VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

PC se seká

https://forum.viry.cz:443/viewtopic.php?t=149412

Stránka 2 z 2

Re: PC se seká

Napsal: 06 črc 2016 11:53
od tajfun
druhý log nadvakrát se to sem nevešlo

Re: PC se seká

Napsal: 06 črc 2016 13:51
od Rudy
Rozložte do více postů. Ty údaje jsou pro mne důležité.

Re: PC se seká

Napsal: 06 črc 2016 15:09
od tajfun
ale to je všechno už ... dva logy ten jeden jsem rozdělil na dvě zprávy ...

Re: PC se seká

Napsal: 06 črc 2016 15:13
od Rudy
Log opravdu kompletní není. Klikněte sem: http://forum.viry.cz/viewtopic.php?f=13 ... t#p1451332 a uvidíte, že tam cosi chybí. Dokud nebude log kompletní, nemohu pokračovat.

Re: PC se seká

Napsal: 06 črc 2016 16:03
od tajfun
OTL Extras logfile created on: 6.7.2016 16:25:45 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Users\pepa\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1,99 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 44,13% Memory free
4,16 Gb Paging File | 0,85 Gb Available in Paging File | 20,40% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = D: | %SystemRoot% = D:\Windows | %ProgramFiles% = D:\Program Files
Drive C: | 232,88 Gb Total Space | 223,41 Gb Free Space | 95,93% Space Free | Partition Type: NTFS
Drive D: | 232,49 Gb Total Space | 156,09 Gb Free Space | 67,14% Space Free | Partition Type: NTFS
Drive E: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: PEPA-PC | User Name: pepa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- D:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- D:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = OperaStable] -- D:\Program Files\Opera\Launcher.exe (Opera Software)

[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- D:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
https [open] -- "D:\Program Files\Opera\launcher.exe" -noautoupdate "%1" (Opera Software)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{7B75266A-4885-4B62-80F6-6042C91E5DBF}" = lport=6004 | protocol=17 | dir=in | app=d:\program files\microsoft office\office12\outlook.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{2C484F18-E7D6-46D8-9CAC-3D2B19423510}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{30A2A8B8-ACD8-41C8-ACD9-5147533ED664}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{3AFB27C0-B815-4520-8D7C-2DE220DE3E4A}" = dir=in | app=d:\program files\skype\phone\skype.exe |
"{4E30D9F8-14D7-4DA6-846E-3DF0C01049B6}" = protocol=6 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{5B20A63B-1D8C-46A8-A2B8-5F84667C5F06}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\groove.exe |
"{71127A3E-6D14-49EC-A702-85A68DFA5F8E}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{813BE7C5-F471-4F35-8934-195B39B0BD49}" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{99DDA5A4-2AC8-4C5C-8DDF-C416157F3D0E}" = protocol=17 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{BE108119-73C7-474F-841A-8AC81A77FC23}" = protocol=17 | dir=in | app=d:\program files\mozilla firefox\firefox.exe |
"{C336B561-D4A7-42DF-9FF3-09B5A35F8B56}" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{C4CABDB7-7794-4EAF-A032-A97D74FAD33E}" = protocol=6 | dir=in | app=d:\program files\microsoft office\office12\onenote.exe |
"{EE0F73BA-F5C8-48B6-BC08-C2AB63416444}" = protocol=17 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"{F3B57F27-89BB-4281-A3A6-EE896627E46F}" = protocol=6 | dir=out | app=d:\users\pepa\appdata\roaming\bittorrent\bittorrent.exe |
"TCP Query User{3A5FA721-D1B0-496E-9CC8-6B37BDC9E77D}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{4E9AC18C-EEEF-442A-9A00-3E3F0FE3597F}D:\users\pepa\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=d:\users\pepa\appdata\roaming\utorrent\utorrent.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0FB630AB-7BD8-40AE-B223-60397D57C3C9}" = Realtek WLAN Driver
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4200" = Canon iP4200
"{3911CF56-9EF2-39BA-846A-C27BD3CD0685}" = Microsoft .NET Framework 4.5.2
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{90120000-0015-0405-0000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0019-0405-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2007
"{90120000-001A-0405-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0405-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00BA-0405-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2007
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{FC965A47-4839-40CA-B618-18F486F042C6}" = Skype™ 7.25
"Adobe Flash Player ActiveX" = Adobe Flash Player 22 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 22 NPAPI
"Avast" = Avast Free Antivirus
"ENTERPRISE" = Microsoft Office Enterprise 2007
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Mozilla Firefox 47.0 (x86 cs)" = Mozilla Firefox 47.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Opera 21.0.1432.67" = Opera Stable 21.0.1432.67
"SafeZone 1.48.2066.114" = SafeZone Stable 1.48.2066.114
"ssinstall" = Seznam Instalátor
"WinRAR archiver" = WinRAR 5.31 (32-bit)

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"SeznamInstall" = Seznam Software

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 5.7.2016 11:19:55 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =

Error - 5.7.2016 15:36:26 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Název chybujícího modulu: FRST.exe, verze: 2.7.2016.0, časové razítko:
0x57779684 Kód výjimky: 0xc0000005 Posun chyby: 0x000211de ID chybujícího procesu:
0x1064 Čas spuštění chybující aplikace: 0x01d1d6f3da846688 Cesta k chybující aplikaci:
D:\Users\pepa\Downloads\FRST.exe Cesta k chybujícímu modulu: D:\Users\pepa\Downloads\FRST.exe
ID
zprávy: c2e1ae5d-42e7-11e6-a6d3-705ab686df6b

Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8193
Description =

Error - 6.7.2016 1:38:02 | Computer Name = pepa-PC | Source = System Restore | ID = 8211
Description =

Error - 6.7.2016 1:40:16 | Computer Name = pepa-PC | Source = VSS | ID = 12305
Description =

Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_wscsvc, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.17514,
časové razítko: 0x4ce7b96e Kód výjimky: 0xc0000006 Posun chyby: 0x0005ec70 ID chybujícího
procesu: 0x370 Čas spuštění chybující aplikace: 0x01d1d67dac83f5af Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\Windows\SYSTEM32\ntdll.dll
ID
zprávy: a007dbb3-433c-11e6-a6d3-705ab686df6b

Error - 6.7.2016 1:43:55 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0

Error - 6.7.2016 2:19:24 | Computer Name = pepa-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: svchost.exe_WinDefend, verze: 6.1.7600.16385,
časové razítko: 0x4a5bc100 Název chybujícího modulu: mpengine.dll, verze: 1.1.12902.0,
časové razítko: 0x5769b78b Kód výjimky: 0xc0000006 Posun chyby: 0x00369679 ID chybujícího
procesu: 0x11ac Čas spuštění chybující aplikace: 0x01d1d67e4a14a475 Cesta k chybující
aplikaci: D:\Windows\System32\svchost.exe Cesta k chybujícímu modulu: D:\ProgramData\Microsoft\Windows
Defender\Definition Updates\{4977203E-C604-499F-8E61-5C2797E66AF8}\mpengine.dll
ID
zprávy: 94fbd90e-4341-11e6-a6d3-705ab686df6b

Error - 6.7.2016 2:19:25 | Computer Name = pepa-PC | Source = Application Error | ID = 1005
Description = Systém Windows nemůže získat přístup k souboru z jednoho z těchto
důvodů: došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen,
nebo s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí. Systém
Windows kvůli této chybě ukončil program Host Process for Windows Services. Program:
Host Process for Windows Services Soubor: Hodnota chyby je uvedena v části Další
údaje. Akce uživatele 1. Otevřete soubor znovu. Může se jednat o dočasný problém,
který se při novém spuštění programu nebude opakovat. 2. Pokud k souboru stále nelze
získat přístup a: - Nachází se v síti, měl by správce sítě ověřit, zda nedošlo k
problému se sítí a zda lze server kontaktovat. - Je na vyměnitelném disku (například
disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače. 3. Zkontrolujte
a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete
na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK.
Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER. 4. Pokud
potíže potrvají, obnovte soubor ze záložní kopie. 5. Zjistěte, zda lze otevřít jiné
soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný
disk, obraťte se na správce nebo na dodavatele počítačového hardwaru se žádostí
o pomoc. Další údaje Hodnota chyby: C0000185 Typ disku: 0

Error - 6.7.2016 4:31:25 | Computer Name = pepa-PC | Source = Application Hang | ID = 1002
Description = Program OTL.exe verze 3.2.69.0 přestal spolupracovat se systémem Windows
a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému,
vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu: 13ec Čas
spuštění: 01d1d749dedf0e1c Čas ukončení: 60000 Cesta k aplikaci: D:\Users\pepa\Downloads\OTL.exe

ID
hlášení:

[ System Events ]
Error - 6.7.2016 10:35:05 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 10:35:05 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 10:35:05 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 10:35:05 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 10:40:45 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 10:40:45 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 10:40:45 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 10:40:45 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 10:40:45 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.

Error - 6.7.2016 10:46:57 | Computer Name = pepa-PC | Source = atapi | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Ide\IdePort1.


< End of report >

Re: PC se seká

Napsal: 06 črc 2016 16:09
od tajfun
OTL logfile created on: 6.7.2016 16:25:44 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Users\pepa\Desktop
Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

1,99 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 44,13% Memory free
4,16 Gb Paging File | 0,85 Gb Available in Paging File | 20,40% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = D: | %SystemRoot% = D:\Windows | %ProgramFiles% = D:\Program Files
Drive C: | 232,88 Gb Total Space | 223,41 Gb Free Space | 95,93% Space Free | Partition Type: NTFS
Drive D: | 232,49 Gb Total Space | 156,09 Gb Free Space | 67,14% Space Free | Partition Type: NTFS
Drive E: | 4,36 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: PEPA-PC | User Name: pepa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2016.07.05 22:37:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\Users\pepa\Desktop\OTL.exe
PRC - [2016.06.26 16:37:49 | 002,324,216 | ---- | M] (PS Media s.r.o.) -- D:\Windows\System32\ssins.exe
PRC - [2016.06.26 16:31:57 | 008,897,712 | ---- | M] (AVAST Software) -- D:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2016.06.26 16:31:56 | 000,197,128 | ---- | M] (AVAST Software) -- D:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2016.06.05 01:47:10 | 000,392,136 | ---- | M] (Mozilla Corporation) -- D:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2015.05.26 13:38:58 | 000,457,384 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
PRC - [2010.11.20 14:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\taskhost.exe
PRC - [2010.11.20 14:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) -- D:\Windows\explorer.exe
PRC - [2009.08.18 02:36:36 | 000,348,160 | ---- | M] (AMD) -- D:\Windows\System32\atieclxx.exe
PRC - [2009.08.18 02:36:08 | 000,176,128 | ---- | M] (AMD) -- D:\Windows\System32\atiesrxx.exe


========== Modules (No Company Name) ==========

MOD - [2016.06.26 16:31:58 | 048,936,448 | ---- | M] () -- D:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2016.06.26 16:31:57 | 000,479,288 | ---- | M] () -- D:\Program Files\AVAST Software\Avast\ffl2.dll
MOD - [2016.06.26 16:31:56 | 000,146,232 | ---- | M] () -- D:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
MOD - [2015.11.19 23:17:08 | 000,845,824 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\libchinst.dll
MOD - [2015.05.26 13:38:58 | 000,457,384 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
MOD - [2015.05.26 13:38:34 | 000,862,888 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\lightspeed.dll
MOD - [2015.05.26 13:37:42 | 000,078,504 | ---- | M] () -- D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\4963libfoxloader.dll


========== Services (SafeList) ==========

SRV - [2016.06.27 10:48:30 | 000,270,016 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- D:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2016.06.26 16:37:49 | 002,324,216 | ---- | M] (PS Media s.r.o.) [Auto | Running] -- D:\Windows\System32\ssins.exe -- (ssinstall)
SRV - [2016.06.26 16:31:56 | 000,197,128 | ---- | M] (AVAST Software) [Auto | Running] -- D:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2016.06.05 01:47:30 | 000,146,888 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- D:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2016.05.23 15:17:32 | 000,324,224 | R--- | M] (Skype Technologies) [Auto | Stopped] -- D:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2015.12.02 17:06:48 | 000,235,696 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- D:\Program Files\McAfee Security Scan\3.11.266\McCHSvc.exe -- (McComponentHostService)
SRV - [2009.08.18 02:36:08 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- D:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009.07.14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\synth3dvsc.sys -- (Synth3dVsc)
DRV - [2016.06.27 16:32:28 | 000,438,296 | ---- | M] (AVAST Software) [File_System | System | Running] -- D:\Windows\System32\drivers\aswsp.sys -- (aswSP)
DRV - [2016.06.26 16:35:25 | 000,035,096 | ---- | M] (AVAST Software) [Kernel | System | Running] -- D:\Windows\System32\drivers\aswKbd.sys -- (aswKbd)
DRV - [2016.06.26 16:31:59 | 000,222,056 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2016.06.26 16:31:59 | 000,118,152 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- D:\Windows\System32\drivers\aswStm.sys -- (aswStm)
DRV - [2016.06.26 16:31:59 | 000,091,680 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- D:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2016.06.26 16:31:59 | 000,091,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- D:\Windows\System32\drivers\aswRdr2.sys -- (aswRdr)
DRV - [2016.06.26 16:31:59 | 000,060,424 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2016.06.26 16:31:59 | 000,034,008 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- D:\Windows\System32\drivers\aswHwid.sys -- (aswHwid)
DRV - [2016.06.26 16:31:54 | 000,816,304 | ---- | M] (AVAST Software) [File_System | System | Running] -- D:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2016.03.10 06:17:36 | 000,119,952 | ---- | M] (MBB) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\usb2ser.sys -- (wdm_usb)
DRV - [2010.11.20 14:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010.11.20 14:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010.11.20 14:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010.11.20 12:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010.11.20 12:21:14 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2010.11.20 11:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010.11.20 11:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010.11.20 11:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009.08.27 22:19:22 | 000,859,136 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- D:\Windows\System32\drivers\rtl8192se.sys -- (rtl8192se)
DRV - [2009.08.18 03:48:06 | 004,994,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- D:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2009.07.14 01:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- D:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2007.11.09 05:00:52 | 000,023,640 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- D:\Windows\System32\drivers\TVALZ_O.SYS -- (TVALZ)


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = D:\Windows\System32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - D:\Windows\System32\ieframe.dll (Microsoft Corporation)

IE - HKU\S-1-5-20\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - D:\Windows\System32\ieframe.dll (Microsoft Corporation)

IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = D:\Windows\system32\blank.htm
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13554LinkId=54896
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - D:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes,DefaultScope = {E82C1C47-1E4C-4D86-9BEA-544BD8CF8968}
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{0A447989-B2FA-4956-8E90-02B188861A67}: "URL" = http://www.firmy.cz/?q={searchTerms}&so ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{43CAC651-59DA-4BC7-961B-A7E7428D80D1}: "URL" = http://encyklopedie.seznam.cz/search?q= ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{5C05CD77-BBD9-4950-B2B6-378B59A3B415}: "URL" = http://slovnik.seznam.cz/?q={searchTerm ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{69956676-49FE-40F4-98DA-6671A2754B0C}: "URL" = http://tv.seznam.cz/hledej?w={searchTer ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{762C8A46-F41B-4464-A295-BB788C5ECF19}: "URL" = http://www.zbozi.cz/?q={searchTerms}&r= ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{818B7620-02A0-4560-8F8C-A1F5A63A6233}: "URL" = http://www.novinky.cz/hledej?w={searchT ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{B4BAE67E-65C6-491A-BEE1-E33149143ADC}: "URL" = http://slovnik.seznam.cz/?q={searchTerm ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{DDBDB549-4DB2-4195-911A-29767889C9A9}: "URL" = http://www.mapy.cz/?query={searchTerms} ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{E82C1C47-1E4C-4D86-9BEA-544BD8CF8968}: "URL" = http://search.seznam.cz/?q={searchTerms ... arch_13554
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.countryCode: "CZ"
FF - prefs.js..browser.search.region: "CZ"
FF - prefs.js..browser.startup.homepage: "https://www.seznam.cz/"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:47.0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: D:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_192.dll ()

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: D:\Program Files\AVAST Software\Avast\WebRep\FF [2016.06.26 16:32:01 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\sp@avast.com: D:\Program Files\AVAST Software\Avast\SafePrice\FF [2016.06.26 16:32:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 47.0\extensions\\Components: D:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 47.0\extensions\\Plugins: D:\Program Files\Mozilla Firefox\plugins

[2016.06.26 16:51:59 | 000,000,000 | ---D | M] (No name found) -- D:\Users\pepa\AppData\Roaming\Mozilla\Extensions
[2016.06.27 17:03:34 | 000,000,000 | ---D | M] (No name found) -- D:\Users\pepa\AppData\Roaming\Mozilla\Firefox\Profiles\3cbf9wik.default\extensions
[2016.06.27 17:03:34 | 000,000,000 | ---D | M] (Seznam lištička) -- D:\Users\pepa\AppData\Roaming\Mozilla\Firefox\Profiles\3cbf9wik.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2016.06.26 16:51:36 | 000,000,000 | ---D | M] (No name found) -- D:\Program Files\Mozilla Firefox\browser\extensions

O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - D:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - D:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4 - HKLM..\Run: [AvastUI.exe] D:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [GrooveMonitor] D:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [seznam-listicka-distribuce] D:\Program Files\Seznam.cz\distribution\szninstall.exe ()
O4 - HKU\S-1-5-19..\Run: [Sidebar] D:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] D:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000..\Run: [cz.seznam.software.autoupdate] D:\Users\pepa\AppData\Roaming\Seznam.cz\szninstall.exe ()
O4 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000..\Run: [cz.seznam.software.szndesktop] D:\Users\pepa\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe ()
O4 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000..\Run: [Skype] D:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - HKU\.DEFAULT..\RunOnce: [SPReview] D:\Windows\System32\SPReview\SPReview.exe (Microsoft Corporation)
O4 - HKU\S-1-5-18..\RunOnce: [SPReview] D:\Windows\System32\SPReview\SPReview.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - D:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - D:\Windows\System32\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - D:\Windows\System32\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - D:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - D:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - D:\Windows\System32\winrnr.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - D:\Windows\System32\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: localhost ([]http in Internet)
O15 - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..Trusted Domains: localhost ([]http in Internet)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C0055C17-9EF0-47D5-B4C1-5A00DF15B481}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - D:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - D:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - D:\Windows\System32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - D:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - D:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - D:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - D:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - D:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - D:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - D:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - D:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - D:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - D:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (D:\Windows\system32\userinit.exe) - D:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - D:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - D:\Windows\System32\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - D:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - D:\Windows\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - D:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - D:\Windows\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - D:\Windows\System32\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - D:\Windows\System32\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - D:\Windows\System32\pku2u.dll (Microsoft Corporation)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - D:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

Re: PC se seká

Napsal: 06 črc 2016 16:11
od tajfun
========== Files/Folders - Created Within 30 Days ==========

[2016.07.06 10:38:21 | 000,602,112 | ---- | C] (OldTimer Tools) -- D:\Users\pepa\Desktop\OTL.exe
[2016.07.05 21:31:42 | 000,000,000 | ---D | C] -- D:\FRST
[2016.07.05 20:46:30 | 000,000,000 | ---D | C] -- D:\Program Files\trend micro
[2016.07.05 20:46:30 | 000,000,000 | ---D | C] -- D:\rsit
[2016.07.03 09:37:43 | 000,000,000 | ---D | C] -- D:\Windows\EOONotify
[2016.07.03 09:19:51 | 000,103,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2016.07.02 15:24:22 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netbtugc.exe
[2016.07.02 15:24:18 | 001,620,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVDECOD.DLL
[2016.07.02 15:24:16 | 003,209,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mf.dll
[2016.07.02 15:24:16 | 000,970,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msmpeg2adec.dll
[2016.07.02 15:24:15 | 001,329,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\quartz.dll
[2016.07.02 15:24:15 | 000,902,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMADMOD.DLL
[2016.07.02 15:24:15 | 000,829,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSMPEG2ENC.DLL
[2016.07.02 15:24:15 | 000,815,616 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMADMOE.DLL
[2016.07.02 15:24:15 | 000,739,328 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMSPDMOD.DLL
[2016.07.02 15:24:15 | 000,541,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVSDECD.DLL
[2016.07.02 15:24:15 | 000,519,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qdvd.dll
[2016.07.02 15:24:15 | 000,489,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\evr.dll
[2016.07.02 15:24:15 | 000,153,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\COLORCNV.DLL
[2016.07.02 15:24:14 | 001,568,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVENCOD.DLL
[2016.07.02 15:24:14 | 001,202,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMALFXGFXDSP.dll
[2016.07.02 15:24:14 | 000,740,352 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpmde.dll
[2016.07.02 15:24:14 | 000,728,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mcmde.dll
[2016.07.02 15:24:14 | 000,665,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVXENCD.DLL
[2016.07.02 15:24:14 | 000,609,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MFWMAAEC.DLL
[2016.07.02 15:24:14 | 000,358,400 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVSENCD.DLL
[2016.07.02 15:24:14 | 000,354,816 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfplat.dll
[2016.07.02 15:24:14 | 000,241,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MPG4DECD.DLL
[2016.07.02 15:24:14 | 000,241,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MP43DECD.DLL
[2016.07.02 15:24:14 | 000,206,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qasf.dll
[2016.07.02 15:24:14 | 000,067,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\devenum.dll
[2016.07.02 15:24:13 | 001,325,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMSPDMOE.DLL
[2016.07.02 15:24:13 | 000,415,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MP4SDECD.DLL
[2016.07.02 15:24:13 | 000,338,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SysFxUI.dll
[2016.07.02 15:24:13 | 000,206,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RESAMPLEDMO.DLL
[2016.07.02 15:24:13 | 000,193,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ksproxy.ax
[2016.07.02 15:24:13 | 000,177,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\portcls.sys
[2016.07.02 15:24:13 | 000,154,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VIDRESZR.DLL
[2016.07.02 15:24:13 | 000,103,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfps.dll
[2016.07.02 15:24:13 | 000,079,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MP3DMOD.DLL
[2016.07.02 15:24:13 | 000,053,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfvdsp.dll
[2016.07.02 15:24:13 | 000,050,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rrinstaller.exe
[2016.07.02 15:24:13 | 000,023,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfpmp.exe
[2016.07.02 15:24:12 | 000,081,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\drmk.sys
[2016.07.02 15:24:12 | 000,004,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ksuser.dll
[2016.07.02 15:24:12 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mferror.dll
[2016.07.02 15:24:04 | 000,047,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\WdfLdr.sys
[2016.07.02 15:24:04 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Wdfres.dll
[2016.07.02 15:24:02 | 000,318,464 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMPhoto.dll
[2016.07.02 15:23:59 | 001,806,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\authui.dll
[2016.07.02 15:23:59 | 000,337,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msihnd.dll
[2016.07.02 15:23:59 | 000,105,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\consent.exe
[2016.07.02 15:23:59 | 000,025,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msimsg.dll
[2016.07.02 15:23:51 | 012,625,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmploc.DLL
[2016.07.02 15:23:51 | 000,008,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwmp.dll
[2016.07.02 15:23:51 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdxm.ocx
[2016.07.02 15:23:51 | 000,004,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dxmasf.dll
[2016.07.02 15:23:47 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msxml6r.dll
[2016.07.02 15:23:47 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msxml3r.dll
[2016.07.02 15:23:31 | 000,284,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\usbport.sys
[2016.07.02 15:23:31 | 000,006,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\usbd.sys
[2016.07.02 15:23:29 | 000,218,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\dxgmms1.sys
[2016.07.02 15:23:29 | 000,107,520 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cdd.dll
[2016.07.02 15:23:19 | 002,135,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msmpeg2vdec.dll
[2016.07.02 15:23:19 | 000,988,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drmv2clt.dll
[2016.07.02 15:23:19 | 000,744,960 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\blackbox.dll
[2016.07.02 15:23:19 | 000,617,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmdrmsdk.dll
[2016.07.02 15:23:16 | 003,973,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ntkrnlpa.exe
[2016.07.02 15:23:15 | 003,917,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ntoskrnl.exe
[2016.07.02 15:23:15 | 000,442,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AUDIOKSE.dll
[2016.07.02 15:23:15 | 000,406,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drmmgrtn.dll
[2016.07.02 15:23:14 | 000,409,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ci.dll
[2016.07.02 15:23:13 | 000,686,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\adtschema.dll
[2016.07.02 15:23:13 | 000,521,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\winload.exe
[2016.07.02 15:23:13 | 000,455,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\winresume.exe
[2016.07.02 15:23:12 | 000,400,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\srcore.dll
[2016.07.02 15:23:12 | 000,221,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ncrypt.dll
[2016.07.02 15:23:11 | 000,374,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AudioEng.dll
[2016.07.02 15:23:11 | 000,275,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EncDump.dll
[2016.07.02 15:23:11 | 000,195,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AudioSes.dll
[2016.07.02 15:23:11 | 000,038,912 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\csrsrv.dll
[2016.07.02 15:23:10 | 000,262,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rstrui.exe
[2016.07.02 15:23:09 | 000,504,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msscp.dll
[2016.07.02 15:23:09 | 000,265,216 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msnetobj.dll
[2016.07.02 15:23:09 | 000,100,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\audiodg.exe
[2016.07.02 15:23:09 | 000,050,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appidapi.dll
[2016.07.02 15:23:08 | 000,096,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appidpolicyconverter.exe
[2016.07.02 15:23:08 | 000,050,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\auditpol.exe
[2016.07.02 15:23:08 | 000,028,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcadm.dll
[2016.07.02 15:23:07 | 000,146,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msaudite.dll
[2016.07.02 15:23:07 | 000,050,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setbcdlocale.dll
[2016.07.02 15:23:07 | 000,016,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appidcertstorecheck.exe
[2016.07.02 15:23:07 | 000,015,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sspisrv.dll
[2016.07.02 15:23:07 | 000,010,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msmmsp.dll
[2016.07.02 15:23:07 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcawrk.exe
[2016.07.02 15:23:07 | 000,008,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcalua.exe
[2016.07.02 15:23:07 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\apisetschema.dll
[2016.07.02 15:23:06 | 000,060,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msobjs.dll
[2016.07.02 15:23:06 | 000,008,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pcaevts.dll
[2016.07.02 15:22:16 | 000,919,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcorets.dll
[2016.07.02 15:22:12 | 000,594,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate_isv.exe
[2016.07.02 15:22:12 | 000,572,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate.exe
[2016.07.02 15:22:11 | 000,510,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate_ssp.exe
[2016.07.02 15:22:11 | 000,508,928 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RMActivate_ssp_isv.exe
[2016.07.02 15:22:11 | 000,428,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc.dll
[2016.07.02 15:22:11 | 000,423,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc_isv.dll
[2016.07.02 15:22:11 | 000,390,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdrm.dll
[2016.07.02 15:22:11 | 000,087,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc_ssp_isv.dll
[2016.07.02 15:22:11 | 000,087,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\secproc_ssp.dll
[2016.07.02 15:20:59 | 000,248,832 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSManMigrationPlugin.dll
[2016.07.02 15:20:59 | 000,214,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WsmWmiPl.dll
[2016.07.02 15:20:59 | 000,198,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSManHTTPConfig.exe
[2016.07.02 15:20:59 | 000,145,920 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WsmAuto.dll
[2016.07.02 13:00:44 | 000,000,000 | ---D | C] -- D:\Windows\Minidump
[2016.07.02 09:53:24 | 002,425,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wucltux.dll
[2016.07.02 09:53:24 | 000,045,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wups2.dll
[2016.07.02 09:52:01 | 000,179,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wuwebv.dll
[2016.07.02 09:52:01 | 000,033,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wuapp.exe
[2016.07.02 03:02:15 | 000,000,000 | ---D | C] -- D:\Windows\System32\SPReview
[2016.07.02 03:00:44 | 000,000,000 | ---D | C] -- D:\Windows\Migration
[2016.07.02 00:22:14 | 000,301,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EOSNotify.exe
[2016.07.01 15:35:50 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\BitTorrent
[2016.06.30 12:50:29 | 000,000,000 | ---D | C] -- D:\Windows\System32\EventProviders
[2016.06.29 14:30:21 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\ElevatedDiagnostics
[2016.06.29 13:01:09 | 000,215,552 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmicsvc.exe
[2016.06.29 13:01:09 | 000,113,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\IcCoinstall.dll
[2016.06.29 13:01:09 | 000,053,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmicres.dll
[2016.06.29 13:01:09 | 000,047,616 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmictimeprovider.dll
[2016.06.29 13:01:08 | 000,017,920 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\VMBusHID.sys
[2016.06.29 13:01:07 | 000,116,224 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VmbusCoinstaller.dll
[2016.06.29 13:01:07 | 000,044,544 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmbusres.dll
[2016.06.29 13:01:07 | 000,043,392 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\winhv.sys
[2016.06.29 13:01:07 | 000,014,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmbuspipe.dll
[2016.06.29 13:01:06 | 000,175,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\vmbus.sys
[2016.06.29 13:01:06 | 000,028,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\storvsc.sys
[2016.06.29 13:01:05 | 000,458,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSDApi.dll
[2016.06.29 13:01:05 | 000,295,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationHost.exe
[2016.06.29 13:01:05 | 000,113,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VmdCoinstall.dll
[2016.06.29 13:01:05 | 000,099,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationHostProxy.dll
[2016.06.29 13:01:05 | 000,040,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\vmstorfl.sys
[2016.06.29 13:01:05 | 000,038,400 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vmstorfltres.dll
[2016.06.29 13:01:05 | 000,005,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\vms3cap.sys
[2016.06.29 13:01:03 | 001,548,288 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tquery.dll
[2016.06.29 13:01:03 | 001,401,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mssrch.dll
[2016.06.29 13:01:03 | 000,666,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mssvp.dll
[2016.06.29 13:01:03 | 000,197,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mssphtb.dll
[2016.06.29 13:00:54 | 000,050,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\umb.dll
[2016.06.29 13:00:53 | 000,035,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\winusb.sys
[2016.06.29 13:00:41 | 000,856,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FirewallControlPanel.dll
[2016.06.29 13:00:40 | 005,066,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AuthFWSnapin.dll
[2016.06.29 13:00:36 | 000,155,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mscorier.dll
[2016.06.29 13:00:36 | 000,080,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mscories.dll
[2016.06.29 13:00:36 | 000,049,488 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netfxperf.dll
[2016.06.29 13:00:35 | 001,077,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Narrator.exe
[2016.06.29 13:00:35 | 000,107,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\NAPHLPR.DLL
[2016.06.29 13:00:35 | 000,046,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\NAPCRYPT.DLL
[2016.06.29 13:00:34 | 000,132,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\ataport.sys
[2016.06.29 13:00:33 | 000,577,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wpd_ci.dll
[2016.06.29 13:00:33 | 000,140,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\scsiport.sys
[2016.06.29 13:00:31 | 001,334,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CertEnroll.dll
[2016.06.29 13:00:31 | 000,314,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wusa.exe
[2016.06.29 13:00:31 | 000,196,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wwanconn.dll
[2016.06.29 13:00:31 | 000,040,960 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wwanprotdim.dll
[2016.06.29 13:00:31 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wsdchngr.dll
[2016.06.29 13:00:30 | 000,547,840 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PortableDeviceApi.dll
[2016.06.29 13:00:30 | 000,427,520 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PortableDeviceStatus.dll
[2016.06.29 13:00:29 | 000,206,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\framedynos.dll
[2016.06.29 13:00:29 | 000,202,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\framedyn.dll
[2016.06.29 13:00:28 | 000,363,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wbemcomn.dll
[2016.06.29 13:00:27 | 001,326,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlanpref.dll
[2016.06.29 13:00:27 | 000,428,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlanmsm.dll
[2016.06.29 13:00:27 | 000,411,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlangpui.dll
[2016.06.29 13:00:27 | 000,410,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wlanui.dll
[2016.06.29 13:00:27 | 000,351,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmicmiplugin.dll
[2016.06.29 13:00:27 | 000,247,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ReAgent.dll
[2016.06.29 13:00:27 | 000,169,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\winsrv.dll
[2016.06.29 13:00:27 | 000,022,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ReAgentc.exe
[2016.06.29 13:00:26 | 002,329,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\win32k.sys
[2016.06.29 13:00:26 | 000,782,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\webservices.dll
[2016.06.29 13:00:26 | 000,406,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wimgapi.dll
[2016.06.29 13:00:26 | 000,327,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wimserv.exe
[2016.06.29 13:00:26 | 000,314,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\webio.dll
[2016.06.29 13:00:26 | 000,098,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fphc.dll
[2016.06.29 13:00:25 | 003,367,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WinSAT.exe
[2016.06.29 13:00:25 | 000,416,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wiadefui.dll
[2016.06.29 13:00:25 | 000,033,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wiarpc.dll
[2016.06.29 13:00:23 | 000,198,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wpdwcn.dll
[2016.06.29 13:00:23 | 000,051,200 | ---- | C] (Twain Working Group) -- D:\Windows\twain_32.dll
[2016.06.29 13:00:21 | 000,335,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WinSATAPI.dll
[2016.06.29 13:00:21 | 000,109,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wiavideo.dll
[2016.06.29 13:00:19 | 000,350,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WPDSp.dll
[2016.06.29 13:00:19 | 000,047,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wkscli.dll
[2016.06.29 13:00:19 | 000,026,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\usbrpm.sys
[2016.06.29 13:00:18 | 000,151,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vdsutil.dll
[2016.06.29 13:00:17 | 000,638,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VAN.dll
[2016.06.29 13:00:17 | 000,153,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\VBICodec.ax
[2016.06.29 13:00:17 | 000,084,480 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mciavi32.dll
[2016.06.29 13:00:17 | 000,082,944 | ---- | C] (Radius Inc.) -- D:\Windows\System32\iccvid.dll
[2016.06.29 13:00:17 | 000,068,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WSTPager.ax
[2016.06.29 13:00:17 | 000,066,560 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cca.dll
[2016.06.29 13:00:15 | 000,160,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vdsbas.dll
[2016.06.29 13:00:13 | 000,204,288 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSNP.ax
[2016.06.29 13:00:13 | 000,075,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\psisrndr.ax
[2016.06.29 13:00:13 | 000,072,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Mpeg2Data.ax
[2016.06.29 13:00:13 | 000,059,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSDvbNP.ax
[2016.06.29 13:00:11 | 000,600,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\usercpl.dll
[2016.06.29 13:00:11 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\userinit.exe
[2016.06.29 13:00:10 | 000,059,392 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\unimdmat.dll
[2016.06.29 13:00:10 | 000,025,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\USBCAMD2.sys
[2016.06.29 13:00:10 | 000,025,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\USBCAMD.sys
[2016.06.29 13:00:09 | 002,983,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\UIRibbon.dll
[2016.06.29 13:00:09 | 001,164,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\UIRibbonRes.dll
[2016.06.29 13:00:09 | 000,534,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EncDec.dll
[2016.06.29 13:00:09 | 000,078,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\UserAccountControlSettings.dll
[2016.06.29 13:00:09 | 000,059,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\djoin.exe
[2016.06.29 13:00:09 | 000,047,616 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tzutil.exe
[2016.06.29 13:00:08 | 002,157,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\themecpl.dll
[2016.06.29 13:00:08 | 000,478,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\timedate.cpl
[2016.06.29 13:00:08 | 000,066,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\w32tm.exe
[2016.06.29 13:00:08 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TRAPI.dll
[2016.06.29 13:00:07 | 000,505,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskschd.dll
[2016.06.29 13:00:07 | 000,352,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\termmgr.dll
[2016.06.29 13:00:07 | 000,187,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\FWPKCLNT.SYS
[2016.06.29 13:00:07 | 000,181,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tcpipcfg.dll
[2016.06.29 13:00:07 | 000,166,400 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netiohlp.dll
[2016.06.29 13:00:07 | 000,025,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netiougc.exe
[2016.06.29 13:00:07 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\tdi.sys
[2016.06.29 13:00:07 | 000,017,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\schedcli.dll
[2016.06.29 13:00:06 | 000,233,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskbarcpl.dll
[2016.06.29 13:00:06 | 000,222,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wavemsp.dll
[2016.06.29 13:00:06 | 000,049,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskhost.exe
[2016.06.29 13:00:05 | 000,600,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TabletPC.cpl
[2016.06.29 13:00:05 | 000,074,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tabcal.exe
[2016.06.29 13:00:05 | 000,053,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MultiDigiMon.exe
[2016.06.29 13:00:05 | 000,051,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\takeown.exe
[2016.06.29 13:00:05 | 000,045,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\g711codc.ax
[2016.06.29 13:00:04 | 000,052,224 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\TsUsbFlt.sys
[2016.06.29 13:00:03 | 000,202,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\input.dll
[2016.06.29 13:00:03 | 000,186,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpencom.dll
[2016.06.29 13:00:03 | 000,131,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aaclient.dll
[2016.06.29 13:00:03 | 000,052,224 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpd3d.dll
[2016.06.29 13:00:03 | 000,036,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tsgqec.dll
[2016.06.29 13:00:03 | 000,017,408 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\perfts.dll
[2016.06.29 13:00:01 | 000,597,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TSWorkspace.dll
[2016.06.29 13:00:01 | 000,260,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpshell.exe
[2016.06.29 13:00:01 | 000,173,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpclip.exe
[2016.06.29 13:00:01 | 000,133,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tspubwmi.dll
[2016.06.29 13:00:01 | 000,121,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RDPENCDD.dll
[2016.06.29 13:00:01 | 000,057,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpsign.exe
[2016.06.29 13:00:01 | 000,031,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\utildll.dll
[2016.06.29 13:00:00 | 000,161,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpinit.exe
[2016.06.29 12:59:59 | 000,223,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wksprt.exe
[2016.06.29 12:59:59 | 000,154,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tscfgwmi.dll
[2016.06.29 12:59:59 | 000,140,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpendp.dll
[2016.06.29 12:59:59 | 000,129,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcorekmts.dll
[2016.06.29 12:59:59 | 000,120,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tssrvlic.dll
[2016.06.29 12:59:59 | 000,058,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpwsx.dll
[2016.06.29 12:59:59 | 000,053,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\LSCSHostPolicy.dll
[2016.06.29 12:59:59 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RDPREFDD.dll
[2016.06.29 12:59:59 | 000,025,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qprocess.exe
[2016.06.29 12:59:59 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tskill.exe
[2016.06.29 12:59:59 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\chgport.exe
[2016.06.29 12:59:59 | 000,022,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tsdiscon.exe
[2016.06.29 12:59:59 | 000,022,016 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\chglogon.exe
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tscon.exe
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdprefdrvapi.dll
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qappsrv.exe
[2016.06.29 12:59:59 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logoff.exe
[2016.06.29 12:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shadow.exe
[2016.06.29 12:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rwinsta.exe
[2016.06.29 12:59:59 | 000,020,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\chgusr.exe
[2016.06.29 12:59:59 | 000,015,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\reset.exe
[2016.06.29 12:59:59 | 000,015,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\change.exe
[2016.06.29 12:59:59 | 000,014,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\query.exe
[2016.06.29 12:59:58 | 000,305,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\taskcomp.dll
[2016.06.29 12:59:58 | 000,270,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tsmf.dll
[2016.06.29 12:59:58 | 000,252,928 | ---- | C] (Microsoft) -- D:\Windows\System32\DShowRdpFilter.dll
[2016.06.29 12:59:58 | 000,026,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qwinsta.exe
[2016.06.29 12:59:58 | 000,024,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msg.exe
[2016.06.29 12:59:58 | 000,023,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\quser.exe
[2016.06.29 12:59:58 | 000,008,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcfgex.dll
[2016.06.29 12:59:57 | 000,826,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpcore.dll
[2016.06.29 12:59:57 | 000,410,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\systemcpl.dll
[2016.06.29 12:59:57 | 000,198,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sysclass.dll
[2016.06.29 12:59:57 | 000,069,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tlscsp.dll
[2016.06.29 12:59:57 | 000,061,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spbcd.dll
[2016.06.29 12:59:57 | 000,021,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\lsmproxy.dll
[2016.06.29 12:59:57 | 000,019,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spopk.dll
[2016.06.29 12:59:57 | 000,014,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\syssetup.dll
[2016.06.29 12:59:56 | 000,850,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sbe.dll
[2016.06.29 12:59:56 | 000,755,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sud.dll
[2016.06.29 12:59:56 | 000,183,296 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PortableDeviceSyncProvider.dll
[2016.06.29 12:59:55 | 000,309,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sqlcese30.dll
[2016.06.29 12:59:55 | 000,293,888 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ssText3d.scr
[2016.06.29 12:59:55 | 000,254,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wsqmcons.exe
[2016.06.29 12:59:55 | 000,189,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sqmapi.dll
[2016.06.29 12:59:55 | 000,148,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\storport.sys
[2016.06.29 12:59:53 | 000,697,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SmiEngine.dll
[2016.06.29 12:59:53 | 000,052,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\inetmib1.dll
[2016.06.29 12:59:53 | 000,051,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wsnmp32.dll
[2016.06.29 12:59:53 | 000,046,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WavDest.dll
[2016.06.29 12:59:53 | 000,009,728 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sscore.dll
[2016.06.29 12:59:52 | 000,144,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\basecsp.dll
[2016.06.29 12:59:52 | 000,019,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sisbkup.dll
[2016.06.29 12:59:51 | 000,428,544 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shwebsvc.dll
[2016.06.29 12:59:51 | 000,010,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shunimpl.dll
[2016.06.29 12:59:50 | 000,202,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\unattend.dll
[2016.06.29 12:59:50 | 000,111,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shsetup.dll
[2016.06.29 12:59:50 | 000,108,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\shacct.dll
[2016.06.29 12:59:50 | 000,103,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setupcl.exe
[2016.06.29 12:59:50 | 000,031,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prevhost.exe
[2016.06.29 12:59:49 | 000,456,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spinstall.exe
[2016.06.29 12:59:49 | 000,280,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spreview.exe
[2016.06.29 12:59:49 | 000,270,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sethc.exe
[2016.06.29 12:59:49 | 000,253,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwizui.dll
[2016.06.29 12:59:49 | 000,179,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ActionQueue.dll
[2016.06.29 12:59:49 | 000,115,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setupcln.dll
[2016.06.29 12:59:48 | 000,933,376 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Vault.dll
[2016.06.29 12:59:48 | 000,327,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nltest.exe
[2016.06.29 12:59:48 | 000,325,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\slui.exe
[2016.06.29 12:59:48 | 000,196,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vaultsvc.dll
[2016.06.29 12:59:48 | 000,193,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppcomapi.dll
[2016.06.29 12:59:48 | 000,121,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppc.dll
[2016.06.29 12:59:48 | 000,100,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppinst.dll
[2016.06.29 12:59:48 | 000,051,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wscapi.dll
[2016.06.29 12:59:48 | 000,014,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\slwga.dll
[2016.06.29 12:59:47 | 001,131,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sdclt.exe
[2016.06.29 12:59:47 | 000,974,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppobjs.dll
[2016.06.29 12:59:47 | 000,907,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sdengin2.dll
[2016.06.29 12:59:47 | 000,271,664 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fveapi.dll
[2016.06.29 12:59:47 | 000,246,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\scansetting.dll
[2016.06.29 12:59:47 | 000,179,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\schtasks.exe
[2016.06.29 12:59:47 | 000,175,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fvecpl.dll
[2016.06.29 12:59:47 | 000,136,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\scavengeui.dll
[2016.06.29 12:59:47 | 000,061,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\manage-bde.exe
[2016.06.29 12:59:45 | 000,126,464 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\BdeHdCfg.exe
[2016.06.29 12:59:45 | 000,057,344 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\repair-bde.exe
[2016.06.29 12:59:43 | 000,352,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwizeng.dll
[2016.06.29 12:59:43 | 000,118,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\uxlib.dll
[2016.06.29 12:59:43 | 000,007,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\spwizres.dll
[2016.06.29 12:59:42 | 000,127,488 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logoncli.dll
[2016.06.29 12:59:42 | 000,065,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CertPolEng.dll
[2016.06.29 12:59:41 | 000,316,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sharemediacpl.dll
[2016.06.29 12:59:41 | 000,257,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\srrstr.dll
[2016.06.29 12:59:40 | 000,412,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppwinob.dll
[2016.06.29 12:59:40 | 000,139,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rpchttp.dll
[2016.06.29 12:59:40 | 000,050,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\runonce.exe
[2016.06.29 12:59:39 | 000,220,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Ribbons.scr
[2016.06.29 12:59:39 | 000,210,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\recdisc.exe
[2016.06.29 12:59:39 | 000,182,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RelPost.exe
[2016.06.29 12:59:39 | 000,135,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\recovery.dll
[2016.06.29 12:59:39 | 000,117,760 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\rmcast.sys
[2016.06.29 12:59:39 | 000,098,816 | ---- | C] (Microsoft) -- D:\Windows\System32\Robocopy.exe
[2016.06.29 12:59:39 | 000,008,704 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\riched32.dll
[2016.06.29 12:59:38 | 000,271,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iprtrmgr.dll
[2016.06.29 12:59:38 | 000,268,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mprddm.dll
[2016.06.29 12:59:38 | 000,084,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cmstp.exe
[2016.06.29 12:59:37 | 000,242,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vpnike.dll
[2016.06.29 12:59:37 | 000,134,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\rdpudd.dll
[2016.06.29 12:59:37 | 000,033,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TsUsbGDCoInstaller.dll
[2016.06.29 12:59:37 | 000,025,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vpnikeapi.dll
[2016.06.29 12:59:37 | 000,015,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\rdpvideominiport.sys
[2016.06.29 12:59:37 | 000,011,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll
[2016.06.29 12:59:37 | 000,007,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe
[2016.06.29 12:59:36 | 001,115,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RacEngn.dll
[2016.06.29 12:59:35 | 000,870,912 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\XpsPrint.dll
[2016.06.29 12:59:35 | 000,509,440 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qedit.dll
[2016.06.29 12:59:35 | 000,155,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hgprint.dll
[2016.06.29 12:59:35 | 000,116,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prncache.dll
[2016.06.29 12:59:35 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\proquota.exe
[2016.06.29 12:59:35 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\profprov.dll
[2016.06.29 12:59:34 | 000,441,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\powercpl.dll
[2016.06.29 12:59:34 | 000,413,696 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PhotoScreensaver.scr
[2016.06.29 12:59:34 | 000,142,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\powercfg.cpl
[2016.06.29 12:59:34 | 000,115,712 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sppnp.dll
[2016.06.29 12:59:34 | 000,035,328 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pifmgr.dll
[2016.06.29 12:59:33 | 001,227,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wdc.dll
[2016.06.29 12:59:33 | 000,766,464 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wpccpl.dll
[2016.06.29 12:59:33 | 000,600,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PerfCenterCPL.dll
[2016.06.29 12:59:33 | 000,444,928 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wvc.dll
[2016.06.29 12:59:33 | 000,389,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sysmon.ocx
[2016.06.29 12:59:33 | 000,209,920 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PkgMgr.exe
[2016.06.29 12:59:33 | 000,189,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wdscore.dll
[2016.06.29 12:59:33 | 000,157,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\perfmon.exe
[2016.06.29 12:59:33 | 000,061,440 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PnPUnattend.exe
[2016.06.29 12:59:33 | 000,046,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pdhui.dll
[2016.06.29 12:59:33 | 000,034,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\unlodctr.exe
[2016.06.29 12:59:32 | 000,395,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prnfldr.dll
[2016.06.29 12:59:32 | 000,297,472 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ntprint.dll
[2016.06.29 12:59:31 | 000,324,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\puiobj.dll
[2016.06.29 12:59:31 | 000,082,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logman.exe
[2016.06.29 12:59:31 | 000,037,888 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\relog.exe
[2016.06.29 12:59:31 | 000,032,768 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PrintIsolationProxy.dll
[2016.06.29 12:59:27 | 000,120,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\prntvpt.dll
[2016.06.29 12:59:27 | 000,051,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PushPrinterConnections.exe
[2016.06.29 12:59:25 | 001,111,552 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\onexui.dll
[2016.06.29 12:59:25 | 000,218,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\OnLineIDCpl.dll
[2016.06.29 12:59:25 | 000,197,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ocsetup.exe
[2016.06.29 12:59:25 | 000,174,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ocsetapi.dll
[2016.06.29 12:59:25 | 000,109,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CscMig.dll
[2016.06.29 12:59:24 | 000,139,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cscobj.dll
[2016.06.29 12:59:24 | 000,067,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\asycfilt.dll
[2016.06.29 12:59:23 | 002,130,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\networkmap.dll
[2016.06.29 12:59:23 | 000,152,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ncsi.dll
[2016.06.29 12:59:23 | 000,098,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nslookup.exe
[2016.06.29 12:59:22 | 001,750,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\pnidui.dll
[2016.06.29 12:59:22 | 001,644,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netcenter.dll
[2016.06.29 12:59:22 | 000,656,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nshwfp.dll
[2016.06.29 12:59:22 | 000,240,000 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\netio.sys
[2016.06.29 12:59:22 | 000,216,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FWPUCLNT.DLL
[2016.06.29 12:59:22 | 000,161,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netjoin.dll
[2016.06.29 12:59:21 | 000,801,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\NaturalLanguage6.dll
[2016.06.29 12:59:21 | 000,142,336 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\net1.exe
[2016.06.29 12:59:21 | 000,078,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nci.dll
[2016.06.29 12:59:21 | 000,060,928 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ncryptui.dll
[2016.06.29 12:59:21 | 000,025,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netcfg.exe
[2016.06.29 12:59:19 | 000,400,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ipsmsnap.dll
[2016.06.29 12:59:19 | 000,167,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QSHVHOST.DLL
[2016.06.29 12:59:19 | 000,099,328 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QSVRMGMT.DLL
[2016.06.29 12:59:18 | 000,346,112 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nshipsec.dll
[2016.06.29 12:59:18 | 000,122,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iasrecst.dll
[2016.06.29 12:59:17 | 000,225,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netdiagfx.dll
[2016.06.29 12:59:17 | 000,172,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iasrad.dll
[2016.06.29 12:59:17 | 000,171,520 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QAGENT.DLL
[2016.06.29 12:59:17 | 000,078,848 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iasacct.dll
[2016.06.29 12:59:17 | 000,071,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\QCLIPROV.DLL
[2016.06.29 12:59:17 | 000,068,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\napdsnap.dll
[2016.06.29 12:59:16 | 000,221,184 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Mystify.scr
[2016.06.29 12:59:16 | 000,220,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mcbuilder.exe
[2016.06.29 12:59:15 | 000,592,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msftedit.dll
[2016.06.29 12:59:15 | 000,303,104 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msinfo32.exe
[2016.06.29 12:59:15 | 000,233,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msconfig.exe
[2016.06.29 12:59:15 | 000,226,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MSAC3ENC.DLL
[2016.06.29 12:59:14 | 002,146,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SyncCenter.dll
[2016.06.29 12:59:13 | 002,504,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMVCORE.DLL
[2016.06.29 12:59:13 | 002,202,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SensorsCpl.dll
[2016.06.29 12:59:13 | 001,624,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMPEncEn.dll
[2016.06.29 12:59:13 | 001,163,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfc42u.dll
[2016.06.29 12:59:13 | 000,954,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfc40.dll
[2016.06.29 12:59:13 | 000,954,288 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfc40u.dll
[2016.06.29 12:59:13 | 000,507,392 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmdrmdev.dll
[2016.06.29 12:59:13 | 000,436,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmdrmnet.dll
[2016.06.29 12:59:13 | 000,352,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpeffects.dll
[2016.06.29 12:59:13 | 000,296,448 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfds.dll
[2016.06.29 12:59:13 | 000,213,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MMDevAPI.dll
[2016.06.29 12:59:13 | 000,196,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mfreadwrite.dll
[2016.06.29 12:59:13 | 000,182,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpsrcwp.dll
[2016.06.29 12:59:13 | 000,176,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MFPlay.dll
[2016.06.29 12:59:13 | 000,144,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wmpps.dll
[2016.06.29 12:59:12 | 001,003,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WMNetMgr.dll
[2016.06.29 12:59:11 | 000,095,232 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\logagent.exe
[2016.06.29 12:59:10 | 000,266,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MediaMetadataHandler.dll
[2016.06.29 12:59:10 | 000,076,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mapistub.dll
[2016.06.29 12:59:10 | 000,076,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mapi32.dll
[2016.06.29 12:59:09 | 000,516,096 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\main.cpl
[2016.06.29 12:59:08 | 000,665,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AuxiliaryDisplayCpl.dll
[2016.06.29 12:59:08 | 000,520,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mcupdate_GenuineIntel.dll
[2016.06.29 12:59:07 | 000,778,240 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sqlsrv32.dll
[2016.06.29 12:59:07 | 000,170,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\PresentationSettings.exe
[2016.06.29 12:59:07 | 000,112,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AuxiliaryDisplayServices.dll
[2016.06.29 12:59:07 | 000,101,888 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\migisol.dll
[2016.06.29 12:59:07 | 000,040,960 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbcconf.dll
[2016.06.29 12:59:07 | 000,033,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vbisurf.ax
[2016.06.29 12:59:06 | 000,084,480 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\kstvtune.ax
[2016.06.29 12:59:06 | 000,048,640 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ksxbar.ax
[2016.06.29 12:59:03 | 000,941,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mblctr.exe
[2016.06.29 12:59:01 | 002,151,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mmcndmgr.dll
[2016.06.29 12:59:01 | 000,319,488 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbcjt32.dll
[2016.06.29 12:59:01 | 000,220,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\defaultlocationcpl.dll
[2016.06.29 12:59:01 | 000,176,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msorcl32.dll
[2016.06.29 12:59:01 | 000,163,840 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbctrac.dll
[2016.06.29 12:59:01 | 000,132,608 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MdSched.exe
[2016.06.29 12:59:01 | 000,122,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\odbccp32.dll
[2016.06.29 12:59:00 | 000,477,696 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\lpksetup.exe
[2016.06.29 12:59:00 | 000,061,952 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\lpremove.exe
[2016.06.29 12:59:00 | 000,041,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\luainstall.dll
[2016.06.29 12:58:59 | 000,011,776 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nrpsrv.dll
[2016.06.29 12:58:45 | 000,190,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\ks.sys
[2016.06.29 12:58:44 | 000,219,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iTVData.dll
[2016.06.29 12:58:44 | 000,107,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Kswdmcap.ax
[2016.06.29 12:58:44 | 000,086,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\isoburn.exe
[2016.06.29 12:58:43 | 000,345,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\intl.cpl
[2016.06.29 12:58:43 | 000,070,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MuiUnattend.exe
[2016.06.29 12:58:43 | 000,069,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\nlsbres.dll
[2016.06.29 12:58:43 | 000,011,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wshirda.dll
[2016.06.29 12:58:41 | 002,522,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dbgeng.dll
[2016.06.29 12:58:41 | 000,430,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imkr80.ime
[2016.06.29 12:58:41 | 000,392,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imapi2.dll
[2016.06.29 12:58:38 | 000,176,128 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ie4uinit.exe
[2016.06.29 12:58:38 | 000,114,688 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iesysprep.dll
[2016.06.29 12:58:38 | 000,096,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\inseng.dll
[2016.06.29 12:58:37 | 000,195,072 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msrating.dll
[2016.06.29 12:58:37 | 000,139,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ieUnatt.exe
[2016.06.29 12:58:37 | 000,034,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imgutil.dll
[2016.06.29 12:58:36 | 000,599,552 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msfeeds.dll
[2016.06.29 12:58:36 | 000,481,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mscms.dll
[2016.06.29 12:58:36 | 000,389,120 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iedkcs32.dll
[2016.06.29 12:58:36 | 000,386,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\html.iec
[2016.06.29 12:58:36 | 000,186,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iepeers.dll
[2016.06.29 12:58:36 | 000,083,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\RegisterIEPKEYs.exe
[2016.06.29 12:58:36 | 000,064,512 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msfeedsbs.dll
[2016.06.29 12:58:36 | 000,044,544 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\licmgr10.dll
[2016.06.29 12:58:36 | 000,012,800 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msfeedssync.exe
[2016.06.29 12:58:34 | 000,002,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\tzres.dll
[2016.06.29 12:58:33 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\kbdlk41a.dll
[2016.06.29 12:58:31 | 001,466,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\inetcpl.cpl
[2016.06.29 12:58:31 | 000,606,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mstime.dll
[2016.06.29 12:58:31 | 000,011,264 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\C_ISCII.DLL
[2016.06.29 12:58:31 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDSG.DLL
[2016.06.29 12:58:31 | 000,007,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDCZ1.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTUF.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDSF.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDPO.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDGR1.DLL
[2016.06.29 12:58:31 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDGKL.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDUS.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDUGHR1.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDMAORI.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDLT1.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINHIN.DLL
[2016.06.29 12:58:31 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDBULG.DLL
[2016.06.29 12:58:30 | 000,144,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iscsicli.exe
[2016.06.29 12:58:30 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\iscsium.dll
[2016.06.29 12:58:30 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\elsTrans.dll
[2016.06.29 12:58:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTUQ.DLL
[2016.06.29 12:58:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDNEPR.DLL
[2016.06.29 12:58:30 | 000,006,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINBEN.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTURME.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDTAJIK.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDMON.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINTEL.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINTAM.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINORI.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINMAR.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDINKAN.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDBLR.DLL
[2016.06.29 12:58:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDBASH.DLL
[2016.06.29 12:58:30 | 000,005,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\KBDGEO.DLL
[2016.06.29 12:58:28 | 000,732,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\imapi2fs.dll
[2016.06.29 12:58:28 | 000,312,832 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hgcpl.dll
[2016.06.29 12:58:28 | 000,158,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\itircl.dll
[2016.06.29 12:58:28 | 000,022,528 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\HotStartUserAgent.dll
[2016.06.29 12:58:27 | 000,744,448 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ActionCenter.dll
[2016.06.29 12:58:27 | 000,537,600 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ActionCenterCPL.dll
[2016.06.29 12:58:27 | 000,194,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\halmacpi.dll
[2016.06.29 12:58:27 | 000,194,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hal.dll
[2016.06.29 12:58:27 | 000,137,088 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\halacpi.dll
[2016.06.29 12:58:27 | 000,066,560 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\hbaapi.dll
[2016.06.29 12:58:19 | 002,576,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\gameux.dll
[2016.06.29 12:58:19 | 000,294,400 | ---- | C] (Adobe Systems Incorporated) -- D:\Windows\System32\atmfd.dll
[2016.06.29 12:58:19 | 000,070,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fontsub.dll
[2016.06.29 12:58:19 | 000,034,304 | ---- | C] (Adobe Systems) -- D:\Windows\System32\atmlib.dll
[2016.06.29 12:58:18 | 000,584,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\gpprefcl.dll
[2016.06.29 12:58:18 | 000,339,968 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\appmgr.dll
[2016.06.29 12:58:17 | 000,464,896 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\scrptadm.dll
[2016.06.29 12:58:17 | 000,438,272 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AdmTmpl.dll
[2016.06.29 12:58:17 | 000,042,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ftp.exe
[2016.06.29 12:58:15 | 000,124,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fde.dll
[2016.06.29 12:58:15 | 000,109,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\t2embed.dll
[2016.06.29 12:58:15 | 000,093,696 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- D:\Windows\System32\fms.dll
[2016.06.29 12:58:15 | 000,062,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\findstr.exe
[2016.06.29 12:58:15 | 000,059,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\fdeploy.dll
[2016.06.29 12:58:15 | 000,039,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FXSMON.dll
[2016.06.29 12:58:15 | 000,013,312 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\muifontsetup.dll
[2016.06.29 12:58:14 | 000,430,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FXSTIFF.dll
[2016.06.29 12:58:14 | 000,148,992 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ifsutil.dll
[2016.06.29 12:58:13 | 000,802,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WFS.exe
[2016.06.29 12:58:13 | 000,346,624 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\untfs.dll
[2016.06.29 12:58:13 | 000,190,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\FXSCOVER.exe
[2016.06.29 12:58:12 | 002,616,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\explorer.exe
[2016.06.29 12:58:12 | 001,493,504 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\ExplorerFrame.dll
[2016.06.29 12:58:12 | 000,288,256 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eudcedit.exe
[2016.06.29 12:58:11 | 001,063,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\werconcpl.dll
[2016.06.29 12:58:11 | 000,417,792 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdri.dll
[2016.06.29 12:58:11 | 000,414,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mspbda.dll
[2016.06.29 12:58:11 | 000,381,440 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wer.dll
[2016.06.29 12:58:11 | 000,320,512 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Faultrep.dll
[2016.06.29 12:58:11 | 000,128,512 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\EhStorAPI.dll
[2016.06.29 12:58:11 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WerFaultSecure.exe
[2016.06.29 12:58:10 | 000,312,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MCEWMDRMNDBootstrap.dll
[2016.06.29 12:58:10 | 000,205,312 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\efscore.dll
[2016.06.29 12:58:09 | 001,400,320 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DxpTaskSync.dll
[2016.06.29 12:58:09 | 000,630,784 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DXPTaskRingtone.dll
[2016.06.29 12:58:09 | 000,399,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DXP.dll
[2016.06.29 12:58:09 | 000,333,824 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dot3ui.dll
[2016.06.29 12:58:09 | 000,323,072 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drvstore.dll
[2016.06.29 12:58:09 | 000,242,176 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eapp3hst.dll
[2016.06.29 12:58:09 | 000,222,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eapphost.dll
[2016.06.29 12:58:09 | 000,115,200 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dot3msm.dll
[2016.06.29 12:58:09 | 000,094,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\eappgnui.dll
[2016.06.29 12:58:09 | 000,082,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dot3cfg.dll
[2016.06.29 12:58:08 | 001,828,352 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d9.dll
[2016.06.29 12:58:08 | 001,171,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d10warp.dll
[2016.06.29 12:58:08 | 001,040,384 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Display.dll
[2016.06.29 12:58:08 | 000,508,416 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dxgi.dll
[2016.06.29 12:58:08 | 000,276,480 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\diskraid.exe
[2016.06.29 12:58:08 | 000,133,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\diskpart.exe
[2016.06.29 12:58:08 | 000,109,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dnscmmc.dll
[2016.06.29 12:58:08 | 000,028,672 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dnscacheugc.exe
[2016.06.29 12:58:08 | 000,027,008 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\Diskdump.sys
[2016.06.29 12:58:08 | 000,002,560 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dpnaddr.dll
[2016.06.29 12:58:07 | 001,076,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DWrite.dll
[2016.06.29 12:58:07 | 000,522,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d11.dll
[2016.06.29 12:58:07 | 000,489,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d10level9.dll
[2016.06.29 12:58:07 | 000,219,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d3d10_1core.dll
[2016.06.29 12:58:07 | 000,070,656 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\amstream.dll
[2016.06.29 12:58:07 | 000,056,832 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\vfwwdm32.dll
[2016.06.29 12:58:07 | 000,036,352 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mciqtz32.dll
[2016.06.29 12:58:06 | 000,283,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qdv.dll
[2016.06.29 12:58:06 | 000,199,680 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mpg2splt.ax
[2016.06.29 12:58:06 | 000,190,976 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\qcap.dll
[2016.06.29 12:58:06 | 000,030,720 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdmo.dll
[2016.06.29 12:58:05 | 001,188,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DiagCpl.dll
[2016.06.29 12:58:05 | 000,739,840 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\d2d1.dll
[2016.06.29 12:58:05 | 000,586,752 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dfrgui.exe
[2016.06.29 12:58:05 | 000,484,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DeviceCenter.dll
[2016.06.29 12:58:05 | 000,257,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dpx.dll
[2016.06.29 12:58:05 | 000,211,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\DevicePairingFolder.dll
[2016.06.29 12:58:05 | 000,210,432 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dxdiagn.dll
[2016.06.29 12:58:05 | 000,128,000 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\desk.cpl
[2016.06.29 12:58:05 | 000,113,152 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\setupugc.exe
[2016.06.29 12:58:05 | 000,030,208 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dsauth.dll
[2016.06.29 12:58:03 | 001,027,584 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\IMJP10.IME
[2016.06.29 12:58:03 | 000,097,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dwmredir.dll
[2016.06.29 12:58:02 | 001,371,136 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\dwmcore.dll
[2016.06.29 12:57:59 | 000,567,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WUDFx.dll
[2016.06.29 12:57:59 | 000,162,304 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WUDFPlatform.dll
[2016.06.29 12:57:58 | 000,039,936 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WUDFCoinstaller.dll
[2016.06.29 12:57:57 | 000,429,056 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\localsec.dll
[2016.06.29 12:57:55 | 001,160,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\OpcServices.dll
[2016.06.29 12:57:55 | 000,679,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\autoconv.exe
[2016.06.29 12:57:55 | 000,641,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\CPFilters.dll
[2016.06.29 12:57:55 | 000,271,360 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\conhost.exe
[2016.06.29 12:57:55 | 000,117,248 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\netid.dll
[2016.06.29 12:57:55 | 000,042,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\mimefilt.dll
[2016.06.29 12:57:54 | 001,066,496 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msdtctm.dll
[2016.06.29 12:57:54 | 000,302,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cmd.exe
[2016.06.29 12:57:54 | 000,077,824 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\olethk32.dll
[2016.06.29 12:57:53 | 001,712,640 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\xpsservices.dll
[2016.06.29 12:57:53 | 000,863,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\diagperf.dll
[2016.06.29 12:57:53 | 000,805,376 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\cdosys.dll
[2016.06.29 12:57:53 | 000,776,192 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\calc.exe
[2016.06.29 12:57:51 | 001,555,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\certmgr.dll
[2016.06.29 12:57:51 | 000,878,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\Bubbles.scr
[2016.06.29 12:57:51 | 000,283,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\XpsGdiConverter.dll
[2016.06.29 12:57:51 | 000,135,168 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\XpsRasterService.dll
[2016.06.29 12:57:50 | 000,692,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bthprops.cpl
[2016.06.29 12:57:50 | 000,041,984 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\browcli.dll
[2016.06.29 12:57:49 | 002,217,856 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bootres.dll
[2016.06.29 12:57:49 | 000,750,080 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\sdcpl.dll
[2016.06.29 12:57:49 | 000,428,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\biocpl.dll
[2016.06.29 12:57:49 | 000,186,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bitsadmin.exe
[2016.06.29 12:57:49 | 000,146,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bcdboot.exe
[2016.06.29 12:57:49 | 000,133,632 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bcdsrv.dll
[2016.06.29 12:57:49 | 000,065,024 | ---- | C] (Microsoft Corporation) -- D:\Windows\bfsvc.exe
[2016.06.29 12:57:49 | 000,052,736 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\BlbEvents.dll
[2016.06.29 12:57:49 | 000,044,032 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\basesrv.dll
[2016.06.29 12:57:49 | 000,019,456 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bitsperf.dll
[2016.06.29 12:57:47 | 000,295,424 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\bcdedit.exe
[2016.06.29 12:57:45 | 000,762,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\azroles.dll
[2016.06.29 12:57:45 | 000,658,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\autofmt.exe
[2016.06.29 12:57:45 | 000,314,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SndVol.exe
[2016.06.29 12:57:45 | 000,314,368 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\azroleui.dll
[2016.06.29 12:57:45 | 000,220,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SndVolSSO.dll
[2016.06.29 12:57:45 | 000,146,944 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\autoplay.dll
[2016.06.29 12:57:45 | 000,028,160 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\AzSqlExt.dll
[2016.06.29 12:57:44 | 003,727,872 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\accessibilitycpl.dll
[2016.06.29 12:57:44 | 000,031,744 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wdiasqmmodule.dll
[2016.06.29 12:57:43 | 000,321,536 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aepdu.dll
[2016.06.29 12:57:43 | 000,302,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aeinv.dll
[2016.06.29 12:57:43 | 000,292,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\WindowsAnytimeUpgradeResults.exe
[2016.06.29 12:57:43 | 000,186,880 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\adsldp.dll
[2016.06.29 12:57:43 | 000,119,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\aitagent.exe
[2016.06.29 12:57:43 | 000,045,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\acppage.dll
[2016.06.29 12:57:41 | 000,152,064 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\SmartcardCredentialProvider.dll
[2016.06.29 12:57:39 | 000,055,808 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\drivers\hidclass.sys
[2016.06.29 12:57:38 | 000,859,648 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\OobeFldr.dll
[2016.06.29 12:57:38 | 000,301,568 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\srchadmin.dll
[2016.06.29 12:14:50 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Opera Software
[2016.06.29 12:14:50 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Opera Software
[2016.06.29 12:13:32 | 000,000,000 | ---D | C] -- D:\Program Files\Opera
[2016.06.29 12:04:16 | 028,043,832 | ---- | C] (Opera Software ASA) -- D:\Users\pepa\Desktop\Opera_21.0.1432.67_Seznam_Setup.exe
[2016.06.28 22:18:12 | 000,000,000 | ---D | C] -- D:\Users\pepa\Desktop\SygicTruck13.5.0
[2016.06.28 19:44:30 | 000,000,000 | ---D | C] -- D:\Users\pepa\Desktop\SG_14.3.1
[2016.06.28 19:35:39 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\uTorrent
[2016.06.28 16:40:58 | 000,000,000 | ---D | C] -- D:\Users\pepa\Desktop\All voices Sygic
[2016.06.27 18:41:46 | 000,000,000 | -H-D | C] -- D:\ProgramData\CanonBJ
[2016.06.27 18:41:42 | 000,000,000 | -H-D | C] -- D:\Windows\System32\CanonIJ Uninstaller Information
[2016.06.27 18:41:42 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon iP4200
[2016.06.27 18:41:37 | 000,197,632 | ---- | C] (CANON INC.) -- D:\Windows\System32\CNMLM78.DLL
[2016.06.27 18:41:33 | 000,000,000 | -H-D | C] -- D:\Program Files\CanonBJ
[2016.06.27 10:44:45 | 000,000,000 | ---D | C] -- D:\Users\pepa\Tracing
[2016.06.27 10:44:12 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Skype
[2016.06.27 10:43:58 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2016.06.27 10:43:57 | 000,000,000 | R--D | C] -- D:\Program Files\Skype
[2016.06.27 10:43:57 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\Skype
[2016.06.27 10:43:52 | 000,000,000 | ---D | C] -- D:\ProgramData\Skype
[2016.06.27 10:11:42 | 000,000,000 | ---D | C] -- D:\ProgramData\McAfee Security Scan
[2016.06.27 10:11:40 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
[2016.06.27 10:11:40 | 000,000,000 | ---D | C] -- D:\Program Files\McAfee Security Scan
[2016.06.27 10:11:40 | 000,000,000 | ---D | C] -- D:\ProgramData\McAfee
[2016.06.27 10:10:54 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Macromedia
[2016.06.27 10:10:54 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Macromedia
[2016.06.27 10:10:54 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Adobe
[2016.06.27 10:10:44 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Adobe
[2016.06.27 10:10:26 | 000,000,000 | ---D | C] -- D:\Program Files\Seznam.cz
[2016.06.27 10:09:59 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Seznam.cz
[2016.06.27 10:09:58 | 000,000,000 | ---D | C] -- D:\Program Files\Adobe Flash Player
[2016.06.27 10:09:53 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Programs
[2016.06.27 10:06:01 | 000,796,352 | ---- | C] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerApp.exe
[2016.06.27 10:06:01 | 000,142,528 | ---- | C] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerCPLApp.cpl
[2016.06.27 10:05:57 | 000,000,000 | ---D | C] -- D:\Windows\System32\Macromed
[2016.06.27 09:44:35 | 000,123,904 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\poqexec.exe
[2016.06.27 07:57:42 | 000,577,048 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wuapi.dll
[2016.06.27 07:57:42 | 000,088,576 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wudriver.dll
[2016.06.27 07:57:42 | 000,035,864 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\wups.dll
[2016.06.27 00:13:58 | 000,000,000 | ---D | C] -- D:\Windows\Panther
[2016.06.27 00:13:31 | 000,000,000 | ---D | C] -- D:\Windows\System32\OEM
[2016.06.27 00:04:23 | 000,000,000 | ---D | C] -- D:\Windows.old.000
[2016.06.26 17:59:01 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2016.06.26 17:58:33 | 000,032,592 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\msonpmon.dll
[2016.06.26 17:57:31 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Works
[2016.06.26 17:57:08 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Visual Studio
[2016.06.26 17:57:08 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\DESIGNER
[2016.06.26 17:56:46 | 000,000,000 | ---D | C] -- D:\Windows\PCHEALTH
[2016.06.26 17:56:46 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft.NET
[2016.06.26 17:55:18 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Visual Studio 8
[2016.06.26 17:54:39 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Microsoft Help
[2016.06.26 17:54:37 | 000,000,000 | ---D | C] -- D:\Program Files\Microsoft Office
[2016.06.26 17:54:36 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft Help
[2016.06.26 17:53:35 | 000,000,000 | RH-D | C] -- D:\MSOCache
[2016.06.26 17:52:09 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\WinRAR
[2016.06.26 17:51:51 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2016.06.26 17:51:51 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2016.06.26 17:51:48 | 000,000,000 | ---D | C] -- D:\Program Files\WinRAR
[2016.06.26 16:54:06 | 000,400,040 | ---- | C] (Microsoft Corporation) -- D:\Windows\System32\MpSigStub.exe
[2016.06.26 16:51:52 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Mozilla
[2016.06.26 16:51:52 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Mozilla
[2016.06.26 16:51:38 | 000,000,000 | ---D | C] -- D:\Program Files\Mozilla Maintenance Service
[2016.06.26 16:51:33 | 000,000,000 | ---D | C] -- D:\Program Files\Mozilla Firefox
[2016.06.26 16:37:49 | 002,324,216 | ---- | C] (PS Media s.r.o.) -- D:\Windows\System32\ssins.exe
[2016.06.26 16:36:05 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\CEF
[2016.06.26 16:35:25 | 000,035,096 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswKbd.sys
[2016.06.26 16:32:46 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\AVAST Software
[2016.06.26 16:32:43 | 000,000,000 | ---D | C] -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
[2016.06.26 16:32:29 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\AV
[2016.06.26 16:32:21 | 000,222,056 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswVmm.sys
[2016.06.26 16:32:21 | 000,118,152 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswStm.sys
[2016.06.26 16:32:20 | 000,438,296 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswsp.sys
[2016.06.26 16:32:20 | 000,060,424 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswRvrt.sys
[2016.06.26 16:32:19 | 000,091,680 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswMonFlt.sys
[2016.06.26 16:32:19 | 000,091,232 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswRdr2.sys
[2016.06.26 16:32:19 | 000,034,008 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswHwid.sys
[2016.06.26 16:32:18 | 000,816,304 | ---- | C] (AVAST Software) -- D:\Windows\System32\drivers\aswSnx.sys
[2016.06.26 16:32:05 | 000,921,280 | ---- | C] (Microsoft Corporation) -- D:\Windows\ucrtbase.dll
[2016.06.26 16:32:05 | 000,319,248 | ---- | C] (AVAST Software) -- D:\Windows\System32\aswBoot.exe
[2016.06.26 16:31:57 | 000,053,208 | ---- | C] (AVAST Software) -- D:\Windows\avastSS.scr
[2016.06.26 16:30:22 | 000,000,000 | ---D | C] -- D:\Program Files\AVAST Software
[2016.06.26 16:29:48 | 000,000,000 | ---D | C] -- D:\ProgramData\AVAST Software
[2016.06.26 16:26:03 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Diagnostics
[2016.06.26 16:21:38 | 000,859,136 | ---- | C] (Realtek Semiconductor Corporation ) -- D:\Windows\System32\drivers\rtl8192se.sys
[2016.06.26 16:21:38 | 000,000,000 | ---D | C] -- D:\Program Files\InstallShield Installation Information
[2016.06.26 16:21:34 | 000,000,000 | ---D | C] -- D:\Program Files\Realtek WLAN Driver
[2016.06.26 16:21:10 | 000,000,000 | -HSD | C] -- D:\Windows\Installer
[2016.06.26 16:20:56 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\WinBatch
[2016.06.26 15:59:29 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2016.06.26 15:59:29 | 000,000,000 | R--D | C] -- D:\Users\pepa\Searches
[2016.06.26 15:59:29 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2016.06.26 15:59:18 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Identities
[2016.06.26 15:59:15 | 000,000,000 | R--D | C] -- D:\Users\pepa\Contacts
[2016.06.26 15:57:42 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\VirtualStore
[2016.06.26 15:57:38 | 000,000,000 | --SD | C] -- D:\Users\pepa\AppData\Roaming\Microsoft
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Videos
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Saved Games
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Pictures
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Music
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Links
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Favorites
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Downloads
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Documents
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\Desktop
[2016.06.26 15:57:38 | 000,000,000 | R--D | C] -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\AppData\Local\Temporary Internet Files
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Šablony
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Soubory cookie
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\SendTo
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Poslední
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Okolní tiskárny
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Okolní síť
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Documents\Obrázky
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Nabídka Start
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Local Settings
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Documents\Hudba
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\AppData\Local\History
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Documents\Filmy
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Dokumenty
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\Data aplikací
[2016.06.26 15:57:38 | 000,000,000 | -HSD | C] -- D:\Users\pepa\AppData\Local\Data aplikací
[2016.06.26 15:57:38 | 000,000,000 | -H-D | C] -- D:\Users\pepa\AppData
[2016.06.26 15:57:38 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Temp
[2016.06.26 15:57:38 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Local\Microsoft
[2016.06.26 15:57:38 | 000,000,000 | ---D | C] -- D:\Users\pepa\AppData\Roaming\Media Center Programs
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Šablony
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Plocha
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\Users\Public\Documents\Obrázky
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Oblíbené položky
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Nabídka Start
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\Users\Public\Documents\Hudba
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\Users\Public\Documents\Filmy
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Dokumenty
[2016.06.26 15:56:34 | 000,000,000 | -HSD | C] -- D:\ProgramData\Data aplikací
[2016.06.26 14:17:58 | 000,000,000 | ---D | C] -- D:\Windows\SoftwareDistribution
[2016.06.26 14:14:37 | 000,000,000 | ---D | C] -- D:\Windows\Prefetch

========== Files - Modified Within 30 Days ==========

[2016.07.06 15:48:00 | 000,000,914 | ---- | M] () -- D:\Windows\tasks\Adobe Flash Player Updater.job
[2016.07.06 08:41:20 | 000,668,376 | ---- | M] () -- D:\Windows\System32\perfh005.dat
[2016.07.06 08:41:20 | 000,653,724 | ---- | M] () -- D:\Windows\System32\perfh009.dat
[2016.07.06 08:41:20 | 000,141,004 | ---- | M] () -- D:\Windows\System32\perfc005.dat
[2016.07.06 08:41:20 | 000,121,596 | ---- | M] () -- D:\Windows\System32\perfc009.dat
[2016.07.06 07:54:45 | 000,000,512 | ---- | M] () -- D:\PhysicalMBR.bin
[2016.07.06 07:42:24 | 000,597,473 | ---- | M] () -- D:\Users\pepa\Desktop\OTL.rar
[2016.07.06 07:34:38 | 000,067,584 | --S- | M] () -- D:\Windows\bootstat.dat
[2016.07.05 22:37:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\Users\pepa\Desktop\OTL.exe
[2016.07.05 10:04:56 | 000,010,016 | -H-- | M] () -- D:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2016.07.05 10:04:56 | 000,010,016 | -H-- | M] () -- D:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2016.07.05 07:25:32 | 1606,578,176 | -HS- | M] () -- D:\hiberfil.sys
[2016.07.05 07:12:44 | 000,000,000 | ---- | M] () -- D:\Windows\System32\last.dump
[2016.07.02 03:36:41 | 000,413,336 | ---- | M] () -- D:\Windows\System32\FNTCACHE.DAT
[2016.07.02 03:11:20 | 000,152,576 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\msclmd.dll
[2016.06.30 13:52:43 | 000,007,602 | ---- | M] () -- D:\Users\pepa\AppData\Local\Resmon.ResmonCfg
[2016.06.29 17:25:13 | 000,001,908 | ---- | M] () -- D:\Windows\diagwrn.xml
[2016.06.29 17:25:13 | 000,001,908 | ---- | M] () -- D:\Windows\diagerr.xml
[2016.06.29 17:19:15 | 000,002,058 | ---- | M] () -- D:\Users\pepa\Desktop\Soubor Windows Compatibility Report.htm
[2016.06.29 12:14:48 | 000,001,095 | ---- | M] () -- D:\Users\Public\Desktop\Opera.lnk
[2016.06.29 12:09:32 | 028,043,832 | ---- | M] (Opera Software ASA) -- D:\Users\pepa\Desktop\Opera_21.0.1432.67_Seznam_Setup.exe
[2016.06.28 13:52:48 | 000,013,723 | ---- | M] () -- D:\Users\pepa\Desktop\fffffff.png
[2016.06.27 16:32:28 | 000,438,296 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswsp.sys
[2016.06.27 10:48:29 | 000,796,352 | ---- | M] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerApp.exe
[2016.06.27 10:48:29 | 000,142,528 | ---- | M] (Adobe Systems Incorporated) -- D:\Windows\System32\FlashPlayerCPLApp.cpl
[2016.06.27 10:43:58 | 000,002,719 | ---- | M] () -- D:\Users\Public\Desktop\Skype.lnk
[2016.06.27 10:11:40 | 000,002,107 | ---- | M] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2016.06.26 20:35:12 | 000,000,000 | -H-- | M] () -- D:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2016.06.26 17:59:01 | 000,002,741 | ---- | M] () -- D:\Users\pepa\Desktop\Microsoft Office Word 2007.lnk
[2016.06.26 17:59:01 | 000,002,659 | ---- | M] () -- D:\Users\pepa\Desktop\Microsoft Office Excel 2007.lnk
[2016.06.26 16:51:41 | 000,001,125 | ---- | M] () -- D:\Users\pepa\Desktop\Mozilla Firefox.lnk
[2016.06.26 16:37:50 | 000,000,079 | ---- | M] () -- D:\Windows\System32\ssinstall-uninstall.bat
[2016.06.26 16:37:49 | 002,324,216 | ---- | M] (PS Media s.r.o.) -- D:\Windows\System32\ssins.exe
[2016.06.26 16:35:50 | 000,001,122 | ---- | M] () -- D:\Users\Public\Desktop\Avast SafeZone Browser.lnk
[2016.06.26 16:35:25 | 000,035,096 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswKbd.sys
[2016.06.26 16:32:43 | 000,002,083 | ---- | M] () -- D:\Users\Public\Desktop\Avast Free Antivirus.lnk
[2016.06.26 16:31:59 | 000,222,056 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswVmm.sys
[2016.06.26 16:31:59 | 000,118,152 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswStm.sys
[2016.06.26 16:31:59 | 000,091,680 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswMonFlt.sys
[2016.06.26 16:31:59 | 000,091,232 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswRdr2.sys
[2016.06.26 16:31:59 | 000,060,424 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswRvrt.sys
[2016.06.26 16:31:59 | 000,034,008 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswHwid.sys
[2016.06.26 16:31:57 | 000,921,280 | ---- | M] (Microsoft Corporation) -- D:\Windows\ucrtbase.dll
[2016.06.26 16:31:57 | 000,319,248 | ---- | M] (AVAST Software) -- D:\Windows\System32\aswBoot.exe
[2016.06.26 16:31:57 | 000,053,208 | ---- | M] (AVAST Software) -- D:\Windows\avastSS.scr
[2016.06.26 16:31:54 | 000,816,304 | ---- | M] (AVAST Software) -- D:\Windows\System32\drivers\aswSnx.sys
[2016.06.26 16:20:33 | 000,000,000 | -H-- | M] () -- D:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2016.06.26 14:19:15 | 000,068,220 | ---- | M] () -- D:\Windows\System32\license.rtf
[2016.06.26 14:17:41 | 000,000,000 | ---- | M] () -- D:\Windows\ativpsrm.bin
[2016.06.26 10:28:20 | 268,435,456 | -HS- | M] () -- D:\swapfile.sys
[2016.06.25 17:43:13 | 000,301,056 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\EOSNotify.exe
[2016.06.25 11:45:09 | 000,619,841 | ---- | M] () -- D:\Users\pepa\Desktop\IMG_20160625_114508.jpg
[2016.06.25 11:45:01 | 000,657,217 | ---- | M] () -- D:\Users\pepa\Desktop\IMG_20160625_114500.jpg
[2016.06.13 19:31:08 | 000,400,040 | ---- | M] (Microsoft Corporation) -- D:\Windows\System32\MpSigStub.exe

========== Files Created - No Company Name ==========

[2016.07.06 07:54:45 | 000,000,512 | ---- | C] () -- D:\PhysicalMBR.bin
[2016.07.06 07:42:19 | 000,597,473 | ---- | C] () -- D:\Users\pepa\Desktop\OTL.rar
[2016.07.02 15:24:04 | 000,000,003 | ---- | C] () -- D:\Windows\System32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2016.06.30 23:43:10 | 000,000,000 | ---- | C] () -- D:\Windows\System32\last.dump
[2016.06.30 13:52:43 | 000,007,602 | ---- | C] () -- D:\Users\pepa\AppData\Local\Resmon.ResmonCfg
[2016.06.29 17:19:15 | 000,002,058 | ---- | C] () -- D:\Users\pepa\Desktop\Soubor Windows Compatibility Report.htm
[2016.06.29 17:07:27 | 000,001,908 | ---- | C] () -- D:\Windows\diagwrn.xml
[2016.06.29 17:07:27 | 000,001,908 | ---- | C] () -- D:\Windows\diagerr.xml
[2016.06.29 12:59:47 | 000,010,429 | ---- | C] () -- D:\Windows\System32\ScavengeSpace.xml
[2016.06.29 12:59:42 | 000,146,852 | ---- | C] () -- D:\Windows\System32\systemsf.ebd
[2016.06.29 12:59:37 | 000,080,896 | ---- | C] () -- D:\Windows\System32\RDVGHelper.exe
[2016.06.29 12:59:35 | 000,105,559 | ---- | C] () -- D:\Windows\System32\RacRules.xml
[2016.06.29 12:59:33 | 000,066,048 | ---- | C] () -- D:\Windows\System32\PrintBrmUi.exe
[2016.06.29 12:14:48 | 000,001,095 | ---- | C] () -- D:\Users\Public\Desktop\Opera.lnk
[2016.06.28 18:55:55 | 000,619,841 | ---- | C] () -- D:\Users\pepa\Desktop\IMG_20160625_114508.jpg
[2016.06.28 18:55:52 | 000,657,217 | ---- | C] () -- D:\Users\pepa\Desktop\IMG_20160625_114500.jpg
[2016.06.28 13:41:31 | 000,013,723 | ---- | C] () -- D:\Users\pepa\Desktop\fffffff.png
[2016.06.27 10:43:58 | 000,002,719 | ---- | C] () -- D:\Users\Public\Desktop\Skype.lnk
[2016.06.27 10:11:40 | 000,002,107 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
[2016.06.27 10:06:02 | 000,000,914 | ---- | C] () -- D:\Windows\tasks\Adobe Flash Player Updater.job
[2016.06.26 20:35:12 | 000,000,000 | -H-- | C] () -- D:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2016.06.26 17:59:01 | 000,002,741 | ---- | C] () -- D:\Users\pepa\Desktop\Microsoft Office Word 2007.lnk
[2016.06.26 17:59:01 | 000,002,659 | ---- | C] () -- D:\Users\pepa\Desktop\Microsoft Office Excel 2007.lnk
[2016.06.26 16:51:41 | 000,001,125 | ---- | C] () -- D:\Users\pepa\Desktop\Mozilla Firefox.lnk
[2016.06.26 16:37:50 | 000,000,079 | ---- | C] () -- D:\Windows\System32\ssinstall-uninstall.bat
[2016.06.26 16:35:51 | 000,001,122 | ---- | C] () -- D:\Users\Public\Desktop\Avast SafeZone Browser.lnk
[2016.06.26 16:35:51 | 000,001,122 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
[2016.06.26 16:32:43 | 000,002,083 | ---- | C] () -- D:\Users\Public\Desktop\Avast Free Antivirus.lnk
[2016.06.26 16:20:33 | 000,000,000 | -H-- | C] () -- D:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2016.06.26 15:59:33 | 000,001,421 | ---- | C] () -- D:\Users\pepa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2016.06.26 14:19:08 | 000,001,326 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2016.06.26 14:19:00 | 000,001,345 | ---- | C] () -- D:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2016.06.26 14:17:41 | 000,000,000 | ---- | C] () -- D:\Windows\ativpsrm.bin

========== ZeroAccess Check ==========

[2009.07.14 06:42:31 | 000,000,227 | RHS- | M] () -- D:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.02.27 06:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.07.14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2016.06.26 16:32:46 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\AVAST Software
[2016.07.02 18:51:45 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\BitTorrent
[2016.06.29 12:14:50 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\Opera Software
[2016.07.05 07:34:13 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\Seznam.cz
[2016.06.29 13:03:05 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\uTorrent
[2016.06.26 16:20:56 | 000,000,000 | ---D | M] -- D:\Users\pepa\AppData\Roaming\WinBatch

========== Purity Check ==========

< End of report >

Re: PC se seká

Napsal: 06 črc 2016 17:10
od Rudy
Stále to tam není. Provedu tedy čištění pouze z toho, co tu mám. Pokud mi něco unikne, není to má vina.

Znovu spustte OTL jako spravce
Do spodniho okna vlozte nasledujici text:
:OTL
E - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-4054228679-4199362140-2160021134-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
[2016.06.26 16:51:59 | 000,000,000 | ---D | M] (No name found) -- D:\Users\pepa\AppData\Roaming\Mozilla\Extensions
[2016.06.27 17:03:34 | 000,000,000 | ---D | M] (No name found) -- D:\Users\pepa\AppData\Roaming\Mozilla\Firefox\Profiles\3cbf9wik.default\extensions
[2016.06.27 17:03:34 | 000,000,000 | ---D | M] (No name found) -- D:\Users\pepa\AppData\Roaming\Mozilla\Firefox\Profiles\3cbf9wik.default\extensions
O13 - gopher Prefix: missing
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:files
D:\ProgramData\McAfee Security Scan
D:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
D:\Program Files\McAfee Security Scan
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[RESETHOSTS]
[Purity]
[CreateRestorePoint]
Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu se objevi novy log, ten sem dejte.

Re: PC se seká

Napsal: 06 črc 2016 18:12
od tajfun
Po restartu se ukázalo toto:

Files\Folders moved on Reboot...
File move failed. D:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
File move failed. D:\Windows\temp\SafeZone Installer\safezone_installer_20160626163537.log scheduled to be moved on reboot.
File move failed. D:\Windows\temp\SafeZone Installer\safezone_installer_20160626163544.log scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Re: PC se seká

Napsal: 06 črc 2016 18:31
od Rudy
Njn, nefuguje to regulérně, protože nebyl kompletní log. Změnilo se něco?

Re: PC se seká

Napsal: 06 črc 2016 18:37
od tajfun
Tak je to lepší , určitě jde rychleji ... ten log jsem opravdu nakopíroval celej jsem to několikrát kontroloval ...

Re: PC se seká

Napsal: 06 črc 2016 19:21
od Rudy
Takže v pořádku?
Všechny časy jsou v UTC+01:00
Stránka 2 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz