5=8E596E7D6E8C55433F93ACF667E37BBC -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.18265_none_47d4478581eeedc4\tcpip.sys
[2015/01/28 20:28:43 | 000,292,194 | ---- | M] () MD5=D98AC62CFD221A6F5A1A7AD73A370386 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16521_none_47fbb94f81d1dcd7\tcpip.sys
[2015/01/28 20:28:37 | 000,290,518 | ---- | M] () MD5=F17EF69AFA223B200500EA2E579FE955 -- C:\Windows\WinSxS\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16456_none_47e0491781e5b236\tcpip.sys

< MD5 for: USERINIT.EXE >
[2015/01/28 20:41:31 | 000,004,269 | ---- | M] () MD5=1AE98168631581DE1343C3A87A6CBCA9 -- C:\Windows\WinSxS\x86_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.16384_none_70c87e9ced498d49\userinit.exe
[2014/10/29 03:05:25 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=D10643FC0095434C819316CA6CD748C0 -- C:\Windows\System32\userinit.exe
[2014/10/29 03:05:25 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=D10643FC0095434C819316CA6CD748C0 -- C:\Windows\WinSxS\x86_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.17415_none_71151978ed0ff9d1\userinit.exe

< MD5 for: WINLOGON.EXE >
[2016/01/05 16:59:45 | 000,465,408 | ---- | M] (Microsoft Corporation) MD5=2022624E358053908CB81B4E02245B8F -- C:\Windows\System32\winlogon.exe
[2016/01/05 16:59:45 | 000,465,408 | ---- | M] (Microsoft Corporation) MD5=2022624E358053908CB81B4E02245B8F -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.18188_none_04669569f087af83\winlogon.exe
[2015/01/28 20:52:42 | 000,087,679 | ---- | M] () MD5=46FB47056D0BA493D90A973B04E0666C -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.17031_none_0495b7e1f0655ba5\winlogon.exe
[2016/03/13 23:24:20 | 000,059,207 | ---- | M] () MD5=E3373AA38ED8998A1D8B41A5351A022D -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.18083_none_04619211f08c33a9\winlogon.exe
[2015/12/25 20:26:12 | 000,050,780 | ---- | M] () MD5=E8AB39AE14615D6BAFB9D92EB0C8E621 -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.17415_none_04af6079f0517dbb\winlogon.exe
[2015/01/28 20:52:40 | 000,093,433 | ---- | M] () MD5=F7C808B8059A76EF5F611BCE72A92075 -- C:\Windows\WinSxS\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.16384_none_0462c59df08b1133\winlogon.exe
[2016/03/10 14:07:16 | 000,960,480 | ---- | M] (MalwareBytes) MD5=F86A4139730504047F52CCFB8C47E9F5 -- C:\Program Files\Malwarebytes Anti-Malware\Chameleon\Windows\winlogon.exe

< >

< %systemroot%*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[15 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[1 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2016/01/21 09:51:21 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Adobe
[2014/12/17 15:06:09 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\AVAST Software
[2014/12/10 22:10:29 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\FastStone
[2016/07/23 17:35:24 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\FileOpenerWindows
[2016/08/22 08:51:18 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Garmin
[2014/12/10 14:57:44 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Identities
[2015/01/18 09:22:16 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\LibreOffice
[2016/01/21 10:52:27 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Macromedia
[2016/07/22 08:31:28 | 000,000,000 | --SD | M] -- C:\Users\Admin\AppData\Roaming\Microsoft
[2014/12/10 21:58:27 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\NVIDIA
[2016/08/20 18:55:27 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\Skype
[2016/08/17 21:38:23 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\vlc
[2016/07/29 22:13:56 | 000,000,000 | ---D | M] -- C:\Users\Admin\AppData\Roaming\YouTube Downloader

< %APPDATA%\*.exe /s >
[2016/07/20 12:55:36 | 000,072,384 | ---- | M] () -- C:\Users\Admin\AppData\Roaming\FileOpenerWindows\wfo.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2014/11/08 03:52:50 | 003,999,232 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\SyncEngine.dll

< %systemroot%\Tasks\*.job >
[2016/08/22 08:38:00 | 000,000,962 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2016/08/22 11:39:40 | 000,000,966 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >
[2014/11/08 03:52:50 | 003,999,232 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\SyncEngine.dll

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >

< %SYSTEMDRIVE%\*.exe >

< >

< *crack* /s >
[2016/08/20 21:12:56 | 000,000,764 | ---- | M] () -- \Users\Admin\AppData\Roaming\Microsoft\Office\Naposledy otevřené\jak crack.LNK
[2016/08/20 21:12:56 | 000,000,874 | ---- | M] () -- \Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\jak crack.lnk

< *keygen* /s >

< *AntiWPA* /s >

< *loader* /s >
[2016/07/23 22:52:27 | 000,000,155 | ---- | M] () -- \$RECYCLE.BIN\S-1-5-21-4140605027-1625828158-2128847343-1001\$RAL5W4U\Navigace\garmin POI Loader Software Update Collection.URL
[2016/07/23 22:52:35 | 000,000,128 | ---- | M] () -- \$RECYCLE.BIN\S-1-5-21-4140605027-1625828158-2128847343-1001\$RAL5W4U\TV,radio,tisk,Nej.cz\http--downloader.zex.cz-index.phpurl=.URL
[2008/03/12 21:11:24 | 000,240,727 | ---- | M] () -- \Program Files\Garmin\MS_Loader_v3\MS Loader.exe
[2015/02/12 21:07:35 | 000,000,047 | ---- | M] () -- \Program Files\Garmin\MS_Loader_v3\MS Loader.ini
[2008/03/12 21:12:48 | 000,233,633 | ---- | M] () -- \Program Files\Garmin\MS_Loader_v3\tools\Asociace souborů s MS Loaderem (GDB, GPX, MPS).exe
[2014/05/25 20:45:54 | 000,006,866 | ---- | M] () -- \Program Files\LibreOffice 4\program\pythonloader.py
[2014/12/13 01:14:52 | 000,000,171 | ---- | M] () -- \Program Files\LibreOffice 4\program\pythonloader.uno.ini
[2014/12/13 01:12:52 | 000,047,392 | ---- | M] () -- \Program Files\LibreOffice 4\program\pythonloaderlo.dll
[2014/12/12 02:22:06 | 000,124,429 | ---- | M] () -- \Program Files\LibreOffice 4\program\classes\libloader-1.1.6.jar
[2014/12/12 03:02:50 | 000,013,883 | ---- | M] () -- \Program Files\LibreOffice 4\program\python-core-3.3.3\lib\unittest\loader.py
[2014/12/12 03:02:50 | 000,050,271 | ---- | M] () -- \Program Files\LibreOffice 4\program\python-core-3.3.3\lib\unittest\test\test_loader.py
[2014/12/13 01:11:04 | 000,084,256 | ---- | M] () -- \Program Files\LibreOffice 4\URE\bin\javaloaderlo.dll
[2014/12/12 01:58:10 | 000,004,766 | ---- | M] () -- \Program Files\LibreOffice 4\URE\java\unoloader.jar
[2015/06/17 11:06:28 | 000,057,592 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\Display.PhysX.{1DCB2C30-D5E1-4D60-8766-50F37C998C4C}\files\Common\PhysXLoader.dll
[2015/06/17 11:06:28 | 000,065,784 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\Display.PhysX.{1DCB2C30-D5E1-4D60-8766-50F37C998C4C}\files\Common\PhysXLoader64.dll
[2015/06/17 11:06:28 | 000,073,976 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\Display.PhysX.{1DCB2C30-D5E1-4D60-8766-50F37C998C4C}\files\Common\PhysXUpdateLoader.dll
[2015/06/17 11:06:28 | 000,090,872 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\Display.PhysX.{1DCB2C30-D5E1-4D60-8766-50F37C998C4C}\files\Common\PhysXUpdateLoader64.dll
[2015/07/14 21:06:54 | 000,916,112 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\installer.{3F511CBE-C302-4B04-B03E-1E4F06486EA0}\NVDownloader.dll
[2015/07/14 21:05:59 | 000,028,430 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\installer.{3F511CBE-C302-4B04-B03E-1E4F06486EA0}\NVI2DownloaderExt.CFG
[2015/07/14 21:06:55 | 000,828,048 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\installer.{3F511CBE-C302-4B04-B03E-1E4F06486EA0}\NVI2DownloaderExt.DLL
[2015/07/14 21:06:43 | 001,176,720 | ---- | M] () -- \Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\ExtensionLoader.dll
[2014/06/10 17:42:34 | 000,065,344 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2014/06/10 17:42:30 | 000,070,464 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2008/10/08 19:16:46 | 000,291,840 | ---- | M] () -- \Program Files\RajcePhotoDownloader\RajcePhotoDownloader.exe
[2015/07/23 11:30:02 | 000,000,856 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x86__8wekyb3d8bbwe\js\HtmlFileLoader.js
[2013/08/22 13:13:14 | 000,001,160 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\modernpeople\appframe\backgroundloader.js
[2013/08/22 13:13:14 | 000,004,996 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\modernshareanything\sharedataloader.js
[2013/08/22 13:13:14 | 000,002,125 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x86__8wekyb3d8bbwe\modernsharetarget\sharemaildataloader.js
[2013/08/22 13:14:50 | 000,043,128 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x86__8wekyb3d8bbwe\Framework\imageLoader.js
[2016/01/12 06:42:50 | 001,188,288 | ---- | M] () -- \ProgramData\NVIDIA Corporation\GeForce Experience\Update\GFExperience\ExtensionLoader.dll
[2016/01/12 06:43:48 | 000,923,072 | ---- | M] () -- \ProgramData\NVIDIA Corporation\GeForce Experience\Update\NVI2\NVDownloader.dll
[2016/08/21 12:34:11 | 000,000,640 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\CLR_v2.0_32\UsageLogs\RajcePhotoDownloader.exe.log
[2016/03/01 15:16:45 | 000,000,213 | R--- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\FileHistory\Data\1659\C\Users\Admin\Favorites\Navigace\garmin POI Loader Software Update Collection.URL
[2016/03/01 15:16:48 | 000,000,188 | R--- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\FileHistory\Data\1659\C\Users\Admin\Favorites\TV,radio,tisk,Nej.cz\http--downloader.zex.cz-index.phpurl=.URL
[2016/07/16 05:35:18 | 000,000,213 | R--- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\FileHistory\Data\2313\C\Users\Admin\Favorites\Navigace\garmin POI Loader Software Update Collection.URL
[2016/07/16 05:35:30 | 000,000,188 | R--- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\FileHistory\Data\2313\C\Users\Admin\Favorites\TV,radio,tisk,Nej.cz\http--downloader.zex.cz-index.phpurl=.URL
[2016/07/19 14:21:28 | 000,000,155 | R--- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\FileHistory\Data\2330\C\Users\Admin\Favorites\Links\Importováno z aplikace IE\Navigace\garmin POI Loader Software Update Collection.URL
[2016/07/19 14:21:22 | 000,000,128 | R--- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\FileHistory\Data\2330\C\Users\Admin\Favorites\Links\Importováno z aplikace IE\TV,radio,tisk,Nej.cz\http--downloader.zex.cz-index.phpurl=.URL
[2016/08/21 12:31:39 | 000,002,099 | R--- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\FileHistory\Data\2486\C\Users\Admin\Desktop\vše o rajče\Rajce Photo Downloader.lnk
[2016/07/27 17:00:51 | 000,000,314 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\0823ZR0P\EBLoader[1].js
[2016/07/26 13:56:18 | 000,286,934 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\1PMPFUAG\9b5c1f3b-1-loader.js,prototype.js,scriptaculous.js,builder.js,effects.js,controls.js,basic.js,functions.js,search-suggestor.js,sc.js,shopping-cart[1].js
[2016/08/21 12:25:47 | 000,002,545 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\1PMPFUAG\bigLoader[1].gif
[2016/08/18 11:51:10 | 000,004,178 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\22E9YXLQ\ajax-loader[1].gif
[2016/08/21 14:20:16 | 000,006,029 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\22E9YXLQ\loader[1].gif
[2016/08/18 13:46:24 | 000,782,885 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\22E9YXLQ\loader[1].js
[2016/08/19 17:44:09 | 000,326,264 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\3VNT2JO3\90fc7575-1-loader.js,prototype.js,scriptaculous.js,builder.js,effects.js,controls.js,basic.js,functions.js,search-suggestor.js,promo.js,product.js,product-gallery.js,swipe-detecti[1].js
[2016/07/25 17:28:17 | 000,038,489 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\3VNT2JO3\cssloader-bc5f73394bbc-1468306843[1].css
[2016/07/25 17:28:17 | 000,141,525 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\3VNT2JO3\cssloader-e68ec2cf6f67-1435740713[1].css
[2016/08/16 08:02:44 | 000,056,183 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\5VAVMSO1\cssloader-d08232e16c03-1471003507[1].css
[2016/08/20 19:40:06 | 000,004,782 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\5VAVMSO1\loader-foto[1].gif
[2016/08/19 10:03:46 | 000,056,183 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\B511IVGS\cssloader-d08232e16c03-1471517848[1].css
[2016/08/12 09:52:39 | 000,000,314 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\B511IVGS\EBLoader[1].js
[2016/08/21 18:39:49 | 000,002,883 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\B511IVGS\QuickLoader[1].js
[2016/08/19 13:25:24 | 000,000,411 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\F7SS18HO\HSAppsLoader[1].css
[2016/08/11 10:23:34 | 000,627,079 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\F7SS18HO\jsloader-326ce303dd5c-1470216705[2].js
[2016/08/19 13:25:24 | 000,019,318 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\F7SS18HO\MapAppLoader[1].js
[2016/08/19 17:44:09 | 000,002,435 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\IIE1GIVR\90fc7575-1-deferred-loader[1].js
[2016/08/16 08:02:44 | 000,150,750 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\IIE1GIVR\cssloader-31cd3993ba2b-1470912062[1].css
[2016/08/19 17:45:42 | 000,122,583 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\IWQQ9Q14\prototype.js,scriptaculous.js,effects.js,controls.js,common.js,deferred-loader[1].js
[2016/08/21 14:57:38 | 000,007,825 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\P27EXNRB\ajax-loader[1].gif
[2016/07/25 14:20:07 | 000,324,917 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\QBIPNVFV\9b5c1f3b-1-loader.js,prototype.js,scriptaculous.js,builder.js,effects.js,controls.js,basic.js,functions.js,search-suggestor.js,promo.js,product.js,product-gallery.js,swipe-detecti[1].js
[2016/08/21 19:36:30 | 000,003,951 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\VNF9UY2P\ajax-loader4[1].gif
[2016/07/25 19:05:58 | 000,005,962 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\VNF9UY2P\ASXLoader[1].js
[2016/08/21 12:31:39 | 000,000,856 | ---- | M] () -- \Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Rajce Photo Downloader.lnk
[2016/08/21 12:31:39 | 000,002,099 | ---- | M] () -- \Users\Admin\Desktop\vše o rajče\Rajce Photo Downloader.lnk
[2012/07/22 19:51:59 | 000,548,125 | ---- | M] () -- \Users\Admin\Desktop\vše o rajče\RajcePhotoDownloader-instalace-1.0.1.0.exe
[2016/08/10 08:17:46 | 000,000,213 | ---- | M] () -- \Users\Admin\Favorites\Navigace\garmin POI Loader Software Update Collection.url
[2016/08/10 08:17:59 | 000,000,188 | ---- | M] () -- \Users\Admin\Favorites\TV,radio,tisk,Nej.cz\http--downloader.zex.cz-index.phpurl=.url
[2016/01/12 06:42:50 | 001,188,288 | ---- | M] () -- \Users\All Users\NVIDIA Corporation\GeForce Experience\Update\GFExperience\ExtensionLoader.dll
[2016/01/12 06:43:48 | 000,923,072 | ---- | M] () -- \Users\All Users\NVIDIA Corporation\GeForce Experience\Update\NVI2\NVDownloader.dll
[2016/08/21 12:31:11 | 000,036,940 | ---- | M] () -- \Windows\Prefetch\RAJCEPHOTODOWNLOADER-INSTALAC-280F2293.pf
[2016/08/21 12:31:09 | 000,032,412 | ---- | M] () -- \Windows\Prefetch\RAJCEPHOTODOWNLOADER-INSTALAC-995AA388.pf
[2016/08/21 12:31:11 | 000,021,698 | ---- | M] () -- \Windows\Prefetch\RAJCEPHOTODOWNLOADER-INSTALAC-B7F50D7A.pf
[2016/08/21 12:31:52 | 000,084,038 | ---- | M] () -- \Windows\Prefetch\RAJCEPHOTODOWNLOADER.EXE-B6BBF112.pf
[2013/08/22 06:17:27 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 06:17:25 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 06:17:24 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 06:17:20 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 06:17:34 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 06:17:33 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-1.dll
[2014/10/29 03:51:40 | 000,041,472 | ---- | M] () -- \Windows\System32\dmloader.dll
[2013/08/22 08:13:52 | 000,003,584 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 08:13:52 | 000,003,072 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 08:13:52 | 000,002,560 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-stringloader-l1-1-1.dll
[2016/08/22 08:16:16 | 000,003,528 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\Uploader
[2013/08/22 09:25:10 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2014/12/10 14:54:29 | 000,069,632 | ---- | M] () -- \Windows\System32\winevt\Logs\Microsoft-Windows-User-Loader%4Operational.evtx
[2014/12/10 12:37:56 | 000,000,463 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_c8152575187d59c5.manifest
[2015/01/28 21:23:43 | 000,009,592 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_c8152575187d59c5_winload.efi.mui_35ee487d
[2015/01/28 21:23:43 | 000,009,586 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_c8152575187d59c5_winload.exe.mui_3bc5b827
[2015/01/28 21:23:43 | 000,007,884 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_c8152575187d59c5_winresume.efi.mui_f412814e
[2015/01/28 21:23:43 | 000,007,897 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_c8152575187d59c5_winresume.exe.mui_ff8b5358
[2014/12/10 12:36:49 | 000,000,460 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_en-us_0b6b70d0ff77b623.manifest
[2015/01/28 21:23:44 | 000,009,327 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_en-us_0b6b70d0ff77b623_winload.efi.mui_35ee487d
[2015/01/28 21:23:44 | 000,009,319 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_en-us_0b6b70d0ff77b623_winload.exe.mui_3bc5b827
[2015/01/28 21:23:44 | 000,007,776 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_en-us_0b6b70d0ff77b623_winresume.efi.mui_f412814e
[2015/01/28 21:23:44 | 000,007,771 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_en-us_0b6b70d0ff77b623_winresume.exe.mui_ff8b5358
[2016/08/09 22:09:53 | 000,000,579 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18379_none_efd6228788340b8a.manifest
[2016/08/19 13:35:44 | 000,586,974 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18379_none_efd6228788340b8a_winload.efi_75834aa0
[2016/08/19 13:35:46 | 000,535,539 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18379_none_efd6228788340b8a_winload.exe_75835076
[2016/08/19 13:35:49 | 000,530,110 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18379_none_efd6228788340b8a_winresume.efi_85cd069f
[2016/08/19 13:35:52 | 000,482,048 | ---- | M] () -- \Windows\WinSxS\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18379_none_efd6228788340b8a_winresume.exe_85cd1215
[2015/06/10 11:20:22 | 000,000,612 | ---- | M] () -- \Windows\WinSxS\FileMaps\programdata_microsoft_diagnosis_asimovuploader_0413bca0c3dfdda4.cdf-ms
[2013/08/22 10:16:34 | 000,000,592 | ---- | M] () -- \Windows\WinSxS\FileMaps\programdata_microsoft_network_downloader_7fafaef6d33e4371.cdf-ms
[2013/10/12 00:38:36 | 000,000,459 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_c7e2333118a30f53.manifest
[2013/08/22 13:10:34 | 000,000,457 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_en-us_0b387e8cff9d6bb1.manifest
[2014/12/10 12:17:38 | 000,000,463 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_c8152575187d59c5.manifest
[2014/12/10 12:17:38 | 000,000,460 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_en-us_0b6b70d0ff77b623.manifest
[2013/08/22 10:07:38 | 000,000,537 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16384_none_efc67eb988407586.manifest
[2014/12/10 11:52:43 | 000,000,540 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16411_none_f00f2f35880a6311.manifest
[2014/12/10 11:53:58 | 000,000,540 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16415_none_f013305d8806c86d.manifest
[2014/12/10 11:48:49 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16496_none_efbdb1478846c14c.manifest
[2014/12/10 12:21:29 | 000,000,540 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_eff970fd881abff8.manifest
[2014/12/10 13:27:23 | 000,000,540 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17238_none_f00076cf88146ba7.manifest
[2015/10/14 07:51:40 | 000,000,577 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18066_none_efddebe3882eac1f.manifest
[2016/03/09 09:02:34 | 000,000,578 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18194_none_efbb7d718848ca6b.manifest
[2016/02/11 19:42:58 | 000,000,582 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18202_none_f01ace0f8801996b.manifest
[2016/04/15 20:57:49 | 000,000,579 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18233_none_effb5e9588190695.manifest
[2016/04/15 20:58:50 | 000,000,573 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18258_none_efeac02f8824bd2a.manifest
[2016/04/15 20:45:33 | 000,000,571 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18264_none_efdbef1b883073bf.manifest
[2016/07/15 17:11:31 | 000,000,579 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18378_none_efd5223d8834f233.manifest
[2016/08/09 19:39:28 | 000,000,579 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.18379_none_efd6228788340b8a.manifest
[2015/01/09 16:41:19 | 000,008,359 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.3.9600.16384_none_da93e078ab3c6498\dmloader.dll
[2014/10/29 03:51:40 | 000,041,472 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.3.9600.17415_none_dae07b54ab02d120\dmloader.dll
[2013/08/22 08:13:52 | 000,003,584 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 08:13:52 | 000,003,072 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 08:13:52 | 000,002,560 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 06:17:27 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 06:17:25 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 06:17:24 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 06:17:20 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 06:17:34 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 06:17:33 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-stringloader-l1-1-1.dll

< *minodlogin* /s >

< *tnod* /s >

< *AutoKMS* /s >

< *activator* /s >

< *serial* /s >
[2014/12/12 02:22:08 | 000,021,786 | ---- | M] () -- \Program Files\LibreOffice 4\program\classes\libserializer-1.1.6.jar
[2014/07/09 03:45:06 | 000,970,752 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2013/10/12 00:41:32 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2016/08/21 19:36:29 | 000,000,208 | ---- | M] () -- \Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\22E9YXLQ\serial[1].gif
[2013/08/17 02:06:37 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/06/24 00:12:42 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013/10/12 00:41:38 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2014/07/09 03:45:06 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2016/07/19 12:52:54 | 002,803,200 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\f45b7f93a128f8ef2708fe0956257b90\System.Runtime.Serialization.ni.dll
[2016/07/19 12:52:54 | 000,000,980 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\f45b7f93a128f8ef2708fe0956257b90\System.Runtime.Serialization.ni.dll.aux
[2013/08/22 10:14:45 | 000,001,032 | ---- | M] () -- \Windows\inf\c_multiportserial.inf
[2013/10/12 00:41:42 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/10 02:55:16 | 000,142,104 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 02:55:16 | 000,029,392 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Json\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Json.dll
[2013/08/10 02:55:16 | 000,029,432 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Primitives\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Primitives.dll
[2014/06/05 05:33:00 | 000,113,952 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2013/08/10 02:55:16 | 000,029,896 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Xml\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Xml.dll
[2014/07/24 05:20:32 | 001,059,536 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013/08/10 02:55:49 | 000,045,720 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2013/08/10 02:55:49 | 000,029,848 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.XmlSerializer\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Xml.XmlSerializer.dll
[2014/06/24 00:12:42 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/17 02:06:37 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/07/09 03:45:07 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2014/07/24 05:20:32 | 001,059,536 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2013/08/10 02:55:16 | 000,142,104 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 02:55:16 | 000,029,392 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Json.dll
[2013/08/10 02:55:16 | 000,029,432 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2013/08/10 02:55:16 | 000,029,896 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2013/08/10 02:55:49 | 000,045,720 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2013/08/10 02:55:49 | 000,029,848 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.XmlSerializer.dll
[2013/10/12 00:41:42 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/06/05 05:33:00 | 000,113,952 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2013/08/22 05:27:52 | 000,008,827 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~x86~cs-CZ~6.3.9600.16384.cat
[2013/08/22 04:54:10 | 000,000,777 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~x86~cs-CZ~6.3.9600.16384.mum
[2013/08/22 07:59:42 | 000,008,827 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~x86~en-US~6.3.9600.16384.cat
[2013/08/22 07:22:54 | 000,000,777 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~x86~en-US~6.3.9600.16384.mum
[2013/08/22 07:46:30 | 000,008,827 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~x86~~6.3.9600.16384.cat
[2013/08/22 01:42:42 | 000,000,509 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~x86~~6.3.9600.16384.mum
[2014/10/29 03:46:05 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2013/08/22 05:27:52 | 000,008,827 | ---- | M] () -- \Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~x86~cs-CZ~6.3.9600.16384.cat
[2013/08/22 07:59:42 | 000,008,827 | ---- | M] () -- \Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~x86~en-US~6.3.9600.16384.cat
[2013/08/22 07:46:30 | 000,008,827 | ---- | M] () -- \Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~x86~~6.3.9600.16384.cat
[2013/10/12 00:41:24 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2013/08/22 06:11:47 | 000,077,312 | ---- | M] () -- \Windows\System32\Drivers\serial.sys
[2013/10/12 00:40:42 | 000,009,728 | ---- | M] () -- \Windows\System32\Drivers\cs-CZ\serial.sys.mui
[2013/08/22 13:10:55 | 000,010,240 | ---- | M] () -- \Windows\System32\Drivers\en-US\serial.sys.mui
[2013/08/22 13:10:55 | 000,000,232 | ---- | M] () -- \Windows\System32\DriverStore\en-US\c_multiportserial.inf_loc
[2013/08/22 01:53:50 | 000,001,032 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\c_multiportserial.inf_x86_7875073d426d59a6\c_multiportserial.inf
[2013/06/18 14:35:27 | 001,068,032 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\mdmmotsm.inf_x86_c1415d9789c54b89\smserial.sys
[2013/08/22 06:11:47 | 000,077,312 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_x86_a3be8eb95e2e314b\serial.sys
[2013/08/22 13:11:02 | 000,005,120 | ---- | M] () -- \Windows\System32\en-US\serialui.dll.mui
[2013/08/22 10:09:08 | 000,000,418 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_61eedd30ec040245.manifest
[2013/08/22 10:09:01 | 000,000,430 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.primitives_b03f5f7f11d50a3a_4.0.9600.16384_none_dde82ee214ba2d3d.manifest
[2013/08/22 10:08:53 | 000,000,400 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.16384_none_ed2ffed67c428df1.manifest
[2014/12/12 13:09:46 | 000,000,399 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.17226_none_ed29d1947c4825ff.manifest
[2014/12/12 13:07:43 | 000,000,401 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.17231_none_ed2b43c67c46bf31.manifest
[2014/12/12 13:09:46 | 000,000,399 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.20708_none_d659fa3a95f18ab6.manifest
[2014/12/12 13:07:43 | 000,000,401 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.20717_none_d65b114c95f08a6c.manifest
[2013/10/12 00:39:28 | 000,000,445 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.16384_cs-cz_25789e4d6d93f144.manifest
[2013/08/22 13:10:41 | 000,000,149 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.16384_en-us_80951863a93f3c56.manifest
[2015/12/18 14:04:20 | 000,000,557 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.17187_cs-cz_25785c236d943aac.manifest
[2014/12/10 13:09:57 | 000,000,448 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.17238_cs-cz_257343c56d98d5eb.manifest
[2014/12/10 13:09:57 | 000,000,149 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.17238_en-us_808fbddba94420fd.manifest
[2015/12/18 14:04:19 | 000,000,558 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.20681_cs-cz_0eab3b9d873b0509.manifest
[2014/12/10 13:09:57 | 000,000,448 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.20720_cs-cz_0ea55085874053af.manifest
[2014/12/10 13:09:57 | 000,000,148 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.20720_en-us_69c1ca9bc2eb9ec1.manifest
[2013/10/12 00:39:26 | 000,000,406 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.16384_cs-cz_7adb458f8b8eae0b.manifest
[2013/08/22 13:10:41 | 000,000,152 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.16384_en-us_d5f7bfa5c739f91d.manifest
[2014/12/12 13:09:46 | 000,000,405 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.17226_cs-cz_7ad5184d8b944619.manifest
[2014/12/12 13:09:46 | 000,000,151 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.17226_en-us_d5f19263c73f912b.manifest
[2014/12/12 13:07:42 | 000,000,406 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.17231_cs-cz_7ad68a7f8b92df4b.manifest
[2014/12/12 13:07:42 | 000,000,152 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.17231_en-us_d5f30495c73e2a5d.manifest
[2014/12/12 13:09:46 | 000,000,406 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.20708_cs-cz_640540f3a53daad0.manifest
[2014/12/12 13:09:46 | 000,000,151 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.20708_en-us_bf21bb09e0e8f5e2.manifest
[2014/12/12 13:07:42 | 000,000,406 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.20717_cs-cz_64065805a53caa86.manifest
[2014/12/12 13:07:42 | 000,000,152 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.20717_en-us_bf22d21be0e7f598.manifest
[2013/08/22 10:09:01 | 000,000,419 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_0d0d9cf22bac10f4.manifest
[2013/08/22 10:09:04 | 000,000,471 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.16384_none_c8108d2e85eed25d.manifest
[2015/03/13 13:49:03 | 000,000,570 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.17187_none_c8104b0485ef1bc5.manifest
[2014/12/10 13:09:57 | 000,000,471 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.17238_none_c80b32a685f3b704.manifest
[2015/03/13 13:49:03 | 000,000,566 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.20681_none_b1432a7e9f95e622.manifest
[2014/12/10 13:09:57 | 000,000,465 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.20720_none_b13d3f669f9b34c8.manifest
[2013/08/22 10:08:53 | 000,000,422 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.16384_none_1d733470a3e98f24.manifest
[2014/12/12 13:09:46 | 000,000,421 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.17226_none_1d6d072ea3ef2732.manifest
[2014/12/12 13:07:43 | 000,000,422 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.17231_none_1d6e7960a3edc064.manifest
[2014/12/12 13:09:46 | 000,000,421 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.20708_none_069d2fd4bd988be9.manifest
[2014/12/12 13:07:43 | 000,000,423 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.20717_none_069e46e6bd978b9f.manifest
[2013/08/22 10:09:06 | 000,000,447 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.xml.serialization_b77a5c561934e089_4.0.9600.16384_none_5aaf0d34c0033202.manifest
[2013/08/22 10:09:01 | 000,000,420 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_3cc4c9f9340d8755.manifest
[2013/10/12 00:36:59 | 000,000,276 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_c_multiportserial.inf-languagepack_31bf3856ad364e35_6.3.9600.16384_cs-cz_66e4d271c97553ae.manifest
[2013/08/22 13:10:11 | 000,000,281 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_c_multiportserial.inf-languagepack_31bf3856ad364e35_6.3.9600.16384_en-us_aa3b1dcdb06fb00c.manifest
[2013/08/22 13:10:23 | 000,000,249 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_c_multiportserial.inf.resources_31bf3856ad364e35_6.3.9600.16384_en-us_d9cc5062cae5e3b5.manifest
[2013/08/22 10:06:07 | 000,000,206 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_c_multiportserial.inf_31bf3856ad364e35_6.3.9600.16384_none_35926e7cc5e64dc9.manifest
[2013/08/22 08:13:49 | 000,000,295 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.3.9600.16384_none_a65551a5c8448453.manifest
[2013/08/22 10:07:10 | 000,001,508 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft-windows-serial-classextension_31bf3856ad364e35_6.3.9600.16384_none_cab476b774cd222a.manifest
[2013/08/22 10:06:52 | 000,000,107 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.3.9600.16384_none_c15c976f220f8cd6.manifest
[2013/08/22 10:08:54 | 000,000,411 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_224de03de4c02966.manifest
[2014/12/12 13:09:46 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17226_none_2247b2fbe4c5c174.manifest
[2014/12/12 13:07:43 | 000,000,412 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17231_none_2249252de4c45aa6.manifest
[2014/12/12 13:09:46 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20708_none_0b77dba1fe6f262b.manifest
[2014/12/12 13:07:42 | 000,000,411 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20717_none_0b78f2b3fe6e25e1.manifest
[2013/08/10 02:55:16 | 000,142,104 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_4.0.9600.16384_none_0dbd81c1c9e100df\System.Runtime.Serialization.Formatters.Soap.dll
[2015/01/08 20:39:57 | 000,000,531 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.16384_none_63202903e7dbbda6\System.Runtime.Serialization.Formatters.Soap.dll
[2014/06/24 00:12:42 | 000,131,072 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.17226_none_6319fbc1e7e155b4\System.Runtime.Serialization.Formatters.Soap.dll
[2015/01/08 20:39:58 | 000,000,491 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.20708_none_4c4a2468018aba6b\System.Runtime.Serialization.Formatters.Soap.dll
[2013/10/12 00:41:42 | 000,027,920 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_4.0.9600.16384_cs-cz_c6e6982dc37909d8\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2015/01/08 20:39:59 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.3.9600.16384_cs-cz_1c493f6fe173c69f\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/17 02:06:37 | 000,011,776 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.3.9600.17226_cs-cz_1c43122de1795ead\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2015/01/08 20:39:59 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.3.9600.20708_cs-cz_05733ad3fb22c364\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/10 02:55:16 | 000,029,392 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_61eedd30ec040245\System.Runtime.Serialization.Json.dll
[2013/08/10 02:55:16 | 000,029,432 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.primitives_b03f5f7f11d50a3a_4.0.9600.16384_none_dde82ee214ba2d3d\System.Runtime.Serialization.Primitives.dll
[2015/01/08 20:40:01 | 000,000,663 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.16384_none_ed2ffed67c428df1\System.Runtime.Serialization.dll
[2015/01/08 20:40:04 | 000,000,436 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.17226_none_ed29d1947c4825ff\System.Runtime.Serialization.dll
[2014/07/09 03:45:07 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.17231_none_ed2b43c67c46bf31\System.Runtime.Serialization.dll
[2015/01/08 20:40:06 | 000,000,452 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.20708_none_d659fa3a95f18ab6\System.Runtime.Serialization.dll
[2015/01/08 20:40:08 | 000,000,632 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.20717_none_d65b114c95f08a6c\System.Runtime.Serialization.dll
[2015/01/08 20:40:09 | 000,004,288 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.16384_cs-cz_25789e4d6d93f144\System.RunTime.Serialization.resources.dll
[2015/12/25 20:15:20 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.17187_cs-cz_25785c236d943aac\System.RunTime.Serialization.resources.dll
[2014/06/05 05:33:00 | 000,113,952 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.17238_cs-cz_257343c56d98d5eb\System.RunTime.Serialization.resources.dll
[2015/12/25 20:15:20 | 000,003,283 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.20681_cs-cz_0eab3b9d873b0509\System.RunTime.Serialization.resources.dll
[2015/12/25 20:15:21 | 000,003,283 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.20720_cs-cz_0ea55085874053af\System.RunTime.Serialization.resources.dll
[2015/01/08 20:40:10 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.16384_cs-cz_7adb458f8b8eae0b\System.RunTime.Serialization.Resources.dll
[2015/01/08 20:40:10 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.17226_cs-cz_7ad5184d8b944619\System.RunTime.Serialization.Resources.dll
[2013/10/12 00:41:38 | 000,090,112 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.17231_cs-cz_7ad68a7f8b92df4b\System.RunTime.Serialization.Resources.dll
[2015/01/08 20:40:10 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.20708_cs-cz_640540f3a53daad0\System.RunTime.Serialization.Resources.dll
[2015/01/08 20:40:11 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.20717_cs-cz_64065805a53caa86\System.RunTime.Serialization.Resources.dll
[2013/08/10 02:55:16 | 000,029,896 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_0d0d9cf22bac10f4\System.Runtime.Serialization.Xml.dll
[2015/01/08 20:40:13 | 000,018,929 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.16384_none_c8108d2e85eed25d\System.Runtime.Serialization.dll
[2015/03/17 10:46:51 | 000,011,811 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.17187_none_c8104b0485ef1bc5\System.Runtime.Serialization.dll
[2014/07/24 05:20:32 | 001,059,536 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.17238_none_c80b32a685f3b704\System.Runtime.Serialization.dll
[2015/03/17 10:46:54 | 000,012,410 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.20681_none_b1432a7e9f95e622\System.Runtime.Serialization.dll
[2015/01/08 20:40:16 | 000,004,122 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.20720_none_b13d3f669f9b34c8\System.Runtime.Serialization.dll
[2015/01/08 20:40:18 | 000,000,663 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.16384_none_1d733470a3e98f24\System.Runtime.Serialization.dll
[2015/01/08 20:40:20 | 000,000,436 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.17226_none_1d6d072ea3ef2732\System.Runtime.Serialization.dll
[2014/07/09 03:45:06 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.17231_none_1d6e7960a3edc064\System.Runtime.Serialization.dll
[2015/01/08 20:40:23 | 000,000,452 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.20708_none_069d2fd4bd988be9\System.Runtime.Serialization.dll
[2015/01/08 20:40:25 | 000,000,632 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.20717_none_069e46e6bd978b9f\System.Runtime.Serialization.dll
[2013/08/10 02:55:49 | 000,045,720 | ---- | M] () -- \Windows\WinSxS\msil_system.xml.serialization_b77a5c561934e089_4.0.9600.16384_none_5aaf0d34c0033202\System.Xml.Serialization.dll
[2013/08/10 02:55:49 | 000,029,848 | ---- | M] () -- \Windows\WinSxS\msil_system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_3cc4c9f9340d8755\System.Xml.XmlSerializer.dll
[2013/08/22 13:10:55 | 000,000,232 | ---- | M] () -- \Windows\WinSxS\x86_c_multiportserial.inf.resources_31bf3856ad364e35_6.3.9600.16384_en-us_d9cc5062cae5e3b5\c_multiportserial.inf_loc
[2013/08/22 01:53:50 | 000,001,032 | ---- | M] () -- \Windows\WinSxS\x86_c_multiportserial.inf_31bf3856ad364e35_6.3.9600.16384_none_35926e7cc5e64dc9\c_multiportserial.inf
[2013/06/18 14:35:27 | 001,068,032 | ---- | M] () -- \Windows\WinSxS\x86_mdmmotsm.inf_31bf3856ad364e35_6.3.9600.16384_none_0f6101d344dd2863\smserial.sys
[2015/01/28 19:19:19 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_54cc2f7ac6efa85c\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/17 02:06:37 | 000,011,776 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.17226_cs-cz_550ef6e8c6bd4fde\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2015/01/28 19:19:23 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.20708_cs-cz_55b0527fdfc8c56f\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/10/12 00:41:24 | 000,005,120 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_e30aa618ff4459ba\serialui.dll.mui
[2013/08/22 13:11:02 | 000,005,120 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.3.9600.16384_en-us_2660f174e63eb618\serialui.dll.mui
[2015/01/28 20:40:58 | 000,001,912 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.3.9600.16384_none_89a166153a4451f7\serialui.dll
[2014/10/29 03:46:05 | 000,015,360 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.3.9600.17415_none_89ee00f13a0abe7f\serialui.dll
[2015/01/28 20:47:32 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_f213d7186e186e99\System.RunTime.Serialization.Resources.dll
[2013/10/12 00:41:32 | 000,090,112 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.3.9600.17226_cs-cz_f2569e866de6161b\System.RunTime.Serialization.Resources.dll
[2015/01/28 20:47:33 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.3.9600.20708_cs-cz_f2f7fa1d86f18bac\System.RunTime.Serialization.Resources.dll
[2013/10/12 00:40:42 | 000,009,728 | ---- | M] () -- \Windows\WinSxS\x86_msports.inf.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_5955e70d67d5f963\serial.sys.mui
[2013/08/22 13:10:55 | 000,010,240 | ---- | M] () -- \Windows\WinSxS\x86_msports.inf.resources_31bf3856ad364e35_6.3.9600.16384_en-us_9cac32694ed055c1\serial.sys.mui
[2013/08/22 06:11:47 | 000,077,312 | ---- | M] () -- \Windows\WinSxS\x86_msports.inf_31bf3856ad364e35_6.3.9600.16384_none_8d377538d3f7d971\serial.sys
[2015/01/28 21:14:11 | 000,000,663 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_224de03de4c02966\System.Runtime.Serialization.dll
[2015/01/28 21:14:13 | 000,000,436 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17226_none_2247b2fbe4c5c174\System.Runtime.Serialization.dll
[2014/07/09 03:45:06 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17231_none_2249252de4c45aa6\System.Runtime.Serialization.dll
Mám pocit, že mi něco vypadlo, a proto 2.díl logu OTL posílám znovu. Omlouvám se.

[2015/01/28 21:14:16 | 000,000,452 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20708_none_0b77dba1fe6f262b\System.Runtime.Serialization.dll
[2015/01/28 21:14:18 | 000,000,632 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20717_none_0b78f2b3fe6e25e1\System.Runtime.Serialization.dll

< *w7lxe* /s >

========== Alternate Data Streams ==========

@Alternate Data Stream - 237 bytes -> C:\Users\Admin\OneDrive:ms-properties

< End of report >
Nahoru
Márty84
VIP
VIP
Příspěvky: 21679
Registrován: 05 pro 2009 20:08
Bydliště: Ostrava

Re: Problém s IE

#29 Příspěvek od Márty84 »

:!: Vypnete antivir, at nebrani programu v praci.
:arrow: Znovu spustte OTL jako spravce
Do spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)

Kód: Vybrat vše

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[RESETHOSTS]
[Purity]
[CreateRestorePoint]

:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:otl
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = B7 60 30 B5 82 E5 D1 01 [binary data]
IE - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = 01 00 00 00 1A 00 00 00 6F 51 F7 3D 1E 52 5B 9C 12 B9 1D 1A D7 AF E0 7B 90 F1 B3 B0 7B 41 D1 CE 0F 2D 02 00 00 00 10 00 00 00 2F 49 58 77 6D 39 70 30 6D 25 32 62 55 25 33 64 [binary data]
IE - HKU\S-1-5-21-4140605027-1625828158-2128847343-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?FORM=U453DF&PC=U453&q={searchTerms}&src=IE-SearchBox
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[15 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[1 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu se objevi novy log, ten sem dejte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz

Možnost podpořit naše fórum https://platba.viry.cz/payment/

Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Nahoru
dol
Návštěvník
Návštěvník
Příspěvky: 101
Registrován: 12 úno 2009 09:42

Re: Problém s IE

#30 Příspěvek od dol »

All processes killed
========== COMMANDS ==========

[EMPTYTEMP]

User: Admin
->Temp folder emptied: 49169575 bytes
->Temporary Internet Files folder emptied: 616822751 bytes
->Google Chrome cache emptied: 132451103 bytes
->Flash cache emptied: 959 bytes

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 12719185 bytes
RecycleBin emptied: 86528561 bytes

Total Files Cleaned = 856,00 mb


[EMPTYFLASH]

User: Admin
->Flash cache emptied: 0 bytes

User: All Users

User: Default

User: Default User

User: Public

Total Flash Files Cleaned = 0,00 mb

C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
Restore point Set: OTL Restore Point
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKU\S-1-5-21-4140605027-1625828158-2128847343-1001\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page_TIMESTAMP| /E : value set successfully!
HKU\S-1-5-21-4140605027-1625828158-2128847343-1001\SOFTWARE\Microsoft\Internet Explorer\Main\\SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-4140605027-1625828158-2128847343-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
File/Folder C:\Windows\*.tmp not found.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP221D.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP22D3.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP287A.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5DE2.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5E7E.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP780B.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP7E92.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP8154.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP8329.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP918B.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPAE65.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPD705.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPD9CC.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPF6A2.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPFDE0.tmp folder deleted successfully.
C:\Windows\Installer\MSI87CF.tmp- folder deleted successfully.

OTL by OldTimer - Version 3.2.69.0 log created on 08232016_135749

Files\Folders moved on Reboot...
C:\Users\Admin\AppData\Local\Temp\Low\NVIDIA Corporation\NV_Cache\70e0e7f728b13ff39b031723914ca515_fce8395c8fd8a876_f3279b66e87c6f22_0_0.bin moved successfully.
C:\Users\Admin\AppData\Local\Temp\Low\NVIDIA Corporation\NV_Cache\70e0e7f728b13ff39b031723914ca515_fce8395c8fd8a876_f3279b66e87c6f22_0_0.toc moved successfully.
C:\Users\Admin\AppData\Local\Temp\Low\NVIDIA Corporation\NV_Cache\70e0e7f728b13ff39b031723914ca515_fce8395c8fd8a876_f3279b66e87c6f22_0_1.toc moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\QBIPNVFV\afr[1].htm moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\QBIPNVFV\afr[2].htm moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\P27EXNRB\afr[1].htm moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\P27EXNRB\viewtopic[1].htm moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\IIE1GIVR\afr[1].htm moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\IIE1GIVR\context[2].htm moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\IIE1GIVR\context[3].htm moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\3VNT2JO3\context[1].htm moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\3VNT2JO3\context[2].htm moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\IE\3VNT2JO3\viewtopic[1].htm moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\AntiPhishing\4A72F430-B40C-4D36-A068-CE33ADA5ADF9.dat moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\MSIMGSIZ.DAT moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Low\SuggestedSites.dat moved successfully.
C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.
File move failed. C:\Windows\temp\NVIDIA Corporation\NV_Cache\70e0e7f728b13ff39b031723914ca515_fce8395c8fd8a876_6229ccd76215aea1_0_0.bin scheduled to be moved on reboot.
File move failed. C:\Windows\temp\NVIDIA Corporation\NV_Cache\70e0e7f728b13ff39b031723914ca515_fce8395c8fd8a876_6229ccd76215aea1_0_0.toc scheduled to be moved on reboot.
C:\Windows\temp\NVIDIA Corporation\NV_Cache\70e0e7f728b13ff39b031723914ca515_fce8395c8fd8a876_6229ccd76215aea1_0_1.bin moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“