VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Podezření na spyware

https://forum.viry.cz:443/viewtopic.php?t=133188

Stránka 1 z 1

Podezření na spyware

Napsal: 05 říj 2013 04:54
od OZuna
Dobrý den, dneska se mi začalo stávat že na ploše začla problikávat nějaká ikonka s irelevantním nánzvem něco ve stylu blblrlt a nemá žádný obrázek jenom čas od času blikne, a mám pocit že tímto velice zpomaluje muj počítač. Myslím že se začla objevovat po tom co jsem si nainstaloval Daemon tool lite, ale to není jisté, jenom vím že se mi s ním nainstaloval nějaký program co měl ikonku kouzelnického klobouku a ten dělal trošku problémy tak jsem ho odstrarnil, více už bohužel nevím. Avast bohužel nic nenašel takže je to asi zakopané někde v registrech, tak prosím o kontrolu logu, děkuji.
Logfile of random's system information tool 1.09 (written by random/random)
Run by Ondřej at 2013-10-05 05:53:40
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 304 GB (64%) free of 477 GB
Total RAM: 3519 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 5:53:42, on 5.10.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16686)
Boot mode: Normal

Running processes:
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Ondřej.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: (no name) - {D5FEC983-01DB-414a-9456-AF95AC9ED7B5} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\RunOnce: [SeznamInstall-uninstall:699abbf461f264a5faebfafa90854427] "C:\Users\ONDEJ~1\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe" -c "C:\Users\Ondřej\AppData\Roaming\Seznam.cz"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 6780 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
atieclxx
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\system32\Dwm.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\Explorer.EXE
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="1564.0.961224505\738773961" --supports-dual-gpus=false --gpu-driver-bug-workarounds=0,9,19 --gpu-vendor-id=0x1002 --gpu-device-id=0x673e --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=13.152.0.0 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group1 pct:25 m29stable:r6 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_79/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --instant-process --enable-threaded-compositing --disable-html-notifications --channel="1564.1.320235344\1665618766" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group1 pct:25 m29stable:r6 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_79/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/" --extension-process --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="1564.2.1734167100\1167160366" /prefetch:673131151
"C:\Windows\system32\taskmgr.exe" /1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="ForceCompositingMode/thread/InfiniteCache/No/InstantExtended/Group1 pct:25 m29stable:r6 use_remote_ntp_on_startup:1 espv:210 suppress_on_srp:1/NewMenuStyle/Compact2/OmniboxStopTimer/Standard/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictor/Disabled/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group6/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_79/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-50-Percent/group_01/" --renderer-print-preview --enable-threaded-compositing --disable-html-notifications --channel="1564.23.1671708859\1247051140" /prefetch:673131151
"taskhost.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\NOTEPAD.EXE" C:\rsit\info.txt
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Ondřej\Desktop\RSITx64.exe"

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-08-30 245592]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-01 462248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-08-30 201784]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D5FEC983-01DB-414a-9456-AF95AC9ED7B5}]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-01 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-08-30 245592]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-08-30 201784]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 1832760]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2013-07-03 3673184]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SeznamInstall-uninstall:699abbf461f264a5faebfafa90854427"=C:\Users\ONDEJ~1\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe [2013-10-05 534528]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-08-30 766208]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2013-08-30 4858968]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"Driver Genius"= []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-10-05 05:53:05 ----D---- C:\Program Files\trend micro
2013-10-05 05:53:04 ----D---- C:\rsit
2013-10-05 05:31:12 ----D---- C:\Program Files (x86)\Intel
2013-10-05 05:31:12 ----A---- C:\Windows\SYSWOW64\CSVer.dll
2013-10-05 05:30:48 ----D---- C:\Intel
2013-10-05 05:27:54 ----D---- C:\ProgramData\DriverGenius
2013-10-05 05:27:21 ----D---- C:\Program Files (x86)\Driver-Soft
2013-10-05 04:17:07 ----D---- C:\Users\Ondřej\AppData\Roaming\Foxit Software
2013-10-05 03:26:55 ----D---- C:\ProgramData\Codemasters
2013-10-05 03:24:26 ----A---- C:\Windows\SYSWOW64\mkl_vml_p4.dll
2013-10-05 03:24:25 ----A---- C:\Windows\SYSWOW64\mkl_vml_p3.dll
2013-10-05 03:24:25 ----A---- C:\Windows\SYSWOW64\mkl_vml_def.dll
2013-10-05 03:24:25 ----A---- C:\Windows\SYSWOW64\mkl_p4.dll
2013-10-05 03:24:24 ----A---- C:\Windows\SYSWOW64\mkl_p3.dll
2013-10-05 03:24:24 ----A---- C:\Windows\SYSWOW64\mkl_lapack64.dll
2013-10-05 03:24:23 ----A---- C:\Windows\SYSWOW64\mkl_lapack32.dll
2013-10-05 03:24:23 ----A---- C:\Windows\SYSWOW64\mkl_def.dll
2013-10-05 03:24:23 ----A---- C:\Windows\SYSWOW64\libguide40.dll
2013-10-05 03:23:38 ----D---- C:\Windows\SYSWOW64\xlive
2013-10-05 03:23:38 ----D---- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2013-10-05 03:23:12 ----RA---- C:\Windows\SYSWOW64\tmpD752.tmp
2013-10-05 03:23:12 ----D---- C:\Program Files (x86)\OpenAL
2013-10-05 03:23:11 ----RA---- C:\Windows\SYSWOW64\tmp9730.tmp
2013-10-05 03:20:16 ----RA---- C:\Windows\SYSWOW64\tmp970F.tmp
2013-10-05 03:04:00 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-10-05 03:00:47 ----D---- C:\Program Files (x86)\Seznam.cz
2013-10-05 03:00:15 ----D---- C:\Users\Ondřej\AppData\Roaming\Seznam.cz
2013-10-05 02:58:58 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2013-10-05 02:58:52 ----D---- C:\Users\Ondřej\AppData\Roaming\DAEMON Tools Lite
2013-10-05 02:58:49 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2013-10-05 02:57:59 ----D---- C:\ProgramData\DAEMON Tools Lite
2013-10-04 03:40:36 ----D---- C:\Program Files (x86)\Alawarhry.cz
2013-10-04 02:33:51 ----D---- C:\Users\Ondřej\AppData\Roaming\Artifex Mundi
2013-10-04 02:33:16 ----D---- C:\ProgramData\AWEM
2013-10-04 02:33:15 ----D---- C:\ProgramData\AlawarWrapper
2013-10-04 02:33:04 ----D---- C:\Program Files (x86)\Hry.cz
2013-10-01 20:29:08 ----D---- C:\ProgramData\Oracle
2013-10-01 20:29:06 ----D---- C:\ProgramData\Sun
2013-10-01 20:28:41 ----A---- C:\Windows\SYSWOW64\deployJava1.dll
2013-10-01 20:28:40 ----A---- C:\Windows\SYSWOW64\npDeployJava1.dll
2013-10-01 20:28:40 ----A---- C:\Windows\SYSWOW64\javaws.exe
2013-10-01 20:28:30 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-10-01 20:28:30 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-10-01 20:28:30 ----A---- C:\Windows\SYSWOW64\java.exe
2013-10-01 20:28:01 ----D---- C:\Program Files (x86)\Java
2013-10-01 01:54:26 ----D---- C:\Users\Ondřej\AppData\Roaming\BSplayer Pro
2013-10-01 01:54:26 ----D---- C:\Users\Ondřej\AppData\Roaming\BSplayer
2013-10-01 01:54:25 ----D---- C:\Program Files (x86)\Webteh
2013-09-29 02:04:21 ----D---- C:\Users\Ondřej\AppData\Roaming\uTorrent
2013-09-28 17:01:01 ----D---- C:\Program Files (x86)\Ubisoft
2013-09-28 16:34:48 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2013-09-28 16:34:48 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2013-09-28 16:34:48 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2013-09-28 16:34:48 ----A---- C:\Windows\system32\XAudio2_7.dll
2013-09-28 16:34:48 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2013-09-28 16:34:48 ----A---- C:\Windows\system32\xactengine3_7.dll
2013-09-28 16:34:47 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2013-09-28 16:34:47 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2013-09-28 16:34:45 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2013-09-28 16:34:45 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2013-09-28 16:34:45 ----A---- C:\Windows\system32\d3dx11_43.dll
2013-09-28 16:34:45 ----A---- C:\Windows\system32\d3dcsx_43.dll
2013-09-28 16:34:43 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2013-09-28 16:34:43 ----A---- C:\Windows\system32\d3dx10_43.dll
2013-09-28 16:34:42 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2013-09-28 16:34:42 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2013-09-28 16:34:42 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2013-09-28 16:34:42 ----A---- C:\Windows\system32\XAudio2_6.dll
2013-09-28 16:34:42 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2013-09-28 16:34:42 ----A---- C:\Windows\system32\D3DX9_43.dll
2013-09-28 16:34:41 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2013-09-28 16:34:41 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2013-09-28 16:34:41 ----A---- C:\Windows\system32\xactengine3_6.dll
2013-09-28 16:34:41 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2013-09-28 16:34:40 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2013-09-28 16:34:40 ----A---- C:\Windows\system32\XAudio2_5.dll
2013-09-28 16:34:39 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2013-09-28 16:34:39 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2013-09-28 16:34:39 ----A---- C:\Windows\system32\xactengine3_5.dll
2013-09-28 16:34:39 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2013-09-28 16:34:37 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2013-09-28 16:34:37 ----A---- C:\Windows\system32\d3dcsx_42.dll
2013-09-28 16:34:36 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2013-09-28 16:34:36 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2013-09-28 16:34:36 ----A---- C:\Windows\system32\d3dx11_42.dll
2013-09-28 16:34:36 ----A---- C:\Windows\system32\d3dx10_42.dll
2013-09-28 16:34:35 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2013-09-28 16:34:35 ----A---- C:\Windows\system32\D3DX9_42.dll
2013-09-28 16:34:34 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2013-09-28 16:34:34 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2013-09-28 16:34:34 ----A---- C:\Windows\system32\d3dx10_41.dll
2013-09-28 16:34:34 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2013-09-28 16:34:33 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2013-09-28 16:34:33 ----A---- C:\Windows\system32\D3DX9_41.dll
2013-09-28 16:34:32 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2013-09-28 16:34:32 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2013-09-28 16:34:32 ----A---- C:\Windows\system32\XAudio2_4.dll
2013-09-28 16:34:32 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2013-09-28 16:34:31 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2013-09-28 16:34:31 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2013-09-28 16:34:31 ----A---- C:\Windows\system32\xactengine3_4.dll
2013-09-28 16:34:31 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2013-09-28 16:34:29 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2013-09-28 16:34:29 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2013-09-28 16:34:29 ----A---- C:\Windows\system32\d3dx10_40.dll
2013-09-28 16:34:29 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2013-09-28 16:34:28 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2013-09-28 16:34:28 ----A---- C:\Windows\system32\D3DX9_40.dll
2013-09-28 16:34:27 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2013-09-28 16:34:27 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2013-09-28 16:34:27 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2013-09-28 16:34:27 ----A---- C:\Windows\system32\XAudio2_3.dll
2013-09-28 16:34:27 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2013-09-28 16:34:27 ----A---- C:\Windows\system32\xactengine3_3.dll
2013-09-28 16:34:26 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2013-09-28 16:34:26 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2013-09-28 16:34:26 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2013-09-28 16:34:26 ----A---- C:\Windows\system32\XAudio2_2.dll
2013-09-28 16:34:26 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2013-09-28 16:34:26 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2013-09-28 16:34:25 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2013-09-28 16:34:25 ----A---- C:\Windows\system32\xactengine3_2.dll
2013-09-28 16:34:24 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2013-09-28 16:34:24 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2013-09-28 16:34:24 ----A---- C:\Windows\system32\d3dx10_39.dll
2013-09-28 16:34:24 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2013-09-28 16:34:23 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2013-09-28 16:34:23 ----A---- C:\Windows\system32\D3DX9_39.dll
2013-09-28 16:34:22 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2013-09-28 16:34:22 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2013-09-28 16:34:22 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2013-09-28 16:34:22 ----A---- C:\Windows\system32\XAudio2_1.dll
2013-09-28 16:34:22 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2013-09-28 16:34:22 ----A---- C:\Windows\system32\xactengine3_1.dll
2013-09-28 16:34:21 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2013-09-28 16:34:21 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2013-09-28 16:34:20 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2013-09-28 16:34:20 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2013-09-28 16:34:20 ----A---- C:\Windows\system32\d3dx10_38.dll
2013-09-28 16:34:20 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2013-09-28 16:34:18 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2013-09-28 16:34:18 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2013-09-28 16:34:18 ----A---- C:\Windows\system32\XAudio2_0.dll
2013-09-28 16:34:18 ----A---- C:\Windows\system32\D3DX9_38.dll
2013-09-28 16:34:17 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2013-09-28 16:34:17 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2013-09-28 16:34:17 ----A---- C:\Windows\system32\xactengine3_0.dll
2013-09-28 16:34:17 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2013-09-28 16:34:16 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2013-09-28 16:34:16 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2013-09-28 16:34:16 ----A---- C:\Windows\system32\d3dx10_37.dll
2013-09-28 16:34:16 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2013-09-28 16:34:14 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2013-09-28 16:34:14 ----A---- C:\Windows\system32\D3DX9_37.dll
2013-09-28 16:34:13 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2013-09-28 16:34:13 ----A---- C:\Windows\system32\xactengine2_10.dll
2013-09-28 16:34:12 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2013-09-28 16:34:12 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2013-09-28 16:34:12 ----A---- C:\Windows\system32\d3dx10_36.dll
2013-09-28 16:34:12 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2013-09-28 16:34:10 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2013-09-28 16:34:10 ----A---- C:\Windows\system32\d3dx9_36.dll
2013-09-28 16:34:09 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2013-09-28 16:34:09 ----A---- C:\Windows\system32\xactengine2_9.dll
2013-09-28 16:34:08 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2013-09-28 16:34:08 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2013-09-28 16:34:08 ----A---- C:\Windows\system32\d3dx10_35.dll
2013-09-28 16:34:08 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2013-09-28 16:34:06 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2013-09-28 16:34:06 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2013-09-28 16:34:06 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2013-09-28 16:34:06 ----A---- C:\Windows\system32\xactengine2_8.dll
2013-09-28 16:34:06 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2013-09-28 16:34:06 ----A---- C:\Windows\system32\d3dx9_35.dll
2013-09-28 16:34:05 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2013-09-28 16:34:05 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2013-09-28 16:34:05 ----A---- C:\Windows\system32\d3dx10_34.dll
2013-09-28 16:34:05 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2013-09-28 16:34:03 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2013-09-28 16:34:03 ----A---- C:\Windows\system32\xinput1_3.dll
2013-09-28 16:34:03 ----A---- C:\Windows\system32\d3dx9_34.dll
2013-09-28 16:34:02 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2013-09-28 16:34:02 ----A---- C:\Windows\system32\xactengine2_7.dll
2013-09-28 16:34:01 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2013-09-28 16:34:01 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2013-09-28 16:34:01 ----A---- C:\Windows\system32\d3dx10_33.dll
2013-09-28 16:34:01 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2013-09-28 16:34:00 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2013-09-28 16:34:00 ----A---- C:\Windows\system32\d3dx9_33.dll
2013-09-28 16:33:59 ----A---- C:\Windows\SYSWOW64\xactengine2_6.dll
2013-09-28 16:33:59 ----A---- C:\Windows\system32\xactengine2_6.dll
2013-09-28 16:33:58 ----A---- C:\Windows\SYSWOW64\xactengine2_5.dll
2013-09-28 16:33:58 ----A---- C:\Windows\system32\xactengine2_5.dll
2013-09-28 16:33:57 ----A---- C:\Windows\SYSWOW64\d3dx10.dll
2013-09-28 16:33:57 ----A---- C:\Windows\system32\d3dx10.dll
2013-09-28 16:33:56 ----A---- C:\Windows\SYSWOW64\d3dx9_32.dll
2013-09-28 16:33:56 ----A---- C:\Windows\system32\d3dx9_32.dll
2013-09-28 16:33:55 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2013-09-28 16:33:55 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2013-09-28 16:33:55 ----A---- C:\Windows\system32\xactengine2_4.dll
2013-09-28 16:33:55 ----A---- C:\Windows\system32\x3daudio1_1.dll
2013-09-28 16:33:54 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2013-09-28 16:33:54 ----A---- C:\Windows\system32\d3dx9_31.dll
2013-09-28 16:33:53 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2013-09-28 16:33:53 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2013-09-28 16:33:53 ----A---- C:\Windows\system32\xinput1_2.dll
2013-09-28 16:33:53 ----A---- C:\Windows\system32\xactengine2_3.dll
2013-09-28 16:33:52 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2013-09-28 16:33:52 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2013-09-28 16:33:52 ----A---- C:\Windows\system32\xinput1_1.dll
2013-09-28 16:33:52 ----A---- C:\Windows\system32\xactengine2_2.dll
2013-09-28 16:33:51 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2013-09-28 16:33:51 ----A---- C:\Windows\system32\xactengine2_1.dll
2013-09-28 16:33:41 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2013-09-28 16:33:41 ----A---- C:\Windows\system32\d3dx9_30.dll
2013-09-28 16:33:39 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2013-09-28 16:33:39 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2013-09-28 16:33:39 ----A---- C:\Windows\system32\xactengine2_0.dll
2013-09-28 16:33:39 ----A---- C:\Windows\system32\x3daudio1_0.dll
2013-09-28 16:33:37 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2013-09-28 16:33:37 ----A---- C:\Windows\system32\d3dx9_29.dll
2013-09-28 16:33:34 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2013-09-28 16:33:34 ----A---- C:\Windows\system32\d3dx9_28.dll
2013-09-28 16:33:32 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2013-09-28 16:33:32 ----A---- C:\Windows\system32\d3dx9_27.dll
2013-09-28 16:33:29 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2013-09-28 16:33:29 ----A---- C:\Windows\system32\d3dx9_26.dll
2013-09-28 16:33:26 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2013-09-28 16:33:26 ----A---- C:\Windows\system32\d3dx9_25.dll
2013-09-28 16:33:23 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2013-09-28 16:33:23 ----A---- C:\Windows\system32\d3dx9_24.dll
2013-09-28 06:19:33 ----D---- C:\Users\Ondřej\AppData\Roaming\Macromedia
2013-09-28 01:14:19 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2013-09-28 01:14:18 ----A---- C:\Windows\system32\drivers\aswSP.sys
2013-09-28 01:14:15 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2013-09-28 01:14:15 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2013-09-28 01:14:14 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2013-09-28 01:14:13 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2013-09-28 01:14:11 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2013-09-28 01:14:11 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2013-09-28 01:12:49 ----A---- C:\Windows\avastSS.scr
2013-09-28 01:00:42 ----SD---- C:\Windows\SYSWOW64\Microsoft
2013-09-27 21:08:14 ----D---- C:\Windows\SYSWOW64\Wat
2013-09-27 21:08:14 ----D---- C:\Windows\system32\Wat
2013-09-27 21:05:00 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-09-27 21:05:00 ----A---- C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-09-27 21:05:00 ----A---- C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-09-27 21:04:56 ----A---- C:\Windows\system32\drivers\TsUsbGD.sys
2013-09-27 21:04:56 ----A---- C:\Windows\system32\drivers\terminpt.sys
2013-09-27 21:04:56 ----A---- C:\Windows\system32\drivers\rdpvideominiport.sys
2013-09-27 21:04:55 ----A---- C:\Windows\system32\drivers\TsUsbFlt.sys
2013-09-27 21:04:49 ----A---- C:\Windows\system32\wksprtPS.dll
2013-09-27 21:04:49 ----A---- C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-09-27 21:04:48 ----A---- C:\Windows\SYSWOW64\wksprtPS.dll
2013-09-27 21:04:48 ----A---- C:\Windows\SYSWOW64\tsgqec.dll
2013-09-27 21:04:48 ----A---- C:\Windows\SYSWOW64\rdpendp_winip.dll
2013-09-27 21:04:48 ----A---- C:\Windows\SYSWOW64\MsRdpWebAccess.dll
2013-09-27 21:04:48 ----A---- C:\Windows\SYSWOW64\aaclient.dll
2013-09-27 21:04:48 ----A---- C:\Windows\system32\tsgqec.dll
2013-09-27 21:04:48 ----A---- C:\Windows\system32\aaclient.dll
2013-09-27 21:04:47 ----A---- C:\Windows\SYSWOW64\mstsc.exe
2013-09-27 21:04:47 ----A---- C:\Windows\system32\wksprt.exe
2013-09-27 21:04:47 ----A---- C:\Windows\system32\TSWbPrxy.exe
2013-09-27 21:04:47 ----A---- C:\Windows\system32\rdpudd.dll
2013-09-27 21:04:47 ----A---- C:\Windows\system32\rdpendp_winip.dll
2013-09-27 21:04:47 ----A---- C:\Windows\system32\mstsc.exe
2013-09-27 21:04:47 ----A---- C:\Windows\system32\MsRdpWebAccess.dll
2013-09-27 21:04:46 ----A---- C:\Windows\SYSWOW64\mstscax.dll
2013-09-27 21:04:46 ----A---- C:\Windows\system32\rdpcorets.dll
2013-09-27 21:04:45 ----A---- C:\Windows\system32\mstscax.dll
2013-09-27 21:01:31 ----A---- C:\Windows\SYSWOW64\dhcpcsvc6.dll
2013-09-27 21:01:31 ----A---- C:\Windows\SYSWOW64\dhcpcore6.dll
2013-09-27 21:01:30 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2013-09-27 21:01:30 ----A---- C:\Windows\system32\dhcpcore6.dll
2013-09-27 21:01:01 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2013-09-27 21:01:01 ----A---- C:\Windows\SYSWOW64\schannel.dll
2013-09-27 21:01:01 ----A---- C:\Windows\SYSWOW64\secur32.dll
2013-09-27 21:01:01 ----A---- C:\Windows\system32\schannel.dll
2013-09-27 21:01:00 ----A---- C:\Windows\system32\lsasrv.dll
2013-09-27 21:01:00 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2013-09-27 21:01:00 ----A---- C:\Windows\system32\drivers\cng.sys
2013-09-27 21:00:53 ----A---- C:\Windows\SYSWOW64\nlaapi.dll
2013-09-27 21:00:53 ----A---- C:\Windows\SYSWOW64\netevent.dll
2013-09-27 21:00:53 ----A---- C:\Windows\SYSWOW64\netcorehc.dll
2013-09-27 21:00:53 ----A---- C:\Windows\SYSWOW64\ncsi.dll
2013-09-27 21:00:51 ----A---- C:\Windows\system32\nlasvc.dll
2013-09-27 21:00:51 ----A---- C:\Windows\system32\nlaapi.dll
2013-09-27 21:00:51 ----A---- C:\Windows\system32\netevent.dll
2013-09-27 21:00:51 ----A---- C:\Windows\system32\netcorehc.dll
2013-09-27 21:00:51 ----A---- C:\Windows\system32\ncsi.dll
2013-09-27 21:00:51 ----A---- C:\Windows\system32\iphlpsvc.dll
2013-09-27 21:00:51 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2013-09-27 20:56:34 ----A---- C:\Windows\system32\OxpsConverter.exe
2013-09-27 20:55:34 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2013-09-27 20:55:33 ----A---- C:\Windows\SYSWOW64\gameux.dll
2013-09-27 20:55:32 ----A---- C:\Windows\system32\Wpc.dll
2013-09-27 20:55:31 ----A---- C:\Windows\system32\gameux.dll
2013-09-27 20:34:32 ----A---- C:\Windows\system32\perfi005.dat
2013-09-27 20:34:29 ----A---- C:\Windows\system32\perfh005.dat
2013-09-27 20:34:29 ----A---- C:\Windows\system32\perfd005.dat
2013-09-27 20:34:29 ----A---- C:\Windows\system32\perfc005.dat
2013-09-27 20:30:01 ----D---- C:\Windows\SYSWOW64\cs
2013-09-27 20:29:55 ----D---- C:\Windows\SYSWOW64\XPSViewer
2013-09-27 20:29:55 ----D---- C:\Windows\SYSWOW64\drivers\cs-CZ
2013-09-27 20:29:55 ----D---- C:\Windows\cs-CZ
2013-09-27 20:29:53 ----D---- C:\Windows\system32\cs
2013-09-27 20:29:40 ----D---- C:\Windows\system32\drivers\cs-CZ
2013-09-27 20:19:54 ----A---- C:\Windows\system32\Wdfres.dll
2013-09-27 20:19:54 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2013-09-27 20:19:54 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2013-09-27 20:05:39 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2013-09-27 20:05:39 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2013-09-27 20:05:38 ----A---- C:\Windows\system32\WUDFSvc.dll
2013-09-27 20:05:38 ----A---- C:\Windows\system32\WUDFPlatform.dll
2013-09-27 20:05:35 ----A---- C:\Windows\system32\WUDFx.dll
2013-09-27 20:05:35 ----A---- C:\Windows\system32\WUDFHost.exe
2013-09-27 20:05:35 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2013-09-27 19:52:03 ----A---- C:\Windows\system32\tquery.dll
2013-09-27 19:52:03 ----A---- C:\Windows\system32\SearchIndexer.exe
2013-09-27 19:52:03 ----A---- C:\Windows\system32\mssrch.dll
2013-09-27 19:52:02 ----A---- C:\Windows\SYSWOW64\tquery.dll
2013-09-27 19:52:02 ----A---- C:\Windows\SYSWOW64\mssrch.dll
2013-09-27 19:52:02 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2013-09-27 19:52:01 ----A---- C:\Windows\SYSWOW64\SearchProtocolHost.exe
2013-09-27 19:52:01 ----A---- C:\Windows\SYSWOW64\SearchIndexer.exe
2013-09-27 19:52:01 ----A---- C:\Windows\SYSWOW64\mssph.dll
2013-09-27 19:52:01 ----A---- C:\Windows\system32\SearchFilterHost.exe
2013-09-27 19:52:01 ----A---- C:\Windows\system32\mssvp.dll
2013-09-27 19:52:01 ----A---- C:\Windows\system32\mssphtb.dll
2013-09-27 19:52:01 ----A---- C:\Windows\system32\mssph.dll
2013-09-27 19:52:00 ----A---- C:\Windows\SYSWOW64\SearchFilterHost.exe
2013-09-27 19:52:00 ----A---- C:\Windows\SYSWOW64\mssvp.dll
2013-09-27 19:52:00 ----A---- C:\Windows\SYSWOW64\mssphtb.dll
2013-09-27 19:52:00 ----A---- C:\Windows\SYSWOW64\msscntrs.dll
2013-09-27 19:52:00 ----A---- C:\Windows\system32\msscntrs.dll
2013-09-27 19:51:42 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2013-09-27 19:51:42 ----A---- C:\Windows\system32\WindowsCodecs.dll
2013-09-27 19:51:37 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2013-09-27 19:51:37 ----A---- C:\Windows\system32\ntshrui.dll
2013-09-27 19:51:36 ----A---- C:\Windows\system32\drivers\ataport.sys
2013-09-27 19:51:26 ----A---- C:\Windows\SYSWOW64\cryptdlg.dll
2013-09-27 19:51:26 ----A---- C:\Windows\system32\cryptdlg.dll
2013-09-27 19:51:20 ----A---- C:\Windows\system32\drivers\fvevol.sys
2013-09-27 19:51:19 ----A---- C:\Windows\SYSWOW64\xmllite.dll
2013-09-27 19:51:19 ----A---- C:\Windows\system32\xmllite.dll
2013-09-27 19:51:18 ----A---- C:\Windows\system32\drivers\ndis.sys
2013-09-27 19:51:17 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2013-09-27 19:51:13 ----A---- C:\Windows\explorer.exe
2013-09-27 19:51:12 ----A---- C:\Windows\SYSWOW64\explorer.exe
2013-09-27 19:51:11 ----A---- C:\Windows\system32\wwansvc.dll
2013-09-27 19:51:11 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-09-27 19:51:08 ----A---- C:\Windows\SYSWOW64\usp10.dll
2013-09-27 19:51:08 ----A---- C:\Windows\system32\usp10.dll
2013-09-27 19:51:07 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2013-09-27 19:51:07 ----A---- C:\Windows\system32\qdvd.dll
2013-09-27 19:51:03 ----A---- C:\Windows\SYSWOW64\esent.dll
2013-09-27 19:51:03 ----A---- C:\Windows\system32\fsutil.exe
2013-09-27 19:51:03 ----A---- C:\Windows\system32\esent.dll
2013-09-27 19:51:03 ----A---- C:\Windows\system32\drivers\amdxata.sys
2013-09-27 19:51:02 ----A---- C:\Windows\SYSWOW64\fsutil.exe
2013-09-27 19:51:02 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2013-09-27 19:51:02 ----A---- C:\Windows\system32\drivers\storport.sys
2013-09-27 19:51:02 ----A---- C:\Windows\system32\drivers\nvstor.sys
2013-09-27 19:51:02 ----A---- C:\Windows\system32\drivers\nvraid.sys
2013-09-27 19:51:02 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2013-09-27 19:51:02 ----A---- C:\Windows\system32\drivers\amdsata.sys
2013-09-27 19:50:57 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2013-09-27 19:50:57 ----A---- C:\Windows\system32\drivers\usbport.sys
2013-09-27 19:50:57 ----A---- C:\Windows\system32\drivers\usbohci.sys
2013-09-27 19:50:57 ----A---- C:\Windows\system32\drivers\usbhub.sys
2013-09-27 19:50:57 ----A---- C:\Windows\system32\drivers\usbehci.sys
2013-09-27 19:50:57 ----A---- C:\Windows\system32\drivers\usbd.sys
2013-09-27 19:50:57 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2013-09-27 19:50:56 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2013-09-27 19:50:51 ----A---- C:\Windows\system32\srcore.dll
2013-09-27 19:50:50 ----A---- C:\Windows\SYSWOW64\srclient.dll
2013-09-27 19:50:49 ----A---- C:\Windows\system32\profsvc.dll
2013-09-27 19:50:48 ----A---- C:\Windows\SYSWOW64\prevhost.exe
2013-09-27 19:50:48 ----A---- C:\Windows\system32\prevhost.exe
2013-09-27 19:45:33 ----A---- C:\Windows\SYSWOW64\msi.dll
2013-09-27 19:45:33 ----A---- C:\Windows\system32\msi.dll
2013-09-27 19:43:26 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2013-09-27 19:43:26 ----A---- C:\Windows\system32\DWrite.dll
2013-09-27 19:43:24 ----A---- C:\Windows\system32\spoolsv.exe
2013-09-27 19:43:23 ----A---- C:\Windows\splwow64.exe
2013-09-27 19:36:13 ----D---- C:\Users\Ondřej\AppData\Roaming\TeamViewer
2013-09-27 19:24:40 ----D---- C:\ProgramData\Yandex
2013-09-27 18:50:33 ----D---- C:\Windows\system32\MRT
2013-09-27 18:50:27 ----A---- C:\Windows\system32\MRT.exe
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\wextract.exe
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\url.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\SetIEInstalledDate.exe
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\pngfilt.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\occache.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\msrating.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\msls31.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\mshtmler.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\mshta.exe
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\inseng.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\imgutil.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\iexpress.exe
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\iesysprep.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\ieapfltr.dat
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\IEAdvpack.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\icardie.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\elshyph.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2013-09-27 18:22:53 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2013-09-27 18:22:53 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2013-09-27 18:22:53 ----A---- C:\Windows\system32\elshyph.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\wininet.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\wextract.exe
2013-09-27 18:22:52 ----A---- C:\Windows\system32\webcheck.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\vbscript.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\urlmon.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\url.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2013-09-27 18:22:52 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2013-09-27 18:22:52 ----A---- C:\Windows\system32\pngfilt.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\occache.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\msrating.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\msls31.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\mshtmlmedia.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\mshtmler.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\mshtmled.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\mshtml.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\mshta.exe
2013-09-27 18:22:52 ----A---- C:\Windows\system32\msfeedssync.exe
2013-09-27 18:22:52 ----A---- C:\Windows\system32\msfeedsbs.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\msfeeds.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\licmgr10.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\jsproxy.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\jscript9.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\jscript.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\inseng.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\imgutil.dll

Re: Podezření na spyware

Napsal: 05 říj 2013 04:54
od OZuna
pokračování logu ze rsitu:
2013-09-27 18:22:52 ----A---- C:\Windows\system32\iexpress.exe
2013-09-27 18:22:52 ----A---- C:\Windows\system32\ieUnatt.exe
2013-09-27 18:22:52 ----A---- C:\Windows\system32\ieui.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\iesysprep.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\iesetup.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\iertutil.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\iernonce.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\iepeers.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\ieframe.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\iedkcs32.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\ieapfltr.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\ieapfltr.dat
2013-09-27 18:22:52 ----A---- C:\Windows\system32\IEAdvpack.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\ie4uinit.exe
2013-09-27 18:22:52 ----A---- C:\Windows\system32\icardie.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\dxtrans.dll
2013-09-27 18:22:52 ----A---- C:\Windows\system32\dxtmsft.dll
2013-09-27 18:15:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-09-27 18:15:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-09-27 18:15:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-09-27 18:15:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-27 18:15:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-09-27 18:15:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-09-27 18:15:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-09-27 18:15:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-09-27 18:15:04 ----AH---- C:\Windows\SYSWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-09-27 18:15:04 ----AH---- C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-09-27 18:15:04 ----AH---- C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-09-27 18:15:04 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-09-27 18:15:04 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-09-27 18:15:04 ----AH---- C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-09-27 18:15:04 ----AH---- C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-09-27 18:15:04 ----AH---- C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-09-27 18:15:04 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-09-27 18:15:04 ----AH---- C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-09-27 18:15:04 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2013-09-27 18:15:04 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2013-09-27 18:15:04 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-09-27 18:15:04 ----A---- C:\Windows\SYSWOW64\WindowsCodecsExt.dll
2013-09-27 18:15:04 ----A---- C:\Windows\SYSWOW64\UIAnimation.dll
2013-09-27 18:15:04 ----A---- C:\Windows\SYSWOW64\msmpeg2vdec.dll
2013-09-27 18:15:04 ----A---- C:\Windows\SYSWOW64\dxgi.dll
2013-09-27 18:15:04 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2013-09-27 18:15:04 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2013-09-27 18:15:04 ----A---- C:\Windows\SYSWOW64\d3d10core.dll
2013-09-27 18:15:04 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2013-09-27 18:15:04 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2013-09-27 18:15:04 ----A---- C:\Windows\SYSWOW64\d3d10.dll
2013-09-27 18:15:04 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2013-09-27 18:15:04 ----A---- C:\Windows\system32\XpsPrint.dll
2013-09-27 18:15:04 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2013-09-27 18:15:04 ----A---- C:\Windows\system32\WMPhoto.dll
2013-09-27 18:15:04 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2013-09-27 18:15:04 ----A---- C:\Windows\system32\UIAnimation.dll
2013-09-27 18:15:04 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2013-09-27 18:15:04 ----A---- C:\Windows\system32\FntCache.dll
2013-09-27 18:15:04 ----A---- C:\Windows\system32\dxgi.dll
2013-09-27 18:15:04 ----A---- C:\Windows\system32\d3d10warp.dll
2013-09-27 18:15:04 ----A---- C:\Windows\system32\d3d10level9.dll
2013-09-27 18:15:04 ----A---- C:\Windows\system32\d3d10core.dll
2013-09-27 18:15:04 ----A---- C:\Windows\system32\d3d10_1core.dll
2013-09-27 18:15:04 ----A---- C:\Windows\system32\d3d10_1.dll
2013-09-27 18:15:04 ----A---- C:\Windows\system32\d3d10.dll
2013-09-27 18:15:04 ----A---- C:\Windows\system32\d2d1.dll
2013-09-27 18:12:57 ----A---- C:\Windows\SYSWOW64\d3d11.dll
2013-09-27 18:12:57 ----A---- C:\Windows\system32\d3d11.dll
2013-09-27 18:05:14 ----A---- C:\Windows\system32\browserchoice.exe
2013-09-27 17:53:50 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2013-09-27 17:53:50 ----A---- C:\Windows\system32\atmlib.dll
2013-09-27 17:53:49 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2013-09-27 17:53:49 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2013-09-27 17:53:49 ----A---- C:\Windows\system32\fontsub.dll
2013-09-27 17:53:49 ----A---- C:\Windows\system32\atmfd.dll
2013-09-27 17:49:42 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2013-09-27 17:49:42 ----A---- C:\Windows\system32\imagehlp.dll
2013-09-27 17:49:42 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2013-09-27 17:49:40 ----A---- C:\Windows\SYSWOW64\wmi.dll
2013-09-27 17:49:40 ----A---- C:\Windows\system32\wmi.dll
2013-09-27 17:44:10 ----D---- C:\Program Files (x86)\Steam
2013-09-27 17:41:19 ----A---- C:\Windows\system32\ntoskrnl.exe
2013-09-27 17:41:18 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2013-09-27 17:41:17 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2013-09-27 17:41:17 ----A---- C:\Windows\system32\ntdll.dll
2013-09-27 17:41:17 ----A---- C:\Windows\system32\KernelBase.dll
2013-09-27 17:41:17 ----A---- C:\Windows\system32\kernel32.dll
2013-09-27 17:41:16 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2013-09-27 17:41:16 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-09-27 17:41:16 ----A---- C:\Windows\system32\wow64win.dll
2013-09-27 17:41:16 ----A---- C:\Windows\system32\wow64.dll
2013-09-27 17:41:16 ----A---- C:\Windows\system32\winsrv.dll
2013-09-27 17:41:16 ----A---- C:\Windows\system32\conhost.exe
2013-09-27 17:41:15 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-09-27 17:41:15 ----A---- C:\Windows\system32\smss.exe
2013-09-27 17:41:15 ----A---- C:\Windows\system32\ntvdm64.dll
2013-09-27 17:41:15 ----A---- C:\Windows\system32\csrsrv.dll
2013-09-27 17:41:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-27 17:41:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-09-27 17:41:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-27 17:41:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-09-27 17:41:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-27 17:41:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-27 17:41:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-09-27 17:41:14 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-09-27 17:41:14 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-27 17:41:14 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-09-27 17:41:14 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-09-27 17:41:14 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-09-27 17:41:14 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-09-27 17:41:14 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-09-27 17:41:14 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-09-27 17:41:14 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-09-27 17:41:14 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-09-27 17:41:14 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-09-27 17:41:14 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-09-27 17:41:14 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-09-27 17:41:14 ----A---- C:\Windows\system32\wow64cpu.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-09-27 17:41:13 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-09-27 17:41:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-09-27 17:41:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-09-27 17:41:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-09-27 17:41:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-09-27 17:41:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-09-27 17:41:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-27 17:41:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-09-27 17:41:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-09-27 17:41:12 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-09-27 17:41:12 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-09-27 17:41:12 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-09-27 17:41:12 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-09-27 17:41:12 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-09-27 17:41:12 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-09-27 17:41:12 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-09-27 17:41:12 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2013-09-27 17:41:12 ----A---- C:\Windows\system32\apisetschema.dll
2013-09-27 17:41:11 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-09-27 17:41:11 ----A---- C:\Windows\SYSWOW64\user.exe
2013-09-27 17:40:36 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-09-27 17:40:36 ----A---- C:\Windows\system32\consent.exe
2013-09-27 17:40:36 ----A---- C:\Windows\system32\authui.dll
2013-09-27 17:40:35 ----A---- C:\Windows\system32\appinfo.dll
2013-09-27 17:40:04 ----A---- C:\Windows\system32\shell32.dll
2013-09-27 17:40:03 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-09-27 17:40:02 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-09-27 17:40:02 ----A---- C:\Windows\system32\shdocvw.dll
2013-09-27 17:39:45 ----A---- C:\Windows\SYSWOW64\wintrust.dll
2013-09-27 17:39:45 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll
2013-09-27 17:39:45 ----A---- C:\Windows\SYSWOW64\cryptnet.dll
2013-09-27 17:39:45 ----A---- C:\Windows\SYSWOW64\crypt32.dll
2013-09-27 17:39:45 ----A---- C:\Windows\system32\wintrust.dll
2013-09-27 17:39:45 ----A---- C:\Windows\system32\cryptsvc.dll
2013-09-27 17:39:45 ----A---- C:\Windows\system32\cryptnet.dll
2013-09-27 17:39:45 ----A---- C:\Windows\system32\crypt32.dll
2013-09-27 17:38:26 ----A---- C:\Windows\SYSWOW64\tzres.dll
2013-09-27 17:38:26 ----A---- C:\Windows\system32\tzres.dll
2013-09-27 17:38:07 ----A---- C:\Windows\system32\sspisrv.dll
2013-09-27 17:38:07 ----A---- C:\Windows\system32\sspicli.dll
2013-09-27 17:38:07 ----A---- C:\Windows\system32\secur32.dll
2013-09-27 17:38:07 ----A---- C:\Windows\system32\lsass.exe
2013-09-27 17:38:07 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2013-09-27 17:38:00 ----A---- C:\Windows\SYSWOW64\odbcjt32.dll
2013-09-27 17:38:00 ----A---- C:\Windows\SYSWOW64\odbccu32.dll
2013-09-27 17:38:00 ----A---- C:\Windows\SYSWOW64\odbccr32.dll
2013-09-27 17:38:00 ----A---- C:\Windows\SYSWOW64\odbccp32.dll
2013-09-27 17:38:00 ----A---- C:\Windows\system32\odbctrac.dll
2013-09-27 17:38:00 ----A---- C:\Windows\system32\odbccu32.dll
2013-09-27 17:38:00 ----A---- C:\Windows\system32\odbccr32.dll
2013-09-27 17:38:00 ----A---- C:\Windows\system32\odbccp32.dll
2013-09-27 17:37:59 ----A---- C:\Windows\SYSWOW64\odbctrac.dll
2013-09-27 17:37:50 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2013-09-27 17:37:50 ----A---- C:\Windows\system32\CPFilters.dll
2013-09-27 17:37:49 ----A---- C:\Windows\SYSWOW64\sbe.dll
2013-09-27 17:37:49 ----A---- C:\Windows\system32\sbe.dll
2013-09-27 17:37:48 ----A---- C:\Windows\system32\aswBoot.exe
2013-09-27 17:36:37 ----D---- C:\Program Files\AVAST Software
2013-09-27 17:36:37 ----A---- C:\Windows\SYSWOW64\poqexec.exe
2013-09-27 17:36:37 ----A---- C:\Windows\system32\poqexec.exe
2013-09-27 17:36:30 ----A---- C:\Windows\SYSWOW64\quartz.dll
2013-09-27 17:36:30 ----A---- C:\Windows\system32\quartz.dll
2013-09-27 17:36:27 ----A---- C:\Windows\SYSWOW64\psisdecd.dll
2013-09-27 17:36:27 ----A---- C:\Windows\system32\psisdecd.dll
2013-09-27 17:36:25 ----A---- C:\Windows\SYSWOW64\webio.dll
2013-09-27 17:36:25 ----A---- C:\Windows\system32\webio.dll
2013-09-27 17:36:20 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2013-09-27 17:36:20 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2013-09-27 17:36:20 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2013-09-27 17:36:19 ----A---- C:\Windows\system32\winresume.exe
2013-09-27 17:36:19 ----A---- C:\Windows\system32\winload.exe
2013-09-27 17:36:19 ----A---- C:\Windows\system32\kdusb.dll
2013-09-27 17:36:19 ----A---- C:\Windows\system32\kdcom.dll
2013-09-27 17:36:19 ----A---- C:\Windows\system32\kd1394.dll
2013-09-27 17:36:13 ----A---- C:\Windows\SYSWOW64\mfc42u.dll
2013-09-27 17:36:13 ----A---- C:\Windows\SYSWOW64\mfc42.dll
2013-09-27 17:36:13 ----A---- C:\Windows\system32\mfc42u.dll
2013-09-27 17:36:13 ----A---- C:\Windows\system32\mfc42.dll
2013-09-27 17:36:11 ----A---- C:\Windows\system32\drivers\ntfs.sys
2013-09-27 17:36:10 ----A---- C:\Windows\system32\rdrmemptylst.exe
2013-09-27 17:36:10 ----A---- C:\Windows\system32\rdpcorekmts.dll
2013-09-27 17:36:09 ----A---- C:\Windows\system32\rdpwsx.dll
2013-09-27 17:36:03 ----A---- C:\Windows\system32\msxml6.dll
2013-09-27 17:36:03 ----A---- C:\Windows\system32\msxml3.dll
2013-09-27 17:36:02 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2013-09-27 17:36:02 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2013-09-27 17:36:02 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2013-09-27 17:36:02 ----A---- C:\Windows\system32\msxml3r.dll
2013-09-27 17:35:57 ----D---- C:\ProgramData\AVAST Software
2013-09-27 17:35:56 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL
2013-09-27 17:35:56 ----A---- C:\Windows\system32\WMVDECOD.DLL
2013-09-27 17:35:53 ----A---- C:\Windows\SYSWOW64\rdpcore.dll
2013-09-27 17:35:53 ----A---- C:\Windows\system32\rdpcore.dll
2013-09-27 17:35:53 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2013-09-27 17:35:45 ----A---- C:\Windows\system32\rpcrt4.dll
2013-09-27 17:35:44 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2013-09-27 17:35:41 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-09-27 17:35:41 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-09-27 17:35:41 ----A---- C:\Windows\system32\cdd.dll
2013-09-27 17:35:37 ----A---- C:\Windows\system32\drivers\usb8023.sys
2013-09-27 17:35:30 ----A---- C:\Windows\SYSWOW64\dnscacheugc.exe
2013-09-27 17:35:30 ----A---- C:\Windows\SYSWOW64\dnsapi.dll
2013-09-27 17:35:30 ----A---- C:\Windows\system32\dnsrslvr.dll
2013-09-27 17:35:30 ----A---- C:\Windows\system32\dnscacheugc.exe
2013-09-27 17:35:30 ----A---- C:\Windows\system32\dnsapi.dll
2013-09-27 17:35:24 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2013-09-27 17:35:24 ----A---- C:\Windows\system32\dpnet.dll
2013-09-27 17:35:13 ----A---- C:\Windows\system32\win32k.sys
2013-09-27 17:35:09 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2013-09-27 17:35:09 ----A---- C:\Windows\system32\kerberos.dll
2013-09-27 17:35:04 ----A---- C:\Windows\SYSWOW64\drvinst.exe
2013-09-27 17:35:04 ----A---- C:\Windows\SYSWOW64\devrtl.dll
2013-09-27 17:35:04 ----A---- C:\Windows\SYSWOW64\devobj.dll
2013-09-27 17:35:04 ----A---- C:\Windows\SYSWOW64\cfgmgr32.dll
2013-09-27 17:35:04 ----A---- C:\Windows\system32\umpnpmgr.dll
2013-09-27 17:35:01 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2013-09-27 17:34:58 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2013-09-27 17:34:55 ----A---- C:\Windows\system32\drivers\afd.sys
2013-09-27 17:34:53 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-09-27 17:34:53 ----A---- C:\Windows\system32\ncrypt.dll
2013-09-27 17:34:50 ----A---- C:\Windows\SYSWOW64\qedit.dll
2013-09-27 17:34:50 ----A---- C:\Windows\system32\qedit.dll
2013-09-27 17:34:47 ----A---- C:\Windows\system32\drivers\srvnet.sys
2013-09-27 17:34:47 ----A---- C:\Windows\system32\drivers\srv2.sys
2013-09-27 17:34:47 ----A---- C:\Windows\system32\drivers\srv.sys
2013-09-27 17:34:44 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-09-27 17:34:44 ----A---- C:\Windows\system32\win32spl.dll
2013-09-27 17:34:42 ----A---- C:\Windows\SYSWOW64\synceng.dll
2013-09-27 17:34:42 ----A---- C:\Windows\system32\synceng.dll
2013-09-27 17:34:37 ----A---- C:\Windows\system32\drivers\partmgr.sys
2013-09-27 17:34:32 ----A---- C:\Windows\system32\drivers\tcpip.sys
2013-09-27 17:34:31 ----A---- C:\Windows\system32\drivers\netio.sys
2013-09-27 17:34:31 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2013-09-27 17:34:26 ----A---- C:\Windows\system32\FXSCOVER.exe
2013-09-27 17:34:16 ----A---- C:\Windows\SYSWOW64\certutil.exe
2013-09-27 17:34:16 ----A---- C:\Windows\system32\certutil.exe
2013-09-27 17:34:15 ----A---- C:\Windows\SYSWOW64\certenc.dll
2013-09-27 17:34:15 ----A---- C:\Windows\system32\certenc.dll
2013-09-27 17:33:37 ----A---- C:\Windows\system32\inetcomm.dll
2013-09-27 17:33:36 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2013-09-27 17:33:30 ----A---- C:\Windows\system32\taskhost.exe
2013-09-27 17:33:27 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2013-09-27 17:33:27 ----A---- C:\Windows\SYSWOW64\browcli.dll
2013-09-27 17:33:27 ----A---- C:\Windows\system32\netapi32.dll
2013-09-27 17:33:27 ----A---- C:\Windows\system32\browser.dll
2013-09-27 17:33:27 ----A---- C:\Windows\system32\browcli.dll
2013-09-27 17:33:25 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2013-09-27 17:33:25 ----A---- C:\Windows\system32\msvcrt.dll
2013-09-27 17:33:19 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2013-09-27 17:33:18 ----D---- C:\Program Files\7-Zip
2013-09-27 17:33:13 ----A---- C:\Windows\system32\cdosys.dll
2013-09-27 17:32:24 ----D---- C:\Windows\system32\appmgmt
2013-09-27 17:31:37 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2013-09-27 17:31:37 ----A---- C:\Windows\SYSWOW64\oleacc.dll
2013-09-27 17:31:37 ----A---- C:\Windows\system32\oleaut32.dll
2013-09-27 17:31:37 ----A---- C:\Windows\system32\oleacc.dll
2013-09-27 17:27:45 ----D---- C:\Users\Ondřej\AppData\Roaming\Adobe
2013-09-27 17:25:36 ----D---- C:\Program Files (x86)\Foxit Software
2013-09-27 17:25:07 ----A---- C:\Windows\SYSWOW64\msvbvm50.dll
2013-09-27 17:25:06 ----A---- C:\Windows\SYSWOW64\wrap_oal.dll
2013-09-27 17:25:06 ----A---- C:\Windows\SYSWOW64\Vbrun300.dll
2013-09-27 17:25:06 ----A---- C:\Windows\SYSWOW64\vbrun200.dll
2013-09-27 17:25:06 ----A---- C:\Windows\SYSWOW64\vbrun100.dll
2013-09-27 17:25:05 ----A---- C:\Windows\SYSWOW64\Vb40032.dll
2013-09-27 17:25:05 ----A---- C:\Windows\SYSWOW64\Vb40016.dll
2013-09-27 17:25:05 ----A---- C:\Windows\SYSWOW64\ssleay32.dll
2013-09-27 17:25:05 ----A---- C:\Windows\SYSWOW64\OpenAL32.dll
2013-09-27 17:25:05 ----A---- C:\Windows\SYSWOW64\msvcrt10.dll
2013-09-27 17:25:05 ----A---- C:\Windows\SYSWOW64\msvcr71.dll
2013-09-27 17:25:05 ----A---- C:\Windows\SYSWOW64\msvcr70.dll
2013-09-27 17:25:05 ----A---- C:\Windows\SYSWOW64\msvcp71.dll
2013-09-27 17:25:05 ----A---- C:\Windows\SYSWOW64\MSVCP70.DLL
2013-09-27 17:25:05 ----A---- C:\Windows\SYSWOW64\msvci70.dll
2013-09-27 17:25:05 ----A---- C:\Windows\SYSWOW64\MSSTKPRP.DLL
2013-09-27 17:25:04 ----A---- C:\Windows\SYSWOW64\msstdfmt.dll
2013-09-27 17:25:04 ----A---- C:\Windows\SYSWOW64\MFC71u.dll
2013-09-27 17:25:04 ----A---- C:\Windows\SYSWOW64\MFC71KOR.DLL
2013-09-27 17:25:04 ----A---- C:\Windows\SYSWOW64\MFC71JPN.DLL
2013-09-27 17:25:04 ----A---- C:\Windows\SYSWOW64\MFC71ITA.DLL
2013-09-27 17:25:04 ----A---- C:\Windows\SYSWOW64\MFC71CHT.DLL
2013-09-27 17:25:04 ----A---- C:\Windows\SYSWOW64\MFC71CHS.DLL
2013-09-27 17:25:04 ----A---- C:\Windows\SYSWOW64\MFC71FRA.DLL
2013-09-27 17:25:04 ----A---- C:\Windows\SYSWOW64\MFC71ESP.DLL
2013-09-27 17:25:04 ----A---- C:\Windows\SYSWOW64\MFC71ENU.DLL
2013-09-27 17:25:04 ----A---- C:\Windows\SYSWOW64\MFC71DEU.DLL
2013-09-27 17:25:03 ----A---- C:\Windows\SYSWOW64\MFC71.dll
2013-09-27 17:25:03 ----A---- C:\Windows\SYSWOW64\mfc70u.dll
2013-09-27 17:25:03 ----A---- C:\Windows\SYSWOW64\mfc70kor.dll
2013-09-27 17:25:03 ----A---- C:\Windows\SYSWOW64\mfc70jpn.dll
2013-09-27 17:25:03 ----A---- C:\Windows\SYSWOW64\mfc70ita.dll
2013-09-27 17:25:03 ----A---- C:\Windows\SYSWOW64\mfc70cht.dll
2013-09-27 17:25:03 ----A---- C:\Windows\SYSWOW64\mfc70chs.dll
2013-09-27 17:25:03 ----A---- C:\Windows\SYSWOW64\mfc70fra.dll
2013-09-27 17:25:03 ----A---- C:\Windows\SYSWOW64\mfc70esp.dll
2013-09-27 17:25:03 ----A---- C:\Windows\SYSWOW64\mfc70enu.dll
2013-09-27 17:25:03 ----A---- C:\Windows\SYSWOW64\mfc70deu.dll
2013-09-27 17:25:03 ----A---- C:\Windows\SYSWOW64\mfc70.dll
2013-09-27 17:25:03 ----A---- C:\Windows\SYSWOW64\libssl32.dll
2013-09-27 17:25:03 ----A---- C:\Windows\SYSWOW64\libeay32.dll
2013-09-27 17:25:02 ----A---- C:\Windows\SYSWOW64\atl71.dll
2013-09-27 17:25:02 ----A---- C:\Windows\SYSWOW64\atl70.dll
2013-09-27 17:25:02 ----A---- C:\Windows\system32\wrap_oal.dll
2013-09-27 17:25:02 ----A---- C:\Windows\system32\ssleay32.dll
2013-09-27 17:25:02 ----A---- C:\Windows\system32\OpenAL32.dll
2013-09-27 17:25:02 ----A---- C:\Windows\system32\libssl32.dll
2013-09-27 17:25:01 ----A---- C:\Windows\system32\libeay32.dll
2013-09-27 17:24:20 ----D---- C:\Users\Ondřej\AppData\Roaming\Mozilla
2013-09-27 17:23:59 ----D---- C:\Users\Ondřej\AppData\Roaming\Yandex
2013-09-27 17:22:00 ----D---- C:\Program Files\Microsoft Silverlight
2013-09-27 17:22:00 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2013-09-27 17:21:39 ----D---- C:\Windows\SYSWOW64\Adobe
2013-09-27 17:21:35 ----D---- C:\Windows\SYSWOW64\Macromed
2013-09-27 17:21:35 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-09-27 17:21:32 ----D---- C:\Windows\system32\Macromed
2013-09-27 17:20:51 ----D---- C:\Windows\system32\Backup
2013-09-27 17:20:50 ----D---- C:\Windows\SYSWOW64\Backup
2013-09-27 17:20:29 ----D---- C:\Program Files (x86)\SAM CoDeC Pack
2013-09-27 17:16:01 ----A---- C:\Windows\SYSWOW64\EncDec.dll
2013-09-27 17:16:01 ----A---- C:\Windows\system32\EncDec.dll
2013-09-27 17:15:57 ----A---- C:\Windows\system32\localspl.dll
2013-09-27 17:15:56 ----A---- C:\Windows\system32\drivers\bowser.sys
2013-09-27 17:15:55 ----A---- C:\Windows\SYSWOW64\packager.dll
2013-09-27 17:15:55 ----A---- C:\Windows\system32\packager.dll
2013-09-27 17:05:54 ----A---- C:\Windows\system32\wups2.dll
2013-09-27 17:05:54 ----A---- C:\Windows\system32\wucltux.dll
2013-09-27 17:05:54 ----A---- C:\Windows\system32\wuaueng.dll
2013-09-27 17:05:54 ----A---- C:\Windows\system32\wuauclt.exe
2013-09-27 17:05:46 ----A---- C:\Windows\system32\wups.dll
2013-09-27 17:05:46 ----A---- C:\Windows\system32\wudriver.dll
2013-09-27 17:05:46 ----A---- C:\Windows\system32\wuapi.dll
2013-09-27 17:05:35 ----A---- C:\Windows\system32\wuwebv.dll
2013-09-27 17:05:35 ----A---- C:\Windows\system32\wuapp.exe
2013-09-27 16:58:16 ----D---- C:\Users\Ondřej\AppData\Roaming\WinRAR
2013-09-27 16:57:33 ----D---- C:\Program Files\WinRAR
2013-09-27 07:44:58 ----D---- C:\Windows\Panther
2013-09-27 07:44:47 ----RASH---- C:\BOOTSECT.BAK
2013-09-27 07:44:45 ----SHD---- C:\Boot
2013-09-26 22:48:28 ----D---- C:\Users\Ondřej\AppData\Roaming\ATI
2013-09-26 22:48:28 ----D---- C:\ProgramData\ATI
2013-09-26 22:40:48 ----D---- C:\ProgramData\AMD
2013-09-26 22:40:47 ----D---- C:\Program Files (x86)\AMD AVT
2013-09-26 22:39:47 ----D---- C:\Program Files\Common Files\ATI Technologies
2013-09-26 22:39:18 ----D---- C:\Program Files (x86)\ATI Technologies
2013-09-26 22:36:27 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2013-09-26 22:35:06 ----D---- C:\Program Files (x86)\Microsoft.NET
2013-09-26 22:34:17 ----D---- C:\ProgramData\Package Cache
2013-09-26 22:34:00 ----D---- C:\Program Files\ATI Technologies
2013-09-26 22:33:58 ----D---- C:\Program Files\ATI
2013-09-26 22:32:41 ----D---- C:\AMD
2013-09-26 22:26:00 ----SHD---- C:\Windows\Installer
2013-09-26 22:21:00 ----D---- C:\Program Files (x86)\Google
2013-09-26 21:54:38 ----D---- C:\Users\Ondřej\AppData\Roaming\Identities
2013-09-26 21:54:26 ----SD---- C:\Users\Ondřej\AppData\Roaming\Microsoft
2013-09-26 21:54:26 ----D---- C:\Users\Ondřej\AppData\Roaming\Media Center Programs
2013-09-26 21:54:13 ----SHD---- C:\Recovery
2013-09-26 21:48:35 ----D---- C:\Windows\SoftwareDistribution
2013-09-26 21:46:29 ----D---- C:\Windows\Prefetch
2013-09-26 21:45:53 ----ASH---- C:\hiberfil.sys
2013-09-26 21:45:52 ----SHD---- C:\System Volume Information
2013-09-26 21:45:52 ----ASH---- C:\pagefile.sys

======List of files/folders modified in the last 1 month======

2013-10-05 05:53:42 ----D---- C:\Windows\Temp
2013-10-05 05:53:05 ----RD---- C:\Program Files
2013-10-05 05:31:12 ----RD---- C:\Program Files (x86)
2013-10-05 05:31:12 ----AD---- C:\Windows\SysWOW64
2013-10-05 05:27:54 ----HD---- C:\ProgramData
2013-10-05 05:25:02 ----D---- C:\Windows
2013-10-05 04:52:12 ----D---- C:\Windows\system32\config
2013-10-05 04:19:38 ----AD---- C:\Windows\System32
2013-10-05 04:17:36 ----D---- C:\Windows\inf
2013-10-05 04:15:01 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-10-05 03:25:05 ----D---- C:\Windows\winsxs
2013-10-05 03:22:18 ----RSD---- C:\Windows\assembly
2013-10-05 02:59:29 ----D---- C:\Windows\system32\drivers
2013-10-05 02:59:28 ----D---- C:\Windows\system32\DriverStore
2013-10-05 02:59:28 ----D---- C:\Windows\system32\catroot
2013-10-01 20:29:04 ----D---- C:\Program Files (x86)\Common Files
2013-09-30 07:41:20 ----D---- C:\Windows\system32\catroot2
2013-09-28 16:34:49 ----RD---- C:\Users
2013-09-28 16:32:13 ----D---- C:\Windows\Logs
2013-09-28 16:32:09 ----D---- C:\Program Files\Common Files\Microsoft Shared
2013-09-28 03:04:52 ----D---- C:\Windows\system32\LogFiles
2013-09-28 01:14:10 ----D---- C:\Windows\system32\Tasks
2013-09-27 22:27:28 ----D---- C:\Windows\rescache
2013-09-27 22:16:18 ----D---- C:\Windows\Microsoft.NET
2013-09-27 21:36:38 ----D---- C:\Windows\system32\en-US
2013-09-27 21:36:38 ----D---- C:\Windows\system32\cs-CZ
2013-09-27 21:29:20 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-09-27 21:29:20 ----D---- C:\Program Files\Internet Explorer
2013-09-27 21:29:20 ----D---- C:\Program Files (x86)\Internet Explorer
2013-09-27 21:08:15 ----D---- C:\Windows\SYSWOW64\wbem
2013-09-27 21:08:15 ----D---- C:\Windows\SYSWOW64\en-US
2013-09-27 21:08:14 ----D---- C:\Windows\SYSWOW64\migration
2013-09-27 21:08:14 ----D---- C:\Windows\system32\wbem
2013-09-27 21:08:14 ----D---- C:\Windows\system32\migration
2013-09-27 21:08:14 ----D---- C:\Windows\system32\drivers\en-US
2013-09-27 21:08:14 ----D---- C:\Windows\PolicyDefinitions
2013-09-27 20:30:12 ----RSD---- C:\Windows\Fonts
2013-09-27 20:30:12 ----D---- C:\Windows\AppPatch
2013-09-27 20:30:06 ----D---- C:\Program Files (x86)\Windows Sidebar
2013-09-27 20:30:06 ----D---- C:\Program Files (x86)\Windows Mail
2013-09-27 20:30:05 ----D---- C:\Program Files\Windows Sidebar
2013-09-27 20:30:05 ----D---- C:\Program Files\Windows Media Player
2013-09-27 20:30:05 ----D---- C:\Program Files\Windows Mail
2013-09-27 20:30:05 ----D---- C:\Program Files\DVD Maker
2013-09-27 20:30:05 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2013-09-27 20:30:05 ----D---- C:\Program Files (x86)\Windows Media Player
2013-09-27 20:30:05 ----D---- C:\Program Files (x86)\Windows Defender
2013-09-27 20:30:04 ----D---- C:\Windows\servicing
2013-09-27 20:30:04 ----D---- C:\Program Files\Windows Photo Viewer
2013-09-27 20:30:04 ----D---- C:\Program Files\Windows Journal
2013-09-27 20:30:04 ----D---- C:\Program Files\Windows Defender
2013-09-27 20:30:04 ----D---- C:\Program Files\Common Files\System
2013-09-27 20:30:01 ----D---- C:\Windows\SYSWOW64\winrm
2013-09-27 20:30:01 ----D---- C:\Windows\SYSWOW64\slmgr
2013-09-27 20:30:01 ----D---- C:\Windows\SYSWOW64\migwiz
2013-09-27 20:30:01 ----D---- C:\Windows\ehome
2013-09-27 20:29:55 ----D---- C:\Windows\SYSWOW64\WCN
2013-09-27 20:29:55 ----D---- C:\Windows\SYSWOW64\Printing_Admin_Scripts
2013-09-27 20:29:55 ----D---- C:\Windows\SYSWOW64\MUI
2013-09-27 20:29:55 ----D---- C:\Windows\SYSWOW64\DriverStore
2013-09-27 20:29:55 ----D---- C:\Windows\SYSWOW64\drivers
2013-09-27 20:29:55 ----D---- C:\Windows\SYSWOW64\Dism
2013-09-27 20:29:55 ----D---- C:\Windows\SYSWOW64\com
2013-09-27 20:29:55 ----D---- C:\Windows\IME
2013-09-27 20:29:53 ----D---- C:\Windows\system32\winrm
2013-09-27 20:29:53 ----D---- C:\Windows\system32\sysprep
2013-09-27 20:29:53 ----D---- C:\Windows\system32\slmgr
2013-09-27 20:29:53 ----D---- C:\Windows\system32\oobe
2013-09-27 20:29:53 ----D---- C:\Windows\system32\migwiz
2013-09-27 20:29:53 ----D---- C:\Windows\system32\Boot
2013-09-27 20:29:40 ----D---- C:\Windows\system32\WCN
2013-09-27 20:29:40 ----D---- C:\Windows\system32\MUI
2013-09-27 20:29:40 ----D---- C:\Windows\system32\drivers\UMDF
2013-09-27 20:29:40 ----D---- C:\Windows\system32\Dism
2013-09-27 20:29:38 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2013-09-27 20:29:37 ----D---- C:\Windows\system32\com
2013-09-27 19:19:18 ----D---- C:\Windows\system32\wdi
2013-09-27 19:17:31 ----D---- C:\Windows\SYSWOW64\pt-PT
2013-09-27 19:17:31 ----D---- C:\Windows\SYSWOW64\pt-BR
2013-09-27 19:17:31 ----D---- C:\Windows\SYSWOW64\pl-PL
2013-09-27 19:17:31 ----D---- C:\Windows\SYSWOW64\ko-KR
2013-09-27 19:17:31 ----D---- C:\Windows\SYSWOW64\it-IT
2013-09-27 19:17:30 ----D---- C:\Windows\SYSWOW64\zh-TW
2013-09-27 19:17:30 ----D---- C:\Windows\SYSWOW64\zh-HK
2013-09-27 19:17:30 ----D---- C:\Windows\SYSWOW64\zh-CN
2013-09-27 19:17:30 ----D---- C:\Windows\SYSWOW64\tr-TR
2013-09-27 19:17:30 ----D---- C:\Windows\SYSWOW64\sv-SE
2013-09-27 19:17:30 ----D---- C:\Windows\SYSWOW64\ru-RU
2013-09-27 19:17:30 ----D---- C:\Windows\SYSWOW64\nl-NL
2013-09-27 19:17:30 ----D---- C:\Windows\SYSWOW64\nb-NO
2013-09-27 19:17:30 ----D---- C:\Windows\SYSWOW64\ja-JP
2013-09-27 19:17:30 ----D---- C:\Windows\SYSWOW64\hu-HU
2013-09-27 19:17:30 ----D---- C:\Windows\SYSWOW64\fr-FR
2013-09-27 19:17:30 ----D---- C:\Windows\SYSWOW64\fi-FI
2013-09-27 19:17:30 ----D---- C:\Windows\SYSWOW64\es-ES
2013-09-27 19:17:30 ----D---- C:\Windows\SYSWOW64\el-GR
2013-09-27 19:17:30 ----D---- C:\Windows\SYSWOW64\de-DE
2013-09-27 19:17:30 ----D---- C:\Windows\SYSWOW64\da-DK
2013-09-27 19:17:28 ----D---- C:\Windows\system32\zh-HK
2013-09-27 19:17:28 ----D---- C:\Windows\system32\pt-PT
2013-09-27 19:17:28 ----D---- C:\Windows\system32\pt-BR
2013-09-27 19:17:28 ----D---- C:\Windows\system32\pl-PL
2013-09-27 19:17:28 ----D---- C:\Windows\system32\ko-KR
2013-09-27 19:17:28 ----D---- C:\Windows\system32\it-IT
2013-09-27 19:17:28 ----D---- C:\Windows\system32\hu-HU
2013-09-27 19:17:27 ----D---- C:\Windows\system32\zh-TW
2013-09-27 19:17:27 ----D---- C:\Windows\system32\zh-CN
2013-09-27 19:17:27 ----D---- C:\Windows\system32\tr-TR
2013-09-27 19:17:27 ----D---- C:\Windows\system32\sv-SE
2013-09-27 19:17:27 ----D---- C:\Windows\system32\ru-RU
2013-09-27 19:17:27 ----D---- C:\Windows\system32\nl-NL
2013-09-27 19:17:27 ----D---- C:\Windows\system32\nb-NO
2013-09-27 19:17:27 ----D---- C:\Windows\system32\ja-JP
2013-09-27 19:17:27 ----D---- C:\Windows\system32\fr-FR
2013-09-27 19:17:27 ----D---- C:\Windows\system32\fi-FI
2013-09-27 19:17:27 ----D---- C:\Windows\system32\es-ES
2013-09-27 19:17:27 ----D---- C:\Windows\system32\el-GR
2013-09-27 19:17:27 ----D---- C:\Windows\system32\de-DE
2013-09-27 19:17:27 ----D---- C:\Windows\system32\da-DK
2013-09-27 18:50:32 ----D---- C:\Windows\debug
2013-09-27 17:23:45 ----SD---- C:\ProgramData\Microsoft
2013-09-26 22:39:47 ----D---- C:\Program Files\Common Files
2013-09-26 22:34:08 ----D---- C:\Windows\system32\restore
2013-09-26 22:21:02 ----D---- C:\Windows\Tasks
2013-09-26 22:01:26 ----D---- C:\Windows\system32\CodeIntegrity
2013-09-26 21:54:36 ----SHD---- C:\$Recycle.Bin
2013-09-26 21:54:13 ----D---- C:\Windows\system32\Recovery
2013-09-26 21:46:25 ----D---- C:\Windows\CSC

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [2013-08-30 65336]
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys [2013-08-30 204880]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [2013-08-30 72016]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2013-08-30 1030952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2013-08-30 378944]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2013-08-30 64288]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-10-05 283064]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2013-08-30 33400]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-08-30 80816]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-08-31 12528640]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-08-31 618496]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-07-05 96256]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2009-03-01 187392]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-21 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2012-08-23 29696]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-08-31 239616]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-08-30 46808]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-26 116648]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-09-26 116648]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-09-21 565672]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-09-27 1255736]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696]

-----------------EOF-----------------

Re: Podezření na spyware

Napsal: 05 říj 2013 15:06
od Márty84
Zdravim :)


:!: Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne
:arrow: Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).

Re: Podezření na spyware

Napsal: 06 říj 2013 00:12
od OZuna
log extras:

OTL Extras logfile created on: 5.10.2013 19:53:51 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Ondřej\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16686)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,44 Gb Total Physical Memory | 1,37 Gb Available Physical Memory | 39,89% Memory free
6,87 Gb Paging File | 4,07 Gb Available in Paging File | 59,26% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465,76 Gb Total Space | 295,32 Gb Free Space | 63,41% Space Free | Partition Type: NTFS
Drive E: | 644,12 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: UDF
Drive F: | 465,11 Gb Total Space | 209,82 Gb Free Space | 45,11% Space Free | Partition Type: NTFS
Drive G: | 1862,98 Gb Total Space | 940,46 Gb Free Space | 50,48% Space Free | Partition Type: NTFS
Drive H: | 6,83 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF

Computer Name: ONDŘEJ-PC | User Name: Ondřej | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-200722194-2984085620-2350800992-1001\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{11815942-29F1-41D4-869B-B8083A81E8C1}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{147B77FE-AEB5-44AA-9D5C-122B4C637AC1}" = rport=445 | protocol=6 | dir=out | app=system |
"{3CFA77CA-014C-48F3-9F35-3408AD130F81}" = rport=139 | protocol=6 | dir=out | app=system |
"{4691BA22-E536-4FC0-A9A7-67CE6FA30563}" = rport=10243 | protocol=6 | dir=out | app=system |
"{52F5C60F-CD8F-4D8E-AF9B-D8264385802F}" = lport=137 | protocol=17 | dir=in | app=system |
"{54063CAD-4735-44B7-9A35-040347668DBE}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{6793072E-9245-4737-876C-D93232ED3B0C}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{7A9C9A39-E90E-4D85-AB75-E10F814326B3}" = lport=445 | protocol=6 | dir=in | app=system |
"{7E440703-F078-4CB4-99D7-C4E3810E0206}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{7FD3E3BB-7C80-4D3A-8116-B50014119A85}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{86492DF0-5F88-4A6D-BED7-F87780C60B51}" = rport=137 | protocol=17 | dir=out | app=system |
"{994FC727-5B4B-4D6A-9B81-C59E39F0CB71}" = lport=138 | protocol=17 | dir=in | app=system |
"{A423EB8F-DA5F-411F-BEA1-D387200E9CF8}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{BDFA80A4-0D2A-4D5B-8CC7-CD0E75C5124B}" = lport=10243 | protocol=6 | dir=in | app=system |
"{C79B8ABD-D8E3-4660-960D-23FE2D34FDA9}" = rport=138 | protocol=17 | dir=out | app=system |
"{C8500FFC-7478-460C-B1FF-637CF931ED54}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{C8BB50F1-62E8-41B8-AB9D-65B8F8079827}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{CB2F4A81-BEEE-4AD9-90B1-6D585CAFDDF8}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{F28B8967-A82A-475A-BAB8-BA8F9859ABC7}" = lport=2869 | protocol=6 | dir=in | app=system |
"{F9DF17A1-02FE-44FF-9298-BAEAC9FF77AE}" = lport=139 | protocol=6 | dir=in | app=system |
"{FB98F647-CA8F-4315-9554-6584B101F9B5}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0677D679-6558-4433-8299-680FBD6C27C7}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"{07774644-624C-48B8-BD53-56612955B459}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\total war shogun 2\data\encyclopedia\how_to_play.html |
"{0C0401B5-6222-4EAA-A0C7-A96A454EEF63}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{13441583-3807-4234-8167-8E6F9C74FE63}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\trine 2\trine2_launcher.exe |
"{16639F4B-6DB1-413C-BB3B-CFD08F90A737}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\war thunder\launcher.exe |
"{190B036A-D268-4F70-A3EC-5E200D433FB5}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\killingfloor\system\killingfloor.exe |
"{1B535B65-34CE-4B37-9BFA-0272736F73B2}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{20B29EB1-7B94-4FA8-BDCA-5D02962D97F4}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{22682FF6-05B6-45C1-B4F2-32275FB31C63}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\hitman absolution\hma.exe |
"{2BDDC70B-F236-486C-8F67-6ABB540D2357}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{2C761000-A718-4F8B-8941-3AD6150A0522}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\borderlands 2\binaries\win32\launcher.exe |
"{2D81BB8E-1A99-4971-BC87-E05415BA2233}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\red orchestra 2\binaries\win32\rogame.exe |
"{34BAAC92-3F62-44F8-8F9D-D8B1EDD74FD2}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{3525BF7A-E40C-49C6-A18D-DD5A053E749A}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{3E38D968-633A-4D7D-AD2E-10391312AB88}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\total war shogun 2\data\encyclopedia\how_to_play.html |
"{41F624AE-3DAD-44E9-B504-EDA7781F20FA}" = protocol=6 | dir=out | app=system |
"{423A0984-2686-4F48-AD7F-6AB7C7499DEC}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\war of the roses\run_game.exe |
"{4CBC4A50-3E23-4869-AFC6-EE61F7C80126}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\hitman absolution\hma.exe |
"{59E9A26B-2075-4ABC-A5F7-BA8F9579F469}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\audiosurf\engine\questviewer.exe |
"{5A8839C2-36BF-418B-A52C-FE2E3CC212F3}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\total war shogun 2\shogun2.exe |
"{5DE23445-D36E-42D4-9B0D-B3D5C541AFD7}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\tom clancy's splinter cell blacklist\src\system\gu.exe |
"{5ED06763-767A-4072-91FA-B7465426A886}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\chivalrymedievalwarfare\binaries\win32\udk.exe |
"{621739A6-1371-415B-85BB-7C185DEF14ED}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\tom clancy's splinter cell blacklist\src\system\blacklist_game.exe |
"{644937C6-A17D-4A86-ADA1-B0E0C7C0A398}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{644F6C21-801D-46BC-99D9-9C484212AF68}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{6553E1FF-FC59-456A-9FF7-238CF692D8D8}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\audiosurf\engine\questviewer.exe |
"{675A1F25-84F2-4389-88D6-F16CDC273243}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\tom clancy's splinter cell blacklist\src\system\blacklist_game.exe |
"{6BB27FDD-6C1D-410D-B576-284325B44140}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{6D005EEF-D150-454B-B062-4E3AD360F09C}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\borderlands 2\binaries\win32\launcher.exe |
"{6D0C13D5-487D-4A15-9485-0CA385277931}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_current_settings.bat |
"{6D24757E-4F96-4D78-AE08-19195780013F}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\trine 2\trine2_launcher.exe |
"{71119014-32AB-4915-9988-10E5C21C9FDB}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\total war shogun 2\shogun2.exe |
"{74BF9884-7B7B-4EA0-A368-D22955400A51}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\tom clancy's splinter cell blacklist\src\system\blacklist_dx11_game.exe |
"{7BEC5120-3EAF-489E-9EBA-F612159331EC}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{9ABCB388-CC77-4A7A-BE19-813CBC857B5F}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{9BEF03BC-3854-4E6E-80C8-C8BBDCFAC269}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\war of the roses\run_game.exe |
"{9CD181F6-04AE-4D07-8CA4-F2EAE14C3BE2}" = protocol=6 | dir=in | app=g:\colin mcrae dirt 2\dirt2_game.exe |
"{9D17EC17-BD04-4B17-86B0-1F5C0829C9CB}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{A359734E-CF09-4847-8A2C-B4A947E2D698}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_current_settings.bat |
"{A4D865A5-6DA3-43E2-9686-85FA26A34862}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{A61AC92D-65FA-43C2-A314-89091C117E60}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{ACF2CD73-053E-4B26-99DE-73FBE9F192B4}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\tom clancy's splinter cell blacklist\src\system\gu.exe |
"{B3B12E50-108C-4465-889E-1729DF515172}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{B4C3EDF0-C56B-483F-A37B-C1504048A901}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\killingfloor\system\killingfloor.exe |
"{B8FF0910-6304-433C-B3C2-2AEE27370289}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{B95DCA48-F49C-4092-B115-D8A772C59E04}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\tom clancy's splinter cell blacklist\blacklist_launcher.exe |
"{BA12842E-5EC9-46C2-9158-4C9407E878EA}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\tom clancy's splinter cell blacklist\src\system\blacklist_dx11_game.exe |
"{BF51818F-85E6-4782-B9E4-CC0FE1863052}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\chivalrymedievalwarfare\binaries\win32\udk.exe |
"{C1BE6BAF-5F61-4033-A084-58459C4A70E9}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{C332ECF2-0D19-490F-8243-C93A2C2E7EF5}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{C3B10719-AC88-4F2C-BDD4-88400346B678}" = protocol=17 | dir=in | app=g:\colin mcrae dirt 2\dirt2_game.exe |
"{C3B2C7D6-AD19-4A63-B51C-76DCF5F214E8}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{C8D4FFED-1F8C-4F80-AB5E-727192B42BB6}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{CAE92E46-CEA1-4093-80D4-F8E4EA841DD4}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\war thunder\launcher.exe |
"{D2A09366-8535-4E5F-A0AF-BE4E28991510}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{E1AA5E78-2F88-480F-9468-C6FBDF026406}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\red orchestra 2\binaries\win32\rogame.exe |
"{EA00383D-277F-436D-AFD4-8576D00BE71C}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{ED1705C8-4239-4A67-8359-19731F4F562B}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{F2121B61-06AE-4C1D-B94F-899D9294B6EA}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{FD17D27B-4CAF-4B11-BF68-FDAB6CAFED04}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\tom clancy's splinter cell blacklist\blacklist_launcher.exe |
"{FDE60723-FD70-4644-A69E-898F8F6CECA5}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat |
"TCP Query User{739E8F3C-0949-41AC-9A3E-58FC3DB1B39E}C:\users\ondřej\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\users\ondřej\appdata\roaming\utorrent\utorrent.exe |
"TCP Query User{9C888030-E285-4A96-BD01-3F16F68F9B85}C:\users\ondřej\appdata\roaming\utorrent\updates\3.3.1_30017.exe" = protocol=6 | dir=in | app=c:\users\ondřej\appdata\roaming\utorrent\updates\3.3.1_30017.exe |
"UDP Query User{2E7DE571-2908-4E4C-A973-CE7A80E389CE}C:\users\ondřej\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\users\ondřej\appdata\roaming\utorrent\utorrent.exe |
"UDP Query User{C20ADBD0-EC2B-4243-A839-34E8A805EAC0}C:\users\ondřej\appdata\roaming\utorrent\updates\3.3.1_30017.exe" = protocol=17 | dir=in | app=c:\users\ondřej\appdata\roaming\utorrent\updates\3.3.1_30017.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{13351E83-6DCD-4E97-2A8C-5D496259A47F}" = AMD Catalyst Install Manager
"{1AD147D0-BE0E-3D6C-AC11-64F6DC4163F1}" = Microsoft .NET Framework 4.5
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{23170F69-40C1-2702-0930-000001000000}" = 7-Zip 9.30 (x64 edition)
"{3AA627AF-DD36-F927-D91F-207FB3CC32D9}" = ccc-utility64
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5
"{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727
"{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727
"{B775540C-E635-B6CF-379F-87222AEC77C6}" = AMD Media Foundation Decoders
"{C4838EB8-FCED-B4EB-2777-017DFC3BD65D}" = AMD Accelerated Video Transcoding
"{CFCF71B6-5962-3BA9-F336-8C4CD1747721}" = AMD Drag and Drop Transcoding
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX & Plugin 64-bit
"WinRAR archiver" = WinRAR 4.20 (64-bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}" = Microsoft Games for Windows - LIVE Redistributable
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{1008F030-1D06-C7C2-14F7-18CE3307F51F}" = CCC Help Portuguese
"{15134cb0-b767-4960-a911-f2d16ae54797}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
"{174F94E5-581E-EFCA-60FF-72B99A893BAE}" = CCC Help Thai
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{22154f09-719a-4619-bb71-5b3356999fbf}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
"{26A24AE4-039D-4CA4-87B4-2F83217040FF}" = Java 7 Update 40
"{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}" = Microsoft Games for Windows - LIVE
"{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727
"{3C9EF074-E7E8-1DAD-7B24-E2ACDC48FBDE}" = CCC Help English
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4F07D6C9-3AB0-0567-FA40-FA091398E7BE}" = CCC Help Italian
"{52D1D62C-FEAB-4580-849E-1DB624BADBBD}" = DiRT2
"{56978E45-6A6B-8DF7-B37C-58043F182D6C}" = CCC Help Swedish
"{6672A809-A0D9-A47E-7CFE-AF0B0D599D40}" = Catalyst Control Center Localization All
"{6AFE5E25-121D-6054-62B8-F3354C82FAAF}" = CCC Help Hungarian
"{7BDECEC6-87A7-A7AA-8AE8-A8D663F3B9E5}" = CCC Help Finnish
"{7D6835C4-F6C7-7D78-5DC7-593E025A58FD}" = CCC Help Korean
"{88B2ABCF-9C00-47C1-8FC4-369B98845DD7}" = Catalyst Control Center - Branding
"{8BB6D134-BFBA-F4B7-D086-6EF765576DBE}" = CCC Help Norwegian
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A69B5801-707A-D310-2DD1-0DE7EFF761AC}" = CCC Help Greek
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{C42B66AB-B0A2-516D-63BE-6D9608A3B9BC}" = CCC Help Dutch
"{C9B21EB7-9E61-55EF-DC76-ADB8DDEEFE56}" = CCC Help Polish
"{CC45C792-5348-9446-1FBB-2A287A19D48E}" = AMD Catalyst Control Center
"{CC9AD130-069C-E5AF-A56C-48E58781BE24}" = CCC Help Chinese Standard
"{D0A0DC26-EDD5-C03D-6AFC-8F10D2FD974F}" = CCC Help Chinese Traditional
"{D805E716-EE94-64C4-04FB-BE98A4BF6CF6}" = CCC Help Spanish
"{E002447E-6B41-DCF6-8133-987BF12C5B50}" = CCC Help Czech
"{E7970ADC-319A-A32B-7D8D-9404F4807365}" = CCC Help German
"{E7E71065-1152-440D-F258-5B6DE3817E41}" = Catalyst Control Center Graphics Previews Common
"{EADF01C1-9C48-5157-AF54-8E5DC3540185}" = CCC Help Turkish
"{EB48CCF6-69EC-F24E-0F24-6A13DFF63A05}" = CCC Help French
"{EF2E4024-2B49-F761-B36F-167033D7F005}" = CCC Help Japanese
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F88FFBE5-6A07-6206-0B13-4F648A6718C9}" = Catalyst Control Center InstallProxy
"{FA5BA14A-631B-3AFB-8918-B75443396D4C}" = CCC Help Danish
"{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727
"{FE8DA369-A02D-F0E4-231C-7D73A2D62028}" = CCC Help Russian
"Adobe Shockwave Player + Authorware Web Player" = Adobe Shockwave Player + Authorware Web Player
"avast" = avast! Free Antivirus
"bi_uninstaller" = Bundled software uninstaller
"BSPlayerf" = BS.Player FREE
"DAEMON Tools Lite" = DAEMON Tools Lite
"Driver Genius_is1" = Driver Genius
"Google Chrome" = Google Chrome
"OpenAL" = OpenAL
"PunkBusterSvc" = PunkBuster Services
"Steam App 1250" = Killing Floor
"Steam App 12900" = Audiosurf
"Steam App 203140" = Hitman: Absolution
"Steam App 219640" = Chivalry: Medieval Warfare
"Steam App 235600" = Tom Clancy's Splinter Cell Blacklist
"Steam App 236390" = War Thunder
"Steam App 34330" = Total War: SHOGUN 2
"Steam App 35450" = Rising Storm/Red Orchestra 2 Multiplayer
"Steam App 35720" = Trine 2
"Steam App 42160" = War of the Roses
"Steam App 49520" = Borderlands 2
"Uplay" = Uplay

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-200722194-2984085620-2350800992-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"uTorrent" = µTorrent

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 2.10.2013 18:35:48 | Computer Name = Ondřej-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro c:\program files (x86)\Steam\steamapps\common\total
war shogun 2\redist\flashsecurity.exe se nezdařilo. Závislé sestavení Microsoft.VC80.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 2.10.2013 18:35:48 | Computer Name = Ondřej-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro c:\program files (x86)\Steam\steamapps\common\total
war shogun 2\redist\flashsecurity1.exe se nezdařilo. Závislé sestavení Microsoft.VC80.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 3.10.2013 11:16:34 | Computer Name = Ondřej-PC | Source = WinMgmt | ID = 10
Description =

Error - 3.10.2013 18:30:37 | Computer Name = Ondřej-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro c:\program files (x86)\Steam\steamapps\common\total
war shogun 2\ModManager.exe se nezdařilo. Závislé sestavení Microsoft.VC80.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 3.10.2013 18:30:37 | Computer Name = Ondřej-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro c:\program files (x86)\Steam\steamapps\common\total
war shogun 2\benchmarks\benchmark_output.exe se nezdařilo. Závislé sestavení Microsoft.VC80.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 3.10.2013 18:30:38 | Computer Name = Ondřej-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro c:\program files (x86)\Steam\steamapps\common\total
war shogun 2\redist\flashsecurity.exe se nezdařilo. Závislé sestavení Microsoft.VC80.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 3.10.2013 18:30:38 | Computer Name = Ondřej-PC | Source = SideBySide | ID = 16842785
Description = Generování kontextu aktivace pro c:\program files (x86)\Steam\steamapps\common\total
war shogun 2\redist\flashsecurity1.exe se nezdařilo. Závislé sestavení Microsoft.VC80.CRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"
nelze najít. Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error - 4.10.2013 22:12:00 | Computer Name = Ondřej-PC | Source = WinMgmt | ID = 10
Description =

Error - 4.10.2013 22:40:13 | Computer Name = Ondřej-PC | Source = WinMgmt | ID = 10
Description =

Error - 5.10.2013 4:46:30 | Computer Name = Ondřej-PC | Source = WinMgmt | ID = 10
Description =

[ System Events ]
Error - 1.10.2013 13:57:02 | Computer Name = Ondřej-PC | Source = Microsoft-Windows-Kernel-Processor-Power | ID = 6
Description = Některé funkce řízení napájení při činnosti procesoru byly zakázány
z důvodu potíží s firmwarem. Požádejte výrobce počítače o aktualizovaný firmware.

Error - 2.10.2013 12:57:53 | Computer Name = Ondřej-PC | Source = Microsoft-Windows-Kernel-Processor-Power | ID = 6
Description = Některé funkce řízení napájení při činnosti procesoru byly zakázány
z důvodu potíží s firmwarem. Požádejte výrobce počítače o aktualizovaný firmware.

Error - 2.10.2013 13:23:50 | Computer Name = Ondřej-PC | Source = bowser | ID = 8003
Description =

Error - 2.10.2013 18:34:58 | Computer Name = Ondřej-PC | Source = Disk | ID = 262155
Description = Ovladač zjistil chybu řadiče na \Device\Harddisk1\DR1.

Error - 3.10.2013 11:14:49 | Computer Name = Ondřej-PC | Source = Microsoft-Windows-Kernel-Processor-Power | ID = 6
Description = Některé funkce řízení napájení při činnosti procesoru byly zakázány
z důvodu potíží s firmwarem. Požádejte výrobce počítače o aktualizovaný firmware.

Error - 4.10.2013 18:05:12 | Computer Name = Ondřej-PC | Source = bowser | ID = 8003
Description =

Error - 4.10.2013 22:10:07 | Computer Name = Ondřej-PC | Source = Microsoft-Windows-Kernel-Processor-Power | ID = 6
Description = Některé funkce řízení napájení při činnosti procesoru byly zakázány
z důvodu potíží s firmwarem. Požádejte výrobce počítače o aktualizovaný firmware.

Error - 4.10.2013 22:38:19 | Computer Name = Ondřej-PC | Source = Microsoft-Windows-Kernel-Processor-Power | ID = 6
Description = Některé funkce řízení napájení při činnosti procesoru byly zakázány
z důvodu potíží s firmwarem. Požádejte výrobce počítače o aktualizovaný firmware.

Error - 4.10.2013 23:19:21 | Computer Name = Ondřej-PC | Source = bowser | ID = 8003
Description =

Error - 5.10.2013 4:44:38 | Computer Name = Ondřej-PC | Source = Microsoft-Windows-Kernel-Processor-Power | ID = 6
Description = Některé funkce řízení napájení při činnosti procesoru byly zakázány
z důvodu potíží s firmwarem. Požádejte výrobce počítače o aktualizovaný firmware.


< End of report >

Re: Podezření na spyware

Napsal: 06 říj 2013 00:15
od OZuna
OTL:

OTL logfile created on: 5.10.2013 19:53:51 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Ondřej\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16686)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,44 Gb Total Physical Memory | 1,37 Gb Available Physical Memory | 39,89% Memory free
6,87 Gb Paging File | 4,07 Gb Available in Paging File | 59,26% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465,76 Gb Total Space | 295,32 Gb Free Space | 63,41% Space Free | Partition Type: NTFS
Drive E: | 644,12 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: UDF
Drive F: | 465,11 Gb Total Space | 209,82 Gb Free Space | 45,11% Space Free | Partition Type: NTFS
Drive G: | 1862,98 Gb Total Space | 940,46 Gb Free Space | 50,48% Space Free | Partition Type: NTFS
Drive H: | 6,83 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF

Computer Name: ONDŘEJ-PC | User Name: Ondřej | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013.10.05 19:52:05 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Ondřej\Desktop\OTL.exe
PRC - [2013.10.05 11:13:20 | 000,280,792 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrB.exe
PRC - [2013.10.05 06:03:37 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2013.09.21 20:35:00 | 000,565,672 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe
PRC - [2013.09.21 20:34:58 | 001,814,440 | ---- | M] (Valve Corporation) -- C:\Program Files (x86)\Steam\Steam.exe
PRC - [2013.09.17 05:21:30 | 000,829,392 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2013.08.30 09:47:34 | 004,858,968 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2013.08.30 09:47:33 | 000,046,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe


========== Modules (No Company Name) ==========

MOD - [2013.09.21 20:35:00 | 001,121,192 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\chromehtml.dll
MOD - [2013.09.17 05:21:27 | 000,410,576 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\ppgooglenaclpluginchrome.dll
MOD - [2013.09.17 05:21:26 | 013,611,984 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\PepperFlash\pepflashplayer.dll
MOD - [2013.09.17 05:21:25 | 004,053,456 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\pdf.dll
MOD - [2013.09.17 05:20:34 | 000,709,584 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\libglesv2.dll
MOD - [2013.09.17 05:20:33 | 000,099,792 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\libegl.dll
MOD - [2013.09.17 05:20:31 | 001,604,560 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\ffmpegsumo.dll
MOD - [2013.09.11 00:20:56 | 020,625,832 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\libcef.dll
MOD - [2013.08.22 00:18:28 | 000,687,104 | ---- | M] () -- C:\Program Files (x86)\Steam\SDL2.dll
MOD - [2013.06.15 01:49:12 | 001,100,800 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avcodec-53.dll
MOD - [2013.06.15 01:49:12 | 000,192,000 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avformat-53.dll
MOD - [2013.06.15 01:49:12 | 000,124,416 | ---- | M] () -- C:\Program Files (x86)\Steam\bin\avutil-51.dll


========== Services (SafeList) ==========

SRV:64bit: - [2013.08.31 00:57:54 | 000,239,616 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2013.08.30 09:47:33 | 000,046,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2013.05.27 07:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2013.10.05 11:13:20 | 000,280,792 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrB.exe -- (PnkBstrB)
SRV - [2013.10.05 06:03:37 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2013.09.21 20:35:00 | 000,565,672 | ---- | M] (Valve Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012.07.09 00:40:10 | 000,104,912 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2013.10.05 02:58:58 | 000,283,064 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2013.08.31 02:11:28 | 012,528,640 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2013.08.31 00:32:32 | 000,618,496 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2013.08.30 09:48:10 | 001,030,952 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2013.08.30 09:48:10 | 000,378,944 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2013.08.30 09:48:10 | 000,204,880 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2013.08.30 09:48:10 | 000,072,016 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2013.08.30 09:48:10 | 000,065,336 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2013.08.30 09:48:10 | 000,064,288 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
DRV:64bit: - [2013.08.30 09:48:09 | 000,080,816 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2013.08.30 09:48:09 | 000,033,400 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV:64bit: - [2013.07.05 10:40:38 | 000,096,256 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2012.08.23 16:12:16 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2012.08.23 16:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012.08.23 16:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012.08.23 16:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012.03.01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011.03.11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.03.11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010.11.21 05:23:48 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub)
DRV:64bit: - [2010.11.21 05:23:48 | 000,088,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:64bit: - [2010.11.21 05:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2010.11.21 05:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009.03.01 23:05:32 | 000,187,392 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-200722194-2984085620-2350800992-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-200722194-2984085620-2350800992-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE10SR
IE - HKU\S-1-5-21-200722194-2984085620-2350800992-1001\..\SearchScopes\{36375BC3-4CF9-4077-A098-C93C6043C75A}: "URL" = http://tv.seznam.cz/hledej?w={searchTer ... arch_13415
IE - HKU\S-1-5-21-200722194-2984085620-2350800992-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/AuthorwarePlayer: C:\Windows\system32\Macromed\AUTHORWA\np32asw.dll (Macromedia, Inc.)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.40.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.40.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)


[2013.10.05 05:52:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions
[2013.09.27 17:24:21 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ondřej\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\extensions\staged

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter},
CHR - homepage: http://www.google.com
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.76\pdf.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
CHR - Extension: Dokumenty Google = C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Disk Google = C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Vyhled\u00E1v\u00E1n\u00ED Google = C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: avast! Online Security = C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.8_0\
CHR - Extension: Chrome In-App Payments service = C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\
CHR - Extension: Gmail = C:\Users\Ondřej\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2013.09.27 16:59:23 | 000,000,864 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 validation.sls.microsoft.com
O2:64bit: - BHO: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (no name) - {D5FEC983-01DB-414a-9456-AF95AC9ED7B5} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4:64bit: - HKLM..\Run: [Logitech Download Assistant] C:\Windows\SysNative\LogiLDA.dll (Logitech, Inc.)
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Driver Genius] File not found
O4 - HKLM..\Run: [seznam-listicka-distribuce] C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe ()
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-200722194-2984085620-2350800992-1001..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (Disc Soft Ltd)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-200722194-2984085620-2350800992-1001\..Trusted Domains: localhost ([]http in Internet)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{75C4147A-EABE-4DAC-83A0-537D2BD8AC46}: DhcpNameServer = 192.168.0.1
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.18 23:12:18 | 000,000,088 | ---- | M] () - E:\autorun.inf -- [ UDF ]
O32 - AutoRun File - [2009.11.23 14:05:40 | 006,321,456 | R--- | M] (Codemasters Software Co.) - H:\Autorun.exe -- [ UDF ]
O32 - AutoRun File - [2009.09.28 15:23:06 | 000,000,068 | R--- | M] () - H:\autorun.inf -- [ UDF ]
O33 - MountPoints2\{54889c28-2985-11e3-8545-bc5ff459bf2f}\Shell - "" = AutoRun
O33 - MountPoints2\{54889c28-2985-11e3-8545-bc5ff459bf2f}\Shell\AutoRun\command - "" = E:\WD SmartWare.exe -- [2009.10.14 23:28:45 | 003,271,968 | ---- | M] (Western Digital)
O33 - MountPoints2\{857215b2-2c3e-11e3-b176-bc5ff459bf2f}\Shell - "" = AutoRun
O33 - MountPoints2\{857215b2-2c3e-11e3-b176-bc5ff459bf2f}\Shell\AutoRun\command - "" = H:\Autorun.exe -- [2009.11.23 14:05:40 | 006,321,456 | R--- | M] (Codemasters Software Co.)
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2013.10.05 19:51:48 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Ondřej\Desktop\OTL.exe
[2013.10.05 19:49:13 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\Desktop\Dějiny podnikání
[2013.10.05 06:01:12 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Local\PunkBuster
[2013.10.05 06:00:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Chart Controls
[2013.10.05 05:59:18 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Local\CrashRpt
[2013.10.05 05:53:05 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2013.10.05 05:53:04 | 000,000,000 | ---D | C] -- C:\rsit
[2013.10.05 05:31:12 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\SysWow64\CSVer.dll
[2013.10.05 05:31:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel
[2013.10.05 05:30:48 | 000,000,000 | ---D | C] -- C:\Intel
[2013.10.05 05:27:54 | 000,000,000 | ---D | C] -- C:\ProgramData\DriverGenius
[2013.10.05 05:27:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Genius
[2013.10.05 05:27:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Driver-Soft
[2013.10.05 04:17:07 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\Foxit Software
[2013.10.05 03:26:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Codemasters
[2013.10.05 03:26:53 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft
[2013.10.05 03:24:26 | 000,839,680 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\mkl_vml_p4.dll
[2013.10.05 03:24:25 | 003,485,696 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\mkl_p4.dll
[2013.10.05 03:24:25 | 000,532,480 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\mkl_vml_p3.dll
[2013.10.05 03:24:25 | 000,512,000 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\mkl_vml_def.dll
[2013.10.05 03:24:24 | 002,793,472 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\mkl_p3.dll
[2013.10.05 03:24:24 | 002,125,824 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\mkl_lapack64.dll
[2013.10.05 03:24:23 | 002,441,216 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\mkl_def.dll
[2013.10.05 03:24:23 | 002,174,976 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\mkl_lapack32.dll
[2013.10.05 03:24:23 | 000,184,320 | ---- | C] (Intel Corporation) -- C:\Windows\SysWow64\libguide40.dll
[2013.10.05 03:24:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows - LIVE
[2013.10.05 03:23:38 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\xlive
[2013.10.05 03:23:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
[2013.10.05 03:23:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenAL
[2013.10.05 03:04:00 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2013.10.05 03:01:40 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Local\Bundled software uninstaller
[2013.10.05 03:00:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Seznam.cz
[2013.10.05 03:00:15 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\Seznam.cz
[2013.10.05 02:59:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2013.10.05 02:58:58 | 000,283,064 | ---- | C] (Disc Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2013.10.05 02:58:52 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\DAEMON Tools Lite
[2013.10.05 02:58:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2013.10.05 02:57:59 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2013.10.04 13:46:29 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\Desktop\PS3
[2013.10.04 03:40:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Alawarhry.cz
[2013.10.04 02:33:51 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\Artifex Mundi
[2013.10.04 02:33:34 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\AlawarWrapper
[2013.10.04 02:33:18 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Local\AlawarWrapper
[2013.10.04 02:33:16 | 000,000,000 | ---D | C] -- C:\ProgramData\AWEM
[2013.10.04 02:33:15 | 000,000,000 | ---D | C] -- C:\ProgramData\AlawarWrapper
[2013.10.04 02:33:04 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hry.cz
[2013.10.04 02:33:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Hry.cz
[2013.10.01 20:29:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Oracle
[2013.10.01 20:29:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2013.10.01 20:29:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2013.10.01 20:28:55 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\kbpki
[2013.10.01 20:28:41 | 000,790,440 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll
[2013.10.01 20:28:40 | 000,868,264 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\npDeployJava1.dll
[2013.10.01 20:28:40 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2013.10.01 20:28:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2013.10.01 20:28:30 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2013.10.01 20:28:30 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2013.10.01 20:28:30 | 000,096,168 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2013.10.01 20:28:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2013.10.01 20:25:43 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\Plocha
[2013.10.01 01:54:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BS.Player
[2013.10.01 01:54:26 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\BSplayer Pro
[2013.10.01 01:54:26 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\BSplayer
[2013.10.01 01:54:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Webteh
[2013.09.30 06:08:51 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\Desktop\1. Ročník
[2013.09.29 02:04:21 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\uTorrent
[2013.09.29 02:04:21 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
[2013.09.28 17:01:26 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Local\Ubisoft Game Launcher
[2013.09.28 17:01:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ubisoft
[2013.09.28 16:34:48 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_7.dll
[2013.09.28 16:34:48 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_7.dll
[2013.09.28 16:34:48 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_7.dll
[2013.09.28 16:34:48 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_7.dll
[2013.09.28 16:34:48 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_5.dll
[2013.09.28 16:34:48 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_5.dll
[2013.09.28 16:34:47 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_43.dll
[2013.09.28 16:34:47 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_43.dll
[2013.09.28 16:34:45 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_43.dll
[2013.09.28 16:34:45 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_43.dll
[2013.09.28 16:34:45 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_43.dll
[2013.09.28 16:34:45 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_43.dll
[2013.09.28 16:34:43 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_43.dll
[2013.09.28 16:34:43 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_43.dll
[2013.09.28 16:34:42 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_43.dll
[2013.09.28 16:34:42 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_43.dll
[2013.09.28 16:34:42 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_6.dll
[2013.09.28 16:34:42 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_6.dll
[2013.09.28 16:34:42 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_4.dll
[2013.09.28 16:34:42 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_4.dll
[2013.09.28 16:34:41 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_6.dll
[2013.09.28 16:34:41 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_6.dll
[2013.09.28 16:34:41 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_7.dll
[2013.09.28 16:34:41 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_7.dll
[2013.09.28 16:34:40 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_5.dll
[2013.09.28 16:34:40 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_5.dll
[2013.09.28 16:34:39 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_42.dll
[2013.09.28 16:34:39 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_42.dll
[2013.09.28 16:34:39 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_5.dll
[2013.09.28 16:34:39 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_5.dll
[2013.09.28 16:34:37 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dcsx_42.dll
[2013.09.28 16:34:37 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dcsx_42.dll
[2013.09.28 16:34:36 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_42.dll
[2013.09.28 16:34:36 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_42.dll
[2013.09.28 16:34:36 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx11_42.dll
[2013.09.28 16:34:36 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx11_42.dll
[2013.09.28 16:34:35 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_42.dll
[2013.09.28 16:34:35 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_42.dll
[2013.09.28 16:34:34 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_41.dll
[2013.09.28 16:34:34 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_41.dll
[2013.09.28 16:34:34 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_41.dll
[2013.09.28 16:34:34 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_41.dll
[2013.09.28 16:34:33 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_41.dll
[2013.09.28 16:34:33 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_41.dll
[2013.09.28 16:34:32 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_4.dll
[2013.09.28 16:34:32 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_4.dll
[2013.09.28 16:34:32 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_3.dll
[2013.09.28 16:34:32 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_3.dll
[2013.09.28 16:34:31 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_4.dll
[2013.09.28 16:34:31 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_4.dll
[2013.09.28 16:34:31 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_6.dll
[2013.09.28 16:34:31 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_6.dll
[2013.09.28 16:34:29 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_40.dll
[2013.09.28 16:34:29 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_40.dll
[2013.09.28 16:34:29 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_40.dll
[2013.09.28 16:34:29 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_40.dll
[2013.09.28 16:34:28 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_40.dll
[2013.09.28 16:34:28 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_40.dll
[2013.09.28 16:34:27 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_3.dll
[2013.09.28 16:34:27 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_3.dll
[2013.09.28 16:34:27 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_3.dll
[2013.09.28 16:34:27 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_3.dll
[2013.09.28 16:34:27 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_2.dll
[2013.09.28 16:34:27 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_2.dll
[2013.09.28 16:34:26 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_2.dll
[2013.09.28 16:34:26 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_2.dll
[2013.09.28 16:34:26 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_1.dll
[2013.09.28 16:34:26 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_1.dll
[2013.09.28 16:34:26 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_5.dll
[2013.09.28 16:34:26 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_5.dll
[2013.09.28 16:34:25 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_2.dll
[2013.09.28 16:34:25 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_2.dll
[2013.09.28 16:34:24 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_39.dll
[2013.09.28 16:34:24 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_39.dll
[2013.09.28 16:34:24 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_39.dll
[2013.09.28 16:34:24 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_39.dll
[2013.09.28 16:34:23 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_39.dll
[2013.09.28 16:34:23 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_39.dll
[2013.09.28 16:34:22 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_1.dll
[2013.09.28 16:34:22 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_1.dll
[2013.09.28 16:34:22 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_1.dll
[2013.09.28 16:34:22 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_1.dll
[2013.09.28 16:34:22 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAPOFX1_0.dll
[2013.09.28 16:34:22 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAPOFX1_0.dll
[2013.09.28 16:34:21 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_4.dll
[2013.09.28 16:34:21 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_4.dll
[2013.09.28 16:34:20 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_38.dll
[2013.09.28 16:34:20 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_38.dll
[2013.09.28 16:34:20 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_38.dll
[2013.09.28 16:34:20 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_38.dll
[2013.09.28 16:34:18 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_38.dll
[2013.09.28 16:34:18 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_38.dll
[2013.09.28 16:34:18 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XAudio2_0.dll
[2013.09.28 16:34:18 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XAudio2_0.dll
[2013.09.28 16:34:17 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine3_0.dll
[2013.09.28 16:34:17 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine3_0.dll
[2013.09.28 16:34:17 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_3.dll
[2013.09.28 16:34:17 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_3.dll
[2013.09.28 16:34:16 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_37.dll
[2013.09.28 16:34:16 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_37.dll
[2013.09.28 16:34:16 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_37.dll
[2013.09.28 16:34:16 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_37.dll
[2013.09.28 16:34:14 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DX9_37.dll
[2013.09.28 16:34:14 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DX9_37.dll
[2013.09.28 16:34:13 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_10.dll
[2013.09.28 16:34:13 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_10.dll
[2013.09.28 16:34:12 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_36.dll
[2013.09.28 16:34:12 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_36.dll
[2013.09.28 16:34:12 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_36.dll
[2013.09.28 16:34:12 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_36.dll
[2013.09.28 16:34:10 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_36.dll
[2013.09.28 16:34:10 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_36.dll
[2013.09.28 16:34:09 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_9.dll
[2013.09.28 16:34:09 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_9.dll
[2013.09.28 16:34:08 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_35.dll
[2013.09.28 16:34:08 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_35.dll
[2013.09.28 16:34:08 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_35.dll
[2013.09.28 16:34:08 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_35.dll
[2013.09.28 16:34:06 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_35.dll
[2013.09.28 16:34:06 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_35.dll
[2013.09.28 16:34:06 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_8.dll
[2013.09.28 16:34:06 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_8.dll
[2013.09.28 16:34:06 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\X3DAudio1_2.dll
[2013.09.28 16:34:06 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\X3DAudio1_2.dll
[2013.09.28 16:34:05 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_34.dll
[2013.09.28 16:34:05 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_34.dll
[2013.09.28 16:34:05 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_34.dll
[2013.09.28 16:34:05 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_34.dll
[2013.09.28 16:34:03 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_34.dll
[2013.09.28 16:34:03 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_34.dll
[2013.09.28 16:34:03 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_3.dll
[2013.09.28 16:34:02 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_7.dll
[2013.09.28 16:34:02 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_7.dll
[2013.09.28 16:34:01 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\D3DCompiler_33.dll
[2013.09.28 16:34:01 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\D3DCompiler_33.dll
[2013.09.28 16:34:01 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10_33.dll
[2013.09.28 16:34:01 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10_33.dll
[2013.09.28 16:34:00 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_33.dll
[2013.09.28 16:34:00 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_33.dll
[2013.09.28 16:33:59 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_6.dll
[2013.09.28 16:33:59 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_6.dll
[2013.09.28 16:33:58 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_5.dll
[2013.09.28 16:33:58 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_5.dll
[2013.09.28 16:33:57 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx10.dll
[2013.09.28 16:33:57 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx10.dll
[2013.09.28 16:33:56 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_32.dll
[2013.09.28 16:33:56 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_32.dll
[2013.09.28 16:33:55 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_4.dll
[2013.09.28 16:33:55 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_4.dll
[2013.09.28 16:33:55 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_1.dll
[2013.09.28 16:33:55 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_1.dll
[2013.09.28 16:33:54 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_31.dll
[2013.09.28 16:33:54 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_31.dll
[2013.09.28 16:33:53 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_3.dll
[2013.09.28 16:33:53 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_3.dll
[2013.09.28 16:33:53 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_2.dll
[2013.09.28 16:33:53 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_2.dll
[2013.09.28 16:33:52 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_2.dll
[2013.09.28 16:33:52 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_2.dll
[2013.09.28 16:33:52 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xinput1_1.dll
[2013.09.28 16:33:52 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xinput1_1.dll
[2013.09.28 16:33:51 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_1.dll
[2013.09.28 16:33:51 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_1.dll
[2013.09.28 16:33:41 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_30.dll
[2013.09.28 16:33:41 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2013.09.28 16:33:39 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xactengine2_0.dll
[2013.09.28 16:33:39 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xactengine2_0.dll
[2013.09.28 16:33:39 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\x3daudio1_0.dll
[2013.09.28 16:33:39 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\x3daudio1_0.dll
[2013.09.28 16:33:37 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_29.dll
[2013.09.28 16:33:37 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_29.dll
[2013.09.28 16:33:34 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_28.dll
[2013.09.28 16:33:34 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2013.09.28 16:33:32 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2013.09.28 16:33:32 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2013.09.28 16:33:29 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_26.dll
[2013.09.28 16:33:29 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_26.dll
[2013.09.28 16:33:26 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_25.dll
[2013.09.28 16:33:26 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_25.dll
[2013.09.28 16:33:23 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_24.dll
[2013.09.28 16:33:23 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_24.dll
[2013.09.28 07:34:28 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\Documents\my games
[2013.09.28 06:19:33 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\Macromedia
[2013.09.28 01:29:01 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
[2013.09.28 01:14:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2013.09.28 01:14:19 | 000,033,400 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2013.09.28 01:14:18 | 000,378,944 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2013.09.28 01:14:15 | 000,072,016 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2013.09.28 01:14:15 | 000,064,288 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2013.09.28 01:14:14 | 001,030,952 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2013.09.28 01:14:11 | 000,080,816 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2013.09.28 01:12:49 | 000,041,664 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2013.09.28 01:00:42 | 000,000,000 | --SD | C] -- C:\Windows\SysWow64\Microsoft
[2013.09.27 21:08:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2013.09.27 21:08:14 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2013.09.27 21:05:00 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RdpGroupPolicyExtension.dll
[2013.09.27 21:05:00 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyExtension.dll
[2013.09.27 21:05:00 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyControl.exe
[2013.09.27 21:04:56 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbGD.sys
[2013.09.27 21:04:56 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\terminpt.sys
[2013.09.27 21:04:56 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys
[2013.09.27 21:04:55 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys
[2013.09.27 21:04:49 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbGDCoInstaller.dll
[2013.09.27 21:04:49 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wksprtPS.dll
[2013.09.27 21:04:48 | 000,322,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aaclient.dll
[2013.09.27 21:04:48 | 000,269,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aaclient.dll
[2013.09.27 21:04:48 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpendp_winip.dll
[2013.09.27 21:04:48 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MsRdpWebAccess.dll
[2013.09.27 21:04:48 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
[2013.09.27 21:04:48 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll
[2013.09.27 21:04:48 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wksprtPS.dll
[2013.09.27 21:04:47 | 001,123,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe
[2013.09.27 21:04:47 | 001,048,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe
[2013.09.27 21:04:47 | 000,384,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wksprt.exe
[2013.09.27 21:04:47 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpudd.dll
[2013.09.27 21:04:47 | 000,228,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpendp_winip.dll
[2013.09.27 21:04:47 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TSWbPrxy.exe
[2013.09.27 21:04:47 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsRdpWebAccess.dll
[2013.09.27 21:04:46 | 004,916,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2013.09.27 21:04:46 | 003,174,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorets.dll
[2013.09.27 21:04:45 | 005,773,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2013.09.27 21:01:31 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dhcpcore6.dll
[2013.09.27 21:01:30 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore6.dll
[2013.09.27 21:01:30 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcsvc6.dll
[2013.09.27 21:01:00 | 001,448,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2013.09.27 21:00:53 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcorehc.dll
[2013.09.27 21:00:53 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll
[2013.09.27 21:00:53 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netevent.dll
[2013.09.27 21:00:51 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcorehc.dll
[2013.09.27 21:00:51 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
[2013.09.27 21:00:51 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netevent.dll
[2013.09.27 20:56:34 | 000,245,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OxpsConverter.exe
[2013.09.27 20:55:34 | 000,308,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Wpc.dll
[2013.09.27 20:55:33 | 002,576,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gameux.dll
[2013.09.27 20:55:33 | 000,055,296 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\cero.rs
[2013.09.27 20:55:33 | 000,051,712 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\esrb.rs
[2013.09.27 20:55:33 | 000,046,592 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\fpb.rs
[2013.09.27 20:55:33 | 000,045,568 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\oflc-nz.rs
[2013.09.27 20:55:33 | 000,044,544 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegibbfc.rs
[2013.09.27 20:55:33 | 000,043,520 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\csrr.rs
[2013.09.27 20:55:33 | 000,040,960 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\cob-au.rs
[2013.09.27 20:55:33 | 000,030,720 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\usk.rs
[2013.09.27 20:55:33 | 000,023,552 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\oflc.rs
[2013.09.27 20:55:33 | 000,021,504 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\grb.rs
[2013.09.27 20:55:33 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegi-pt.rs
[2013.09.27 20:55:33 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegi-fi.rs
[2013.09.27 20:55:33 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\pegi.rs
[2013.09.27 20:55:33 | 000,015,360 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\djctq.rs
[2013.09.27 20:55:32 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wpc.dll
[2013.09.27 20:55:31 | 002,746,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gameux.dll
[2013.09.27 20:55:31 | 000,055,296 | ---- | C] (Microsoft) -- C:\Windows\SysNative\cero.rs
[2013.09.27 20:55:31 | 000,051,712 | ---- | C] (Microsoft) -- C:\Windows\SysNative\esrb.rs
[2013.09.27 20:55:31 | 000,046,592 | ---- | C] (Microsoft) -- C:\Windows\SysNative\fpb.rs
[2013.09.27 20:55:31 | 000,045,568 | ---- | C] (Microsoft) -- C:\Windows\SysNative\oflc-nz.rs
[2013.09.27 20:55:31 | 000,044,544 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegibbfc.rs
[2013.09.27 20:55:31 | 000,043,520 | ---- | C] (Microsoft) -- C:\Windows\SysNative\csrr.rs
[2013.09.27 20:55:31 | 000,040,960 | ---- | C] (Microsoft) -- C:\Windows\SysNative\cob-au.rs
[2013.09.27 20:55:31 | 000,030,720 | ---- | C] (Microsoft) -- C:\Windows\SysNative\usk.rs
[2013.09.27 20:55:31 | 000,023,552 | ---- | C] (Microsoft) -- C:\Windows\SysNative\oflc.rs
[2013.09.27 20:55:31 | 000,021,504 | ---- | C] (Microsoft) -- C:\Windows\SysNative\grb.rs
[2013.09.27 20:55:31 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegi-pt.rs
[2013.09.27 20:55:31 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegi-fi.rs
[2013.09.27 20:55:31 | 000,020,480 | ---- | C] (Microsoft) -- C:\Windows\SysNative\pegi.rs
[2013.09.27 20:55:31 | 000,015,360 | ---- | C] (Microsoft) -- C:\Windows\SysNative\djctq.rs
[2013.09.27 20:30:01 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\cs
[2013.09.27 20:29:55 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\XPSViewer
[2013.09.27 20:29:55 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\drivers\cs-CZ
[2013.09.27 20:29:55 | 000,000,000 | ---D | C] -- C:\Windows\cs-CZ
[2013.09.27 20:29:53 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\cs
[2013.09.27 20:29:40 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\cs-CZ
[2013.09.27 20:19:56 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\wdf01000.sys.mui
[2013.09.27 20:19:54 | 000,054,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys
[2013.09.27 20:19:54 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wdfres.dll
[2013.09.27 20:05:38 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFPlatform.dll
[2013.09.27 20:05:35 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFx.dll
[2013.09.27 20:05:35 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFHost.exe
[2013.09.27 20:05:35 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFCoinstaller.dll
[2013.09.27 20:01:27 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\rdvgkmd.sys.mui
[2013.09.27 20:01:27 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\rdpwd.sys.mui
[2013.09.27 20:01:22 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\tunnel.sys.mui
[2013.09.27 20:01:22 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\tsusbhub.sys.mui
[2013.09.27 20:01:22 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\UAGP35.SYS.mui
[2013.09.27 20:01:21 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\tsusbflt.sys.mui
[2013.09.27 20:01:20 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\usbport.sys.mui
[2013.09.27 20:01:12 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\battc.sys.mui
[2013.09.27 20:01:07 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\GAGP30KX.SYS.mui
[2013.09.27 20:01:04 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\kbdclass.sys.mui
[2013.09.27 20:01:04 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\kbdhid.sys.mui
[2013.09.27 20:00:52 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\cs-CZ\bfe.dll.mui
[2013.09.27 20:00:51 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\cs-CZ\tcpip.sys.mui
[2013.09.27 20:00:48 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\cs-CZ\scfilter.sys.mui
[2013.09.27 20:00:46 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\cs-CZ\qwavedrv.sys.mui
[2013.09.27 20:00:28 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\cs-CZ\pacer.sys.mui
[2013.09.27 20:00:25 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drivers\cs-CZ\ndiscap.sys.mui
[2013.09.27 20:00:17 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\volsnap.sys.mui
[2013.09.27 20:00:17 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\usbhub.sys.mui
[2013.09.27 20:00:17 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\vhdmp.sys.mui
[2013.09.27 20:00:17 | 000,003,584 | ---- | C] (SCM Microsystems, Inc.) -- C:\Windows\SysNative\drivers\cs-CZ\pscr.sys.mui
[2013.09.27 20:00:17 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\tpm.sys.mui
[2013.09.27 20:00:17 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\portcls.sys.mui
[2013.09.27 20:00:17 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\umbus.sys.mui
[2013.09.27 20:00:17 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\serscan.sys.mui
[2013.09.27 20:00:17 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\wd.sys.mui
[2013.09.27 20:00:12 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\pcmcia.sys.mui
[2013.09.27 20:00:11 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\mpio.sys.mui
[2013.09.27 20:00:11 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\serial.sys.mui
[2013.09.27 20:00:11 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\i8042prt.sys.mui
[2013.09.27 20:00:11 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\msdsm.sys.mui
[2013.09.27 20:00:11 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\sermouse.sys.mui
[2013.09.27 20:00:11 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\mouclass.sys.mui
[2013.09.27 20:00:11 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\parport.sys.mui
[2013.09.27 20:00:11 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\rndismpx.sys.mui
[2013.09.27 20:00:11 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\rndismp6.sys.mui
[2013.09.27 20:00:11 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\ataport.sys.mui
[2013.09.27 20:00:11 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\vwifibus.sys.mui
[2013.09.27 20:00:11 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\MTConfig.sys.mui
[2013.09.27 20:00:11 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\mouhid.sys.mui
[2013.09.27 20:00:11 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\amdide.sys.mui
[2013.09.27 20:00:08 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\afd.sys.mui
[2013.09.27 20:00:06 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\bfe.dll.mui
[2013.09.27 20:00:06 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\ws2ifsl.sys.mui
[2013.09.27 20:00:05 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\usbrpm.sys.mui
[2013.09.27 20:00:04 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\tcpip.sys.mui
[2013.09.27 20:00:04 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\modem.sys.mui
[2013.09.27 19:59:58 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\fvevol.sys.mui
[2013.09.27 19:59:58 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\scfilter.sys.mui
[2013.09.27 19:59:54 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\rdbss.sys.mui
[2013.09.27 19:59:53 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\pacer.sys.mui
[2013.09.27 19:59:53 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\qwavedrv.sys.mui
[2013.09.27 19:59:51 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\partmgr.sys.mui
[2013.09.27 19:59:47 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\ntfs.sys.mui
[2013.09.27 19:59:47 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\ndis.sys.mui
[2013.09.27 19:59:47 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\nwifi.sys.mui
[2013.09.27 19:59:47 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\ndisuio.sys.mui
[2013.09.27 19:59:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\ndiscap.sys.mui
[2013.09.27 19:59:40 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\mountmgr.sys.mui
[2013.09.27 19:59:38 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\luafv.sys.mui
[2013.09.27 19:59:34 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\http.sys.mui
[2013.09.27 19:59:26 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\fltmgr.sys.mui
[2013.09.27 19:59:21 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\volmgrx.sys.mui
[2013.09.27 19:59:09 | 000,009,728 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\cs-CZ\BrSerIb.sys.mui
[2013.09.27 19:59:09 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\pci.sys.mui
[2013.09.27 19:59:09 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\vdrvroot.sys.mui
[2013.09.27 19:59:09 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\isapnp.sys.mui
[2013.09.27 19:59:09 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\mssmbios.sys.mui
[2013.09.27 19:59:09 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\ULIAGPKX.SYS.mui
[2013.09.27 19:59:09 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\pnpmem.sys.mui
[2013.09.27 19:59:09 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\NV_AGP.SYS.mui
[2013.09.27 19:59:09 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\AGP440.sys.mui
[2013.09.27 19:59:08 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\IPMIDrv.sys.mui
[2013.09.27 19:59:07 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\wacompen.sys.mui
[2013.09.27 19:59:07 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\hdaudbus.sys.mui
[2013.09.27 19:59:07 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\HdAudio.sys.mui
[2013.09.27 19:59:07 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\hidbth.sys.mui
[2013.09.27 19:59:07 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\Dot4usb.sys.mui
[2013.09.27 19:59:06 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\processr.sys.mui
[2013.09.27 19:59:06 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\intelppm.sys.mui
[2013.09.27 19:59:06 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\amdppm.sys.mui
[2013.09.27 19:59:06 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\amdk8.sys.mui
[2013.09.27 19:59:06 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\disk.sys.mui
[2013.09.27 19:59:06 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\cdrom.sys.mui
[2013.09.27 19:59:05 | 000,009,728 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\cs-CZ\BrSerId.sys.mui
[2013.09.27 19:59:05 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\bthport.sys.mui
[2013.09.27 19:59:05 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\bthpan.sys.mui
[2013.09.27 19:59:05 | 000,003,072 | ---- | C] (ATI Technologies Inc.) -- C:\Windows\SysNative\drivers\cs-CZ\atikmdag.sys.mui
[2013.09.27 19:59:05 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\BTHUSB.SYS.mui
[2013.09.27 19:59:05 | 000,002,560 | ---- | C] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\cs-CZ\BrParwdm.sys.mui
[2013.09.27 19:59:05 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\bthenum.sys.mui
[2013.09.27 19:59:04 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\ohci1394.sys.mui
[2013.09.27 19:59:04 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\1394ohci.sys.mui
[2013.09.27 19:59:04 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cs-CZ\acpi.sys.mui
[2013.09.27 19:52:03 | 002,315,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
[2013.09.27 19:52:03 | 002,223,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll
[2013.09.27 19:52:02 | 001,549,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2013.09.27 19:52:02 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
[2013.09.27 19:52:02 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchProtocolHost.exe
[2013.09.27 19:52:01 | 000,778,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll
[2013.09.27 19:52:01 | 000,491,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssph.dll
[2013.09.27 19:52:01 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssph.dll
[2013.09.27 19:52:01 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssphtb.dll
[2013.09.27 19:52:01 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFilterHost.exe
[2013.09.27 19:52:00 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll
[2013.09.27 19:52:00 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscntrs.dll
[2013.09.27 19:52:00 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscntrs.dll
[2013.09.27 19:51:42 | 001,424,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2013.09.27 19:51:37 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntshrui.dll
[2013.09.27 19:51:36 | 000,155,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ataport.sys
[2013.09.27 19:51:26 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptdlg.dll
[2013.09.27 19:51:26 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptdlg.dll
[2013.09.27 19:51:21 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\timedate.cpl
[2013.09.27 19:51:21 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl
[2013.09.27 19:51:19 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xmllite.dll
[2013.09.27 19:51:17 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\RNDISMP.sys
[2013.09.27 19:51:13 | 002,871,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2013.09.27 19:51:12 | 002,616,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2013.09.27 19:51:11 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanprotdim.dll
[2013.09.27 19:51:08 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usp10.dll
[2013.09.27 19:51:07 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2013.09.27 19:51:07 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2013.09.27 19:51:03 | 002,565,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\esent.dll
[2013.09.27 19:51:03 | 001,699,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\esent.dll
[2013.09.27 19:51:03 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fsutil.exe
[2013.09.27 19:51:03 | 000,027,008 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdxata.sys
[2013.09.27 19:51:02 | 000,189,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys
[2013.09.27 19:51:02 | 000,107,904 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdsata.sys
[2013.09.27 19:51:02 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fsutil.exe
[2013.09.27 19:50:57 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys
[2013.09.27 19:50:57 | 000,007,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys
[2013.09.27 19:50:56 | 000,027,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys
[2013.09.27 19:50:51 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2013.09.27 19:50:48 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prevhost.exe
[2013.09.27 19:50:48 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prevhost.exe
[2013.09.27 19:45:33 | 003,216,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2013.09.27 19:43:26 | 001,643,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2013.09.27 19:43:23 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\splwow64.exe
[2013.09.27 19:36:13 | 000,000,000 | ---D | C] -- C:\Users\Ondřej\AppData\Roaming\TeamViewer
[2013.09.27 19:24:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Yandex
[2013.09.27 18:50:33 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MRT

Re: Podezření na spyware

Napsal: 06 říj 2013 00:17
od OZuna
pokračoování OTL:


< MD5 for: NVSTOR.SYS >
[2011.03.11 08:19:21 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=D23C7E8566DA2B8A7C0DBBB761D54888 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvstor.sys
[2011.03.11 08:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\drivers\nvstor.sys
[2011.03.11 08:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvstor.sys
[2011.03.11 08:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvstor.sys
[2010.11.21 05:23:47 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvstor.sys
[2010.11.21 05:23:47 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvstor.sys

< MD5 for: SCECLI.DLL >
[2010.11.21 05:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010.11.21 05:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.21 05:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010.11.21 05:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll

< MD5 for: SMSS.EXE >
[2009.07.14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe
[2013.08.02 07:06:34 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=CB5DA3E44456D1084BCD87F5B1B3152B -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22411_none_0ae72ec548f19d13\smss.exe
[2013.08.02 02:59:09 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=F0970A4BC8395659C22BF53D0FADF16F -- C:\Windows\SysNative\smss.exe
[2013.08.02 02:59:09 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=F0970A4BC8395659C22BF53D0FADF16F -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18229_none_0a5ac2782fd4e6cb\smss.exe

< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2012.10.03 19:56:54 | 001,914,248 | ---- | M] (Microsoft Corporation) MD5=37608401DFDB388CAF66917F6B2D6FB0 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_110e0fbd7d2e4b88\tcpip.sys
[2010.11.21 05:24:08 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2013.07.06 07:20:38 | 001,900,992 | ---- | M] (Microsoft Corporation) MD5=B27F13153343BC37A27EAE01634D94E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22378_none_1190b9b296509a2f\tcpip.sys
[2012.10.03 19:44:29 | 001,902,472 | ---- | M] (Microsoft Corporation) MD5=D5707FC2300AA5B04B7BFE86D40C0133 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_11c2c45a962baed0\tcpip.sys
[2013.07.06 08:03:53 | 001,910,208 | ---- | M] (Microsoft Corporation) MD5=DB74544B75566C974815E79A62433F29 -- C:\Windows\SysNative\drivers\tcpip.sys
[2013.07.06 08:03:53 | 001,910,208 | ---- | M] (Microsoft Corporation) MD5=DB74544B75566C974815E79A62433F29 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18203_none_114dcae97cfeb81b\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010.11.21 05:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010.11.21 05:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010.11.21 05:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010.11.21 05:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010.11.21 05:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010.11.21 05:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe

< MD5 for: WS2_32.DLL >
[2010.11.21 05:24:28 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\Windows\SysNative\ws2_32.dll
[2010.11.21 05:24:28 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_50ddb631e4f59005\ws2_32.dll
[2010.11.21 05:23:55 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\SysWOW64\ws2_32.dll
[2010.11.21 05:23:55 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_f4bf1aae2c981ecf\ws2_32.dll

< >

< %systemroot%*.* /U /s >
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[3 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[3 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[3 C:\Windows\SysWOW64\*.tmp files -> C:\Windows\SysWOW64\*.tmp -> ]
[16 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2013.09.27 17:27:45 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Adobe
[2013.10.04 02:33:51 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Artifex Mundi
[2013.09.26 22:48:28 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\ATI
[2013.10.01 01:56:16 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\BSplayer
[2013.10.01 01:54:26 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\BSplayer Pro
[2013.10.05 03:00:44 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\DAEMON Tools Lite
[2013.10.05 04:17:07 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Foxit Software
[2013.09.26 21:54:38 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Identities
[2013.09.28 06:19:33 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Macromedia
[2011.04.12 10:28:08 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Media Center Programs
[2013.10.05 03:28:24 | 000,000,000 | --SD | M] -- C:\Users\Ondřej\AppData\Roaming\Microsoft
[2013.09.27 17:24:20 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Mozilla
[2013.10.05 05:52:30 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Seznam.cz
[2013.09.27 19:36:13 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\TeamViewer
[2013.10.05 05:27:01 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\uTorrent
[2013.09.27 16:58:16 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\WinRAR
[2013.09.27 19:25:20 | 000,000,000 | ---D | M] -- C:\Users\Ondřej\AppData\Roaming\Yandex

< %APPDATA%\*.exe /s >
[2009.08.11 21:21:26 | 000,087,552 | ---- | M] () -- C:\Users\Ondřej\AppData\Roaming\BSplayer\AC3 Filter\ac3config.exe
[2009.08.11 21:21:30 | 000,090,112 | ---- | M] () -- C:\Users\Ondřej\AppData\Roaming\BSplayer\AC3 Filter\spdif_test.exe
[2010.03.22 14:52:04 | 000,697,690 | ---- | M] () -- C:\Users\Ondřej\AppData\Roaming\BSplayer\AC3 Filter\unins000.exe
[2012.10.11 09:01:20 | 001,175,371 | ---- | M] () -- C:\Users\Ondřej\AppData\Roaming\BSplayer\FFDShow\unins000.exe
[2010.08.14 10:42:54 | 000,113,152 | ---- | M] () -- C:\Users\Ondřej\AppData\Roaming\BSplayer\Haali media splitter\dsmux.exe
[2010.08.14 10:45:10 | 000,358,400 | ---- | M] () -- C:\Users\Ondřej\AppData\Roaming\BSplayer\Haali media splitter\gdsmux.exe
[2010.08.14 10:42:06 | 000,137,728 | ---- | M] () -- C:\Users\Ondřej\AppData\Roaming\BSplayer\Haali media splitter\mkv2vfr.exe
[2010.09.30 15:30:22 | 000,042,305 | ---- | M] () -- C:\Users\Ondřej\AppData\Roaming\BSplayer\Haali media splitter\uninstall.exe
[2013.08.08 08:08:08 | 000,880,640 | ---- | M] (BitTorrent Inc.) -- C:\Users\Ondřej\AppData\Roaming\uTorrent\utorrent.exe
[2013.08.08 08:08:08 | 000,880,640 | ---- | M] (BitTorrent Inc.) -- C:\Users\Ondřej\AppData\Roaming\uTorrent\updates\3.3.1_30003.exe
[2013.09.29 02:04:30 | 000,888,152 | ---- | M] (BitTorrent Inc.) -- C:\Users\Ondřej\AppData\Roaming\uTorrent\updates\3.3.1_30017.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[3 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >
[3 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2013.10.05 06:03:37 | 000,076,888 | ---- | M] () -- C:\Windows\system32\PnkBstrA.exe
[2013.10.05 11:19:34 | 000,280,792 | ---- | M] () -- C:\Windows\system32\PnkBstrB.ex0
[2013.10.05 11:13:20 | 000,280,792 | ---- | M] () -- C:\Windows\system32\PnkBstrB.exe
[2013.10.05 11:19:34 | 000,280,792 | ---- | M] () -- C:\Windows\system32\PnkBstrB.xtr
[2013.10.05 03:23:12 | 000,445,016 | ---- | M] (Creative Labs) -- C:\Windows\system32\wrap_oal.dll
[3 C:\Windows\system32\*.tmp files -> C:\Windows\system32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"DAEMON Tools Lite" = "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun -- [2013.07.03 15:16:46 | 003,673,184 | ---- | M] (Disc Soft Ltd)

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
No captured output from command...

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
No captured output from command...

< >

< type c:\boot.ini >> test.txt /c >
No captured output from command...

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2013.10.05 19:56:58 | 000,000,512 | ---- | M] () MD5=056D948E597EB12CAA16415E2D0AC7BD -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2013.10.05 05:25:38 | 000,012,170 | ---- | M] () -- \Users\Ondřej\AppData\Roaming\uTorrent\Driver Genius Pro 12.0.0.1211+Crack [Accipiter].torrent

< *keygen* /s >

< *AntiWPA* /s >

< *loader* /s >
[2013.09.28 06:14:24 | 000,253,691 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Audiosurf\engine\Preloader.cgr
[2013.09.28 06:14:38 | 000,000,878 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Audiosurf\engine\Preloader_config.xml
[2013.09.28 06:14:43 | 000,097,889 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Audiosurf\engine\start - project loader.cgr
[2013.09.28 06:14:35 | 000,016,384 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Audiosurf\engine\channels\FileLoader.dll
[2013.09.28 05:03:11 | 000,058,880 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\PhysXLoader.dll
[2013.09.28 05:04:00 | 000,000,228 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\DEU\GD_Iris_LoaderBadass.DEU
[2013.09.28 05:03:25 | 000,000,916 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\DEU\GD_Iris_LoaderBUL.DEU
[2013.09.28 05:03:25 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\DEU\GD_Iris_LoaderEXP.DEU
[2013.09.28 05:03:54 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\DEU\GD_Iris_LoaderGUN.DEU
[2013.09.28 05:04:00 | 000,000,916 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\DEU\GD_Iris_LoaderHOT.DEU
[2013.09.28 05:03:25 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\DEU\GD_Iris_LoaderJET.DEU
[2013.09.28 05:03:26 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\DEU\GD_Iris_LoaderPWR.DEU
[2013.09.28 05:03:54 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\DEU\GD_Iris_LoaderRPG.DEU
[2013.09.28 05:04:01 | 000,002,656 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\DEU\GD_Iris_Population_Loader.DEU
[2013.09.28 05:04:00 | 000,000,228 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\ESN\GD_Iris_LoaderBadass.ESN
[2013.09.28 05:03:25 | 000,000,852 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\ESN\GD_Iris_LoaderBUL.ESN
[2013.09.28 05:03:25 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\ESN\GD_Iris_LoaderEXP.ESN
[2013.09.28 05:03:54 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\ESN\GD_Iris_LoaderGUN.ESN
[2013.09.28 05:06:06 | 000,000,852 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\ESN\GD_Iris_LoaderHOT.ESN
[2013.09.28 05:03:25 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\ESN\GD_Iris_LoaderJET.ESN
[2013.09.28 05:03:26 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\ESN\GD_Iris_LoaderPWR.ESN
[2013.09.28 05:03:54 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\ESN\GD_Iris_LoaderRPG.ESN
[2013.09.28 05:04:02 | 000,002,868 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\ESN\GD_Iris_Population_Loader.ESN
[2013.09.28 05:04:00 | 000,000,228 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\FRA\GD_Iris_LoaderBadass.FRA
[2013.09.28 05:05:53 | 000,000,876 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\FRA\GD_Iris_LoaderBUL.FRA
[2013.09.28 05:03:25 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\FRA\GD_Iris_LoaderEXP.FRA
[2013.09.28 05:03:54 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\FRA\GD_Iris_LoaderGUN.FRA
[2013.09.28 05:03:28 | 000,000,876 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\FRA\GD_Iris_LoaderHOT.FRA
[2013.09.28 05:03:25 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\FRA\GD_Iris_LoaderJET.FRA
[2013.09.28 05:03:26 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\FRA\GD_Iris_LoaderPWR.FRA
[2013.09.28 05:03:54 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\FRA\GD_Iris_LoaderRPG.FRA
[2013.09.28 05:04:03 | 000,002,706 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\FRA\GD_Iris_Population_Loader.FRA
[2013.09.28 05:04:00 | 000,000,228 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\ITA\GD_Iris_LoaderBadass.ITA
[2013.09.28 05:03:28 | 000,000,856 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\ITA\GD_Iris_LoaderBUL.ITA
[2013.09.28 05:03:25 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\ITA\GD_Iris_LoaderEXP.ITA
[2013.09.28 05:03:54 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\ITA\GD_Iris_LoaderGUN.ITA
[2013.09.28 05:03:56 | 000,000,856 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\ITA\GD_Iris_LoaderHOT.ITA
[2013.09.28 05:03:25 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\ITA\GD_Iris_LoaderJET.ITA
[2013.09.28 05:03:26 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\ITA\GD_Iris_LoaderPWR.ITA
[2013.09.28 05:03:54 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\ITA\GD_Iris_LoaderRPG.ITA
[2013.09.28 05:03:34 | 000,002,754 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\ITA\GD_Iris_Population_Loader.ITA
[2013.09.28 05:04:00 | 000,000,228 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\JPN\GD_Iris_LoaderBadass.JPN
[2013.09.28 05:05:39 | 000,000,748 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\JPN\GD_Iris_LoaderBUL.JPN
[2013.09.28 05:03:25 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\JPN\GD_Iris_LoaderEXP.JPN
[2013.09.28 05:03:54 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\JPN\GD_Iris_LoaderGUN.JPN
[2013.09.28 05:05:55 | 000,000,748 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\JPN\GD_Iris_LoaderHOT.JPN
[2013.09.28 05:03:25 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\JPN\GD_Iris_LoaderJET.JPN
[2013.09.28 05:03:26 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\JPN\GD_Iris_LoaderPWR.JPN
[2013.09.28 05:03:54 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\JPN\GD_Iris_LoaderRPG.JPN
[2013.09.28 05:03:29 | 000,002,636 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\JPN\GD_Iris_Population_Loader.JPN
[2013.09.28 05:04:00 | 000,000,228 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\KOR\GD_Iris_LoaderBadass.KOR
[2013.09.28 05:03:34 | 000,000,728 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\KOR\GD_Iris_LoaderBUL.KOR
[2013.09.28 05:03:25 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\KOR\GD_Iris_LoaderEXP.KOR
[2013.09.28 05:03:54 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\KOR\GD_Iris_LoaderGUN.KOR
[2013.09.28 05:03:58 | 000,000,728 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\KOR\GD_Iris_LoaderHOT.KOR
[2013.09.28 05:03:25 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\KOR\GD_Iris_LoaderJET.KOR
[2013.09.28 05:03:26 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\KOR\GD_Iris_LoaderPWR.KOR
[2013.09.28 05:03:54 | 000,000,222 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\KOR\GD_Iris_LoaderRPG.KOR
[2013.09.28 05:03:29 | 000,002,636 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Iris\Compat\Localization\KOR\GD_Iris_Population_Loader.KOR
[2013.09.28 05:04:59 | 000,001,144 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Lobelia\Compat\Localization\DEU\GD_BigLoaderTurret_Digi.DEU
[2013.09.28 05:04:59 | 000,000,570 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Lobelia\Compat\Localization\DEU\GD_LoaderUltimateBadass_Digi.DEU
[2013.09.28 05:03:44 | 000,001,102 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Lobelia\Compat\Localization\ESN\GD_BigLoaderTurret_Digi.ESN
[2013.09.28 05:04:59 | 000,000,572 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Lobelia\Compat\Localization\ESN\GD_LoaderUltimateBadass_Digi.ESN
[2013.09.28 05:05:39 | 000,001,128 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Lobelia\Compat\Localization\FRA\GD_BigLoaderTurret_Digi.FRA
[2013.09.28 05:03:50 | 000,000,574 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Lobelia\Compat\Localization\FRA\GD_LoaderUltimateBadass_Digi.FRA
[2013.09.28 05:03:51 | 000,001,108 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Lobelia\Compat\Localization\ITA\GD_BigLoaderTurret_Digi.ITA
[2013.09.28 05:04:59 | 000,000,570 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Lobelia\Compat\Localization\ITA\GD_LoaderUltimateBadass_Digi.ITA
[2013.09.28 05:05:40 | 000,000,990 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Lobelia\Compat\Localization\JPN\GD_BigLoaderTurret_Digi.JPN
[2013.09.28 05:04:59 | 000,000,570 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Lobelia\Compat\Localization\JPN\GD_LoaderUltimateBadass_Digi.JPN
[2013.09.28 05:03:51 | 000,000,232 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\DEU\GD_Orchid_LoaderBadass.DEU
[2013.09.28 05:05:05 | 000,000,228 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\DEU\GD_Orchid_LoaderBoss.DEU
[2013.09.28 05:03:48 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\DEU\GD_Orchid_LoaderBUL.DEU
[2013.09.28 05:05:06 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\DEU\GD_Orchid_LoaderEXP.DEU
[2013.09.28 05:05:05 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\DEU\GD_Orchid_LoaderGUN.DEU
[2013.09.28 05:05:06 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\DEU\GD_Orchid_LoaderHOT.DEU
[2013.09.28 05:04:44 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\DEU\GD_Orchid_LoaderION.DEU
[2013.09.28 05:03:48 | 000,000,228 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\DEU\GD_Orchid_LoaderJunk.DEU
[2013.09.28 05:03:51 | 000,000,232 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\DEU\GD_Orchid_LoaderPirate.DEU
[2013.09.28 05:05:06 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\DEU\GD_Orchid_LoaderPWR.DEU
[2013.09.28 05:03:49 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\DEU\GD_Orchid_LoaderRPG.DEU
[2013.09.28 05:04:59 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\DEU\GD_Orchid_LoaderWAR.DEU
[2013.09.28 05:03:51 | 000,004,418 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\DEU\GD_Orchid_Pop_Loader.DEU
[2013.09.28 05:05:57 | 000,000,216 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\DEU\GD_Orchid_Pop_LoaderBoss.DEU
[2013.09.28 05:03:51 | 000,000,232 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ESN\GD_Orchid_LoaderBadass.ESN
[2013.09.28 05:05:05 | 000,000,228 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ESN\GD_Orchid_LoaderBoss.ESN
[2013.09.28 05:03:48 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ESN\GD_Orchid_LoaderBUL.ESN
[2013.09.28 05:05:06 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ESN\GD_Orchid_LoaderEXP.ESN
[2013.09.28 05:05:05 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ESN\GD_Orchid_LoaderGUN.ESN
[2013.09.28 05:05:06 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ESN\GD_Orchid_LoaderHOT.ESN
[2013.09.28 05:04:44 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ESN\GD_Orchid_LoaderION.ESN
[2013.09.28 05:03:48 | 000,000,228 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ESN\GD_Orchid_LoaderJunk.ESN
[2013.09.28 05:03:51 | 000,000,232 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ESN\GD_Orchid_LoaderPirate.ESN
[2013.09.28 05:05:06 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ESN\GD_Orchid_LoaderPWR.ESN
[2013.09.28 05:03:49 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ESN\GD_Orchid_LoaderRPG.ESN
[2013.09.28 05:04:59 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ESN\GD_Orchid_LoaderWAR.ESN
[2013.09.28 05:04:45 | 000,004,550 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ESN\GD_Orchid_Pop_Loader.ESN
[2013.09.28 05:05:57 | 000,000,216 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ESN\GD_Orchid_Pop_LoaderBoss.ESN
[2013.09.28 05:03:51 | 000,000,232 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\FRA\GD_Orchid_LoaderBadass.FRA
[2013.09.28 05:05:05 | 000,000,228 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\FRA\GD_Orchid_LoaderBoss.FRA
[2013.09.28 05:03:48 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\FRA\GD_Orchid_LoaderBUL.FRA
[2013.09.28 05:05:06 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\FRA\GD_Orchid_LoaderEXP.FRA
[2013.09.28 05:05:05 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\FRA\GD_Orchid_LoaderGUN.FRA
[2013.09.28 05:05:06 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\FRA\GD_Orchid_LoaderHOT.FRA
[2013.09.28 05:04:44 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\FRA\GD_Orchid_LoaderION.FRA
[2013.09.28 05:03:48 | 000,000,228 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\FRA\GD_Orchid_LoaderJunk.FRA
[2013.09.28 05:03:51 | 000,000,232 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\FRA\GD_Orchid_LoaderPirate.FRA
[2013.09.28 05:05:06 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\FRA\GD_Orchid_LoaderPWR.FRA
[2013.09.28 05:03:49 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\FRA\GD_Orchid_LoaderRPG.FRA
[2013.09.28 05:04:59 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\FRA\GD_Orchid_LoaderWAR.FRA
[2013.09.28 05:04:45 | 000,004,486 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\FRA\GD_Orchid_Pop_Loader.FRA
[2013.09.28 05:05:57 | 000,000,216 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\FRA\GD_Orchid_Pop_LoaderBoss.FRA
[2013.09.28 05:03:51 | 000,000,232 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ITA\GD_Orchid_LoaderBadass.ITA
[2013.09.28 05:05:05 | 000,000,228 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ITA\GD_Orchid_LoaderBoss.ITA
[2013.09.28 05:03:48 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ITA\GD_Orchid_LoaderBUL.ITA
[2013.09.28 05:05:06 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ITA\GD_Orchid_LoaderEXP.ITA
[2013.09.28 05:05:05 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ITA\GD_Orchid_LoaderGUN.ITA
[2013.09.28 05:05:06 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ITA\GD_Orchid_LoaderHOT.ITA
[2013.09.28 05:04:44 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ITA\GD_Orchid_LoaderION.ITA
[2013.09.28 05:03:48 | 000,000,228 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ITA\GD_Orchid_LoaderJunk.ITA
[2013.09.28 05:03:51 | 000,000,232 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ITA\GD_Orchid_LoaderPirate.ITA
[2013.09.28 05:05:06 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ITA\GD_Orchid_LoaderPWR.ITA
[2013.09.28 05:03:49 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ITA\GD_Orchid_LoaderRPG.ITA
[2013.09.28 05:04:59 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands

Re: Podezření na spyware

Napsal: 06 říj 2013 00:18
od OZuna
2\DLC\Orchid\Compat\Localization\ITA\GD_Orchid_LoaderWAR.ITA
[2013.09.28 05:04:45 | 000,004,558 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ITA\GD_Orchid_Pop_Loader.ITA
[2013.09.28 05:05:57 | 000,000,216 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\ITA\GD_Orchid_Pop_LoaderBoss.ITA
[2013.09.28 05:03:51 | 000,000,232 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\JPN\GD_Orchid_LoaderBadass.JPN
[2013.09.28 05:05:05 | 000,000,228 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\JPN\GD_Orchid_LoaderBoss.JPN
[2013.09.28 05:03:48 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\JPN\GD_Orchid_LoaderBUL.JPN
[2013.09.28 05:05:06 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\JPN\GD_Orchid_LoaderEXP.JPN
[2013.09.28 05:05:05 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\JPN\GD_Orchid_LoaderGUN.JPN
[2013.09.28 05:05:06 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\JPN\GD_Orchid_LoaderHOT.JPN
[2013.09.28 05:04:44 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\JPN\GD_Orchid_LoaderION.JPN
[2013.09.28 05:03:48 | 000,000,228 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\JPN\GD_Orchid_LoaderJunk.JPN
[2013.09.28 05:03:51 | 000,000,232 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\JPN\GD_Orchid_LoaderPirate.JPN
[2013.09.28 05:05:06 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\JPN\GD_Orchid_LoaderPWR.JPN
[2013.09.28 05:03:49 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\JPN\GD_Orchid_LoaderRPG.JPN
[2013.09.28 05:04:59 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\JPN\GD_Orchid_LoaderWAR.JPN
[2013.09.28 05:03:51 | 000,004,418 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\JPN\GD_Orchid_Pop_Loader.JPN
[2013.09.28 05:05:57 | 000,000,216 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\JPN\GD_Orchid_Pop_LoaderBoss.JPN
[2013.09.28 05:03:51 | 000,000,232 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\KOR\GD_Orchid_LoaderBadass.KOR
[2013.09.28 05:05:05 | 000,000,228 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\KOR\GD_Orchid_LoaderBoss.KOR
[2013.09.28 05:03:48 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\KOR\GD_Orchid_LoaderBUL.KOR
[2013.09.28 05:05:06 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\KOR\GD_Orchid_LoaderEXP.KOR
[2013.09.28 05:05:05 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\KOR\GD_Orchid_LoaderGUN.KOR
[2013.09.28 05:05:06 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\KOR\GD_Orchid_LoaderHOT.KOR
[2013.09.28 05:04:44 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\KOR\GD_Orchid_LoaderION.KOR
[2013.09.28 05:03:48 | 000,000,228 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\KOR\GD_Orchid_LoaderJunk.KOR
[2013.09.28 05:03:51 | 000,000,232 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\KOR\GD_Orchid_LoaderPirate.KOR
[2013.09.28 05:05:06 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\KOR\GD_Orchid_LoaderPWR.KOR
[2013.09.28 05:03:49 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\KOR\GD_Orchid_LoaderRPG.KOR
[2013.09.28 05:04:59 | 000,000,226 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\KOR\GD_Orchid_LoaderWAR.KOR
[2013.09.28 05:03:51 | 000,004,418 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\KOR\GD_Orchid_Pop_Loader.KOR
[2013.09.28 05:05:57 | 000,000,216 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Orchid\Compat\Localization\KOR\GD_Orchid_Pop_LoaderBoss.KOR
[2013.09.28 05:04:22 | 000,000,892 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Sage\Compat\Localization\ESN\GD_Sage_Pop_Loader.ESN
[2013.09.28 05:04:25 | 000,000,874 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Sage\Compat\Localization\FRA\GD_Sage_Pop_Loader.FRA
[2013.09.28 05:04:20 | 000,000,898 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Sage\Compat\Localization\ITA\GD_Sage_Pop_Loader.ITA
[2013.09.28 05:06:03 | 000,000,866 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\DLC\Sage\Compat\Localization\KOR\GD_Sage_Pop_Loader.KOR
[2013.09.28 04:54:37 | 003,465,909 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\WillowGame\CookedPCConsole\Boss_Cliffs_CombatLoader.upk
[2013.09.28 04:56:13 | 000,032,232 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\WillowGame\CookedPCConsole\Loader.upk
[2013.09.28 05:05:30 | 000,001,140 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\WillowGame\Localization\DEU\GD_BigLoaderTurret.DEU
[2013.09.28 05:05:48 | 000,000,504 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\WillowGame\Localization\DEU\GD_LootMidget_LoaderGUN.DEU
[2013.09.28 05:05:48 | 000,009,492 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\WillowGame\Localization\DEU\GD_Population_Loader.DEU
[2013.09.28 05:04:50 | 000,001,072 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\WillowGame\Localization\ESN\GD_BigLoaderTurret.ESN
[2013.09.28 05:06:08 | 000,000,518 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\WillowGame\Localization\ESN\GD_LootMidget_LoaderGUN.ESN
[2013.09.28 05:04:46 | 000,009,746 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\WillowGame\Localization\ESN\GD_Population_Loader.ESN
[2013.09.28 05:05:50 | 000,001,098 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\WillowGame\Localization\FRA\GD_BigLoaderTurret.FRA
[2013.09.28 05:04:52 | 000,000,514 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\WillowGame\Localization\FRA\GD_LootMidget_LoaderGUN.FRA
[2013.09.28 05:05:51 | 000,009,610 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\WillowGame\Localization\FRA\GD_Population_Loader.FRA
[2013.09.28 05:06:05 | 000,001,068 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\WillowGame\Localization\ITA\GD_BigLoaderTurret.ITA
[2013.09.28 05:05:50 | 000,000,530 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\WillowGame\Localization\ITA\GD_LootMidget_LoaderGUN.ITA
[2013.09.28 05:05:50 | 000,009,798 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\WillowGame\Localization\ITA\GD_Population_Loader.ITA
[2013.09.28 05:05:51 | 000,000,946 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\WillowGame\Localization\JPN\GD_BigLoaderTurret.JPN
[2013.09.28 05:05:53 | 000,000,502 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\WillowGame\Localization\JPN\GD_LootMidget_LoaderGUN.JPN
[2013.09.28 05:04:47 | 000,009,486 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Borderlands 2\WillowGame\Localization\JPN\GD_Population_Loader.JPN
[2013.09.28 01:32:10 | 000,051,200 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Hitman Absolution\PhysXLoader.dll
[2013.09.28 04:53:58 | 000,064,280 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\chivalrymedievalwarfare\Binaries\Win32\PhysXLoader.dll
[2013.09.28 01:29:37 | 000,063,256 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Red Orchestra 2\Binaries\Win32\PhysXLocal\PhysXLoader.dll
[2013.09.28 07:06:40 | 000,400,912 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Tom Clancy's Splinter Cell Blacklist\src\SYSTEM\uplay_r1_loader.dll
[2013.09.28 02:06:05 | 000,064,352 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Trine 2\PhysXLoader.dll
[2013.09.28 02:06:06 | 000,066,912 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Trine 2\PhysXLoader64.dll
[2012.06.09 19:19:37 | 000,055,296 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2013.10.05 03:00:34 | 000,031,516 | ---- | M] () -- \Users\Ondřej\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FGNPP7C2\cz.seznam.software.libfoxloader-3.1.2-win32[1].zip
[2013.10.05 02:58:05 | 000,141,216 | ---- | M] () -- \Users\Ondřej\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FOC6TZ0O\bi_downloader[1].exe
[2011.02.05 15:09:31 | 000,005,745 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_b73e23c9863dba66.manifest
[2011.02.05 15:04:44 | 000,005,745 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20897_none_b79c80e49f7bc9f4.manifest
[2011.02.05 15:09:50 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_9c05f879842e1792.manifest
[2011.02.05 15:05:03 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7600.20897_none_9c6455949d6c2720.manifest
[2011.02.05 19:34:40 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_9deb553581556a27.manifest
[2011.02.05 15:10:12 | 000,005,799 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_9e73f1b69a73f09a.manifest
[2013.08.02 03:48:15 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[3 \Windows\System32\*.tmp files -> \Windows\System32\*.tmp -> ]
[2013.06.26 09:23:10 | 000,012,532 | ---- | M] () -- \Windows\System32\Adobe\Shockwave 12\shockwave_Projector_Loader.dcr
[2013.08.02 03:48:15 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[3 \Windows\SysWOW64\*.tmp files -> \Windows\SysWOW64\*.tmp -> ]
[2013.06.26 09:23:10 | 000,012,532 | ---- | M] () -- \Windows\SysWOW64\Adobe\Shockwave 12\shockwave_Projector_Loader.dcr
[2009.07.14 03:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 03:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.09.27 18:17:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17617_none_68daf829926cc6a9\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.09.27 18:19:41 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_68c05c919281774d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 19:38:48 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_68a2edab92971725\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 07:38:44 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_68d8d569926ebeb2\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 04:12:19 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_68d20a7192733a4d\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.09.27 18:17:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21728_none_695ac552ab919bbb\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.09.27 18:19:40 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_6907efc6abd0db81\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 19:35:00 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_6957a248ab947a6d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 07:39:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_69239340abbb38d0\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 08:20:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22411_none_695e76beab8ff095\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.09.27 20:05:08 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2013.09.27 20:05:08 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2013.09.27 20:05:08 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2013.09.27 20:05:08 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2013.09.27 20:05:08 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2011.04.12 10:17:46 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a.manifest
[2011.04.12 10:17:46 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winload.efi.mui_35ee487d
[2011.04.12 10:17:46 | 000,033,344 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winload.exe.mui_3bc5b827
[2011.04.12 10:17:46 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winresume.efi.mui_f412814e
[2011.04.12 10:17:46 | 000,029,760 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winresume.exe.mui_ff8b5358
[2013.09.27 17:51:11 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2013.09.27 17:51:12 | 000,642,944 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.efi_75834aa0
[2013.09.27 17:51:12 | 000,605,552 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.exe_75835076
[2013.09.27 17:51:12 | 000,566,208 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.efi_85cd069f
[2013.09.27 17:51:13 | 000,518,672 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.exe_85cd1215
[2009.07.14 04:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 04:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2009.07.13 19:18:36 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2011.04.12 10:16:46 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a.manifest
[2010.11.21 05:16:35 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2011.02.05 19:34:23 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011.02.05 15:09:57 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2009.07.14 04:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.09.27 18:17:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17617_none_0cbc5ca5da0f5573\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.09.27 18:19:41 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_0ca1c10dda240617\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:40:37 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:45:15 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 03:48:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_0cb36eedda15c917\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.09.27 18:17:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21728_none_0d3c29cef3342a85\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.09.27 18:19:41 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_0ce95442f3736a4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 07:53:29 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22411_none_0d3fdb3af3327f5f\api-ms-win-core-libraryloader-l1-1-0.dll

< *minodlogin* /s >

< *tnod* /s >
[2013.09.28 06:14:19 | 000,942,080 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\Audiosurf\engine\channels\XML_SetRootNode.dll
[2013.09.28 06:23:28 | 000,003,128 | ---- | M] () -- \Program Files (x86)\Steam\SteamApps\common\chivalrymedievalwarfare\Engine\EditorResources\FaceFX\res\icons\FxGenericTargetNode.bmp

< *AutoKMS* /s >

< *activator* /s >

< *serial* /s >
[2013.05.13 10:14:36 | 000,434,368 | ---- | M] () -- \Program Files (x86)\Microsoft Silverlight\5.1.20513.0\System.Runtime.Serialization.dll
[2013.09.27 17:22:18 | 001,164,288 | ---- | M] () -- \Program Files (x86)\Microsoft Silverlight\5.1.20513.0\System.Runtime.Serialization.ni.dll
[2012.10.05 12:53:23 | 000,970,752 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2010.11.04 17:53:40 | 000,090,112 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2013.05.13 12:04:04 | 000,434,368 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.20513.0\System.Runtime.Serialization.dll
[2013.09.27 17:23:17 | 001,546,240 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.20513.0\System.Runtime.Serialization.ni.dll
[2012.10.05 12:52:37 | 000,847,872 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2010.11.04 17:54:44 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2009.06.10 14:10:20 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.13 04:02:06 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2012.10.05 12:53:23 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013.09.27 19:30:41 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\d462f459c4353e2c628e6def1430aed7\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.09.27 19:31:56 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\e043ad64456256a8ee5b934e227d9782\System.Runtime.Serialization.ni.dll
[2013.09.27 19:25:36 | 000,396,288 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\845e04461d3d879b24c5b0d30947050a\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.09.27 19:28:50 | 003,073,536 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\dbfc784cc4bde7b16fb471e14563569d\System.Runtime.Serialization.ni.dll
[2013.09.27 21:45:47 | 000,304,640 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\1729a1c27c4c29abc3a3982df67c3e9d\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.09.27 21:45:47 | 000,000,580 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\1729a1c27c4c29abc3a3982df67c3e9d\System.Runtime.Serialization.Formatters.Soap.ni.dll.aux
[2013.09.27 21:45:47 | 002,786,816 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\a46953d62d9923cfd393cb102df2e6ad\System.Runtime.Serialization.ni.dll
[2013.09.27 21:45:47 | 000,001,308 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\a46953d62d9923cfd393cb102df2e6ad\System.Runtime.Serialization.ni.dll.aux
[2013.09.27 21:47:07 | 000,026,624 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\e9ae6390ba678193c056e647edb44849\System.Xml.Serialization.ni.dll
[2013.09.27 21:47:07 | 000,000,376 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\e9ae6390ba678193c056e647edb44849\System.Xml.Serialization.ni.dll.aux
[2013.09.27 22:04:11 | 000,373,248 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runt9064068c#\6306ff71e246e8da5d0fb73a2c9c7766\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2013.09.27 22:04:11 | 000,000,580 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runt9064068c#\6306ff71e246e8da5d0fb73a2c9c7766\System.Runtime.Serialization.Formatters.Soap.ni.dll.aux
[2013.09.27 22:07:09 | 003,602,944 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\fbb390c869765b459962a1d40c81d260\System.Runtime.Serialization.ni.dll
[2013.09.27 22:07:09 | 000,001,308 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\fbb390c869765b459962a1d40c81d260\System.Runtime.Serialization.ni.dll.aux
[2013.09.27 22:14:38 | 000,028,672 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.84e525b7#\a2556a1137fbb8361cee016477e7f692\System.Xml.Serialization.ni.dll
[2013.09.27 22:14:38 | 000,000,376 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.84e525b7#\a2556a1137fbb8361cee016477e7f692\System.Xml.Serialization.ni.dll.aux
[2012.07.09 00:40:08 | 001,050,096 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\0D741DA1E0EBC6D3CA11466FCD14361F\4.5.50709\System.Runtime.Serialization.dll.amd64
[2012.07.09 00:40:08 | 001,050,096 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\0D741DA1E0EBC6D3CA11466FCD14361F\4.5.50709\System.Runtime.Serialization.dll.x86
[2012.07.09 00:40:08 | 001,050,096 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\0D741DA1E0EBC6D3CA11466FCD14361F\4.5.50709\System.Runtime.Serialization.dll_gac_x86
[2012.07.09 00:40:10 | 000,132,656 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2012.07.09 00:40:08 | 000,022,024 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Json\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Json.dll
[2012.07.09 00:40:08 | 000,022,048 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Primitives\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Primitives.dll
[2012.07.09 00:40:08 | 000,022,016 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Xml\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Xml.dll
[2013.02.22 00:48:22 | 001,051,272 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2012.07.09 00:40:08 | 000,036,320 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2012.07.09 00:40:08 | 000,022,496 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.XmlSerializer\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Xml.XmlSerializer.dll
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.04 17:53:34 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2012.10.05 12:53:24 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013.02.22 00:48:22 | 001,051,272 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2012.07.09 00:40:10 | 000,132,656 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2012.07.09 00:40:08 | 000,022,024 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Json.dll
[2012.07.09 00:40:08 | 000,022,048 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2012.07.09 00:40:08 | 000,022,016 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2012.07.09 00:40:08 | 000,036,320 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2012.07.09 00:40:08 | 000,022,496 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.XmlSerializer.dll
[2009.06.10 22:40:06 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.04 17:54:40 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2012.10.05 12:52:38 | 000,847,872 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013.02.22 00:48:22 | 001,051,272 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.dll
[2012.07.09 00:40:10 | 000,132,656 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2012.07.09 00:40:08 | 000,022,024 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Json.dll
[2012.07.09 00:40:08 | 000,022,048 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2012.07.09 00:40:08 | 000,022,016 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2012.07.09 00:40:08 | 000,036,320 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.Serialization.dll
[2012.07.09 00:40:08 | 000,022,496 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.XmlSerializer.dll
[2012.10.05 20:18:30 | 000,002,237 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17966_none_591d933074dfaa5b.manifest
[2012.10.05 20:10:31 | 000,002,237 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.22126_none_424bee728e8a9f53.manifest
[2012.10.05 20:19:07 | 000,002,262 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_93f49ffac8d7a4f4.manifest
[2012.10.05 20:11:10 | 000,002,262 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_7d22fb3ce28299ec.manifest
[2012.10.05 19:15:39 | 000,002,226 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285.manifest
[2012.10.05 19:17:50 | 000,002,226 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d.manifest
[2012.10.05 22:09:22 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_ar-sa_da66fe5d47789091.manifest
[2012.10.05 22:12:17 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f.manifest
[2012.10.05 22:03:20 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_da-dk_622a3c9da1a8c4d8.manifest
[2012.10.05 20:10:04 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_de-de_626f1d4da174828e.manifest
[2012.10.05 22:02:37 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_el-gr_8f546afdbfc776f0.manifest
[2012.10.05 20:09:41 | 000,000,531 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_en-us_8f4bb639bfcd9db1.manifest
[2012.10.05 21:54:09 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_es-es_8f50994bbfc949f4.manifest
[2012.10.05 22:02:40 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_fi-fi_bd1d8c79dd71129a.manifest
[2012.10.05 20:08:58 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_fr-fr_bcc53fc7ddb1f222.manifest

Re: Podezření na spyware

Napsal: 06 říj 2013 00:18
od OZuna
[2012.10.05 22:01:09 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_he-il_17cecb28196cb924.manifest
[2012.10.05 22:12:17 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_hu-hu_177d7e9619a74ce6.manifest
[2012.10.05 22:12:18 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_it-it_44f22512378ff514.manifest
[2012.10.05 21:11:25 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_ja-jp_7275361e55708151.manifest
[2012.10.05 21:10:37 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_ko-kr_9fd8712c7363f96b.manifest
[2012.10.05 22:02:32 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_nb-no_282c61bccd26f48f.manifest
[2012.10.05 22:12:15 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_nl-nl_2856d464cd059e22.manifest
[2012.10.05 22:12:17 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_pl-pl_832c821908e5590e.manifest
[2012.10.05 21:51:35 | 000,001,635 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_pt-br_82f38a4d090ef34a.manifest
[2012.10.05 22:12:12 | 000,001,632 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_pt-pt_82de0509091f034e.manifest
[2012.10.05 22:03:52 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_ru-ru_dda9e31b4505f382.manifest
[2012.10.05 22:12:13 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_sv-se_0bc2b8ff62732b3f.manifest
[2012.10.05 22:12:16 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_tr-tr_389cffb580d00e96.manifest
[2012.10.05 21:15:11 | 000,001,638 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_zh-cn_493f19f4345813af.manifest
[2012.10.05 21:15:20 | 000,001,638 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_zh-tw_48ddeaee34a0debf.manifest
[2012.10.05 21:54:03 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_ar-sa_c395599f61238589.manifest
[2012.10.05 21:59:28 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797.manifest
[2012.10.05 21:54:13 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_da-dk_4b5897dfbb53b9d0.manifest
[2012.10.05 19:58:55 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_de-de_4b9d788fbb1f7786.manifest
[2012.10.05 21:53:49 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_el-gr_7882c63fd9726be8.manifest
[2012.10.05 19:57:17 | 000,000,531 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_en-us_787a117bd97892a9.manifest
[2012.10.05 21:48:11 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_es-es_787ef48dd9743eec.manifest
[2012.10.05 21:52:37 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_fi-fi_a64be7bbf71c0792.manifest
[2012.10.05 20:00:18 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_fr-fr_a5f39b09f75ce71a.manifest
[2012.10.05 21:54:34 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_he-il_00fd266a3317ae1c.manifest
[2012.10.05 21:59:30 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_hu-hu_00abd9d8335241de.manifest
[2012.10.05 21:59:26 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_it-it_2e208054513aea0c.manifest
[2012.10.05 21:01:19 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_ja-jp_5ba391606f1b7649.manifest
[2012.10.05 21:03:36 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_ko-kr_8906cc6e8d0eee63.manifest
[2012.10.05 21:54:16 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_nb-no_115abcfee6d1e987.manifest
[2012.10.05 22:00:42 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_nl-nl_11852fa6e6b0931a.manifest
[2012.10.05 22:00:50 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_pl-pl_6c5add5b22904e06.manifest
[2012.10.05 21:48:47 | 000,001,635 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_pt-br_6c21e58f22b9e842.manifest
[2012.10.05 22:00:41 | 000,001,632 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_pt-pt_6c0c604b22c9f846.manifest
[2012.10.05 21:54:16 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_ru-ru_c6d83e5d5eb0e87a.manifest
[2012.10.05 22:00:43 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_sv-se_f4f114417c1e2037.manifest
[2012.10.05 22:00:35 | 000,001,626 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_tr-tr_21cb5af79a7b038e.manifest
[2012.10.05 21:03:52 | 000,001,638 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_zh-cn_326d75364e0308a7.manifest
[2012.10.05 21:03:53 | 000,001,638 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_zh-tw_320c46304e4bd3b7.manifest
[2012.10.05 19:15:03 | 000,001,985 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8.manifest
[2012.10.05 19:17:15 | 000,001,985 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0.manifest
[2012.10.05 19:19:53 | 000,002,260 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa.manifest
[2012.10.05 19:22:10 | 000,002,260 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d49f800287b6feea051b21e010caccde\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2.manifest
[2011.02.05 15:10:43 | 000,002,766 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16757_none_6dccf6b5c641c933.manifest
[2011.02.05 15:05:47 | 000,002,766 | ---- | M] () -- \Windows\SoftwareDistribution\Download\d639f7376b627c8f37f9acbbf7c6234a\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.20897_none_6e2b53d0df7fd8c1.manifest
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[3 \Windows\System32\*.tmp files -> \Windows\System32\*.tmp -> ]
[2009.07.13 18:38:14 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009.07.14 02:00:40 | 000,094,208 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_amd64_neutral_fdcfb86ce78678d1\serial.sys
[2009.06.10 22:37:50 | 000,038,400 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_amd64_neutral_6fb75ea318f84fe5\grserial.sys
[2011.04.12 10:17:17 | 000,005,120 | ---- | M] () -- \Windows\System32\en-US\serialui.dll.mui
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\SysWOW64\serialui.dll
[3 \Windows\SysWOW64\*.tmp files -> \Windows\SysWOW64\*.tmp -> ]
[2009.07.13 18:38:14 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\cs-CZ\serialui.dll.mui
[2011.04.12 10:17:17 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\en-US\serialui.dll.mui
[2010.11.04 17:54:40 | 000,011,776 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_1e527062c1f59d5f\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2009.07.13 18:58:44 | 000,005,120 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23\serialui.dll.mui
[2011.04.12 10:17:22 | 000,005,120 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_edb61e94e4562781\serialui.dll.mui
[2009.07.14 03:41:54 | 000,017,920 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360\serialui.dll
[2010.11.04 17:54:44 | 000,090,112 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_bb9a1800691e639c\System.RunTime.Serialization.Resources.dll
[2009.07.13 19:07:20 | 000,009,728 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_20ab142d65ed6acc\serial.sys.mui
[2011.04.12 10:17:23 | 000,010,240 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_en-us_64015f894ce7c72a\serial.sys.mui
[2009.07.14 02:00:40 | 000,094,208 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_548ca258d20f4ada\serial.sys
[2009.06.10 22:40:06 | 000,131,072 | ---- | M] () -- \Windows\winsxs\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_a9d1bee515273f56\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.10 22:37:50 | 000,038,400 | ---- | M] () -- \Windows\winsxs\amd64_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_ce9ed3064deed3aa\grserial.sys
[2010.11.21 05:24:53 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17514_none_5918bfde74e3f722\System.Runtime.Serialization.dll
[2012.10.05 12:52:38 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17966_none_591d933074dfaa5b\System.Runtime.Serialization.dll
[2012.10.05 12:56:11 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.22126_none_424bee728e8a9f53\System.Runtime.Serialization.dll
[2010.11.21 05:24:53 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_93efcca8c8dbf1bb\System.Runtime.Serialization.dll
[2012.10.05 12:52:37 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_93f49ffac8d7a4f4\System.Runtime.Serialization.dll
[2012.10.05 12:56:11 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_7d22fb3ce28299ec\System.Runtime.Serialization.dll
[2013.09.27 17:51:13 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8.manifest
[2013.09.27 17:51:13 | 000,017,792 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8_kdcom.dll_db5e7744
[2013.09.27 20:05:08 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23_serialui.dll.mui_7d29d2a3
[2011.04.12 10:17:46 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_edb61e94e4562781_serialui.dll.mui_7d29d2a3
[2009.07.14 04:57:29 | 000,017,920 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360_serialui.dll_bea29328
[2013.09.27 20:05:08 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2011.04.12 10:17:46 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_919783112bf8b64b_serialui.dll.mui_7d29d2a3
[2009.07.14 04:58:37 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2009.07.14 04:15:17 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc.manifest
[2011.02.05 19:35:45 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8.manifest
[2011.02.05 15:11:05 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.21655_none_703aeff2dc87a23b.manifest
[2009.07.14 04:11:30 | 000,000,868 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_88b1c48f2026fe3f.manifest
[2010.11.21 05:17:50 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17514_none_5918bfde74e3f722.manifest
[2012.10.05 20:18:30 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17966_none_591d933074dfaa5b.manifest
[2012.10.05 20:10:31 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.22126_none_424bee728e8a9f53.manifest
[2010.11.21 05:17:50 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_93efcca8c8dbf1bb.manifest
[2012.10.05 20:19:07 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_93f49ffac8d7a4f4.manifest
[2012.10.05 20:11:10 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_7d22fb3ce28299ec.manifest
[2010.11.21 05:17:50 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c.manifest
[2012.10.05 19:15:39 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285.manifest
[2012.10.05 19:17:50 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d.manifest
[2009.07.13 19:17:48 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2011.04.12 10:16:53 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_en-us_8f71d563bf7aa3c2.manifest
[2012.10.05 22:12:17 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f.manifest
[2012.10.05 20:09:41 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_en-us_8f4bb639bfcd9db1.manifest
[2012.10.05 21:59:28 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797.manifest
[2012.10.05 19:57:17 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_en-us_787a117bd97892a9.manifest
[2010.11.21 05:17:50 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f.manifest
[2012.10.05 19:15:03 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8.manifest
[2012.10.05 19:17:15 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0.manifest
[2010.11.21 05:18:20 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1.manifest
[2012.10.05 19:19:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa.manifest
[2012.10.05 19:22:10 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2.manifest
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.10 14:10:20 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.21 05:24:53 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c\System.Runtime.Serialization.dll
[2012.10.05 12:53:24 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285\System.Runtime.Serialization.dll
[2012.10.05 12:56:07 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d\System.Runtime.Serialization.dll
[2009.06.08 10:39:36 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2010.11.13 04:02:06 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f\System.RunTime.Serialization.Resources.dll
[2010.11.13 04:37:37 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797\System.RunTime.Serialization.Resources.dll
[2010.11.21 05:24:53 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f\System.Runtime.Serialization.dll
[2012.10.05 12:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8\System.Runtime.Serialization.dll
[2012.10.05 12:56:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0\System.Runtime.Serialization.dll
[2010.11.04 17:53:34 | 000,011,776 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_28a71ab4f6565f5a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.07.13 18:38:14 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2011.04.12 10:17:17 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_919783112bf8b64b\serialui.dll.mui
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2010.11.04 17:53:40 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_5f7b7c7cb0c0f266\System.RunTime.Serialization.Resources.dll
[2010.11.21 05:25:11 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1\System.Runtime.Serialization.dll
[2012.10.05 12:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa\System.Runtime.Serialization.dll
[2012.10.05 12:56:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2\System.Runtime.Serialization.dll

< *w7lxe* /s >
[2013.09.27 16:58:38 | 028,135,936 | ---- | M] () -- \Users\Ondřej\AppData\Local\Temp\w7lxe.exe
[14 \Users\Ondřej\AppData\Local\Temp\*.tmp files -> \Users\Ondřej\AppData\Local\Temp\*.tmp -> ]

< End of report >

Re: Podezření na spyware

Napsal: 06 říj 2013 08:04
od Márty84
:???: Jak je to s legalitou systemu? Ultimate neni zrovna bezna domaci verze :?:

:arrow: Udelejte !!!kompletni!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

Re: Podezření na spyware

Napsal: 06 říj 2013 19:57
od OZuna
Na rovinu - ne není to legální systém původně na tom byly visty, pak win 7 32 bit (legálně) tohle je jedna z mála nelegálních věcí co vlastním potřeboval sem 64 bitový systém kvůli kompatibilitě až vyjde hra Watch dogs, jinak bych chtěl dodat že rozhodně nejsem nějaký megalomanský pirát, 99% procent věcí si raději koupím, jako hry (těch mám koupen více než někdo stáhne za celý život) filmy, občas i antivirové programy

Re: Podezření na spyware

Napsal: 07 říj 2013 03:36
od Márty84
No bylo to celkem jasne :) Kdybyste aspon cracknul nejaky normalni a ne zrovna Ultimate, ktery se bezne v obchodech do pc nedava.


Pravidla fora hovori jasne http://forum.viry.cz/viewtopic.php?f=12&t=115512
Pomáhat NELZE:
2) Pokud stroj uživatele prokazatelně obsahuje nelegální hostitelský čí ochranný software
(operační systém, antivir, firewall, atd.), je nutné navést uživatele k nápravě, např. skrze neplacený software,
a začít řešit, až v době kdy je PC "v pořádku". V případě že uživatel nechce na pravidla přistoupit,
je nutné jej vyzvat ať fórum opustí, a vrátí se až je splní.
:42:


Projedte to MBAM, ADWCleanerem, TFC, CCleanerem a Defragglerem. Treba to pomuze.

:closed:
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz