Logfile of random's system information tool 1.10 (written by random/random)
Run by user at 2014-08-14 19:26:27
Microsoft Windows 8.1
System drive C: has 825 GB (91%) free of 912 GB
Total RAM: 7375 MB (74% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:26:31, on 14. 8. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17126)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\user.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.co.uk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
O4 - Startup: OpenOffice.org 3.0.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.2 ... rol_32.CAB
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: Conexant Audio Message Service (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Garmin Core Update Service - Garmin Ltd or its subsidiaries - C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LSCWinService - Unknown owner - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: VeriFaceSrv - Unknown owner - C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
--
End of file - 8133 bytes
======Listing Processes======
wininit.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\windows\system32\CxAudMsg64.exe
dashost.exe {25d168a9-50e0-4972-92d9ea2244bcd16a}
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-afeb8d83-afe3-4196-a45d-b7f209e5f656 -SystemEventPortName:HostProcess-955817c6-50a4-4d69-8c7c-f3722a4a082a -IoCancelEventPortName:HostProcess-4ffc6d11-16db-4c3b-be72-1fc0f7004133 -NonStateChangingEventPortName:HostProcess-6da6dce9-c552-46e2-a2ff-e3e0eb69e3ee -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:4e46d214-d750-46c8-9939-d7d810b69f36 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "0x374_0x175c_0x47a13ba4"
"C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe"
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
-hiberboot
atieclxx
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
taskhostex.exe
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Elantech\ETDIntelligent.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
"C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" -quickstart
"C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" "-quickstart" "-env:OOO_CWD=2C:\\Program Files (x86)\\OpenOffice.org 3\\program"
"C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:6928 CREDAT:267521 /prefetch:2
"C:\Program Files\Internet Explorer\iexplore.exe" -ServerName:DefaultBrowserServer
"C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:14464 CREDAT:267777 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-2819330432-1451585950-2559875713-1002465_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-2819330432-1451585950-2559875713-1002465 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 576 580 588 65536 584
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe466_ Global\UsGthrCtrlFltPipeMssGthrPipe466 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Users\user\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf8cd17d2a3a7b.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-07-17 612248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-07-17 256456]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-07-17 457712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-07-17 194504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-07-17 256456]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-07-17 194504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2013-03-05 2876816]
"RtsFT"=C:\WINDOWS\RTFTrack.exe [2013-04-10 6339656]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-02-04 899680]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2013-12-10 17097200]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2013-12-10 193008]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-01-25 131712]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"GarminExpressTrayApp"=C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [2014-07-23 688984]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-04-25 642816]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2012-04-19 217088]
"RemoteControl10"=C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [2012-03-29 91432]
"Intel AppUp(SM) center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2012-07-12 155488]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-07-17 4086432]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-01-25 131712]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
OpenOffice.org 3.0.lnk - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableCAD"=1
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 3 months======
2014-08-14 08:17:13 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2014-08-14 08:17:13 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2014-08-14 08:17:00 ----A---- C:\WINDOWS\system32\WpcMon.exe
2014-08-14 08:17:00 ----A---- C:\WINDOWS\system32\Wpc.dll
2014-08-14 08:16:59 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2014-08-14 08:16:59 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2014-08-14 08:15:51 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2014-08-07 17:50:16 ----D---- C:\ProgramData\Garmin
2014-08-07 17:50:11 ----D---- C:\Program Files (x86)\Garmin
2014-08-07 17:49:51 ----D---- C:\ProgramData\Package Cache
2014-08-07 17:13:45 ----D---- C:\Program Files (x86)\Garmin GPS Plugin
2014-08-07 17:13:44 ----D---- C:\Program Files\Garmin GPS Plugin
2014-08-07 17:13:12 ----D---- C:\Users\user\AppData\Roaming\Garmin
2014-08-05 16:21:00 ----D---- C:\ProgramData\DiamondCaves3
2014-07-26 22:25:00 ----A---- C:\WINDOWS\system32\drivers\aswKbd.sys
2014-07-26 22:24:46 ----A---- C:\WINDOWS\system32\drivers\aswNdisFlt.sys
2014-07-24 15:44:22 ----D---- C:\Users\user\AppData\Roaming\BlackBean
2014-07-19 14:43:41 ----D---- C:\Users\user\AppData\Roaming\THQ
2014-07-19 14:41:03 ----D---- C:\ProgramData\InstallShield
2014-07-19 14:34:29 ----D---- C:\Users\user\AppData\Roaming\InstallShield
2014-07-17 18:33:30 ----D---- C:\Users\user\AppData\Roaming\Off Road
2014-07-17 08:48:39 ----D---- C:\ProgramData\Google
2014-07-17 08:42:48 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2014-07-17 08:40:54 ----A---- C:\WINDOWS\avastSS.scr
2014-07-10 15:56:13 ----A---- C:\WINDOWS\eReg.dat
2014-07-10 15:54:47 ----RA---- C:\WINDOWS\SYSWOW64\MSVCP50.DLL
2014-07-10 15:54:47 ----RA---- C:\WINDOWS\NPSExec.exe
2014-07-10 15:54:47 ----D---- C:\Program Files (x86)\Electronic Arts
2014-07-10 15:52:05 ----A---- C:\WINDOWS\IsUninst.exe
2014-07-10 12:34:22 ----D---- C:\Program Files\Common Files\Atheros
2014-07-09 08:04:41 ----A---- C:\WINDOWS\system32\win32k.sys
2014-07-09 08:04:40 ----A---- C:\WINDOWS\SYSWOW64\osk.exe
2014-07-09 08:04:40 ----A---- C:\WINDOWS\system32\osk.exe
2014-07-09 08:04:28 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-07-09 08:04:28 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-07-09 08:04:27 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-07-09 08:04:26 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-07-09 08:04:16 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-07-09 08:04:14 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-07-09 08:04:12 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-07-09 08:04:10 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-07-09 08:04:09 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-07-09 08:04:09 ----A---- C:\WINDOWS\system32\wininet.dll
2014-07-09 08:04:09 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-07-09 08:04:09 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-07-09 08:04:09 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-07-09 08:04:08 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-07-09 08:04:08 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-07-09 08:04:08 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-07-09 08:04:08 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-07-09 08:04:08 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-07-09 08:04:08 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-07-09 08:04:08 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-07-09 08:04:08 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-07-09 08:04:08 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-07-09 08:04:08 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-07-09 08:04:07 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-07-09 08:04:07 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-07-09 08:03:33 ----A---- C:\WINDOWS\system32\termsrv.dll
2014-07-09 08:02:36 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-07-09 08:02:36 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-07-09 08:02:36 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-07-09 08:02:36 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 08:02:36 ----A---- C:\WINDOWS\system32\twinui.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-07-09 08:02:35 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2014-07-09 08:02:34 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-07-09 08:02:30 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2014-07-09 07:57:53 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-07-09 07:57:53 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-07-09 07:57:53 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-07-09 07:57:53 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-07-09 07:57:53 ----A---- C:\WINDOWS\system32\certcli.dll
2014-07-09 07:57:53 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-07-09 07:57:18 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2014-07-09 07:57:18 ----A---- C:\WINDOWS\system32\qedit.dll
2014-07-09 07:45:30 ----A---- C:\WINDOWS\system32\WSReset.exe
2014-07-04 15:40:25 ----D---- C:\Program Files (x86)\City Interactive
2014-06-29 13:35:09 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2014-06-29 13:35:09 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2014-06-29 13:35:09 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2014-06-29 13:35:09 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2014-06-29 13:35:09 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2014-06-29 13:35:09 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2014-06-29 13:35:08 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_43.dll
2014-06-29 13:35:08 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_43.dll
2014-06-29 13:35:08 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_43.dll
2014-06-29 13:35:08 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2014-06-29 13:35:08 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2014-06-29 13:35:08 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_43.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_43.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2014-06-29 13:35:06 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_5.dll
2014-06-29 13:35:06 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2014-06-29 13:35:06 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_7.dll
2014-06-29 13:35:06 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2014-06-29 13:35:06 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2014-06-29 13:35:06 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2014-06-29 13:35:05 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2014-06-29 13:35:05 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2014-06-29 13:35:05 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2014-06-29 13:35:05 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2014-06-29 13:35:04 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2014-06-29 13:35:04 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2014-06-29 13:35:04 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2014-06-29 13:35:04 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_42.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_42.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_41.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_41.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2014-06-29 13:35:02 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2014-06-29 13:35:02 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_3.dll
2014-06-29 13:35:02 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2014-06-29 13:35:02 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2014-06-29 13:35:02 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2014-06-29 13:35:02 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2014-06-29 13:35:00 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2014-06-29 13:35:00 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2014-06-29 13:35:00 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2014-06-29 13:35:00 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2014-06-29 13:35:00 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2014-06-29 13:35:00 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_2.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_1.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2014-06-29 13:34:58 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2014-06-29 13:34:58 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_39.dll
2014-06-29 13:34:58 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_39.dll
2014-06-29 13:34:58 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2014-06-29 13:34:58 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2014-06-29 13:34:58 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2014-06-29 13:34:57 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2014-06-29 13:34:57 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2014-06-29 13:34:57 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_39.dll
2014-06-29 13:34:57 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2014-06-29 13:34:57 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2014-06-29 13:34:57 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2014-06-29 13:34:55 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2014-06-29 13:34:55 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2014-06-29 13:34:55 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2014-06-29 13:34:55 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2014-06-29 13:34:53 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2014-06-29 13:34:53 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2014-06-29 13:34:53 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2014-06-29 13:34:53 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2014-06-29 13:34:52 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2014-06-29 13:34:52 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2014-06-29 13:34:52 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2014-06-29 13:34:52 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2014-06-29 13:34:51 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2014-06-29 13:34:51 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2014-06-29 13:34:49 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2014-06-29 13:34:49 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2014-06-29 13:32:59 ----D---- C:\GOG Games
2014-06-26 20:48:55 ----D---- C:\Users\user\AppData\Roaming\AVAST Software
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswstm.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswsp.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswsnx.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswRdr2.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-06-26 20:47:47 ----D---- C:\Program Files\AVAST Software
2014-06-21 12:00:56 ----D---- C:\Users\user\AppData\Roaming\OpenOffice.org
2014-06-21 11:59:05 ----D---- C:\Program Files (x86)\OpenOffice.org 3
2014-06-19 17:28:00 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2014-06-19 17:28:00 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2014-06-19 17:27:59 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2014-06-19 17:27:59 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2014-06-19 17:27:59 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2014-06-19 17:27:59 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2014-06-19 17:27:59 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2014-06-19 17:27:59 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2014-06-19 17:27:57 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2014-06-19 17:27:57 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2014-06-19 17:27:57 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2014-06-19 17:27:57 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2014-06-19 17:27:57 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2014-06-19 17:27:57 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2014-06-19 17:27:56 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2014-06-19 17:27:56 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2014-06-19 17:27:55 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2014-06-19 17:27:55 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2014-06-19 17:27:55 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2014-06-19 17:27:55 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2014-06-19 17:27:55 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2014-06-19 17:27:55 ----A---- C:\WINDOWS\system32\d3dx10.dll
2014-06-19 17:27:54 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2014-06-19 17:27:54 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2014-06-19 17:27:54 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_32.dll
2014-06-19 17:27:54 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2014-06-19 17:27:54 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2014-06-19 17:27:54 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2014-06-19 17:27:53 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2014-06-19 17:27:53 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2014-06-19 17:27:53 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_31.dll
2014-06-19 17:27:53 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2014-06-19 17:27:53 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2014-06-19 17:27:53 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2014-06-19 17:27:52 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2014-06-19 17:27:52 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2014-06-19 17:27:52 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2014-06-19 17:27:52 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2014-06-19 17:27:52 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2014-06-19 17:27:52 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2014-06-19 17:27:48 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2014-06-19 17:27:48 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2014-06-19 17:27:46 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2014-06-19 17:27:46 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2014-06-19 17:27:46 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2014-06-19 17:27:46 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2014-06-19 17:27:45 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2014-06-19 17:27:45 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2014-06-19 17:27:37 ----D---- C:\Program Files (x86)\OpenAL
2014-06-19 17:27:37 ----A---- C:\WINDOWS\SYSWOW64\wrap_oal.dll
2014-06-19 17:27:37 ----A---- C:\WINDOWS\SYSWOW64\OpenAL32.dll
2014-06-19 17:27:37 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2014-06-19 17:27:37 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2014-06-19 17:20:55 ----D---- C:\Program Files (x86)\WinRAR
2014-06-19 17:07:15 ----AS---- C:\WINDOWS\SYSWOW64\nircmdc.exe
2014-06-19 16:57:34 ----AS---- C:\WINDOWS\SYSWOW64\dcgmnclfgl.exe
2014-06-19 16:57:34 ----AS---- C:\WINDOWS\SYSWOW64\acumnclfgl.exe
2014-06-19 16:57:33 ----D---- C:\WINDOWS\SYSWOW64\bitstreams
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\zlib1.dll
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\ssleay32.dll
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\pthreadVC2.dll
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\pthreadGC2.dll
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\libssh2.dll
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\librtmp.dll
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\libidn-11.dll
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\libeay32.dll
2014-06-19 16:57:32 ----AS---- C:\WINDOWS\SYSWOW64\libcurl-4.dll
2014-06-19 16:57:32 ----AS---- C:\WINDOWS\SYSWOW64\cudart32_50_35.dll
2014-06-12 07:30:57 ----D---- C:\ProgramData\Energy Management
2014-06-11 18:27:40 ----D---- C:\Program Files\trend micro
2014-06-11 18:27:39 ----D---- C:\rsit
2014-06-11 07:25:11 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-06-11 07:25:10 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-06-11 07:25:10 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll
2014-06-11 07:25:09 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-06-11 07:25:09 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-06-11 07:25:07 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-06-11 07:25:07 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-06-11 07:25:06 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-06-11 07:25:06 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-06-11 07:25:04 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-06-11 07:25:03 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-06-11 07:25:03 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-06-11 07:25:01 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-06-11 07:25:01 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-06-11 07:25:00 ----A---- C:\WINDOWS\system32\msrating.dll
2014-06-11 07:24:59 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-06-11 07:24:16 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-06-11 07:24:15 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-06-11 07:24:13 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-06-11 07:24:13 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-06-11 07:24:12 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-06-11 07:24:11 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2014-06-11 07:24:11 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-06-11 07:24:11 ----A---- C:\WINDOWS\system32\gdi32.dll
2014-06-11 07:24:09 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2014-06-11 07:24:09 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe
2014-06-11 07:24:09 ----A---- C:\WINDOWS\system32\FntCache.dll
2014-06-11 07:24:09 ----A---- C:\WINDOWS\system32\DWrite.dll
2014-06-11 07:24:09 ----A---- C:\WINDOWS\system32\drvinst.exe
2014-06-11 07:24:09 ----A---- C:\WINDOWS\system32\drvcfg.exe
2014-06-11 07:23:57 ----A---- C:\WINDOWS\system32\wpccpl.dll
2014-06-11 07:23:56 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2014-06-07 07:33:26 ----RD---- C:\WINDOWS\BrowserChoice
2014-06-06 07:45:45 ----D---- C:\WINDOWS\Minidump
2014-06-05 22:32:57 ----D---- C:\Program Files\GIMP 2
2014-06-05 22:13:47 ----D---- C:\Users\user\AppData\Roaming\PhotoScape
2014-06-05 22:13:30 ----D---- C:\Program Files (x86)\PhotoScape
2014-06-05 12:21:53 ----SHD---- C:\Recovery
2014-06-05 12:21:48 ----DC---- C:\WINDOWS\Panther
2014-06-05 12:17:51 ----A---- C:\WINDOWS\SYSWOW64\wusa.exe
2014-06-05 12:17:51 ----A---- C:\WINDOWS\system32\wusa.exe
2014-06-05 12:15:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\SYSWOW64\sxproxy.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\SYSWOW64\spp.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\wlangpui.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\w32tm.exe
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\userenv.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\l2gpstore.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\CredentialMigrationHandler.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\WSDMon.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\wlangpui.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\w32tm.exe
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\SetNetworkLocation.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\SessEnv.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\RMapi.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\rasapi32.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\nshwfp.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\netcfgx.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\msxml6.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\msftedit.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\l2gpstore.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\kerberos.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\dxgi.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\dwmcore.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\drivers\tcpipreg.sys
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\Display.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\dcomp.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\dafWfdProvider.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\d3d11.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\cdd.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\BFE.DLL
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\authui.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\aclui.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\explorer.exe
2014-06-05 12:15:44 ----AC---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2014-06-05 12:15:44 ----AC---- C:\WINDOWS\system32\drivers\hidusb.sys
2014-06-05 12:15:44 ----AC---- C:\WINDOWS\system32\drivers\hidclass.sys
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\wlidprov.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\userenv.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\umpnpmgr.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\sxproxy.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\spp.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\ReInfo.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\ReAgent.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\profsvc.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\pdh.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\ole32.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\netlogon.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\LocationApi.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\KernelBase.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\kernel32.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\dnsapi.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\DevPropMgr.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\davclnt.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2014-06-05 12:12:28 ----A---- C:\WINDOWS\SYSWOW64\mrt100.dll
2014-06-05 12:12:28 ----A---- C:\WINDOWS\SYSWOW64\mrt_map.dll
2014-06-05 12:12:28 ----A---- C:\WINDOWS\system32\mrt100.dll
2014-06-05 12:12:28 ----A---- C:\WINDOWS\system32\mrt_map.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-06-05 12:10:59 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\system32\wups.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-06-05 12:10:59 ----A---- C:\WINDOWS\system32\ubpm.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\system32\storewuauth.dll
2014-06-05 12:09:08 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-06-05 12:09:08 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-06-05 12:09:08 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\srclient.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\wmpmde.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\winmde.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\srcore.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\srclient.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\rstrui.exe
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\mfsvr.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\mfps.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\mfpmp.exe
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\mf.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\MDEServer.exe
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\energyprov.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\tlscsp.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\wscsvc.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\wintrust.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\VSSVC.exe
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\tsgqec.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\tlscsp.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\swprv.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\shell32.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\rpchttp.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\resutils.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\rdpencom.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\propsys.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\ploptin.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\mispace.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\localspl.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\gpapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\d3d9.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-06-05 12:07:36 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-06-05 12:07:36 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-06-05 12:07:36 ----AC---- C:\WINDOWS\system32\drivers\msiscsi.sys
2014-06-05 12:07:36 ----AC---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-06-05 12:07:36 ----AC---- C:\WINDOWS\system32\drivers\bthport.sys
2014-06-05 12:07:36 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\srvsvc.dll
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\services.exe
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-06-05 12:00:24 ----D---- C:\Program Files (x86)\Reference Assemblies
2014-06-05 12:00:24 ----D---- C:\Program Files (x86)\MSBuild
2014-06-05 12:00:21 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2014-06-05 12:00:21 ----D---- C:\Program Files\Reference Assemblies
2014-06-05 12:00:21 ----D---- C:\Program Files\MSBuild
2014-06-05 11:59:17 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2014-06-05 11:59:17 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-06-05 11:59:15 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-06-05 11:59:15 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-06-05 11:57:50 ----D---- C:\Users\user\AppData\Roaming\Identities
2014-06-05 11:51:00 ----SHD---- C:\ProgramData\Šablony
2014-06-05 11:51:00 ----SHD---- C:\ProgramData\Plocha
2014-06-05 11:51:00 ----SHD---- C:\ProgramData\Nabídka Start
2014-06-05 11:51:00 ----SHD---- C:\ProgramData\Dokumenty
2014-06-05 11:51:00 ----SHD---- C:\ProgramData\Data aplikací
2014-06-05 11:50:09 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2014-06-05 11:38:44 ----SD---- C:\Users\user\AppData\Roaming\Microsoft
2014-06-05 11:25:52 ----D---- C:\ProgramData\Conexant
2014-06-05 11:25:51 ----D---- C:\Program Files\CONEXANT
2014-06-05 11:25:30 ----D---- C:\Program Files\Common Files\ATI Technologies
2014-06-05 11:25:17 ----D---- C:\AMD
2014-06-05 11:25:02 ----D---- C:\Program Files\AMD
2014-06-05 11:24:46 ----D---- C:\Program Files\Elantech
2014-06-05 11:23:35 ----D---- C:\WINDOWS\Prefetch
2014-06-05 08:37:27 ----D---- C:\Program Files\CCleaner
2014-06-05 08:33:19 ----D---- C:\Program Files\Google
2014-06-05 08:33:06 ----D---- C:\Program Files (x86)\Google
2014-06-05 08:31:53 ----D---- C:\ProgramData\AVAST Software
2014-06-05 08:08:16 ----D---- C:\WINDOWS\system32\MRT
2014-06-05 08:08:14 ----A---- C:\WINDOWS\system32\MRT.exe
2014-06-04 19:28:27 ----D---- C:\Users\user\AppData\Roaming\WebApp
2014-06-04 19:28:13 ----D---- C:\Users\user\AppData\Roaming\CyberLink
2014-06-04 15:03:42 ----D---- C:\Users\user\AppData\Roaming\LSC
2014-06-04 05:07:47 ----D---- C:\Users\user\AppData\Roaming\ATI
2014-06-04 05:07:47 ----D---- C:\ProgramData\ATI
2014-06-04 05:07:42 ----D---- C:\Users\user\AppData\Roaming\Lenovo
2014-06-04 05:07:38 ----D---- C:\Users\user\AppData\Roaming\Atheros
2014-06-04 05:07:12 ----D---- C:\Users\user\AppData\Roaming\Adobe
2014-06-04 05:06:25 ----D---- C:\Users\user\AppData\Roaming\Macromedia
2014-06-03 14:11:29 ----D---- C:\Program Files (x86)\Seznam.cz
2014-06-03 14:11:04 ----D---- C:\Users\user\AppData\Roaming\Seznam.cz
2014-05-28 16:53:12 ----A---- C:\WINDOWS\SYSWOW64\OVDecode.dll
2014-05-28 16:53:12 ----A---- C:\WINDOWS\SYSWOW64\OpenVideo.dll
2014-05-28 16:53:12 ----A---- C:\WINDOWS\system32\OVDecode64.dll
2014-05-28 16:53:12 ----A---- C:\WINDOWS\system32\OpenVideo64.dll
2014-05-28 16:53:12 ----A---- C:\WINDOWS\system32\coinst_13.251.9001.dll
2014-05-28 16:53:12 ----A---- C:\WINDOWS\system32\clinfo.exe
2014-05-28 16:53:04 ----A---- C:\WINDOWS\SYSWOW64\ativvsvl.dat
2014-05-28 16:53:04 ----A---- C:\WINDOWS\SYSWOW64\ativvsva.dat
2014-05-28 16:53:04 ----A---- C:\WINDOWS\system32\ativvsvl.dat
2014-05-28 16:53:04 ----A---- C:\WINDOWS\system32\ativvsva.dat
2014-05-28 16:53:02 ----A---- C:\WINDOWS\SYSWOW64\atiuxpag.dll
2014-05-28 16:53:02 ----A---- C:\WINDOWS\SYSWOW64\atiumdva.dll
2014-05-28 16:53:02 ----A---- C:\WINDOWS\SYSWOW64\atiumdag.dll
2014-05-28 16:53:02 ----A---- C:\WINDOWS\system32\ativvaxy_cik_nd.dat
2014-05-28 16:53:02 ----A---- C:\WINDOWS\system32\ativvaxy_cik.dat
2014-05-28 16:53:02 ----A---- C:\WINDOWS\system32\ativce02.dat
2014-05-28 16:53:02 ----A---- C:\WINDOWS\system32\atiuxp64.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\SYSWOW64\atiu9pag.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\SYSWOW64\atisamu32.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\SYSWOW64\atipblag.dat
2014-05-28 16:53:00 ----A---- C:\WINDOWS\system32\atiumd6a.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\system32\atiumd64.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\system32\atiu9p64.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\system32\atitmm64.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\system32\atisamu64.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\system32\atipblag.dat
2014-05-28 16:52:58 ----A---- C:\WINDOWS\SYSWOW64\atioglxx.dll
2014-05-28 16:52:56 ----A---- C:\WINDOWS\system32\ATIODE.exe
2014-05-28 16:52:56 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2014-05-28 16:52:56 ----A---- C:\WINDOWS\system32\atio6axx.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\SYSWOW64\atiglpxx.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\drivers\atikmpag.sys
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\drivers\atikmdag.sys
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\atimuixx.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\atimpc64.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\atiicdxx.dat
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\atiglpxx.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\atig6txx.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\atig6pxx.dll
2014-05-28 16:52:52 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2014-05-28 16:52:52 ----A---- C:\WINDOWS\system32\atieclxx.exe
2014-05-28 16:52:52 ----A---- C:\WINDOWS\system32\atidxx64.dll
2014-05-28 16:52:36 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2014-05-28 16:52:34 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2014-05-28 16:52:34 ----A---- C:\WINDOWS\SYSWOW64\aticalrt.dll
2014-05-28 16:52:34 ----A---- C:\WINDOWS\system32\atidemgy.dll
2014-05-28 16:52:34 ----A---- C:\WINDOWS\system32\aticfx64.dll
2014-05-28 16:52:34 ----A---- C:\WINDOWS\system32\aticalrt64.dll
2014-05-28 16:52:32 ----A---- C:\WINDOWS\SYSWOW64\aticaldd.dll
2014-05-28 16:52:32 ----A---- C:\WINDOWS\SYSWOW64\aticalcl.dll
2014-05-28 16:52:32 ----A---- C:\WINDOWS\system32\aticaldd64.dll
2014-05-28 16:52:32 ----A---- C:\WINDOWS\system32\aticalcl64.dll
2014-05-28 16:52:32 ----A---- C:\WINDOWS\system32\atibtmon.exe
2014-05-28 16:52:30 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2014-05-28 16:52:30 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2014-05-28 16:52:30 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2014-05-28 16:52:30 ----A---- C:\WINDOWS\SYSWOW64\amdocl_ld32.exe
2014-05-28 16:52:30 ----A---- C:\WINDOWS\system32\OpenCL.dll
2014-05-28 16:52:30 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2014-05-28 16:52:30 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2014-05-28 16:52:30 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2014-05-28 16:52:30 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2014-05-28 16:52:30 ----A---- C:\WINDOWS\system32\amdocl_ld64.exe
2014-05-28 16:52:28 ----A---- C:\WINDOWS\SYSWOW64\amdocl_as32.exe
2014-05-28 16:52:28 ----A---- C:\WINDOWS\system32\amdocl_as64.exe
2014-05-28 16:52:26 ----A---- C:\WINDOWS\system32\amdocl64.dll
2014-05-28 16:52:24 ----A---- C:\WINDOWS\SYSWOW64\amdocl.dll
2014-05-28 16:52:24 ----A---- C:\WINDOWS\SYSWOW64\amdhdl32.dll
2014-05-28 16:52:24 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2014-05-28 16:52:24 ----A---- C:\WINDOWS\system32\amdhdl64.dll
2014-05-28 16:52:22 ----A---- C:\WINDOWS\SYSWOW64\amdhcp32.dll
2014-05-28 16:52:22 ----A---- C:\WINDOWS\SYSWOW64\amdave32.dll
2014-05-28 16:52:22 ----A---- C:\WINDOWS\system32\amdhcp64.dll
2014-05-28 16:52:22 ----A---- C:\WINDOWS\system32\amdave64.dll
======List of files/folders modified in the last 3 months======
2014-08-14 19:14:45 ----D---- C:\WINDOWS\Temp
2014-08-14 19:14:45 ----D---- C:\WINDOWS\SoftwareDistribution
2014-08-14 19:14:45 ----D---- C:\WINDOWS\debug
2014-08-14 19:14:45 ----D---- C:\Windows
2014-08-14 19:00:00 ----D---- C:\WINDOWS\system32\sru
2014-08-14 18:15:07 ----RD---- C:\WINDOWS\System32
2014-08-14 18:15:07 ----D---- C:\WINDOWS\Inf
2014-08-14 18:15:07 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-08-14 15:26:01 ----D---- C:\WINDOWS\rescache
2014-08-14 15:04:58 ----D---- C:\WINDOWS\Microsoft.NET
2014-08-14 15:04:53 ----RSD---- C:\WINDOWS\assembly
2014-08-14 14:58:54 ----D---- C:\WINDOWS\system32\config
2014-08-14 14:54:34 ----HD---- C:\Program Files\WindowsApps
2014-08-14 14:54:27 ----D---- C:\WINDOWS\AppReadiness
2014-08-14 14:54:24 ----D---- C:\WINDOWS\CbsTemp
2014-08-14 14:54:12 ----D---- C:\WINDOWS\WinSxS
2014-08-14 14:50:37 ----RD---- C:\WINDOWS\ToastData
2014-08-14 14:50:37 ----D---- C:\WINDOWS\SysWOW64
2014-08-14 14:50:37 ----D---- C:\WINDOWS\system32\migration
2014-08-14 14:50:32 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-08-14 14:50:32 ----D---- C:\WINDOWS\system32\cs-CZ
2014-08-14 14:49:50 ----D---- C:\WINDOWS\system32\wbem
2014-08-14 14:49:26 ----SHD---- C:\System Volume Information
2014-08-14 08:15:05 ----D---- C:\WINDOWS\system32\catroot2
2014-08-07 17:50:31 ----SHD---- C:\WINDOWS\Installer
2014-08-07 17:50:31 ----D---- C:\WINDOWS\system32\catroot
2014-08-07 17:50:30 ----D---- C:\WINDOWS\system32\DriverStore
2014-08-07 17:50:30 ----D---- C:\Program Files\DIFX
2014-08-07 17:50:16 ----HD---- C:\ProgramData
2014-08-07 17:50:11 ----RD---- C:\Program Files (x86)
2014-08-07 17:50:10 ----D---- C:\WINDOWS\system32\Tasks
2014-08-07 17:13:44 ----D---- C:\Program Files
2014-08-07 16:31:39 ----SD---- C:\WINDOWS\Downloaded Program Files
2014-08-02 02:17:43 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-07-29 18:12:35 ----D---- C:\WINDOWS\system32\NDF
2014-07-29 12:04:39 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-07-26 22:25:08 ----D---- C:\WINDOWS\system32\drivers
2014-07-10 12:34:23 ----D---- C:\Program Files (x86)\Bluetooth Suite
2014-07-10 12:34:22 ----D---- C:\Program Files\Common Files
2014-07-09 23:19:58 ----D---- C:\WINDOWS\WinStore
2014-07-09 23:19:58 ----D---- C:\Program Files\Internet Explorer
2014-07-09 23:19:58 ----D---- C:\Program Files (x86)\Internet Explorer
2014-07-09 08:03:29 ----D---- C:\Program Files\Windows Journal
2014-06-30 14:43:59 ----D---- C:\WINDOWS\Logs
2014-06-29 12:15:37 ----D---- C:\WINDOWS\system32\drivers\UMDF
2014-06-26 21:25:35 ----D---- C:\ProgramData\Lenovo
2014-06-26 21:25:32 ----D---- C:\Program Files\Lenovo
2014-06-26 21:00:26 ----D---- C:\ProgramData\McAfee
2014-06-26 21:00:26 ----D---- C:\Program Files (x86)\Common Files
2014-06-26 20:59:03 ----HD---- C:\WINDOWS\ELAMBKUP
2014-06-21 11:59:24 ----RSD---- C:\WINDOWS\Fonts
2014-06-20 23:49:19 ----D---- C:\WINDOWS\Tasks
2014-06-11 08:02:39 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-06-08 07:30:45 ----D---- C:\ProgramData\Adobe
2014-06-07 07:31:11 ----D---- C:\WINDOWS\system32\restore
2014-06-07 07:18:58 ----D---- C:\WINDOWS\system32\wdi
2014-06-06 20:25:58 ----D---- C:\WINDOWS\LiveKernelReports
2014-06-05 21:29:18 ----D---- C:\WINDOWS\system32\LogFiles
2014-06-05 12:16:24 ----D---- C:\WINDOWS\system32\setup
2014-06-05 12:12:06 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2014-06-05 12:09:15 ----D---- C:\Program Files\Windows Defender
2014-06-05 12:09:15 ----D---- C:\Program Files (x86)\Windows Defender
2014-06-05 12:08:41 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2014-06-05 11:58:37 ----D---- C:\WINDOWS\apppatch
2014-06-05 11:58:14 ----SHD---- C:\$Recycle.Bin
2014-06-05 11:51:00 ----D---- C:\Program Files\Windows NT
2014-06-05 11:50:40 ----D---- C:\WINDOWS\Registration
2014-06-05 11:47:40 ----RSD---- C:\WINDOWS\Media
2014-06-05 11:45:00 ----D---- C:\WINDOWS\SYSWOW64\drivers
2014-06-05 11:45:00 ----D---- C:\WINDOWS\SYSWOW64\Atheros_L1e
2014-06-05 11:45:00 ----D---- C:\WINDOWS\system32\Sysprep
2014-06-05 11:44:58 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2014-06-05 11:44:16 ----D---- C:\WINDOWS\SYSWOW64\winrm
2014-06-05 11:44:15 ----D---- C:\WINDOWS\SYSWOW64\WCN
2014-06-05 11:44:14 ----D---- C:\WINDOWS\SYSWOW64\sysprep
2014-06-05 11:44:14 ----D---- C:\WINDOWS\SYSWOW64\SMI
2014-06-05 11:44:14 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2014-06-05 11:44:14 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2014-06-05 11:44:13 ----D---- C:\WINDOWS\SYSWOW64\sda
2014-06-05 11:44:13 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2014-06-05 11:44:13 ----D---- C:\WINDOWS\SYSWOW64\oobe
2014-06-05 11:44:13 ----D---- C:\WINDOWS\SYSWOW64\MUI
2014-06-05 11:44:13 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2014-06-05 11:44:13 ----D---- C:\WINDOWS\SYSWOW64\LogFiles
2014-06-05 11:44:11 ----D---- C:\WINDOWS\SYSWOW64\IME
2014-06-05 11:44:11 ----D---- C:\WINDOWS\SYSWOW64\en-US
2014-06-05 11:44:10 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2014-06-05 11:44:10 ----D---- C:\WINDOWS\SYSWOW64\catroot
2014-06-05 11:44:08 ----D---- C:\WINDOWS\system32\winrm
2014-06-05 11:44:06 ----D---- C:\WINDOWS\system32\WCN
2014-06-05 11:44:06 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2014-06-05 11:44:06 ----D---- C:\WINDOWS\system32\spool
2014-06-05 11:44:03 ----D---- C:\WINDOWS\system32\slmgr
2014-06-05 11:44:03 ----D---- C:\WINDOWS\system32\sk-SK
2014-06-05 11:44:03 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2014-06-05 11:44:03 ----D---- C:\WINDOWS\system32\oobe
2014-06-05 11:44:02 ----D---- C:\WINDOWS\system32\MUI
2014-06-05 11:44:02 ----D---- C:\WINDOWS\system32\IME
2014-06-05 11:44:01 ----D---- C:\WINDOWS\system32\en-US
2014-06-05 11:44:00 ----DC---- C:\WINDOWS\system32\DRVSTORE
2014-06-05 11:43:11 ----D---- C:\WINDOWS\system32\Boot
2014-06-05 11:43:06 ----D---- C:\WINDOWS\PolicyDefinitions
2014-06-05 11:43:01 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-06-05 11:43:01 ----D---- C:\WINDOWS\IME
2014-06-05 11:43:00 ----D---- C:\WINDOWS\Help
2014-06-05 11:42:59 ----D---- C:\WINDOWS\DigitalLocker
2014-06-05 11:42:56 ----SD---- C:\ProgramData\Microsoft
2014-06-05 11:42:56 ----RD---- C:\Users
2014-06-05 11:42:56 ----D---- C:\ProgramData\PRICache
2014-06-05 11:42:51 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2014-06-05 11:42:51 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2014-06-05 11:42:51 ----D---- C:\Program Files (x86)\Windows Media Player
2014-06-05 11:42:51 ----D---- C:\Program Files (x86)\Windows Mail
2014-06-05 11:42:47 ----SHD---- C:\Program Files\Windows Sidebar
2014-06-05 11:42:47 ----D---- C:\Program Files\Windows Photo Viewer
2014-06-05 11:42:47 ----D---- C:\Program Files\Windows Media Player
2014-06-05 11:42:47 ----D---- C:\Program Files\Windows Mail
2014-06-05 11:42:45 ----D---- C:\Program Files\Common Files\System
2014-06-05 11:42:45 ----D---- C:\Program Files\Common Files\microsoft shared
2014-06-05 11:40:11 ----D---- C:\WINDOWS\system32\Recovery
2014-06-05 11:26:16 ----D---- C:\WINDOWS\twain_32
2014-06-05 10:29:14 ----D---- C:\WINDOWS\AUInstallAgent
2014-06-04 19:28:19 ----D---- C:\ProgramData\CyberLink
2014-06-04 19:10:40 ----D---- C:\WINDOWS\Downloaded Installations
2014-06-04 05:07:49 ----D---- C:\ProgramData\Atheros
2014-06-03 14:10:24 ----D---- C:\Program Files (x86)\Adobe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [2012-11-30 80552]
R0 amd_xata;amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [2012-11-30 26280]
R0 amdkmpfd;@oem13.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2013-02-14 37472]
R0 aswNdisFlt;@oem71.inf,%AfwDescriptionFree%;Avast! Firewall Driver; C:\WINDOWS\system32\DRIVERS\aswNdisFlt.sys [2014-07-26 448400]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-07-17 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-07-17 224896]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2013-12-10 39008]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2014-07-26 28184]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-07-17 93568]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-07-17 1041168]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-07-17 427360]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2013-08-22 71680]
R2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-04-09 57472]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-07-17 29208]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-07-17 79184]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-07-17 92008]
R3 ACPIVPC;@oem55.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2013-12-10 33560]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-05-28 13209088]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-05-28 626688]
R3 AthBTPort;@oem5.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2013-01-25 89168]
R3 athr;@oem10.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athw8x.sys [2013-03-25 3776000]
R3 AtiHDAudioService;@oem2.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW86.sys [2013-04-23 98744]
R3 BTATH_A2DP;@oem4.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2013-01-25 346192]
R3 btath_avdt;@oem4.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2013-01-25 115280]
R3 BTATH_BUS;@oem59.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2013-01-25 34384]
R3 BTATH_HCRP;@oem7.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2013-01-25 179432]
R3 BTATH_LWFLT;@oem16.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2013-01-25 77464]
R3 BTATH_RCP;@oem11.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2013-01-25 136424]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2014-04-28 599240]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2013-08-22 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2013-08-22 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-03-18 81920]
R3 CnxtHdAudService;@oem6.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2013-02-26 1680992]
R3 ETD;@oem8.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2013-02-27 355664]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport – ovladač pro řadič Qualcomm Atheros AR81xx PCI-E Ethernet; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2013-06-18 129224]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2014-03-18 167424]
R3 rtsuvc;@oem39.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2013-04-10 8243272]
R3 usbfilter;AMD USB Filter Driver; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [2012-08-28 58536]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2013-08-22 36864]
S2 APXACC;AppEx Networks Accelerator LWF; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [2013-04-18 219360]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-06-05 1200128]
S3 RSUSBVSTOR;@oem58.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2013-03-18 327752]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\WINDOWS\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-05-08 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-05-28 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-04-25 361984]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-01-25 227456]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-07-17 50344]
R2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2014-07-26 106488]
R2 CxAudMsg;Conexant Audio Message Service; C:\windows\system32\CxAudMsg64.exe [2012-12-03 202400]
R2 Garmin Core Update Service;Garmin Core Update Service; C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [2014-07-23 438616]
R2 VeriFaceSrv;VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [2013-12-10 68368]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-05 116648]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-05 116648]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-07-17 194032]
S3 LSCWinService;LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2014-05-06 1663880]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu. Děkuji!:)
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu logu. Děkuji!:)
Zdravim 
Pokud nepouzivate, odinstalujte Seznam Software.
Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.
Pokud nepouzivate, odinstalujte Seznam Software. Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu logu. Děkuji!:)
# AdwCleaner v3.305 - Report created 15/08/2014 at 16:25:54
# Updated 14/08/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : user - USER-PC
# Running from : C:\Users\user\Downloads\adwcleaner_3.305.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17239
-\\ Google Chrome v36.0.1985.125
[ File : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [895 octets] - [15/08/2014 16:22:15]
AdwCleaner[S0].txt - [819 octets] - [15/08/2014 16:25:54]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [878 octets] ##########
# Updated 14/08/2014 by Xplode
# Operating System : Windows 8.1 (64 bits)
# Username : user - USER-PC
# Running from : C:\Users\user\Downloads\adwcleaner_3.305.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17239
-\\ Google Chrome v36.0.1985.125
[ File : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [895 octets] - [15/08/2014 16:22:15]
AdwCleaner[S0].txt - [819 octets] - [15/08/2014 16:25:54]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [878 octets] ##########
Re: Prosím o kontrolu logu. Děkuji!:)
Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=29&t=137928 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekcePokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu logu. Děkuji!:)
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 16. 8. 2014
Scan Time: 16:59:45
Logfile: viry.txt
Administrator: Yes
Version: 2.00.2.1012
Malware Database: v2014.08.16.06
Rootkit Database: v2014.08.15.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
OS: Windows 8.1
CPU: x64
File System: NTFS
User: user
Scan Type: Custom Scan
Result: Completed
Objects Scanned: 429766
Time Elapsed: 1 hr, 26 min, 0 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 2
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\bitstreams, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Files: 18
PUP.Optional.OpenCandy, C:\Users\user\Downloads\PhotoScape_V3.6.5.exe, Quarantined, [c185f0d7f38874c24af514e445bf49b7],
Trojan.BitMiner, C:\Windows\Inf\mncxeakkd\mncxeakkd.exe, Quarantined, [8eb8487f4536f343786c6560b64b1de3],
PUP.Optional.Bitcoin, C:\Windows\SysWOW64\acumnclfgl.exe, Quarantined, [4df95275f68589ad92549d1732cfb749],
Trojan.BitMiner, C:\Windows\SysWOW64\dcgmnclfgl.exe, Quarantined, [ab9b13b46912dd599b49bf065fa233cd],
Trojan.Script, C:\Windows\SysWOW64\mshoha.vbe, Quarantined, [c77ff6d1b0cb2d096d5b9d70fd0653ad],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\diablo130302.cl, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\diakgcn121016.cl, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\libcurl-4.dll, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\libeay32.dll, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\libidn-11.dll, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\librtmp.dll, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\libssh2.dll, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\phatk121016.cl, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\poclbm130302.cl, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\scrypt130511.cl, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\ssleay32.dll, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\zlib1.dll, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\bitstreams\fpgaminer_top_fixed7_197MHz.ncd, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Physical Sectors: 0
(No malicious items detected)
(end)
www.malwarebytes.org
Scan Date: 16. 8. 2014
Scan Time: 16:59:45
Logfile: viry.txt
Administrator: Yes
Version: 2.00.2.1012
Malware Database: v2014.08.16.06
Rootkit Database: v2014.08.15.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
OS: Windows 8.1
CPU: x64
File System: NTFS
User: user
Scan Type: Custom Scan
Result: Completed
Objects Scanned: 429766
Time Elapsed: 1 hr, 26 min, 0 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 0
(No malicious items detected)
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 2
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\bitstreams, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Files: 18
PUP.Optional.OpenCandy, C:\Users\user\Downloads\PhotoScape_V3.6.5.exe, Quarantined, [c185f0d7f38874c24af514e445bf49b7],
Trojan.BitMiner, C:\Windows\Inf\mncxeakkd\mncxeakkd.exe, Quarantined, [8eb8487f4536f343786c6560b64b1de3],
PUP.Optional.Bitcoin, C:\Windows\SysWOW64\acumnclfgl.exe, Quarantined, [4df95275f68589ad92549d1732cfb749],
Trojan.BitMiner, C:\Windows\SysWOW64\dcgmnclfgl.exe, Quarantined, [ab9b13b46912dd599b49bf065fa233cd],
Trojan.Script, C:\Windows\SysWOW64\mshoha.vbe, Quarantined, [c77ff6d1b0cb2d096d5b9d70fd0653ad],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\diablo130302.cl, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\diakgcn121016.cl, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\libcurl-4.dll, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\libeay32.dll, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\libidn-11.dll, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\librtmp.dll, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\libssh2.dll, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\phatk121016.cl, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\poclbm130302.cl, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\scrypt130511.cl, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\ssleay32.dll, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\zlib1.dll, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Trojan.Agent.BCM, C:\Windows\Inf\mncxeakkd\bitstreams\fpgaminer_top_fixed7_197MHz.ncd, Quarantined, [e462ba0dd5a6b6803f2ee4d69f635ba5],
Physical Sectors: 0
(No malicious items detected)
(end)
Re: Prosím o kontrolu logu. Děkuji!:)
Zopakujte test s MBAM, at vime, ze se to nevraci. Napiste vysledek a podle toho zvolim dalsi postup
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu logu. Děkuji!:)
Píše jenom - Prohledávání bylo úspěšně dokončeno. Nebyly detekovány žádné hrozby.
Re: Prosím o kontrolu logu. Děkuji!:)
MBAM odinstalujte. Dejte novy log z RSITa k tomu
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text
Kód: Vybrat vše
CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu logu. Děkuji!:)
Logfile of random's system information tool 1.10 (written by random/random)
Run by user at 2014-08-19 14:29:58
Microsoft Windows 8.1
System drive C: has 820 GB (90%) free of 912 GB
Total RAM: 7375 MB (79% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:30:01, on 19. 8. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17239)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\trend micro\user.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.co.uk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
O4 - Startup: OpenOffice.org 3.0.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.2 ... rol_32.CAB
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Conexant Audio Message Service (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Garmin Core Update Service - Garmin Ltd or its subsidiaries - C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LSCWinService - Unknown owner - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: VeriFaceSrv - Unknown owner - C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
--
End of file - 7978 bytes
======Listing Processes======
wininit.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\windows\system32\CxAudMsg64.exe
"C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe"
dashost.exe {1fe609c4-bf6b-49df-89692d1a3e16cd89}
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-94412e8f-08ca-4a35-b909-fcacae59b99a -SystemEventPortName:HostProcess-65b53b90-9406-4109-af1a-f78e4c498f18 -IoCancelEventPortName:HostProcess-4f55a2c3-a2c0-4853-b7fc-4031075e68cf -NonStateChangingEventPortName:HostProcess-cb51814f-22bc-4c00-9cde-db17094ca6bb -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:556b7912-0517-4f2a-90dc-2bcd1dbaa8f8 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "0xc68_0xe4_0x485c8a15"
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
-hiberboot
atieclxx
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe"
taskhostex.exe
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
"C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" -quickstart
"C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" "-quickstart" "-env:OOO_CWD=2C:\\Program Files (x86)\\OpenOffice.org 3\\program"
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
"C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe393_ Global\UsGthrCtrlFltPipeMssGthrPipe393 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 580 584 592 65536 588
"C:\Users\user\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf8cd17d2a3a7b.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-07-17 612248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-07-17 256456]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-07-17 457712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-07-17 194504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-07-17 256456]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-07-17 194504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2013-03-05 2876816]
"RtsFT"=C:\WINDOWS\RTFTrack.exe [2013-04-10 6339656]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-02-04 899680]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2013-12-10 17097200]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2013-12-10 193008]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-01-25 131712]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"GarminExpressTrayApp"=C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [2014-07-23 688984]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-04-25 642816]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2012-04-19 217088]
"RemoteControl10"=C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [2012-03-29 91432]
"Intel AppUp(SM) center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2012-07-12 155488]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-07-31 4085896]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-01-25 131712]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
OpenOffice.org 3.0.lnk - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableCAD"=1
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 3 months======
2014-08-16 18:30:31 ----A---- C:\WINDOWS\system32\drivers\jjjvq.sys
2014-08-16 16:55:36 ----D---- C:\ProgramData\Malwarebytes
2014-08-15 16:23:20 ----A---- C:\WINDOWS\SYSWOW64\sqlite3.dll
2014-08-15 16:22:05 ----D---- C:\AdwCleaner
2014-08-14 08:18:59 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-08-14 08:18:59 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-08-14 08:18:58 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-08-14 08:18:58 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-08-14 08:18:58 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-08-14 08:18:57 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-08-14 08:18:56 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-08-14 08:18:55 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-08-14 08:18:54 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-08-14 08:18:54 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-08-14 08:18:54 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-08-14 08:18:54 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-08-14 08:18:54 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-08-14 08:18:53 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-08-14 08:18:53 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-08-14 08:18:52 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-08-14 08:18:52 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-08-14 08:18:52 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-08-14 08:18:51 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-08-14 08:18:50 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-08-14 08:18:49 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-08-14 08:18:49 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-08-14 08:18:40 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-08-14 08:18:40 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-08-14 08:18:40 ----A---- C:\WINDOWS\system32\wininet.dll
2014-08-14 08:18:40 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-08-14 08:18:39 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-08-14 08:18:39 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-08-14 08:18:39 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-08-14 08:18:38 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-08-14 08:18:38 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-08-14 08:18:38 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-08-14 08:18:38 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-08-14 08:18:34 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2014-08-14 08:18:34 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2014-08-14 08:17:22 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2014-08-14 08:17:22 ----A---- C:\WINDOWS\system32\dxgi.dll
2014-08-14 08:17:22 ----A---- C:\WINDOWS\system32\dwmcore.dll
2014-08-14 08:17:22 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-08-14 08:17:22 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2014-08-14 08:17:13 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2014-08-14 08:17:13 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2014-08-14 08:17:00 ----A---- C:\WINDOWS\system32\WpcMon.exe
2014-08-14 08:17:00 ----A---- C:\WINDOWS\system32\Wpc.dll
2014-08-14 08:16:59 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2014-08-14 08:16:59 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2014-08-14 08:16:53 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-08-14 08:16:53 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-08-14 08:16:53 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-08-14 08:16:45 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-08-14 08:16:45 ----A---- C:\WINDOWS\system32\d3d9.dll
2014-08-14 08:16:44 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2014-08-14 08:16:43 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-08-14 08:16:43 ----A---- C:\WINDOWS\system32\localspl.dll
2014-08-14 08:16:42 ----A---- C:\WINDOWS\system32\vpnike.dll
2014-08-14 08:16:42 ----A---- C:\WINDOWS\system32\ntdll.dll
2014-08-14 08:16:42 ----A---- C:\WINDOWS\system32\fveapi.dll
2014-08-14 08:16:42 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2014-08-14 08:16:41 ----A---- C:\WINDOWS\SYSWOW64\SkyDriveShell.dll
2014-08-14 08:16:41 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2014-08-14 08:16:41 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2014-08-14 08:16:41 ----A---- C:\WINDOWS\system32\SkyDriveShell.dll
2014-08-14 08:16:41 ----A---- C:\WINDOWS\system32\framedynos.dll
2014-08-14 08:16:41 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-08-14 08:16:41 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-08-14 08:16:40 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2014-08-14 08:16:40 ----A---- C:\WINDOWS\system32\bdesvc.dll
2014-08-14 08:16:39 ----A---- C:\WINDOWS\SYSWOW64\framedynos.dll
2014-08-14 08:16:39 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2014-08-14 08:16:39 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys
2014-08-14 08:16:39 ----A---- C:\WINDOWS\system32\BFE.DLL
2014-08-14 08:16:38 ----A---- C:\WINDOWS\system32\ncobjapi.dll
2014-08-14 08:16:37 ----A---- C:\WINDOWS\SYSWOW64\ncobjapi.dll
2014-08-14 08:16:37 ----A---- C:\WINDOWS\system32\winbici.dll
2014-08-14 08:16:37 ----A---- C:\WINDOWS\system32\framedyn.dll
2014-08-14 08:16:36 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2014-08-14 08:16:36 ----A---- C:\WINDOWS\SYSWOW64\Robocopy.exe
2014-08-14 08:16:36 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-08-14 08:16:36 ----A---- C:\WINDOWS\system32\WebClnt.dll
2014-08-14 08:16:36 ----A---- C:\WINDOWS\system32\Robocopy.exe
2014-08-14 08:16:36 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2014-08-14 08:16:36 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2014-08-14 08:16:36 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll
2014-08-14 08:16:36 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2014-08-14 08:16:35 ----A---- C:\WINDOWS\SYSWOW64\framedyn.dll
2014-08-14 08:16:35 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll
2014-08-14 08:16:35 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll
2014-08-14 08:16:35 ----A---- C:\WINDOWS\system32\drivers\vwififlt.sys
2014-08-14 08:16:35 ----A---- C:\WINDOWS\system32\BulkOperationHost.exe
2014-08-14 08:16:34 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2014-08-14 08:16:34 ----A---- C:\WINDOWS\system32\srms.dat
2014-08-14 08:16:34 ----A---- C:\WINDOWS\system32\reseteng.dll
2014-08-14 08:16:12 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-08-14 08:16:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-08-14 08:16:09 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-08-14 08:16:08 ----AC---- C:\WINDOWS\system32\drivers\usbport.sys
2014-08-14 08:16:08 ----AC---- C:\WINDOWS\system32\drivers\usbhub.sys
2014-08-14 08:16:07 ----AC---- C:\WINDOWS\system32\drivers\usbuhci.sys
2014-08-14 08:16:07 ----AC---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2014-08-14 08:16:07 ----AC---- C:\WINDOWS\system32\drivers\usbehci.sys
2014-08-14 08:16:07 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2014-08-14 08:16:07 ----A---- C:\WINDOWS\system32\WUDFSvc.dll
2014-08-14 08:16:07 ----A---- C:\WINDOWS\system32\WUDFPlatform.dll
2014-08-14 08:16:07 ----A---- C:\WINDOWS\system32\WUDFHost.exe
2014-08-14 08:16:07 ----A---- C:\WINDOWS\system32\rsaenh.dll
2014-08-14 08:16:07 ----A---- C:\WINDOWS\system32\drivers\WUDFRd.sys
2014-08-14 08:16:07 ----A---- C:\WINDOWS\system32\drivers\WUDFPf.sys
2014-08-14 08:16:07 ----A---- C:\WINDOWS\system32\DaOtpCredentialProvider.dll
2014-08-14 08:16:06 ----AC---- C:\WINDOWS\system32\drivers\usbd.sys
2014-08-14 08:16:06 ----A---- C:\WINDOWS\SYSWOW64\DaOtpCredentialProvider.dll
2014-08-14 08:16:06 ----A---- C:\WINDOWS\system32\hal.dll
2014-08-14 08:15:51 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2014-08-14 08:15:49 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2014-08-14 08:15:46 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2014-08-14 08:15:46 ----A---- C:\WINDOWS\system32\win32k.sys
2014-08-14 08:15:46 ----A---- C:\WINDOWS\system32\gdi32.dll
2014-08-14 08:15:34 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2014-08-14 08:15:34 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-08-14 08:15:34 ----A---- C:\WINDOWS\system32\msi.dll
2014-08-14 08:15:34 ----A---- C:\WINDOWS\system32\authui.dll
2014-08-14 08:15:33 ----A---- C:\WINDOWS\SYSWOW64\msihnd.dll
2014-08-14 08:15:33 ----A---- C:\WINDOWS\system32\msihnd.dll
2014-08-14 08:15:33 ----A---- C:\WINDOWS\system32\consent.exe
2014-08-07 17:50:16 ----D---- C:\ProgramData\Garmin
2014-08-07 17:50:11 ----D---- C:\Program Files (x86)\Garmin
2014-08-07 17:49:51 ----D---- C:\ProgramData\Package Cache
2014-08-07 17:13:45 ----D---- C:\Program Files (x86)\Garmin GPS Plugin
2014-08-07 17:13:44 ----D---- C:\Program Files\Garmin GPS Plugin
2014-08-07 17:13:12 ----D---- C:\Users\user\AppData\Roaming\Garmin
2014-08-05 16:21:00 ----D---- C:\ProgramData\DiamondCaves3
2014-07-24 15:44:22 ----D---- C:\Users\user\AppData\Roaming\BlackBean
2014-07-19 14:43:41 ----D---- C:\Users\user\AppData\Roaming\THQ
2014-07-19 14:41:03 ----D---- C:\ProgramData\InstallShield
2014-07-19 14:34:29 ----D---- C:\Users\user\AppData\Roaming\InstallShield
2014-07-17 18:33:30 ----D---- C:\Users\user\AppData\Roaming\Off Road
2014-07-17 08:48:39 ----D---- C:\ProgramData\Google
2014-07-17 08:42:48 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2014-07-17 08:40:54 ----A---- C:\WINDOWS\avastSS.scr
2014-07-10 15:56:13 ----A---- C:\WINDOWS\eReg.dat
2014-07-10 15:54:47 ----RA---- C:\WINDOWS\SYSWOW64\MSVCP50.DLL
2014-07-10 15:54:47 ----RA---- C:\WINDOWS\NPSExec.exe
2014-07-10 15:54:47 ----D---- C:\Program Files (x86)\Electronic Arts
2014-07-10 15:52:05 ----A---- C:\WINDOWS\IsUninst.exe
2014-07-10 12:34:22 ----D---- C:\Program Files\Common Files\Atheros
2014-07-09 08:04:40 ----A---- C:\WINDOWS\SYSWOW64\osk.exe
2014-07-09 08:04:40 ----A---- C:\WINDOWS\system32\osk.exe
2014-07-09 08:03:33 ----A---- C:\WINDOWS\system32\termsrv.dll
2014-07-09 08:02:36 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-07-09 08:02:36 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-07-09 08:02:36 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-07-09 08:02:36 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 08:02:36 ----A---- C:\WINDOWS\system32\twinui.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-07-09 08:02:35 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2014-07-09 08:02:34 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-07-09 08:02:30 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2014-07-09 07:57:53 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-07-09 07:57:53 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-07-09 07:57:53 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-07-09 07:57:53 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-07-09 07:57:53 ----A---- C:\WINDOWS\system32\certcli.dll
2014-07-09 07:57:53 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-07-09 07:57:18 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2014-07-09 07:57:18 ----A---- C:\WINDOWS\system32\qedit.dll
2014-07-09 07:45:30 ----A---- C:\WINDOWS\system32\WSReset.exe
2014-07-04 15:40:25 ----D---- C:\Program Files (x86)\City Interactive
2014-06-29 13:35:09 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2014-06-29 13:35:09 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2014-06-29 13:35:09 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2014-06-29 13:35:09 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2014-06-29 13:35:09 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2014-06-29 13:35:09 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2014-06-29 13:35:08 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_43.dll
2014-06-29 13:35:08 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_43.dll
2014-06-29 13:35:08 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_43.dll
2014-06-29 13:35:08 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2014-06-29 13:35:08 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2014-06-29 13:35:08 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_43.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_43.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2014-06-29 13:35:06 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_5.dll
2014-06-29 13:35:06 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2014-06-29 13:35:06 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_7.dll
2014-06-29 13:35:06 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2014-06-29 13:35:06 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2014-06-29 13:35:06 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2014-06-29 13:35:05 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2014-06-29 13:35:05 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2014-06-29 13:35:05 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2014-06-29 13:35:05 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2014-06-29 13:35:04 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2014-06-29 13:35:04 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2014-06-29 13:35:04 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2014-06-29 13:35:04 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_42.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_42.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_41.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_41.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2014-06-29 13:35:02 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2014-06-29 13:35:02 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_3.dll
2014-06-29 13:35:02 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2014-06-29 13:35:02 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2014-06-29 13:35:02 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2014-06-29 13:35:02 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2014-06-29 13:35:00 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2014-06-29 13:35:00 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2014-06-29 13:35:00 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2014-06-29 13:35:00 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2014-06-29 13:35:00 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2014-06-29 13:35:00 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_2.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_1.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2014-06-29 13:34:58 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2014-06-29 13:34:58 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_39.dll
2014-06-29 13:34:58 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_39.dll
2014-06-29 13:34:58 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2014-06-29 13:34:58 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2014-06-29 13:34:58 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2014-06-29 13:34:57 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2014-06-29 13:34:57 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2014-06-29 13:34:57 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_39.dll
2014-06-29 13:34:57 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2014-06-29 13:34:57 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2014-06-29 13:34:57 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2014-06-29 13:34:55 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2014-06-29 13:34:55 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2014-06-29 13:34:55 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2014-06-29 13:34:55 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2014-06-29 13:34:53 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2014-06-29 13:34:53 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2014-06-29 13:34:53 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2014-06-29 13:34:53 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2014-06-29 13:34:52 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2014-06-29 13:34:52 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2014-06-29 13:34:52 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2014-06-29 13:34:52 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2014-06-29 13:34:51 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2014-06-29 13:34:51 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2014-06-29 13:34:49 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2014-06-29 13:34:49 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2014-06-29 13:32:59 ----D---- C:\GOG Games
2014-06-26 20:48:55 ----D---- C:\Users\user\AppData\Roaming\AVAST Software
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswstm.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswsp.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswsnx.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswRdr2.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-06-26 20:47:47 ----D---- C:\Program Files\AVAST Software
2014-06-21 12:00:56 ----D---- C:\Users\user\AppData\Roaming\OpenOffice.org
2014-06-21 11:59:05 ----D---- C:\Program Files (x86)\OpenOffice.org 3
2014-06-19 17:28:00 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2014-06-19 17:28:00 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2014-06-19 17:27:59 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2014-06-19 17:27:59 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2014-06-19 17:27:59 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2014-06-19 17:27:59 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2014-06-19 17:27:59 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2014-06-19 17:27:59 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2014-06-19 17:27:57 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2014-06-19 17:27:57 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2014-06-19 17:27:57 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2014-06-19 17:27:57 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2014-06-19 17:27:57 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2014-06-19 17:27:57 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2014-06-19 17:27:56 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2014-06-19 17:27:56 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2014-06-19 17:27:55 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2014-06-19 17:27:55 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2014-06-19 17:27:55 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2014-06-19 17:27:55 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2014-06-19 17:27:55 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2014-06-19 17:27:55 ----A---- C:\WINDOWS\system32\d3dx10.dll
2014-06-19 17:27:54 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2014-06-19 17:27:54 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2014-06-19 17:27:54 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_32.dll
2014-06-19 17:27:54 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2014-06-19 17:27:54 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2014-06-19 17:27:54 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2014-06-19 17:27:53 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2014-06-19 17:27:53 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2014-06-19 17:27:53 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_31.dll
2014-06-19 17:27:53 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2014-06-19 17:27:53 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2014-06-19 17:27:53 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2014-06-19 17:27:52 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2014-06-19 17:27:52 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2014-06-19 17:27:52 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2014-06-19 17:27:52 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2014-06-19 17:27:52 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2014-06-19 17:27:52 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2014-06-19 17:27:48 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2014-06-19 17:27:48 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2014-06-19 17:27:46 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2014-06-19 17:27:46 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2014-06-19 17:27:46 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2014-06-19 17:27:46 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2014-06-19 17:27:45 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2014-06-19 17:27:45 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2014-06-19 17:27:37 ----D---- C:\Program Files (x86)\OpenAL
2014-06-19 17:27:37 ----A---- C:\WINDOWS\SYSWOW64\wrap_oal.dll
2014-06-19 17:27:37 ----A---- C:\WINDOWS\SYSWOW64\OpenAL32.dll
2014-06-19 17:27:37 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2014-06-19 17:27:37 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2014-06-19 17:20:55 ----D---- C:\Program Files (x86)\WinRAR
2014-06-19 17:07:15 ----AS---- C:\WINDOWS\SYSWOW64\nircmdc.exe
2014-06-19 16:57:33 ----D---- C:\WINDOWS\SYSWOW64\bitstreams
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\zlib1.dll
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\ssleay32.dll
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\pthreadVC2.dll
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\pthreadGC2.dll
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\libssh2.dll
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\librtmp.dll
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\libidn-11.dll
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\libeay32.dll
2014-06-19 16:57:32 ----AS---- C:\WINDOWS\SYSWOW64\libcurl-4.dll
2014-06-19 16:57:32 ----AS---- C:\WINDOWS\SYSWOW64\cudart32_50_35.dll
2014-06-12 07:30:57 ----D---- C:\ProgramData\Energy Management
2014-06-11 18:27:40 ----D---- C:\Program Files\trend micro
2014-06-11 18:27:39 ----D---- C:\rsit
2014-06-11 07:24:16 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-06-11 07:24:15 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-06-11 07:24:12 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-06-11 07:24:11 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-06-11 07:24:09 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2014-06-11 07:24:09 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe
2014-06-11 07:24:09 ----A---- C:\WINDOWS\system32\FntCache.dll
2014-06-11 07:24:09 ----A---- C:\WINDOWS\system32\DWrite.dll
2014-06-11 07:24:09 ----A---- C:\WINDOWS\system32\drvinst.exe
2014-06-11 07:24:09 ----A---- C:\WINDOWS\system32\drvcfg.exe
2014-06-11 07:23:57 ----A---- C:\WINDOWS\system32\wpccpl.dll
2014-06-11 07:23:56 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2014-06-07 07:33:26 ----RD---- C:\WINDOWS\BrowserChoice
2014-06-06 07:45:45 ----D---- C:\WINDOWS\Minidump
2014-06-05 22:32:57 ----D---- C:\Program Files\GIMP 2
2014-06-05 22:13:47 ----D---- C:\Users\user\AppData\Roaming\PhotoScape
2014-06-05 22:13:30 ----D---- C:\Program Files (x86)\PhotoScape
2014-06-05 12:21:53 ----SHD---- C:\Recovery
2014-06-05 12:21:48 ----DC---- C:\WINDOWS\Panther
2014-06-05 12:17:51 ----A---- C:\WINDOWS\SYSWOW64\wusa.exe
2014-06-05 12:17:51 ----A---- C:\WINDOWS\system32\wusa.exe
2014-06-05 12:15:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\SYSWOW64\sxproxy.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\SYSWOW64\spp.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\wlangpui.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\w32tm.exe
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\userenv.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\l2gpstore.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\CredentialMigrationHandler.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\WSDMon.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\wlangpui.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\w32tm.exe
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\SetNetworkLocation.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\SessEnv.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\RMapi.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\rasapi32.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\nshwfp.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\netcfgx.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\msxml6.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\msftedit.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\l2gpstore.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\kerberos.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\drivers\tcpipreg.sys
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\Display.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\dcomp.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\dafWfdProvider.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\d3d11.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\cdd.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\aclui.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\explorer.exe
2014-06-05 12:15:44 ----AC---- C:\WINDOWS\system32\drivers\hidusb.sys
2014-06-05 12:15:44 ----AC---- C:\WINDOWS\system32\drivers\hidclass.sys
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\wlidprov.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\userenv.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\umpnpmgr.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\sxproxy.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\spp.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\ReInfo.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\ReAgent.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\profsvc.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\pdh.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\ole32.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\netlogon.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\LocationApi.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\KernelBase.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\kernel32.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\dnsapi.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\DevPropMgr.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\davclnt.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2014-06-05 12:12:28 ----A---- C:\WINDOWS\SYSWOW64\mrt100.dll
2014-06-05 12:12:28 ----A---- C:\WINDOWS\SYSWOW64\mrt_map.dll
2014-06-05 12:12:28 ----A---- C:\WINDOWS\system32\mrt100.dll
2014-06-05 12:12:28 ----A---- C:\WINDOWS\system32\mrt_map.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-06-05 12:10:59 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\system32\wups.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-06-05 12:10:59 ----A---- C:\WINDOWS\system32\ubpm.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\system32\storewuauth.dll
2014-06-05 12:09:08 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-06-05 12:09:08 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-06-05 12:09:08 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\srclient.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\wmpmde.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\winmde.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\srcore.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\srclient.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\rstrui.exe
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\mfsvr.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\mfpmp.exe
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\mf.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\MDEServer.exe
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\energyprov.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\tlscsp.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\wscsvc.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\wintrust.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\VSSVC.exe
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\tsgqec.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\tlscsp.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\swprv.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\shell32.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\rpchttp.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\resutils.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\rdpencom.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\propsys.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\ploptin.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\mispace.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\gpapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-06-05 12:07:36 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-06-05 12:07:36 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-06-05 12:07:36 ----AC---- C:\WINDOWS\system32\drivers\msiscsi.sys
2014-06-05 12:07:36 ----AC---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-06-05 12:07:36 ----AC---- C:\WINDOWS\system32\drivers\bthport.sys
2014-06-05 12:07:36 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\srvsvc.dll
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\services.exe
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-06-05 12:00:24 ----D---- C:\Program Files (x86)\Reference Assemblies
2014-06-05 12:00:24 ----D---- C:\Program Files (x86)\MSBuild
2014-06-05 12:00:21 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2014-06-05 12:00:21 ----D---- C:\Program Files\Reference Assemblies
2014-06-05 12:00:21 ----D---- C:\Program Files\MSBuild
2014-06-05 11:59:17 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2014-06-05 11:59:17 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-06-05 11:59:15 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-06-05 11:59:15 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-06-05 11:57:50 ----D---- C:\Users\user\AppData\Roaming\Identities
2014-06-05 11:51:00 ----SHD---- C:\ProgramData\Šablony
2014-06-05 11:51:00 ----SHD---- C:\ProgramData\Plocha
2014-06-05 11:51:00 ----SHD---- C:\ProgramData\Nabídka Start
2014-06-05 11:51:00 ----SHD---- C:\ProgramData\Dokumenty
2014-06-05 11:51:00 ----SHD---- C:\ProgramData\Data aplikací
2014-06-05 11:50:09 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2014-06-05 11:38:44 ----SD---- C:\Users\user\AppData\Roaming\Microsoft
2014-06-05 11:25:52 ----D---- C:\ProgramData\Conexant
2014-06-05 11:25:51 ----D---- C:\Program Files\CONEXANT
2014-06-05 11:25:30 ----D---- C:\Program Files\Common Files\ATI Technologies
2014-06-05 11:25:17 ----D---- C:\AMD
2014-06-05 11:25:02 ----D---- C:\Program Files\AMD
2014-06-05 11:24:46 ----D---- C:\Program Files\Elantech
2014-06-05 11:23:35 ----D---- C:\WINDOWS\Prefetch
2014-06-05 08:37:27 ----D---- C:\Program Files\CCleaner
2014-06-05 08:33:19 ----D---- C:\Program Files\Google
2014-06-05 08:33:06 ----D---- C:\Program Files (x86)\Google
2014-06-05 08:31:53 ----D---- C:\ProgramData\AVAST Software
2014-06-05 08:08:16 ----D---- C:\WINDOWS\system32\MRT
2014-06-05 08:08:14 ----A---- C:\WINDOWS\system32\MRT.exe
2014-06-04 19:28:27 ----D---- C:\Users\user\AppData\Roaming\WebApp
2014-06-04 19:28:13 ----D---- C:\Users\user\AppData\Roaming\CyberLink
2014-06-04 15:03:42 ----D---- C:\Users\user\AppData\Roaming\LSC
2014-06-04 05:07:47 ----D---- C:\Users\user\AppData\Roaming\ATI
2014-06-04 05:07:47 ----D---- C:\ProgramData\ATI
2014-06-04 05:07:42 ----D---- C:\Users\user\AppData\Roaming\Lenovo
2014-06-04 05:07:38 ----D---- C:\Users\user\AppData\Roaming\Atheros
2014-06-04 05:07:12 ----D---- C:\Users\user\AppData\Roaming\Adobe
2014-06-04 05:06:25 ----D---- C:\Users\user\AppData\Roaming\Macromedia
2014-06-03 14:11:29 ----D---- C:\Program Files (x86)\Seznam.cz
2014-06-03 14:11:04 ----D---- C:\Users\user\AppData\Roaming\Seznam.cz
2014-05-28 16:53:12 ----A---- C:\WINDOWS\SYSWOW64\OVDecode.dll
2014-05-28 16:53:12 ----A---- C:\WINDOWS\SYSWOW64\OpenVideo.dll
2014-05-28 16:53:12 ----A---- C:\WINDOWS\system32\OVDecode64.dll
2014-05-28 16:53:12 ----A---- C:\WINDOWS\system32\OpenVideo64.dll
2014-05-28 16:53:12 ----A---- C:\WINDOWS\system32\coinst_13.251.9001.dll
2014-05-28 16:53:12 ----A---- C:\WINDOWS\system32\clinfo.exe
2014-05-28 16:53:04 ----A---- C:\WINDOWS\SYSWOW64\ativvsvl.dat
2014-05-28 16:53:04 ----A---- C:\WINDOWS\SYSWOW64\ativvsva.dat
2014-05-28 16:53:04 ----A---- C:\WINDOWS\system32\ativvsvl.dat
2014-05-28 16:53:04 ----A---- C:\WINDOWS\system32\ativvsva.dat
2014-05-28 16:53:02 ----A---- C:\WINDOWS\SYSWOW64\atiuxpag.dll
2014-05-28 16:53:02 ----A---- C:\WINDOWS\SYSWOW64\atiumdva.dll
2014-05-28 16:53:02 ----A---- C:\WINDOWS\SYSWOW64\atiumdag.dll
2014-05-28 16:53:02 ----A---- C:\WINDOWS\system32\ativvaxy_cik_nd.dat
2014-05-28 16:53:02 ----A---- C:\WINDOWS\system32\ativvaxy_cik.dat
2014-05-28 16:53:02 ----A---- C:\WINDOWS\system32\ativce02.dat
2014-05-28 16:53:02 ----A---- C:\WINDOWS\system32\atiuxp64.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\SYSWOW64\atiu9pag.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\SYSWOW64\atisamu32.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\SYSWOW64\atipblag.dat
2014-05-28 16:53:00 ----A---- C:\WINDOWS\system32\atiumd6a.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\system32\atiumd64.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\system32\atiu9p64.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\system32\atitmm64.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\system32\atisamu64.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\system32\atipblag.dat
2014-05-28 16:52:58 ----A---- C:\WINDOWS\SYSWOW64\atioglxx.dll
2014-05-28 16:52:56 ----A---- C:\WINDOWS\system32\ATIODE.exe
2014-05-28 16:52:56 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2014-05-28 16:52:56 ----A---- C:\WINDOWS\system32\atio6axx.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\SYSWOW64\atiglpxx.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\drivers\atikmpag.sys
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\drivers\atikmdag.sys
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\atimuixx.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\atimpc64.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\atiicdxx.dat
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\atiglpxx.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\atig6txx.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\atig6pxx.dll
2014-05-28 16:52:52 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2014-05-28 16:52:52 ----A---- C:\WINDOWS\system32\atieclxx.exe
2014-05-28 16:52:52 ----A---- C:\WINDOWS\system32\atidxx64.dll
2014-05-28 16:52:36 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2014-05-28 16:52:34 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2014-05-28 16:52:34 ----A---- C:\WINDOWS\SYSWOW64\aticalrt.dll
2014-05-28 16:52:34 ----A---- C:\WINDOWS\system32\atidemgy.dll
2014-05-28 16:52:34 ----A---- C:\WINDOWS\system32\aticfx64.dll
2014-05-28 16:52:34 ----A---- C:\WINDOWS\system32\aticalrt64.dll
2014-05-28 16:52:32 ----A---- C:\WINDOWS\SYSWOW64\aticaldd.dll
2014-05-28 16:52:32 ----A---- C:\WINDOWS\SYSWOW64\aticalcl.dll
2014-05-28 16:52:32 ----A---- C:\WINDOWS\system32\aticaldd64.dll
2014-05-28 16:52:32 ----A---- C:\WINDOWS\system32\aticalcl64.dll
2014-05-28 16:52:32 ----A---- C:\WINDOWS\system32\atibtmon.exe
2014-05-28 16:52:30 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2014-05-28 16:52:30 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2014-05-28 16:52:30 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2014-05-28 16:52:30 ----A---- C:\WINDOWS\SYSWOW64\amdocl_ld32.exe
2014-05-28 16:52:30 ----A---- C:\WINDOWS\system32\OpenCL.dll
2014-05-28 16:52:30 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2014-05-28 16:52:30 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2014-05-28 16:52:30 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2014-05-28 16:52:30 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2014-05-28 16:52:30 ----A---- C:\WINDOWS\system32\amdocl_ld64.exe
2014-05-28 16:52:28 ----A---- C:\WINDOWS\SYSWOW64\amdocl_as32.exe
2014-05-28 16:52:28 ----A---- C:\WINDOWS\system32\amdocl_as64.exe
2014-05-28 16:52:26 ----A---- C:\WINDOWS\system32\amdocl64.dll
2014-05-28 16:52:24 ----A---- C:\WINDOWS\SYSWOW64\amdocl.dll
2014-05-28 16:52:24 ----A---- C:\WINDOWS\SYSWOW64\amdhdl32.dll
2014-05-28 16:52:24 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2014-05-28 16:52:24 ----A---- C:\WINDOWS\system32\amdhdl64.dll
2014-05-28 16:52:22 ----A---- C:\WINDOWS\SYSWOW64\amdhcp32.dll
2014-05-28 16:52:22 ----A---- C:\WINDOWS\SYSWOW64\amdave32.dll
2014-05-28 16:52:22 ----A---- C:\WINDOWS\system32\amdhcp64.dll
2014-05-28 16:52:22 ----A---- C:\WINDOWS\system32\amdave64.dll
======List of files/folders modified in the last 3 months======
2014-08-19 14:27:02 ----RD---- C:\Program Files (x86)
2014-08-19 14:27:02 ----D---- C:\WINDOWS\system32\drivers
2014-08-19 14:00:00 ----D---- C:\WINDOWS\system32\sru
2014-08-19 13:44:06 ----D---- C:\WINDOWS\Temp
2014-08-19 12:48:03 ----D---- C:\WINDOWS\WinSxS
2014-08-19 12:48:00 ----D---- C:\WINDOWS\CbsTemp
2014-08-19 12:47:53 ----SHD---- C:\System Volume Information
2014-08-19 12:46:36 ----D---- C:\WINDOWS\system32\config
2014-08-19 11:04:35 ----D---- C:\WINDOWS\system32\DriverStore
2014-08-19 09:52:24 ----RD---- C:\WINDOWS\System32
2014-08-19 09:52:24 ----D---- C:\WINDOWS\Inf
2014-08-19 09:52:24 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-08-18 12:36:07 ----D---- C:\WINDOWS\rescache
2014-08-18 12:35:53 ----D---- C:\WINDOWS\Microsoft.NET
2014-08-18 12:34:36 ----RSD---- C:\WINDOWS\assembly
2014-08-17 07:46:42 ----HD---- C:\Program Files\WindowsApps
2014-08-17 07:46:42 ----D---- C:\WINDOWS\AppReadiness
2014-08-16 18:30:30 ----D---- C:\WINDOWS\SysWOW64
2014-08-16 16:55:36 ----HD---- C:\ProgramData
2014-08-16 07:05:40 ----D---- C:\WINDOWS\system32\wdi
2014-08-16 07:00:55 ----D---- C:\WINDOWS\system32\Tasks
2014-08-16 07:00:48 ----D---- C:\Windows
2014-08-15 13:00:58 ----SHD---- C:\WINDOWS\Installer
2014-08-15 00:48:13 ----D---- C:\WINDOWS\system32\catroot
2014-08-15 00:47:51 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-08-15 00:47:51 ----D---- C:\WINDOWS\system32\cs-CZ
2014-08-15 00:47:50 ----D---- C:\WINDOWS\PolicyDefinitions
2014-08-15 00:47:50 ----D---- C:\Program Files\Internet Explorer
2014-08-15 00:47:50 ----D---- C:\Program Files (x86)\Internet Explorer
2014-08-15 00:47:49 ----D---- C:\WINDOWS\SYSWOW64\wbem
2014-08-15 00:47:49 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-08-15 00:47:49 ----D---- C:\WINDOWS\MediaViewer
2014-08-15 00:47:48 ----D---- C:\WINDOWS\system32\wbem
2014-08-15 00:47:48 ----D---- C:\WINDOWS\system32\en-US
2014-08-15 00:47:48 ----D---- C:\WINDOWS\FileManager
2014-08-15 00:47:48 ----D---- C:\WINDOWS\Camera
2014-08-15 00:46:28 ----D---- C:\WINDOWS\SoftwareDistribution
2014-08-14 20:10:18 ----D---- C:\WINDOWS\debug
2014-08-14 14:50:37 ----RD---- C:\WINDOWS\ToastData
2014-08-14 14:50:37 ----D---- C:\WINDOWS\system32\migration
2014-08-14 08:15:05 ----D---- C:\WINDOWS\system32\catroot2
2014-08-14 08:14:48 ----A---- C:\WINDOWS\system32\mfps.dll
2014-08-14 08:09:58 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-08-14 08:09:58 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-08-14 08:09:46 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-08-14 08:09:46 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-08-14 08:09:46 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-08-14 08:09:46 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-08-14 08:09:46 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll
2014-08-14 08:09:46 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-08-14 08:09:45 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-08-14 08:09:45 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-08-14 08:09:45 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-08-14 08:09:45 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-08-14 08:09:41 ----A---- C:\WINDOWS\system32\msrating.dll
2014-08-14 08:09:41 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-08-07 17:50:30 ----D---- C:\Program Files\DIFX
2014-08-07 17:13:44 ----D---- C:\Program Files
2014-08-07 16:31:39 ----SD---- C:\WINDOWS\Downloaded Program Files
2014-08-02 02:17:43 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-07-29 18:12:35 ----D---- C:\WINDOWS\system32\NDF
2014-07-29 12:04:39 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-07-10 12:34:23 ----D---- C:\Program Files (x86)\Bluetooth Suite
2014-07-10 12:34:22 ----D---- C:\Program Files\Common Files
2014-07-09 23:19:58 ----D---- C:\WINDOWS\WinStore
2014-07-09 08:03:29 ----D---- C:\Program Files\Windows Journal
2014-06-30 14:43:59 ----D---- C:\WINDOWS\Logs
2014-06-29 12:15:37 ----D---- C:\WINDOWS\system32\drivers\UMDF
2014-06-26 21:25:35 ----D---- C:\ProgramData\Lenovo
2014-06-26 21:25:32 ----D---- C:\Program Files\Lenovo
2014-06-26 21:00:26 ----D---- C:\ProgramData\McAfee
2014-06-26 21:00:26 ----D---- C:\Program Files (x86)\Common Files
2014-06-26 20:59:03 ----HD---- C:\WINDOWS\ELAMBKUP
2014-06-21 11:59:24 ----RSD---- C:\WINDOWS\Fonts
2014-06-20 23:49:19 ----D---- C:\WINDOWS\Tasks
2014-06-08 07:30:45 ----D---- C:\ProgramData\Adobe
2014-06-07 07:31:11 ----D---- C:\WINDOWS\system32\restore
2014-06-06 20:25:58 ----D---- C:\WINDOWS\LiveKernelReports
2014-06-05 21:29:18 ----D---- C:\WINDOWS\system32\LogFiles
2014-06-05 12:16:24 ----D---- C:\WINDOWS\system32\setup
2014-06-05 12:12:06 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2014-06-05 12:09:15 ----D---- C:\Program Files\Windows Defender
2014-06-05 12:09:15 ----D---- C:\Program Files (x86)\Windows Defender
2014-06-05 12:08:41 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2014-06-05 11:58:37 ----D---- C:\WINDOWS\apppatch
2014-06-05 11:58:14 ----SHD---- C:\$Recycle.Bin
2014-06-05 11:51:00 ----D---- C:\Program Files\Windows NT
2014-06-05 11:50:40 ----D---- C:\WINDOWS\Registration
2014-06-05 11:47:40 ----RSD---- C:\WINDOWS\Media
2014-06-05 11:45:00 ----D---- C:\WINDOWS\SYSWOW64\drivers
2014-06-05 11:45:00 ----D---- C:\WINDOWS\SYSWOW64\Atheros_L1e
2014-06-05 11:45:00 ----D---- C:\WINDOWS\system32\Sysprep
2014-06-05 11:44:58 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2014-06-05 11:44:16 ----D---- C:\WINDOWS\SYSWOW64\winrm
2014-06-05 11:44:15 ----D---- C:\WINDOWS\SYSWOW64\WCN
2014-06-05 11:44:14 ----D---- C:\WINDOWS\SYSWOW64\sysprep
2014-06-05 11:44:14 ----D---- C:\WINDOWS\SYSWOW64\SMI
2014-06-05 11:44:14 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2014-06-05 11:44:14 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2014-06-05 11:44:13 ----D---- C:\WINDOWS\SYSWOW64\sda
2014-06-05 11:44:13 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2014-06-05 11:44:13 ----D---- C:\WINDOWS\SYSWOW64\oobe
2014-06-05 11:44:13 ----D---- C:\WINDOWS\SYSWOW64\MUI
2014-06-05 11:44:13 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2014-06-05 11:44:13 ----D---- C:\WINDOWS\SYSWOW64\LogFiles
2014-06-05 11:44:11 ----D---- C:\WINDOWS\SYSWOW64\IME
2014-06-05 11:44:11 ----D---- C:\WINDOWS\SYSWOW64\en-US
2014-06-05 11:44:10 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2014-06-05 11:44:10 ----D---- C:\WINDOWS\SYSWOW64\catroot
2014-06-05 11:44:08 ----D---- C:\WINDOWS\system32\winrm
2014-06-05 11:44:06 ----D---- C:\WINDOWS\system32\WCN
2014-06-05 11:44:06 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2014-06-05 11:44:06 ----D---- C:\WINDOWS\system32\spool
2014-06-05 11:44:03 ----D---- C:\WINDOWS\system32\slmgr
2014-06-05 11:44:03 ----D---- C:\WINDOWS\system32\sk-SK
2014-06-05 11:44:03 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2014-06-05 11:44:03 ----D---- C:\WINDOWS\system32\oobe
2014-06-05 11:44:02 ----D---- C:\WINDOWS\system32\MUI
2014-06-05 11:44:02 ----D---- C:\WINDOWS\system32\IME
2014-06-05 11:44:00 ----DC---- C:\WINDOWS\system32\DRVSTORE
2014-06-05 11:43:11 ----D---- C:\WINDOWS\system32\Boot
2014-06-05 11:43:01 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-06-05 11:43:01 ----D---- C:\WINDOWS\IME
2014-06-05 11:43:00 ----D---- C:\WINDOWS\Help
2014-06-05 11:42:59 ----D---- C:\WINDOWS\DigitalLocker
2014-06-05 11:42:56 ----SD---- C:\ProgramData\Microsoft
2014-06-05 11:42:56 ----RD---- C:\Users
2014-06-05 11:42:56 ----D---- C:\ProgramData\PRICache
2014-06-05 11:42:51 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2014-06-05 11:42:51 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2014-06-05 11:42:51 ----D---- C:\Program Files (x86)\Windows Media Player
2014-06-05 11:42:51 ----D---- C:\Program Files (x86)\Windows Mail
2014-06-05 11:42:47 ----SHD---- C:\Program Files\Windows Sidebar
2014-06-05 11:42:47 ----D---- C:\Program Files\Windows Photo Viewer
2014-06-05 11:42:47 ----D---- C:\Program Files\Windows Media Player
2014-06-05 11:42:47 ----D---- C:\Program Files\Windows Mail
2014-06-05 11:42:45 ----D---- C:\Program Files\Common Files\System
2014-06-05 11:42:45 ----D---- C:\Program Files\Common Files\microsoft shared
2014-06-05 11:40:11 ----D---- C:\WINDOWS\system32\Recovery
2014-06-05 11:26:16 ----D---- C:\WINDOWS\twain_32
2014-06-05 10:29:14 ----D---- C:\WINDOWS\AUInstallAgent
2014-06-04 19:28:19 ----D---- C:\ProgramData\CyberLink
2014-06-04 19:10:40 ----D---- C:\WINDOWS\Downloaded Installations
2014-06-04 05:07:49 ----D---- C:\ProgramData\Atheros
2014-06-03 14:10:24 ----D---- C:\Program Files (x86)\Adobe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [2012-11-30 80552]
R0 amd_xata;amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [2012-11-30 26280]
R0 amdkmpfd;@oem13.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2013-02-14 37472]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-07-17 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-07-17 224896]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2013-12-10 39008]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-07-17 93568]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-07-17 1041168]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-07-17 427360]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-04-09 57472]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-07-17 29208]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-07-17 79184]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-07-17 92008]
R3 ACPIVPC;@oem55.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2013-12-10 33560]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-05-28 13209088]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-05-28 626688]
R3 AthBTPort;@oem5.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2013-01-25 89168]
R3 athr;@oem10.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athw8x.sys [2013-03-25 3776000]
R3 AtiHDAudioService;@oem2.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW86.sys [2013-04-23 98744]
R3 BTATH_A2DP;@oem4.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2013-01-25 346192]
R3 btath_avdt;@oem4.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2013-01-25 115280]
R3 BTATH_BUS;@oem59.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2013-01-25 34384]
R3 BTATH_HCRP;@oem7.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2013-01-25 179432]
R3 BTATH_LWFLT;@oem16.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2013-01-25 77464]
R3 BTATH_RCP;@oem11.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2013-01-25 136424]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2014-04-28 599240]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2013-08-22 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2013-08-22 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-03-18 81920]
R3 CnxtHdAudService;@oem6.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2013-02-26 1680992]
R3 ETD;@oem8.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2013-02-27 355664]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport – ovladač pro řadič Qualcomm Atheros AR81xx PCI-E Ethernet; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2013-06-18 129224]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys []
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2014-03-18 167424]
R3 rtsuvc;@oem39.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2013-04-10 8243272]
R3 usbfilter;AMD USB Filter Driver; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [2012-08-28 58536]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S0 hkuj;hkuj; C:\WINDOWS\System32\drivers\jjjvq.sys [2014-08-16 79064]
S2 APXACC;AppEx Networks Accelerator LWF; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [2013-04-18 219360]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-06-05 1200128]
S3 RSUSBVSTOR;@oem58.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2013-03-18 327752]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\WINDOWS\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-05-08 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-05-28 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-04-25 361984]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-01-25 227456]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-07-17 50344]
R2 CxAudMsg;Conexant Audio Message Service; C:\windows\system32\CxAudMsg64.exe [2012-12-03 202400]
R2 Garmin Core Update Service;Garmin Core Update Service; C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [2014-07-23 438616]
R2 VeriFaceSrv;VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [2013-12-10 68368]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-05 116648]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-05 116648]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-07-17 194032]
S3 LSCWinService;LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2014-05-06 1663880]
-----------------EOF-----------------
Run by user at 2014-08-19 14:29:58
Microsoft Windows 8.1
System drive C: has 820 GB (90%) free of 912 GB
Total RAM: 7375 MB (79% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:30:01, on 19. 8. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17239)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\trend micro\user.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.co.uk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
O4 - HKLM\..\Policies\Explorer\Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
O4 - Startup: OpenOffice.org 3.0.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.2 ... rol_32.CAB
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Conexant Audio Message Service (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Garmin Core Update Service - Garmin Ltd or its subsidiaries - C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LSCWinService - Unknown owner - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: VeriFaceSrv - Unknown owner - C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt and Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
--
End of file - 7978 bytes
======Listing Processes======
wininit.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\windows\system32\CxAudMsg64.exe
"C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe"
dashost.exe {1fe609c4-bf6b-49df-89692d1a3e16cd89}
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe"
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-94412e8f-08ca-4a35-b909-fcacae59b99a -SystemEventPortName:HostProcess-65b53b90-9406-4109-af1a-f78e4c498f18 -IoCancelEventPortName:HostProcess-4f55a2c3-a2c0-4853-b7fc-4031075e68cf -NonStateChangingEventPortName:HostProcess-cb51814f-22bc-4c00-9cde-db17094ca6bb -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:556b7912-0517-4f2a-90dc-2bcd1dbaa8f8 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet
C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "0xc68_0xe4_0x485c8a15"
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
-hiberboot
atieclxx
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
"C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe"
taskhostex.exe
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
"C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" -quickstart
"C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe" "-quickstart" "-env:OOO_CWD=2C:\\Program Files (x86)\\OpenOffice.org 3\\program"
"C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
"C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
"C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe393_ Global\UsGthrCtrlFltPipeMssGthrPipe393 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 580 584 592 65536 588
"C:\Users\user\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf8cd17d2a3a7b.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-07-17 612248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-07-17 256456]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-07-17 457712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-07-17 194504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-07-17 256456]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-07-17 194504]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2013-03-05 2876816]
"RtsFT"=C:\WINDOWS\RTFTrack.exe [2013-04-10 6339656]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-02-04 899680]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2013-12-10 17097200]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2013-12-10 193008]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-01-25 131712]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"GarminExpressTrayApp"=C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [2014-07-23 688984]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-04-25 642816]
"UpdateP2GShortCut"=C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [2012-04-19 217088]
"RemoteControl10"=C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [2012-03-29 91432]
"Intel AppUp(SM) center"=C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [2012-07-12 155488]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-07-31 4085896]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"BtvStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2013-01-25 131712]
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
OpenOffice.org 3.0.lnk - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableCAD"=1
"DisableTaskMgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 3 months======
2014-08-16 18:30:31 ----A---- C:\WINDOWS\system32\drivers\jjjvq.sys
2014-08-16 16:55:36 ----D---- C:\ProgramData\Malwarebytes
2014-08-15 16:23:20 ----A---- C:\WINDOWS\SYSWOW64\sqlite3.dll
2014-08-15 16:22:05 ----D---- C:\AdwCleaner
2014-08-14 08:18:59 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-08-14 08:18:59 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-08-14 08:18:58 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-08-14 08:18:58 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-08-14 08:18:58 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-08-14 08:18:57 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-08-14 08:18:56 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-08-14 08:18:55 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-08-14 08:18:54 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-08-14 08:18:54 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-08-14 08:18:54 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-08-14 08:18:54 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-08-14 08:18:54 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-08-14 08:18:53 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-08-14 08:18:53 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-08-14 08:18:52 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-08-14 08:18:52 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-08-14 08:18:52 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-08-14 08:18:51 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-08-14 08:18:50 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-08-14 08:18:49 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-08-14 08:18:49 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-08-14 08:18:40 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-08-14 08:18:40 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-08-14 08:18:40 ----A---- C:\WINDOWS\system32\wininet.dll
2014-08-14 08:18:40 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-08-14 08:18:39 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-08-14 08:18:39 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-08-14 08:18:39 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-08-14 08:18:38 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-08-14 08:18:38 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-08-14 08:18:38 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-08-14 08:18:38 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-08-14 08:18:34 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2014-08-14 08:18:34 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2014-08-14 08:17:22 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2014-08-14 08:17:22 ----A---- C:\WINDOWS\system32\dxgi.dll
2014-08-14 08:17:22 ----A---- C:\WINDOWS\system32\dwmcore.dll
2014-08-14 08:17:22 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-08-14 08:17:22 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2014-08-14 08:17:13 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2014-08-14 08:17:13 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2014-08-14 08:17:00 ----A---- C:\WINDOWS\system32\WpcMon.exe
2014-08-14 08:17:00 ----A---- C:\WINDOWS\system32\Wpc.dll
2014-08-14 08:16:59 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2014-08-14 08:16:59 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2014-08-14 08:16:53 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-08-14 08:16:53 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-08-14 08:16:53 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-08-14 08:16:45 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-08-14 08:16:45 ----A---- C:\WINDOWS\system32\d3d9.dll
2014-08-14 08:16:44 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2014-08-14 08:16:43 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-08-14 08:16:43 ----A---- C:\WINDOWS\system32\localspl.dll
2014-08-14 08:16:42 ----A---- C:\WINDOWS\system32\vpnike.dll
2014-08-14 08:16:42 ----A---- C:\WINDOWS\system32\ntdll.dll
2014-08-14 08:16:42 ----A---- C:\WINDOWS\system32\fveapi.dll
2014-08-14 08:16:42 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2014-08-14 08:16:41 ----A---- C:\WINDOWS\SYSWOW64\SkyDriveShell.dll
2014-08-14 08:16:41 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2014-08-14 08:16:41 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2014-08-14 08:16:41 ----A---- C:\WINDOWS\system32\SkyDriveShell.dll
2014-08-14 08:16:41 ----A---- C:\WINDOWS\system32\framedynos.dll
2014-08-14 08:16:41 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-08-14 08:16:41 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-08-14 08:16:40 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2014-08-14 08:16:40 ----A---- C:\WINDOWS\system32\bdesvc.dll
2014-08-14 08:16:39 ----A---- C:\WINDOWS\SYSWOW64\framedynos.dll
2014-08-14 08:16:39 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2014-08-14 08:16:39 ----A---- C:\WINDOWS\system32\drivers\agilevpn.sys
2014-08-14 08:16:39 ----A---- C:\WINDOWS\system32\BFE.DLL
2014-08-14 08:16:38 ----A---- C:\WINDOWS\system32\ncobjapi.dll
2014-08-14 08:16:37 ----A---- C:\WINDOWS\SYSWOW64\ncobjapi.dll
2014-08-14 08:16:37 ----A---- C:\WINDOWS\system32\winbici.dll
2014-08-14 08:16:37 ----A---- C:\WINDOWS\system32\framedyn.dll
2014-08-14 08:16:36 ----A---- C:\WINDOWS\SYSWOW64\WebClnt.dll
2014-08-14 08:16:36 ----A---- C:\WINDOWS\SYSWOW64\Robocopy.exe
2014-08-14 08:16:36 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-08-14 08:16:36 ----A---- C:\WINDOWS\system32\WebClnt.dll
2014-08-14 08:16:36 ----A---- C:\WINDOWS\system32\Robocopy.exe
2014-08-14 08:16:36 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2014-08-14 08:16:36 ----A---- C:\WINDOWS\system32\drivers\vwifimp.sys
2014-08-14 08:16:36 ----A---- C:\WINDOWS\system32\dhcpcsvc6.dll
2014-08-14 08:16:36 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2014-08-14 08:16:35 ----A---- C:\WINDOWS\SYSWOW64\framedyn.dll
2014-08-14 08:16:35 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc6.dll
2014-08-14 08:16:35 ----A---- C:\WINDOWS\SYSWOW64\dhcpcsvc.dll
2014-08-14 08:16:35 ----A---- C:\WINDOWS\system32\drivers\vwififlt.sys
2014-08-14 08:16:35 ----A---- C:\WINDOWS\system32\BulkOperationHost.exe
2014-08-14 08:16:34 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2014-08-14 08:16:34 ----A---- C:\WINDOWS\system32\srms.dat
2014-08-14 08:16:34 ----A---- C:\WINDOWS\system32\reseteng.dll
2014-08-14 08:16:12 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-08-14 08:16:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-08-14 08:16:09 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-08-14 08:16:08 ----AC---- C:\WINDOWS\system32\drivers\usbport.sys
2014-08-14 08:16:08 ----AC---- C:\WINDOWS\system32\drivers\usbhub.sys
2014-08-14 08:16:07 ----AC---- C:\WINDOWS\system32\drivers\usbuhci.sys
2014-08-14 08:16:07 ----AC---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2014-08-14 08:16:07 ----AC---- C:\WINDOWS\system32\drivers\usbehci.sys
2014-08-14 08:16:07 ----A---- C:\WINDOWS\SYSWOW64\rsaenh.dll
2014-08-14 08:16:07 ----A---- C:\WINDOWS\system32\WUDFSvc.dll
2014-08-14 08:16:07 ----A---- C:\WINDOWS\system32\WUDFPlatform.dll
2014-08-14 08:16:07 ----A---- C:\WINDOWS\system32\WUDFHost.exe
2014-08-14 08:16:07 ----A---- C:\WINDOWS\system32\rsaenh.dll
2014-08-14 08:16:07 ----A---- C:\WINDOWS\system32\drivers\WUDFRd.sys
2014-08-14 08:16:07 ----A---- C:\WINDOWS\system32\drivers\WUDFPf.sys
2014-08-14 08:16:07 ----A---- C:\WINDOWS\system32\DaOtpCredentialProvider.dll
2014-08-14 08:16:06 ----AC---- C:\WINDOWS\system32\drivers\usbd.sys
2014-08-14 08:16:06 ----A---- C:\WINDOWS\SYSWOW64\DaOtpCredentialProvider.dll
2014-08-14 08:16:06 ----A---- C:\WINDOWS\system32\hal.dll
2014-08-14 08:15:51 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2014-08-14 08:15:49 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2014-08-14 08:15:46 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2014-08-14 08:15:46 ----A---- C:\WINDOWS\system32\win32k.sys
2014-08-14 08:15:46 ----A---- C:\WINDOWS\system32\gdi32.dll
2014-08-14 08:15:34 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2014-08-14 08:15:34 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-08-14 08:15:34 ----A---- C:\WINDOWS\system32\msi.dll
2014-08-14 08:15:34 ----A---- C:\WINDOWS\system32\authui.dll
2014-08-14 08:15:33 ----A---- C:\WINDOWS\SYSWOW64\msihnd.dll
2014-08-14 08:15:33 ----A---- C:\WINDOWS\system32\msihnd.dll
2014-08-14 08:15:33 ----A---- C:\WINDOWS\system32\consent.exe
2014-08-07 17:50:16 ----D---- C:\ProgramData\Garmin
2014-08-07 17:50:11 ----D---- C:\Program Files (x86)\Garmin
2014-08-07 17:49:51 ----D---- C:\ProgramData\Package Cache
2014-08-07 17:13:45 ----D---- C:\Program Files (x86)\Garmin GPS Plugin
2014-08-07 17:13:44 ----D---- C:\Program Files\Garmin GPS Plugin
2014-08-07 17:13:12 ----D---- C:\Users\user\AppData\Roaming\Garmin
2014-08-05 16:21:00 ----D---- C:\ProgramData\DiamondCaves3
2014-07-24 15:44:22 ----D---- C:\Users\user\AppData\Roaming\BlackBean
2014-07-19 14:43:41 ----D---- C:\Users\user\AppData\Roaming\THQ
2014-07-19 14:41:03 ----D---- C:\ProgramData\InstallShield
2014-07-19 14:34:29 ----D---- C:\Users\user\AppData\Roaming\InstallShield
2014-07-17 18:33:30 ----D---- C:\Users\user\AppData\Roaming\Off Road
2014-07-17 08:48:39 ----D---- C:\ProgramData\Google
2014-07-17 08:42:48 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2014-07-17 08:40:54 ----A---- C:\WINDOWS\avastSS.scr
2014-07-10 15:56:13 ----A---- C:\WINDOWS\eReg.dat
2014-07-10 15:54:47 ----RA---- C:\WINDOWS\SYSWOW64\MSVCP50.DLL
2014-07-10 15:54:47 ----RA---- C:\WINDOWS\NPSExec.exe
2014-07-10 15:54:47 ----D---- C:\Program Files (x86)\Electronic Arts
2014-07-10 15:52:05 ----A---- C:\WINDOWS\IsUninst.exe
2014-07-10 12:34:22 ----D---- C:\Program Files\Common Files\Atheros
2014-07-09 08:04:40 ----A---- C:\WINDOWS\SYSWOW64\osk.exe
2014-07-09 08:04:40 ----A---- C:\WINDOWS\system32\osk.exe
2014-07-09 08:03:33 ----A---- C:\WINDOWS\system32\termsrv.dll
2014-07-09 08:02:36 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-07-09 08:02:36 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-07-09 08:02:36 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-07-09 08:02:36 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 08:02:36 ----A---- C:\WINDOWS\system32\twinui.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-07-09 08:02:35 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2014-07-09 08:02:35 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2014-07-09 08:02:34 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-07-09 08:02:30 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2014-07-09 07:57:53 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-07-09 07:57:53 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-07-09 07:57:53 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-07-09 07:57:53 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-07-09 07:57:53 ----A---- C:\WINDOWS\system32\certcli.dll
2014-07-09 07:57:53 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-07-09 07:57:18 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2014-07-09 07:57:18 ----A---- C:\WINDOWS\system32\qedit.dll
2014-07-09 07:45:30 ----A---- C:\WINDOWS\system32\WSReset.exe
2014-07-04 15:40:25 ----D---- C:\Program Files (x86)\City Interactive
2014-06-29 13:35:09 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2014-06-29 13:35:09 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2014-06-29 13:35:09 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2014-06-29 13:35:09 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2014-06-29 13:35:09 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2014-06-29 13:35:09 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2014-06-29 13:35:08 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_43.dll
2014-06-29 13:35:08 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_43.dll
2014-06-29 13:35:08 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_43.dll
2014-06-29 13:35:08 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2014-06-29 13:35:08 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2014-06-29 13:35:08 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_43.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_43.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2014-06-29 13:35:07 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2014-06-29 13:35:06 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_5.dll
2014-06-29 13:35:06 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2014-06-29 13:35:06 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_7.dll
2014-06-29 13:35:06 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2014-06-29 13:35:06 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2014-06-29 13:35:06 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2014-06-29 13:35:05 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2014-06-29 13:35:05 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2014-06-29 13:35:05 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2014-06-29 13:35:05 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2014-06-29 13:35:04 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2014-06-29 13:35:04 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2014-06-29 13:35:04 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2014-06-29 13:35:04 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_42.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_42.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_41.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_41.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2014-06-29 13:35:03 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2014-06-29 13:35:02 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2014-06-29 13:35:02 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_3.dll
2014-06-29 13:35:02 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2014-06-29 13:35:02 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2014-06-29 13:35:02 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2014-06-29 13:35:02 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2014-06-29 13:35:01 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2014-06-29 13:35:00 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2014-06-29 13:35:00 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2014-06-29 13:35:00 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2014-06-29 13:35:00 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2014-06-29 13:35:00 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2014-06-29 13:35:00 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_2.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_1.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2014-06-29 13:34:59 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2014-06-29 13:34:58 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2014-06-29 13:34:58 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_39.dll
2014-06-29 13:34:58 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_39.dll
2014-06-29 13:34:58 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2014-06-29 13:34:58 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2014-06-29 13:34:58 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2014-06-29 13:34:57 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2014-06-29 13:34:57 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2014-06-29 13:34:57 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_39.dll
2014-06-29 13:34:57 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2014-06-29 13:34:57 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2014-06-29 13:34:57 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2014-06-29 13:34:56 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2014-06-29 13:34:55 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2014-06-29 13:34:55 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2014-06-29 13:34:55 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2014-06-29 13:34:55 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2014-06-29 13:34:54 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2014-06-29 13:34:53 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2014-06-29 13:34:53 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2014-06-29 13:34:53 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2014-06-29 13:34:53 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2014-06-29 13:34:52 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2014-06-29 13:34:52 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2014-06-29 13:34:52 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2014-06-29 13:34:52 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2014-06-29 13:34:51 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2014-06-29 13:34:51 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2014-06-29 13:34:49 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2014-06-29 13:34:49 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2014-06-29 13:32:59 ----D---- C:\GOG Games
2014-06-26 20:48:55 ----D---- C:\Users\user\AppData\Roaming\AVAST Software
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswVmm.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswstm.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswsp.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswsnx.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswRvrt.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswRdr2.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\drivers\aswHwid.sys
2014-06-26 20:48:09 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-06-26 20:47:47 ----D---- C:\Program Files\AVAST Software
2014-06-21 12:00:56 ----D---- C:\Users\user\AppData\Roaming\OpenOffice.org
2014-06-21 11:59:05 ----D---- C:\Program Files (x86)\OpenOffice.org 3
2014-06-19 17:28:00 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2014-06-19 17:28:00 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2014-06-19 17:27:59 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2014-06-19 17:27:59 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2014-06-19 17:27:59 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2014-06-19 17:27:59 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2014-06-19 17:27:59 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2014-06-19 17:27:59 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2014-06-19 17:27:58 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2014-06-19 17:27:57 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2014-06-19 17:27:57 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2014-06-19 17:27:57 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2014-06-19 17:27:57 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2014-06-19 17:27:57 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2014-06-19 17:27:57 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2014-06-19 17:27:56 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2014-06-19 17:27:56 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2014-06-19 17:27:55 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2014-06-19 17:27:55 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2014-06-19 17:27:55 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2014-06-19 17:27:55 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2014-06-19 17:27:55 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2014-06-19 17:27:55 ----A---- C:\WINDOWS\system32\d3dx10.dll
2014-06-19 17:27:54 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2014-06-19 17:27:54 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2014-06-19 17:27:54 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_32.dll
2014-06-19 17:27:54 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2014-06-19 17:27:54 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2014-06-19 17:27:54 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2014-06-19 17:27:53 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2014-06-19 17:27:53 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2014-06-19 17:27:53 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_31.dll
2014-06-19 17:27:53 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2014-06-19 17:27:53 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2014-06-19 17:27:53 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2014-06-19 17:27:52 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2014-06-19 17:27:52 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2014-06-19 17:27:52 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2014-06-19 17:27:52 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2014-06-19 17:27:52 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2014-06-19 17:27:52 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2014-06-19 17:27:48 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2014-06-19 17:27:48 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2014-06-19 17:27:47 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2014-06-19 17:27:46 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2014-06-19 17:27:46 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2014-06-19 17:27:46 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2014-06-19 17:27:46 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2014-06-19 17:27:45 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2014-06-19 17:27:45 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2014-06-19 17:27:37 ----D---- C:\Program Files (x86)\OpenAL
2014-06-19 17:27:37 ----A---- C:\WINDOWS\SYSWOW64\wrap_oal.dll
2014-06-19 17:27:37 ----A---- C:\WINDOWS\SYSWOW64\OpenAL32.dll
2014-06-19 17:27:37 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2014-06-19 17:27:37 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2014-06-19 17:20:55 ----D---- C:\Program Files (x86)\WinRAR
2014-06-19 17:07:15 ----AS---- C:\WINDOWS\SYSWOW64\nircmdc.exe
2014-06-19 16:57:33 ----D---- C:\WINDOWS\SYSWOW64\bitstreams
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\zlib1.dll
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\ssleay32.dll
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\pthreadVC2.dll
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\pthreadGC2.dll
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\libssh2.dll
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\librtmp.dll
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\libidn-11.dll
2014-06-19 16:57:33 ----AS---- C:\WINDOWS\SYSWOW64\libeay32.dll
2014-06-19 16:57:32 ----AS---- C:\WINDOWS\SYSWOW64\libcurl-4.dll
2014-06-19 16:57:32 ----AS---- C:\WINDOWS\SYSWOW64\cudart32_50_35.dll
2014-06-12 07:30:57 ----D---- C:\ProgramData\Energy Management
2014-06-11 18:27:40 ----D---- C:\Program Files\trend micro
2014-06-11 18:27:39 ----D---- C:\rsit
2014-06-11 07:24:16 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-06-11 07:24:15 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-06-11 07:24:12 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-06-11 07:24:11 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-06-11 07:24:09 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2014-06-11 07:24:09 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe
2014-06-11 07:24:09 ----A---- C:\WINDOWS\system32\FntCache.dll
2014-06-11 07:24:09 ----A---- C:\WINDOWS\system32\DWrite.dll
2014-06-11 07:24:09 ----A---- C:\WINDOWS\system32\drvinst.exe
2014-06-11 07:24:09 ----A---- C:\WINDOWS\system32\drvcfg.exe
2014-06-11 07:23:57 ----A---- C:\WINDOWS\system32\wpccpl.dll
2014-06-11 07:23:56 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2014-06-07 07:33:26 ----RD---- C:\WINDOWS\BrowserChoice
2014-06-06 07:45:45 ----D---- C:\WINDOWS\Minidump
2014-06-05 22:32:57 ----D---- C:\Program Files\GIMP 2
2014-06-05 22:13:47 ----D---- C:\Users\user\AppData\Roaming\PhotoScape
2014-06-05 22:13:30 ----D---- C:\Program Files (x86)\PhotoScape
2014-06-05 12:21:53 ----SHD---- C:\Recovery
2014-06-05 12:21:48 ----DC---- C:\WINDOWS\Panther
2014-06-05 12:17:51 ----A---- C:\WINDOWS\SYSWOW64\wusa.exe
2014-06-05 12:17:51 ----A---- C:\WINDOWS\system32\wusa.exe
2014-06-05 12:15:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\SYSWOW64\sxproxy.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\SYSWOW64\spp.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2014-06-05 12:15:46 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\wlangpui.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\w32tm.exe
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\userenv.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\l2gpstore.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\CredentialMigrationHandler.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\WSDMon.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\wlangpui.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\w32tm.exe
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\SetNetworkLocation.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\SessEnv.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\RMapi.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\rasapi32.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\nshwfp.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\netcfgx.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\msxml6.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\msftedit.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\l2gpstore.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\kerberos.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\drivers\tcpipreg.sys
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\Display.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\dcomp.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\dafWfdProvider.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\d3d11.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\cdd.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\system32\aclui.dll
2014-06-05 12:15:45 ----A---- C:\WINDOWS\explorer.exe
2014-06-05 12:15:44 ----AC---- C:\WINDOWS\system32\drivers\hidusb.sys
2014-06-05 12:15:44 ----AC---- C:\WINDOWS\system32\drivers\hidclass.sys
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\wlidprov.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\userenv.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\umpnpmgr.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\sxproxy.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\spp.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\ReInfo.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\ReAgent.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\profsvc.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\pdh.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\ole32.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\netlogon.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\LocationApi.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\KernelBase.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\kernel32.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\dnsapi.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\DevPropMgr.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\davclnt.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-06-05 12:15:44 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2014-06-05 12:12:28 ----A---- C:\WINDOWS\SYSWOW64\mrt100.dll
2014-06-05 12:12:28 ----A---- C:\WINDOWS\SYSWOW64\mrt_map.dll
2014-06-05 12:12:28 ----A---- C:\WINDOWS\system32\mrt100.dll
2014-06-05 12:12:28 ----A---- C:\WINDOWS\system32\mrt_map.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-06-05 12:10:59 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\system32\wups.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-06-05 12:10:59 ----A---- C:\WINDOWS\system32\ubpm.dll
2014-06-05 12:10:59 ----A---- C:\WINDOWS\system32\storewuauth.dll
2014-06-05 12:09:08 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-06-05 12:09:08 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-06-05 12:09:08 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\srclient.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\wmpmde.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\winmde.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\srcore.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\srclient.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\rstrui.exe
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\mfsvr.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\mfpmp.exe
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\mf.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\MDEServer.exe
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\energyprov.dll
2014-06-05 12:07:38 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\tlscsp.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\wscsvc.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\wintrust.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\VSSVC.exe
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\tsgqec.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\tlscsp.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\swprv.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\shell32.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\rpchttp.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\resutils.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\rdpencom.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\propsys.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\ploptin.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\mispace.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\gpapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-06-05 12:07:37 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-06-05 12:07:36 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-06-05 12:07:36 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-06-05 12:07:36 ----AC---- C:\WINDOWS\system32\drivers\msiscsi.sys
2014-06-05 12:07:36 ----AC---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-06-05 12:07:36 ----AC---- C:\WINDOWS\system32\drivers\bthport.sys
2014-06-05 12:07:36 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\srvsvc.dll
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\services.exe
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2014-06-05 12:07:36 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-06-05 12:00:24 ----D---- C:\Program Files (x86)\Reference Assemblies
2014-06-05 12:00:24 ----D---- C:\Program Files (x86)\MSBuild
2014-06-05 12:00:21 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2014-06-05 12:00:21 ----D---- C:\Program Files\Reference Assemblies
2014-06-05 12:00:21 ----D---- C:\Program Files\MSBuild
2014-06-05 11:59:17 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2014-06-05 11:59:17 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-06-05 11:59:15 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-06-05 11:59:15 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-06-05 11:57:50 ----D---- C:\Users\user\AppData\Roaming\Identities
2014-06-05 11:51:00 ----SHD---- C:\ProgramData\Šablony
2014-06-05 11:51:00 ----SHD---- C:\ProgramData\Plocha
2014-06-05 11:51:00 ----SHD---- C:\ProgramData\Nabídka Start
2014-06-05 11:51:00 ----SHD---- C:\ProgramData\Dokumenty
2014-06-05 11:51:00 ----SHD---- C:\ProgramData\Data aplikací
2014-06-05 11:50:09 ----A---- C:\WINDOWS\system32\emptyregdb.dat
2014-06-05 11:38:44 ----SD---- C:\Users\user\AppData\Roaming\Microsoft
2014-06-05 11:25:52 ----D---- C:\ProgramData\Conexant
2014-06-05 11:25:51 ----D---- C:\Program Files\CONEXANT
2014-06-05 11:25:30 ----D---- C:\Program Files\Common Files\ATI Technologies
2014-06-05 11:25:17 ----D---- C:\AMD
2014-06-05 11:25:02 ----D---- C:\Program Files\AMD
2014-06-05 11:24:46 ----D---- C:\Program Files\Elantech
2014-06-05 11:23:35 ----D---- C:\WINDOWS\Prefetch
2014-06-05 08:37:27 ----D---- C:\Program Files\CCleaner
2014-06-05 08:33:19 ----D---- C:\Program Files\Google
2014-06-05 08:33:06 ----D---- C:\Program Files (x86)\Google
2014-06-05 08:31:53 ----D---- C:\ProgramData\AVAST Software
2014-06-05 08:08:16 ----D---- C:\WINDOWS\system32\MRT
2014-06-05 08:08:14 ----A---- C:\WINDOWS\system32\MRT.exe
2014-06-04 19:28:27 ----D---- C:\Users\user\AppData\Roaming\WebApp
2014-06-04 19:28:13 ----D---- C:\Users\user\AppData\Roaming\CyberLink
2014-06-04 15:03:42 ----D---- C:\Users\user\AppData\Roaming\LSC
2014-06-04 05:07:47 ----D---- C:\Users\user\AppData\Roaming\ATI
2014-06-04 05:07:47 ----D---- C:\ProgramData\ATI
2014-06-04 05:07:42 ----D---- C:\Users\user\AppData\Roaming\Lenovo
2014-06-04 05:07:38 ----D---- C:\Users\user\AppData\Roaming\Atheros
2014-06-04 05:07:12 ----D---- C:\Users\user\AppData\Roaming\Adobe
2014-06-04 05:06:25 ----D---- C:\Users\user\AppData\Roaming\Macromedia
2014-06-03 14:11:29 ----D---- C:\Program Files (x86)\Seznam.cz
2014-06-03 14:11:04 ----D---- C:\Users\user\AppData\Roaming\Seznam.cz
2014-05-28 16:53:12 ----A---- C:\WINDOWS\SYSWOW64\OVDecode.dll
2014-05-28 16:53:12 ----A---- C:\WINDOWS\SYSWOW64\OpenVideo.dll
2014-05-28 16:53:12 ----A---- C:\WINDOWS\system32\OVDecode64.dll
2014-05-28 16:53:12 ----A---- C:\WINDOWS\system32\OpenVideo64.dll
2014-05-28 16:53:12 ----A---- C:\WINDOWS\system32\coinst_13.251.9001.dll
2014-05-28 16:53:12 ----A---- C:\WINDOWS\system32\clinfo.exe
2014-05-28 16:53:04 ----A---- C:\WINDOWS\SYSWOW64\ativvsvl.dat
2014-05-28 16:53:04 ----A---- C:\WINDOWS\SYSWOW64\ativvsva.dat
2014-05-28 16:53:04 ----A---- C:\WINDOWS\system32\ativvsvl.dat
2014-05-28 16:53:04 ----A---- C:\WINDOWS\system32\ativvsva.dat
2014-05-28 16:53:02 ----A---- C:\WINDOWS\SYSWOW64\atiuxpag.dll
2014-05-28 16:53:02 ----A---- C:\WINDOWS\SYSWOW64\atiumdva.dll
2014-05-28 16:53:02 ----A---- C:\WINDOWS\SYSWOW64\atiumdag.dll
2014-05-28 16:53:02 ----A---- C:\WINDOWS\system32\ativvaxy_cik_nd.dat
2014-05-28 16:53:02 ----A---- C:\WINDOWS\system32\ativvaxy_cik.dat
2014-05-28 16:53:02 ----A---- C:\WINDOWS\system32\ativce02.dat
2014-05-28 16:53:02 ----A---- C:\WINDOWS\system32\atiuxp64.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\SYSWOW64\atiu9pag.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\SYSWOW64\atisamu32.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\SYSWOW64\atipblag.dat
2014-05-28 16:53:00 ----A---- C:\WINDOWS\system32\atiumd6a.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\system32\atiumd64.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\system32\atiu9p64.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\system32\atitmm64.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\system32\atisamu64.dll
2014-05-28 16:53:00 ----A---- C:\WINDOWS\system32\atipblag.dat
2014-05-28 16:52:58 ----A---- C:\WINDOWS\SYSWOW64\atioglxx.dll
2014-05-28 16:52:56 ----A---- C:\WINDOWS\system32\ATIODE.exe
2014-05-28 16:52:56 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2014-05-28 16:52:56 ----A---- C:\WINDOWS\system32\atio6axx.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\SYSWOW64\atimpc32.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\SYSWOW64\atiglpxx.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\SYSWOW64\atigktxx.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\drivers\atikmpag.sys
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\drivers\atikmdag.sys
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\atimuixx.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\atimpc64.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\atiicdxx.dat
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\atiglpxx.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\atig6txx.dll
2014-05-28 16:52:54 ----A---- C:\WINDOWS\system32\atig6pxx.dll
2014-05-28 16:52:52 ----A---- C:\WINDOWS\system32\atiesrxx.exe
2014-05-28 16:52:52 ----A---- C:\WINDOWS\system32\atieclxx.exe
2014-05-28 16:52:52 ----A---- C:\WINDOWS\system32\atidxx64.dll
2014-05-28 16:52:36 ----A---- C:\WINDOWS\SYSWOW64\atidxx32.dll
2014-05-28 16:52:34 ----A---- C:\WINDOWS\SYSWOW64\aticfx32.dll
2014-05-28 16:52:34 ----A---- C:\WINDOWS\SYSWOW64\aticalrt.dll
2014-05-28 16:52:34 ----A---- C:\WINDOWS\system32\atidemgy.dll
2014-05-28 16:52:34 ----A---- C:\WINDOWS\system32\aticfx64.dll
2014-05-28 16:52:34 ----A---- C:\WINDOWS\system32\aticalrt64.dll
2014-05-28 16:52:32 ----A---- C:\WINDOWS\SYSWOW64\aticaldd.dll
2014-05-28 16:52:32 ----A---- C:\WINDOWS\SYSWOW64\aticalcl.dll
2014-05-28 16:52:32 ----A---- C:\WINDOWS\system32\aticaldd64.dll
2014-05-28 16:52:32 ----A---- C:\WINDOWS\system32\aticalcl64.dll
2014-05-28 16:52:32 ----A---- C:\WINDOWS\system32\atibtmon.exe
2014-05-28 16:52:30 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2014-05-28 16:52:30 ----A---- C:\WINDOWS\SYSWOW64\atiadlxy.dll
2014-05-28 16:52:30 ----A---- C:\WINDOWS\SYSWOW64\amdpcom32.dll
2014-05-28 16:52:30 ----A---- C:\WINDOWS\SYSWOW64\amdocl_ld32.exe
2014-05-28 16:52:30 ----A---- C:\WINDOWS\system32\OpenCL.dll
2014-05-28 16:52:30 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2014-05-28 16:52:30 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2014-05-28 16:52:30 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2014-05-28 16:52:30 ----A---- C:\WINDOWS\system32\amdpcom64.dll
2014-05-28 16:52:30 ----A---- C:\WINDOWS\system32\amdocl_ld64.exe
2014-05-28 16:52:28 ----A---- C:\WINDOWS\SYSWOW64\amdocl_as32.exe
2014-05-28 16:52:28 ----A---- C:\WINDOWS\system32\amdocl_as64.exe
2014-05-28 16:52:26 ----A---- C:\WINDOWS\system32\amdocl64.dll
2014-05-28 16:52:24 ----A---- C:\WINDOWS\SYSWOW64\amdocl.dll
2014-05-28 16:52:24 ----A---- C:\WINDOWS\SYSWOW64\amdhdl32.dll
2014-05-28 16:52:24 ----A---- C:\WINDOWS\system32\amdmiracast.dll
2014-05-28 16:52:24 ----A---- C:\WINDOWS\system32\amdhdl64.dll
2014-05-28 16:52:22 ----A---- C:\WINDOWS\SYSWOW64\amdhcp32.dll
2014-05-28 16:52:22 ----A---- C:\WINDOWS\SYSWOW64\amdave32.dll
2014-05-28 16:52:22 ----A---- C:\WINDOWS\system32\amdhcp64.dll
2014-05-28 16:52:22 ----A---- C:\WINDOWS\system32\amdave64.dll
======List of files/folders modified in the last 3 months======
2014-08-19 14:27:02 ----RD---- C:\Program Files (x86)
2014-08-19 14:27:02 ----D---- C:\WINDOWS\system32\drivers
2014-08-19 14:00:00 ----D---- C:\WINDOWS\system32\sru
2014-08-19 13:44:06 ----D---- C:\WINDOWS\Temp
2014-08-19 12:48:03 ----D---- C:\WINDOWS\WinSxS
2014-08-19 12:48:00 ----D---- C:\WINDOWS\CbsTemp
2014-08-19 12:47:53 ----SHD---- C:\System Volume Information
2014-08-19 12:46:36 ----D---- C:\WINDOWS\system32\config
2014-08-19 11:04:35 ----D---- C:\WINDOWS\system32\DriverStore
2014-08-19 09:52:24 ----RD---- C:\WINDOWS\System32
2014-08-19 09:52:24 ----D---- C:\WINDOWS\Inf
2014-08-19 09:52:24 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-08-18 12:36:07 ----D---- C:\WINDOWS\rescache
2014-08-18 12:35:53 ----D---- C:\WINDOWS\Microsoft.NET
2014-08-18 12:34:36 ----RSD---- C:\WINDOWS\assembly
2014-08-17 07:46:42 ----HD---- C:\Program Files\WindowsApps
2014-08-17 07:46:42 ----D---- C:\WINDOWS\AppReadiness
2014-08-16 18:30:30 ----D---- C:\WINDOWS\SysWOW64
2014-08-16 16:55:36 ----HD---- C:\ProgramData
2014-08-16 07:05:40 ----D---- C:\WINDOWS\system32\wdi
2014-08-16 07:00:55 ----D---- C:\WINDOWS\system32\Tasks
2014-08-16 07:00:48 ----D---- C:\Windows
2014-08-15 13:00:58 ----SHD---- C:\WINDOWS\Installer
2014-08-15 00:48:13 ----D---- C:\WINDOWS\system32\catroot
2014-08-15 00:47:51 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-08-15 00:47:51 ----D---- C:\WINDOWS\system32\cs-CZ
2014-08-15 00:47:50 ----D---- C:\WINDOWS\PolicyDefinitions
2014-08-15 00:47:50 ----D---- C:\Program Files\Internet Explorer
2014-08-15 00:47:50 ----D---- C:\Program Files (x86)\Internet Explorer
2014-08-15 00:47:49 ----D---- C:\WINDOWS\SYSWOW64\wbem
2014-08-15 00:47:49 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-08-15 00:47:49 ----D---- C:\WINDOWS\MediaViewer
2014-08-15 00:47:48 ----D---- C:\WINDOWS\system32\wbem
2014-08-15 00:47:48 ----D---- C:\WINDOWS\system32\en-US
2014-08-15 00:47:48 ----D---- C:\WINDOWS\FileManager
2014-08-15 00:47:48 ----D---- C:\WINDOWS\Camera
2014-08-15 00:46:28 ----D---- C:\WINDOWS\SoftwareDistribution
2014-08-14 20:10:18 ----D---- C:\WINDOWS\debug
2014-08-14 14:50:37 ----RD---- C:\WINDOWS\ToastData
2014-08-14 14:50:37 ----D---- C:\WINDOWS\system32\migration
2014-08-14 08:15:05 ----D---- C:\WINDOWS\system32\catroot2
2014-08-14 08:14:48 ----A---- C:\WINDOWS\system32\mfps.dll
2014-08-14 08:09:58 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-08-14 08:09:58 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-08-14 08:09:46 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-08-14 08:09:46 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-08-14 08:09:46 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-08-14 08:09:46 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-08-14 08:09:46 ----A---- C:\WINDOWS\system32\ieetwcollectorres.dll
2014-08-14 08:09:46 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-08-14 08:09:45 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-08-14 08:09:45 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-08-14 08:09:45 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-08-14 08:09:45 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-08-14 08:09:41 ----A---- C:\WINDOWS\system32\msrating.dll
2014-08-14 08:09:41 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-08-07 17:50:30 ----D---- C:\Program Files\DIFX
2014-08-07 17:13:44 ----D---- C:\Program Files
2014-08-07 16:31:39 ----SD---- C:\WINDOWS\Downloaded Program Files
2014-08-02 02:17:43 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-07-29 18:12:35 ----D---- C:\WINDOWS\system32\NDF
2014-07-29 12:04:39 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-07-10 12:34:23 ----D---- C:\Program Files (x86)\Bluetooth Suite
2014-07-10 12:34:22 ----D---- C:\Program Files\Common Files
2014-07-09 23:19:58 ----D---- C:\WINDOWS\WinStore
2014-07-09 08:03:29 ----D---- C:\Program Files\Windows Journal
2014-06-30 14:43:59 ----D---- C:\WINDOWS\Logs
2014-06-29 12:15:37 ----D---- C:\WINDOWS\system32\drivers\UMDF
2014-06-26 21:25:35 ----D---- C:\ProgramData\Lenovo
2014-06-26 21:25:32 ----D---- C:\Program Files\Lenovo
2014-06-26 21:00:26 ----D---- C:\ProgramData\McAfee
2014-06-26 21:00:26 ----D---- C:\Program Files (x86)\Common Files
2014-06-26 20:59:03 ----HD---- C:\WINDOWS\ELAMBKUP
2014-06-21 11:59:24 ----RSD---- C:\WINDOWS\Fonts
2014-06-20 23:49:19 ----D---- C:\WINDOWS\Tasks
2014-06-08 07:30:45 ----D---- C:\ProgramData\Adobe
2014-06-07 07:31:11 ----D---- C:\WINDOWS\system32\restore
2014-06-06 20:25:58 ----D---- C:\WINDOWS\LiveKernelReports
2014-06-05 21:29:18 ----D---- C:\WINDOWS\system32\LogFiles
2014-06-05 12:16:24 ----D---- C:\WINDOWS\system32\setup
2014-06-05 12:12:06 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2014-06-05 12:09:15 ----D---- C:\Program Files\Windows Defender
2014-06-05 12:09:15 ----D---- C:\Program Files (x86)\Windows Defender
2014-06-05 12:08:41 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2014-06-05 11:58:37 ----D---- C:\WINDOWS\apppatch
2014-06-05 11:58:14 ----SHD---- C:\$Recycle.Bin
2014-06-05 11:51:00 ----D---- C:\Program Files\Windows NT
2014-06-05 11:50:40 ----D---- C:\WINDOWS\Registration
2014-06-05 11:47:40 ----RSD---- C:\WINDOWS\Media
2014-06-05 11:45:00 ----D---- C:\WINDOWS\SYSWOW64\drivers
2014-06-05 11:45:00 ----D---- C:\WINDOWS\SYSWOW64\Atheros_L1e
2014-06-05 11:45:00 ----D---- C:\WINDOWS\system32\Sysprep
2014-06-05 11:44:58 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2014-06-05 11:44:16 ----D---- C:\WINDOWS\SYSWOW64\winrm
2014-06-05 11:44:15 ----D---- C:\WINDOWS\SYSWOW64\WCN
2014-06-05 11:44:14 ----D---- C:\WINDOWS\SYSWOW64\sysprep
2014-06-05 11:44:14 ----D---- C:\WINDOWS\SYSWOW64\SMI
2014-06-05 11:44:14 ----D---- C:\WINDOWS\SYSWOW64\slmgr
2014-06-05 11:44:14 ----D---- C:\WINDOWS\SYSWOW64\sk-SK
2014-06-05 11:44:13 ----D---- C:\WINDOWS\SYSWOW64\sda
2014-06-05 11:44:13 ----D---- C:\WINDOWS\SYSWOW64\Printing_Admin_Scripts
2014-06-05 11:44:13 ----D---- C:\WINDOWS\SYSWOW64\oobe
2014-06-05 11:44:13 ----D---- C:\WINDOWS\SYSWOW64\MUI
2014-06-05 11:44:13 ----D---- C:\WINDOWS\SYSWOW64\migwiz
2014-06-05 11:44:13 ----D---- C:\WINDOWS\SYSWOW64\LogFiles
2014-06-05 11:44:11 ----D---- C:\WINDOWS\SYSWOW64\IME
2014-06-05 11:44:11 ----D---- C:\WINDOWS\SYSWOW64\en-US
2014-06-05 11:44:10 ----D---- C:\WINDOWS\SYSWOW64\drivers\UMDF
2014-06-05 11:44:10 ----D---- C:\WINDOWS\SYSWOW64\catroot
2014-06-05 11:44:08 ----D---- C:\WINDOWS\system32\winrm
2014-06-05 11:44:06 ----D---- C:\WINDOWS\system32\WCN
2014-06-05 11:44:06 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2014-06-05 11:44:06 ----D---- C:\WINDOWS\system32\spool
2014-06-05 11:44:03 ----D---- C:\WINDOWS\system32\slmgr
2014-06-05 11:44:03 ----D---- C:\WINDOWS\system32\sk-SK
2014-06-05 11:44:03 ----D---- C:\WINDOWS\system32\Printing_Admin_Scripts
2014-06-05 11:44:03 ----D---- C:\WINDOWS\system32\oobe
2014-06-05 11:44:02 ----D---- C:\WINDOWS\system32\MUI
2014-06-05 11:44:02 ----D---- C:\WINDOWS\system32\IME
2014-06-05 11:44:00 ----DC---- C:\WINDOWS\system32\DRVSTORE
2014-06-05 11:43:11 ----D---- C:\WINDOWS\system32\Boot
2014-06-05 11:43:01 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-06-05 11:43:01 ----D---- C:\WINDOWS\IME
2014-06-05 11:43:00 ----D---- C:\WINDOWS\Help
2014-06-05 11:42:59 ----D---- C:\WINDOWS\DigitalLocker
2014-06-05 11:42:56 ----SD---- C:\ProgramData\Microsoft
2014-06-05 11:42:56 ----RD---- C:\Users
2014-06-05 11:42:56 ----D---- C:\ProgramData\PRICache
2014-06-05 11:42:51 ----SHD---- C:\Program Files (x86)\Windows Sidebar
2014-06-05 11:42:51 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2014-06-05 11:42:51 ----D---- C:\Program Files (x86)\Windows Media Player
2014-06-05 11:42:51 ----D---- C:\Program Files (x86)\Windows Mail
2014-06-05 11:42:47 ----SHD---- C:\Program Files\Windows Sidebar
2014-06-05 11:42:47 ----D---- C:\Program Files\Windows Photo Viewer
2014-06-05 11:42:47 ----D---- C:\Program Files\Windows Media Player
2014-06-05 11:42:47 ----D---- C:\Program Files\Windows Mail
2014-06-05 11:42:45 ----D---- C:\Program Files\Common Files\System
2014-06-05 11:42:45 ----D---- C:\Program Files\Common Files\microsoft shared
2014-06-05 11:40:11 ----D---- C:\WINDOWS\system32\Recovery
2014-06-05 11:26:16 ----D---- C:\WINDOWS\twain_32
2014-06-05 10:29:14 ----D---- C:\WINDOWS\AUInstallAgent
2014-06-04 19:28:19 ----D---- C:\ProgramData\CyberLink
2014-06-04 19:10:40 ----D---- C:\WINDOWS\Downloaded Installations
2014-06-04 05:07:49 ----D---- C:\ProgramData\Atheros
2014-06-03 14:10:24 ----D---- C:\Program Files (x86)\Adobe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amd_sata;amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [2012-11-30 80552]
R0 amd_xata;amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [2012-11-30 26280]
R0 amdkmpfd;@oem13.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2013-02-14 37472]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-07-17 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-07-17 224896]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2013-12-10 39008]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-07-17 93568]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-07-17 1041168]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-07-17 427360]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-04-09 57472]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-07-17 29208]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-07-17 79184]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-07-17 92008]
R3 ACPIVPC;@oem55.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2013-12-10 33560]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2014-05-28 13209088]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2014-05-28 626688]
R3 AthBTPort;@oem5.inf,%BTHSUPPORT.SvcDesc%;Qualcomm Atheros Virtual Bluetooth Class; C:\WINDOWS\system32\DRIVERS\btath_flt.sys [2013-01-25 89168]
R3 athr;@oem10.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\WINDOWS\system32\DRIVERS\athw8x.sys [2013-03-25 3776000]
R3 AtiHDAudioService;@oem2.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdW86.sys [2013-04-23 98744]
R3 BTATH_A2DP;@oem4.inf,%BTATH_A2DP.SvcDesc%;Bluetooth A2DP Audio Driver; C:\WINDOWS\system32\drivers\btath_a2dp.sys [2013-01-25 346192]
R3 btath_avdt;@oem4.inf,%btath_avdt.SvcDesc%;Qualcomm Atheros Bluetooth AVDT Service; C:\WINDOWS\system32\drivers\btath_avdt.sys [2013-01-25 115280]
R3 BTATH_BUS;@oem59.inf,%BTATH_BUS.SVCDESC%;Qualcomm Atheros Bluetooth Bus; C:\WINDOWS\System32\drivers\btath_bus.sys [2013-01-25 34384]
R3 BTATH_HCRP;@oem7.inf,%BTATH_HCRP.SvcDesc%;Bluetooth HCRP Server driver; C:\WINDOWS\System32\drivers\btath_hcrp.sys [2013-01-25 179432]
R3 BTATH_LWFLT;@oem16.inf,%BTATH_LWFLT%;Bluetooth LWFLT Device; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [2013-01-25 77464]
R3 BTATH_RCP;@oem11.inf,%BTATH_RCP%;Bluetooth AVRCP Device; C:\WINDOWS\System32\drivers\btath_rcp.sys [2013-01-25 136424]
R3 BtFilter;BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [2014-04-28 599240]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2013-08-22 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2013-08-22 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-03-18 81920]
R3 CnxtHdAudService;@oem6.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2013-02-26 1680992]
R3 ETD;@oem8.inf,%PS2DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2013-02-27 355664]
R3 L1C;@netl1c63x64.inf,%L1C.Service.DispName%;NDIS Miniport – ovladač pro řadič Qualcomm Atheros AR81xx PCI-E Ethernet; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2013-06-18 129224]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys []
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2014-03-18 167424]
R3 rtsuvc;@oem39.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2013-04-10 8243272]
R3 usbfilter;AMD USB Filter Driver; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [2012-08-28 58536]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S0 hkuj;hkuj; C:\WINDOWS\System32\drivers\jjjvq.sys [2014-08-16 79064]
S2 APXACC;AppEx Networks Accelerator LWF; C:\WINDOWS\system32\DRIVERS\appexDrv.sys [2013-04-18 219360]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-06-05 1200128]
S3 RSUSBVSTOR;@oem58.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2013-03-18 327752]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\WINDOWS\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-05-08 65432]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2014-05-28 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-04-25 361984]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2013-01-25 227456]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-07-17 50344]
R2 CxAudMsg;Conexant Audio Message Service; C:\windows\system32\CxAudMsg64.exe [2012-12-03 202400]
R2 Garmin Core Update Service;Garmin Core Update Service; C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [2014-07-23 438616]
R2 VeriFaceSrv;VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [2013-12-10 68368]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-05 116648]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-05 116648]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2014-07-17 194032]
S3 LSCWinService;LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2014-05-06 1663880]
-----------------EOF-----------------
Re: Prosím o kontrolu logu. Děkuji!:)
OTL logfile created on: 19. 8. 2014 14:39:33 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\user\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17239)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d. M. yyyy
7,20 Gb Total Physical Memory | 5,66 Gb Available Physical Memory | 78,56% Memory free
9,01 Gb Paging File | 7,32 Gb Available in Paging File | 81,17% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 890,67 Gb Total Space | 801,27 Gb Free Space | 89,96% Space Free | Partition Type: NTFS
Drive D: | 25,00 Gb Total Space | 9,72 Gb Free Space | 38,90% Space Free | Partition Type: NTFS
Computer Name: USER-PC | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2014/08/19 14:27:45 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\user\Desktop\OTL.exe
PRC - [2014/07/31 22:25:06 | 004,085,896 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\avastui.exe
PRC - [2014/07/23 08:44:16 | 000,438,616 | ---- | M] (Garmin Ltd or its subsidiaries) -- C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
PRC - [2014/07/17 08:40:52 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014/05/08 15:48:38 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/01/25 09:18:32 | 000,323,584 | R--- | M] (Atheros) -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
PRC - [2012/07/12 14:59:15 | 000,155,488 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
PRC - [2012/03/29 04:34:30 | 000,091,432 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
PRC - [2008/09/30 16:45:00 | 007,418,368 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
PRC - [2008/09/30 16:43:38 | 007,424,000 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
========== Modules (No Company Name) ==========
MOD - [2014/07/17 08:40:53 | 019,329,904 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2014/07/17 08:40:53 | 000,301,152 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\aswProperty.dll
MOD - [2012/07/12 14:59:16 | 000,400,384 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\sqlite3.dll
MOD - [2012/07/12 14:59:16 | 000,062,976 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\osEvents.dll
MOD - [2012/07/12 14:59:16 | 000,062,464 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\zlib1.dll
MOD - [2012/07/12 14:59:15 | 000,891,392 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\QtNetwork4.dll
MOD - [2012/07/12 14:59:15 | 000,339,456 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\QtXml4.dll
MOD - [2012/07/12 14:59:15 | 000,322,048 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\log4cplus.dll
MOD - [2012/07/12 14:59:15 | 000,195,584 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\libgsoap.dll
MOD - [2012/07/12 14:59:15 | 000,062,976 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\ServiceManagerStarter.dll
MOD - [2012/07/12 14:59:15 | 000,019,456 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\eventsSender.dll
MOD - [2012/07/12 14:59:15 | 000,016,896 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\featureController.dll
MOD - [2012/07/12 14:59:14 | 002,281,984 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\QtCore4.dll
MOD - [2012/07/12 14:59:14 | 000,446,976 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\DeviceProfile.dll
MOD - [2008/09/30 16:35:44 | 000,139,264 | ---- | M] () -- C:\Program Files (x86)\OpenOffice.org 3\Basis\program\nsldap32v50.dll
MOD - [2008/07/29 14:59:22 | 000,165,376 | ---- | M] () -- C:\Program Files (x86)\OpenOffice.org 3\Basis\program\libxslt.dll
MOD - [2008/07/29 14:55:14 | 000,969,728 | ---- | M] () -- C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
========== Services (SafeList) ==========
SRV:64bit: - [2014/08/14 08:09:46 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2014/07/17 08:40:52 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2014/06/05 12:15:44 | 001,306,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:64bit: - [2014/06/05 12:15:44 | 000,834,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2014/06/05 12:09:08 | 000,347,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:64bit: - [2014/06/05 12:09:08 | 000,023,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2014/06/05 12:07:38 | 001,584,128 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:64bit: - [2014/06/05 12:07:37 | 000,491,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:64bit: - [2014/06/05 12:07:37 | 000,201,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2014/05/28 16:52:52 | 000,239,616 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2014/05/06 15:23:54 | 001,663,880 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe -- (LSCWinService)
SRV:64bit: - [2014/03/18 17:42:47 | 000,710,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2014/03/18 17:42:46 | 000,530,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:64bit: - [2014/03/18 17:42:38 | 000,366,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2014/03/18 17:42:35 | 003,394,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2014/03/18 17:42:35 | 001,576,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2014/03/18 17:42:30 | 000,399,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2014/03/18 17:42:30 | 000,269,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2014/03/18 17:42:28 | 000,282,112 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2013/08/22 14:31:56 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2013/08/22 13:32:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:64bit: - [2013/08/22 13:31:43 | 000,040,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2013/08/22 13:22:45 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2013/08/22 13:21:15 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2013/08/22 13:16:57 | 000,118,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2013/08/22 12:25:28 | 000,164,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2013/08/22 12:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2013/08/22 12:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2013/08/22 12:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2013/08/22 12:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2013/08/22 12:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2013/08/22 12:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2013/08/22 12:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:64bit: - [2013/08/22 12:02:47 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:64bit: - [2013/08/22 11:57:25 | 000,130,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:64bit: - [2013/08/22 11:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2013/08/22 11:50:59 | 000,245,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2013/08/22 11:50:00 | 000,525,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2013/08/22 11:45:59 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:64bit: - [2013/08/22 11:40:49 | 000,248,832 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2013/08/22 11:31:03 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2013/08/22 11:15:54 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:64bit: - [2013/04/25 03:10:28 | 000,361,984 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV:64bit: - [2012/12/03 19:27:56 | 000,202,400 | ---- | M] (Conexant Systems Inc.) [Auto | Running] -- C:\Windows\SysNative\CxAudMsg64.exe -- (CxAudMsg)
SRV - [2014/07/23 08:44:16 | 000,438,616 | ---- | M] (Garmin Ltd or its subsidiaries) [Auto | Running] -- C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe -- (Garmin Core Update Service)
SRV - [2014/06/05 12:07:37 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2014/05/08 15:48:38 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/12/10 17:41:32 | 000,068,368 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe -- (VeriFaceSrv)
SRV - [2013/08/22 14:31:56 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2013/08/22 05:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2013/08/22 04:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2013/01/25 10:12:12 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Bluetooth Suite\AdminService.exe -- (AtherosSvc)
SRV - [2013/01/25 09:18:32 | 000,323,584 | R--- | M] (Atheros) [Auto | Running] -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe -- (ZAtheros Bt and Wlan Coex Agent)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2014/08/16 18:30:31 | 000,079,064 | ---- | M] (Malwarebytes Corporation) [Kernel | Boot | Unknown] -- C:\Windows\SysNative\drivers\jjjvq.sys -- (hkuj)
DRV:64bit: - [2014/07/17 08:40:59 | 000,427,360 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswsp.sys -- (aswSP)
DRV:64bit: - [2014/07/17 08:40:55 | 001,041,168 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswsnx.sys -- (aswSnx)
DRV:64bit: - [2014/07/17 08:40:55 | 000,224,896 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2014/07/17 08:40:55 | 000,092,008 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswstm.sys -- (aswStm)
DRV:64bit: - [2014/07/17 08:40:55 | 000,079,184 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2014/07/17 08:40:55 | 000,065,776 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2014/07/17 08:40:55 | 000,029,208 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswHwid.sys -- (aswHwid)
DRV:64bit: - [2014/07/17 08:40:54 | 000,093,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2014/06/05 12:15:46 | 000,157,016 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\WINDOWS\SysNative\drivers\wof.sys -- (Wof)
DRV:64bit: - [2014/06/05 12:15:45 | 000,136,024 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2014/06/05 12:15:44 | 000,376,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2014/06/05 12:09:08 | 000,257,880 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2014/06/05 12:09:08 | 000,123,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:64bit: - [2014/06/05 12:09:08 | 000,035,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2014/06/05 12:07:36 | 000,384,856 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2014/05/31 12:07:07 | 000,467,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2014/05/28 16:52:54 | 013,209,088 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2014/05/28 16:52:54 | 000,626,688 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2014/05/01 15:31:39 | 000,055,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2014/04/28 06:33:30 | 000,599,240 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btfilter.sys -- (BtFilter)
DRV:64bit: - [2014/03/18 17:42:37 | 000,924,504 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refs.sys -- (ReFS)
DRV:64bit: - [2014/03/18 17:42:31 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:64bit: - [2014/03/18 17:42:31 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2014/03/18 17:42:15 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2014/03/18 17:42:14 | 000,086,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:64bit: - [2014/03/18 17:42:13 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2014/03/18 17:42:13 | 000,236,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2014/03/18 17:42:13 | 000,226,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:64bit: - [2014/03/18 17:42:13 | 000,189,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2014/03/18 17:42:13 | 000,079,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2014/03/18 17:42:13 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:64bit: - [2014/03/18 17:42:13 | 000,039,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:64bit: - [2014/03/18 17:42:13 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2014/03/18 17:10:21 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2014/03/18 17:10:16 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2013/12/10 17:41:57 | 000,039,008 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\LhdX64.sys -- (LHDmgr)
DRV:64bit: - [2013/12/10 17:41:57 | 000,033,560 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AcpiVpc.sys -- (ACPIVPC)
DRV:64bit: - [2013/08/22 15:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:64bit: - [2013/08/22 15:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2013/08/22 14:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:64bit: - [2013/08/22 14:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2013/08/22 14:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:64bit: - [2013/08/22 14:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2013/08/22 14:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2013/08/22 14:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2013/08/22 14:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2013/08/22 14:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2013/08/22 14:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2013/08/22 14:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:64bit: - [2013/08/22 14:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:64bit: - [2013/08/22 14:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2013/08/22 14:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2013/08/22 14:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:64bit: - [2013/08/22 14:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2013/08/22 14:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2013/08/22 14:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2013/08/22 14:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2013/08/22 14:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2013/08/22 14:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2013/08/22 14:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2013/08/22 14:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:64bit: - [2013/08/22 14:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2013/08/22 14:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2013/08/22 14:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:64bit: - [2013/08/22 14:37:27 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:64bit: - [2013/08/22 14:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2013/08/22 13:39:54 | 000,076,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:64bit: - [2013/08/22 13:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2013/08/22 13:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2013/08/22 13:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2013/08/22 13:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2013/08/22 13:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2013/08/22 13:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2013/08/22 13:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2013/08/22 13:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2013/08/22 13:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2013/08/22 13:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2013/08/22 13:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2013/08/22 13:37:46 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2013/08/22 13:37:42 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2013/08/22 13:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2013/08/22 13:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2013/08/22 13:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2013/08/22 13:36:43 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:64bit: - [2013/08/22 13:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:64bit: - [2013/08/22 13:36:17 | 000,124,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2013/08/22 13:36:07 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2013/08/22 13:35:42 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2013/08/22 10:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2013/08/13 01:25:46 | 000,017,624 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:64bit: - [2013/08/10 02:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:64bit: - [2013/07/30 20:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:64bit: - [2013/07/25 21:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:64bit: - [2013/06/18 16:44:59 | 000,129,224 | ---- | M] (Qualcomm Atheros Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C63x64.sys -- (L1C)
DRV:64bit: - [2013/04/23 13:38:22 | 000,098,744 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW86.sys -- (AtiHDAudioService)
DRV:64bit: - [2013/04/18 17:04:28 | 000,219,360 | ---- | M] (AppEx Networks Corporation) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\appexDrv.sys -- (APXACC)
DRV:64bit: - [2013/04/10 15:52:22 | 008,243,272 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rtsuvc.sys -- (rtsuvc)
DRV:64bit: - [2013/03/25 08:24:22 | 003,776,000 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athw8x.sys -- (athr)
DRV:64bit: - [2013/03/18 09:21:52 | 000,327,752 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUVStor.sys -- (RSUSBVSTOR)
DRV:64bit: - [2013/02/27 08:44:24 | 000,355,664 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:64bit: - [2013/02/26 07:08:24 | 001,680,992 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CHDRT64.sys -- (CnxtHdAudService)
DRV:64bit: - [2013/02/14 02:33:06 | 000,037,472 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdkmpfd.sys -- (amdkmpfd)
DRV:64bit: - [2013/01/25 09:46:24 | 000,136,424 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_rcp.sys -- (BTATH_RCP)
DRV:64bit: - [2013/01/25 09:46:22 | 000,077,464 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_lwflt.sys -- (BTATH_LWFLT)
DRV:64bit: - [2013/01/25 09:46:20 | 000,346,192 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_a2dp.sys -- (BTATH_A2DP)
DRV:64bit: - [2013/01/25 09:46:20 | 000,179,432 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_hcrp.sys -- (BTATH_HCRP)
DRV:64bit: - [2013/01/25 09:46:20 | 000,115,280 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_avdt.sys -- (btath_avdt)
DRV:64bit: - [2013/01/25 09:46:20 | 000,089,168 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_flt.sys -- (AthBTPort)
DRV:64bit: - [2013/01/25 09:46:20 | 000,034,384 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_bus.sys -- (BTATH_BUS)
DRV:64bit: - [2012/11/30 08:31:02 | 000,026,280 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_xata.sys -- (amd_xata)
DRV:64bit: - [2012/11/30 08:31:00 | 000,080,552 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_sata.sys -- (amd_sata)
DRV:64bit: - [2012/08/28 14:27:24 | 000,058,536 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64bit: - [2012/06/14 03:10:32 | 000,102,376 | ---- | M] ("CyberLink) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wsvd.sys -- (wsvd)
DRV:64bit: - [2012/04/09 20:13:58 | 000,057,472 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys -- (AODDriver4.2)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7
IE:64bit: - HKLM\..\SearchScopes\{6FD9F3AD-227D-4931-A968-9E70CE986543}: "URL" = http://www.bing.com/search?q={searchTer ... TR&pc=LCJB
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7
IE - HKLM\..\SearchScopes\{6FD9F3AD-227D-4931-A968-9E70CE986543}: "URL" = http://www.bing.com/search?q={searchTer ... TR&pc=LCJB
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-2819330432-1451585950-2559875713-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
IE - HKU\S-1-5-21-2819330432-1451585950-2559875713-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com [binary data]
IE - HKU\S-1-5-21-2819330432-1451585950-2559875713-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.co.uk/
IE - HKU\S-1-5-21-2819330432-1451585950-2559875713-1002\..\SearchScopes,DefaultScope = {67521279-4CF8-4774-A408-1387DA5C5944}
IE - HKU\S-1-5-21-2819330432-1451585950-2559875713-1002\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IESR02
IE - HKU\S-1-5-21-2819330432-1451585950-2559875713-1002\..\SearchScopes\{67521279-4CF8-4774-A408-1387DA5C5944}: "URL" = http://www.google.com/search?q={searchT ... NB_csCZ591
IE - HKU\S-1-5-21-2819330432-1451585950-2559875713-1002\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7
IE - HKU\S-1-5-21-2819330432-1451585950-2559875713-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF:64bit: - HKLM\Software\MozillaPlugins\@garmin.com/GpsControl: C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF - HKLM\Software\MozillaPlugins\@garmin.com/GpsControl: C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2014/08/16 07:00:32 | 000,000,000 | ---D | M]
========== Chrome ==========
CHR - default_search_provider: (Enabled)
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - homepage: https://www.google.co.uk/
CHR - plugin: Error reading preferences file
CHR - Extension: Add to Fashiolista! = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\iclekbbjgpehabpidkpgnnjmohldmedi\1.3.2_0\
CHR - Extension: Peněženka Google = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_1\
O1 HOSTS File: ([2013/08/22 15:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKU\S-1-5-21-2819330432-1451585950-2559875713-1002\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:64bit: - HKLM..\Run: [cAudioFilterAgent] C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe (Conexant Systems, Inc.)
O4:64bit: - HKLM..\Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited)
O4:64bit: - HKLM..\Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\utility.exe (Lenovo(beijing) Limited)
O4:64bit: - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
O4:64bit: - HKLM..\Run: [RtsFT] C:\WINDOWS\RTFTrack.exe (Realtek semiconductor)
O4:64bit: - HKLM..\Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SACpl.exe (Conexant Systems, Inc.)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Intel AppUp(SM) center] C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe (Intel Corporation)
O4 - HKLM..\Run: [RemoteControl10] C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [seznam-listicka-distribuce] C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe ()
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [UpdateP2GShortCut] C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKU\S-1-5-21-2819330432-1451585950-2559875713-1002..\Run: [GarminExpressTrayApp] C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe (Garmin Ltd or its subsidiaries)
O4 - Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.0.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: BtvStack = "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe" (Qualcomm Atheros Commnucations)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 1
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: Garmin Communicator Plug-In https://static.garmincdn.com/gcp/ie/4.2 ... rol_32.CAB (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 78.157.167.7 78.157.167.57
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9BF2C452-042D-4BEC-8C74-5DB4D36AD1F7}: DhcpNameServer = 78.157.167.7 78.157.167.57
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30 - LSA: Security Packages - (livessp) - File not found
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs:64bit: lfsvc - C:\Windows\SysNative\GeofenceMonitorService.dll (Microsoft Corporation)
NetSvcs:64bit: wlidsvc - C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
NetSvcs:64bit: DsmSvc - C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
NetSvcs:64bit: NcaSvc - C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.clmp3enc - C:\Program Files (x86)\Lenovo\Power2Go\CLMP3Enc.ACM (CyberLink Corp.)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\WINDOWS\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: VIDC.WMV3 - C:\WINDOWS\SysWow64\wmv9vcm.dll (Microsoft Corporation)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2014/08/19 14:27:45 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\user\Desktop\OTL.exe
[2014/08/16 18:30:31 | 000,079,064 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\jjjvq.sys
[2014/08/16 16:55:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014/08/15 16:23:20 | 000,536,576 | ---- | C] (SQLite Development Team) -- C:\WINDOWS\SysWow64\sqlite3.dll
[2014/08/15 16:22:05 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014/08/14 08:18:59 | 002,001,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl
[2014/08/14 08:18:58 | 000,631,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll
[2014/08/14 08:18:56 | 002,087,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl
[2014/08/14 08:18:54 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieapfltr.dll
[2014/08/14 08:18:54 | 000,452,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtmsft.dll
[2014/08/14 08:18:53 | 000,292,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtrans.dll
[2014/08/14 08:18:53 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mshtmled.dll
[2014/08/14 08:18:52 | 005,824,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2014/08/14 08:18:52 | 000,846,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieapfltr.dll
[2014/08/14 08:18:52 | 000,758,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9diag.dll
[2014/08/14 08:18:50 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mshtmled.dll
[2014/08/14 08:18:49 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript9diag.dll
[2014/08/14 08:18:39 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe
[2014/08/14 08:18:39 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\JavaScriptCollectionAgent.dll
[2014/08/14 08:18:39 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\JavaScriptCollectionAgent.dll
[2014/08/14 08:18:38 | 000,548,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll
[2014/08/14 08:18:38 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MshtmlDac.dll
[2014/08/14 08:18:38 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MshtmlDac.dll
[2014/08/14 08:18:34 | 001,273,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rpcrt4.dll
[2014/08/14 08:17:22 | 002,133,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll
[2014/08/14 08:17:22 | 000,517,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxgi.dll
[2014/08/14 08:17:13 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TsWpfWrp.exe
[2014/08/14 08:17:13 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TsWpfWrp.exe
[2014/08/14 08:17:00 | 003,118,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Wpc.dll
[2014/08/14 08:17:00 | 003,048,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcMon.exe
[2014/08/14 08:16:59 | 002,861,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcWebSync.dll
[2014/08/14 08:16:59 | 002,344,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Wpc.dll
[2014/08/14 08:16:53 | 004,756,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SyncEngine.dll
[2014/08/14 08:16:53 | 001,120,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SkyDrive.exe
[2014/08/14 08:16:53 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SkyDriveTelemetry.dll
[2014/08/14 08:16:45 | 002,144,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll
[2014/08/14 08:16:45 | 002,125,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d9.dll
[2014/08/14 08:16:43 | 002,140,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll
[2014/08/14 08:16:43 | 001,025,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\localspl.dll
[2014/08/14 08:16:42 | 001,726,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntdll.dll
[2014/08/14 08:16:42 | 000,721,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapi.dll
[2014/08/14 08:16:42 | 000,403,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vpnike.dll
[2014/08/14 08:16:41 | 002,844,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\actxprxy.dll
[2014/08/14 08:16:41 | 000,301,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\framedynos.dll
[2014/08/14 08:16:41 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SkyDriveShell.dll
[2014/08/14 08:16:41 | 000,265,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SkyDriveShell.dll
[2014/08/14 08:16:40 | 000,271,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dhcpcore6.dll
[2014/08/14 08:16:39 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\framedynos.dll
[2014/08/14 08:16:39 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dhcpcore6.dll
[2014/08/14 08:16:38 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncobjapi.dll
[2014/08/14 08:16:37 | 000,262,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\framedyn.dll
[2014/08/14 08:16:37 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winbici.dll
[2014/08/14 08:16:37 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ncobjapi.dll
[2014/08/14 08:16:36 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Robocopy.exe
[2014/08/14 08:16:36 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Robocopy.exe
[2014/08/14 08:16:36 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dhcpcsvc6.dll
[2014/08/14 08:16:35 | 000,207,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\framedyn.dll
[2014/08/14 08:16:35 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BulkOperationHost.exe
[2014/08/14 08:16:34 | 000,997,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\reseteng.dll
[2014/08/14 08:16:12 | 016,871,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll
[2014/08/14 08:16:10 | 012,711,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll
[2014/08/14 08:16:08 | 000,440,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\usbport.sys
[2014/08/14 08:16:07 | 000,467,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBHUB3.SYS
[2014/08/14 08:16:07 | 000,323,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DaOtpCredentialProvider.dll
[2014/08/14 08:16:07 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WUDFHost.exe
[2014/08/14 08:16:07 | 000,216,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rsaenh.dll
[2014/08/14 08:16:07 | 000,209,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WUDFPlatform.dll
[2014/08/14 08:16:06 | 000,423,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hal.dll
[2014/08/14 08:16:06 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DaOtpCredentialProvider.dll
[2014/08/14 08:16:06 | 000,027,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\usbd.sys
[2014/08/14 08:15:51 | 000,623,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDMAgent.exe
[2014/08/14 08:15:49 | 000,918,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MrmCoreR.dll
[2014/08/14 08:15:46 | 001,336,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32.dll
[2014/08/14 08:15:34 | 002,790,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msi.dll
[2014/08/14 08:15:34 | 002,642,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll
[2014/08/14 08:15:34 | 002,318,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll
[2014/08/14 08:15:33 | 000,356,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msihnd.dll
[2014/08/14 08:15:33 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msihnd.dll
[2014/08/14 08:15:33 | 000,114,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\consent.exe
[2014/08/07 17:53:45 | 000,000,000 | ---D | C] -- C:\Users\user\Documents\Garmin
[2014/08/07 17:50:49 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\Garmin
[2014/08/07 17:50:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Garmin
[2014/08/07 17:50:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
[2014/08/07 17:50:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Garmin
[2014/08/07 17:49:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache
[2014/08/07 17:13:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Garmin GPS Plugin
[2014/08/07 17:13:44 | 000,000,000 | ---D | C] -- C:\Program Files\Garmin GPS Plugin
[2014/08/07 17:13:12 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\Garmin
[2014/08/05 16:21:00 | 000,000,000 | ---D | C] -- C:\ProgramData\DiamondCaves3
[2014/08/05 11:00:11 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\ElevatedDiagnostics
[2014/07/31 09:15:30 | 000,000,000 | ---D | C] -- C:\Users\user\Documents\Euro Truck Simulator 2
[2014/07/29 12:05:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xplosiv
[2014/07/24 15:44:22 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\BlackBean
[2014/07/24 15:44:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Black Bean Games
========== Files - Modified Within 30 Days ==========
[2014/08/19 14:41:23 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014/08/19 14:35:42 | 000,039,394 | ---- | M] () -- C:\Users\user\Desktop\viry.odt
[2014/08/19 14:27:45 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\user\Desktop\OTL.exe
[2014/08/19 13:54:00 | 000,000,976 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf8cd17d2a3a7b.job
[2014/08/19 09:52:24 | 001,745,984 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2014/08/19 09:52:24 | 000,739,924 | ---- | M] () -- C:\WINDOWS\SysNative\perfh005.dat
[2014/08/19 09:52:24 | 000,722,476 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2014/08/19 09:52:24 | 000,151,610 | ---- | M] () -- C:\WINDOWS\SysNative\perfc005.dat
[2014/08/19 09:52:24 | 000,135,592 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2014/08/19 09:51:04 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014/08/19 07:32:00 | 000,002,214 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014/08/19 07:31:54 | 000,000,960 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2014/08/17 21:50:08 | 000,035,277 | ---- | M] () -- C:\Users\user\AppData\Local\recently-used.xbel
[2014/08/17 20:37:58 | 000,007,168 | -H-- | M] () -- C:\Users\user\Desktop\photothumb.db
[2014/08/16 18:30:31 | 000,079,064 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\jjjvq.sys
[2014/08/16 07:03:32 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2014/08/16 07:03:26 | 1891,844,095 | -HS- | M] () -- C:\hiberfil.sys
[2014/08/16 07:02:52 | 000,004,608 | ---- | M] () -- C:\WINDOWS\SysNative\VfService.trf
[2014/08/16 07:01:17 | 000,001,953 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2014/08/15 07:36:12 | 000,352,168 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2014/08/14 19:26:02 | 001,222,144 | ---- | M] () -- C:\Users\user\Desktop\RSITx64.exe
[2014/08/14 19:16:49 | 000,000,460 | ---- | M] () -- C:\Users\user\Documents\cc_20140814_191608.reg
[2014/08/14 08:14:48 | 000,233,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfps.dll
[2014/08/14 08:11:04 | 000,428,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\FWPKCLNT.SYS
[2014/08/14 08:09:58 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msrating.dll
[2014/08/14 08:09:46 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieUnatt.exe
[2014/08/14 08:09:46 | 000,112,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieUnatt.exe
[2014/08/14 08:09:46 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieetwcollector.exe
[2014/08/14 08:09:46 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieetwproxystub.dll
[2014/08/14 08:09:46 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieetwproxystub.dll
[2014/08/14 08:09:46 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieetwcollectorres.dll
[2014/08/14 08:09:45 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesetup.dll
[2014/08/14 08:09:45 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iesetup.dll
[2014/08/14 08:09:45 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iernonce.dll
[2014/08/14 08:09:45 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iernonce.dll
[2014/08/14 08:09:41 | 000,195,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msrating.dll
[2014/08/11 14:55:18 | 000,005,000 | ---- | M] () -- C:\Users\user\Documents\cc_20140811_145515.reg
[2014/08/07 17:50:15 | 000,001,915 | ---- | M] () -- C:\Users\Public\Desktop\Garmin Express.lnk
[2014/08/07 04:12:27 | 001,336,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32.dll
[2014/08/05 11:00:56 | 000,000,375 | ---- | M] () -- C:\Users\user\Domácí skupina – zástupce.lnk
[2014/08/02 05:11:49 | 000,918,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MrmCoreR.dll
[2014/08/02 02:17:43 | 000,704,480 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2014/08/02 02:17:43 | 000,105,440 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[2014/08/01 11:53:20 | 000,002,286 | ---- | M] () -- C:\Users\user\Documents\cc_20140801_115315.reg
[2014/07/30 16:19:14 | 001,411,416 | ---- | M] () -- C:\Users\user\Desktop\platne_autostrady_duza.jpg
[2014/07/29 12:05:02 | 000,000,657 | ---- | M] () -- C:\Users\Public\Desktop\Off Road.lnk
[2014/07/28 12:33:16 | 000,010,910 | ---- | M] () -- C:\Users\user\Documents\cc_20140728_123313.reg
[2014/07/25 15:28:27 | 000,548,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll
[2014/07/25 15:25:45 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MshtmlDac.dll
[2014/07/25 14:59:28 | 000,758,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9diag.dll
[2014/07/25 14:40:12 | 000,452,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtmsft.dll
[2014/07/25 14:30:32 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MshtmlDac.dll
[2014/07/25 14:28:15 | 005,824,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2014/07/25 14:28:05 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\JavaScriptCollectionAgent.dll
[2014/07/25 14:17:26 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mshtmled.dll
[2014/07/25 14:10:53 | 000,292,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtrans.dll
[2014/07/25 14:08:47 | 000,597,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript9diag.dll
[2014/07/25 13:47:50 | 000,631,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll
[2014/07/25 13:43:16 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\JavaScriptCollectionAgent.dll
[2014/07/25 13:42:31 | 000,692,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe
[2014/07/25 13:39:29 | 002,087,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl
[2014/07/25 13:34:04 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mshtmled.dll
[2014/07/25 13:07:49 | 002,001,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl
[2014/07/25 12:17:47 | 000,846,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieapfltr.dll
[2014/07/25 12:09:19 | 000,704,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieapfltr.dll
[2014/07/24 15:49:18 | 000,000,702 | ---- | M] () -- C:\Users\user\Desktop\WRC2.lnk
========== Files Created - No Company Name ==========
[2014/08/19 14:41:23 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014/08/19 14:35:41 | 000,039,394 | ---- | C] () -- C:\Users\user\Desktop\viry.odt
[2014/08/17 21:50:08 | 000,035,277 | ---- | C] () -- C:\Users\user\AppData\Local\recently-used.xbel
[2014/08/16 07:01:17 | 000,001,953 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2014/08/14 19:26:02 | 001,222,144 | ---- | C] () -- C:\Users\user\Desktop\RSITx64.exe
[2014/08/14 19:16:48 | 000,000,460 | ---- | C] () -- C:\Users\user\Documents\cc_20140814_191608.reg
[2014/08/14 08:16:34 | 000,050,745 | ---- | C] () -- C:\WINDOWS\SysNative\srms.dat
[2014/08/11 14:55:16 | 000,005,000 | ---- | C] () -- C:\Users\user\Documents\cc_20140811_145515.reg
[2014/08/07 17:50:15 | 000,001,915 | ---- | C] () -- C:\Users\Public\Desktop\Garmin Express.lnk
[2014/08/05 11:00:56 | 000,000,375 | ---- | C] () -- C:\Users\user\Domácí skupina – zástupce.lnk
[2014/08/05 10:58:34 | 000,000,303 | ---- | C] () -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Domácí skupina.lnk
[2014/08/01 11:53:19 | 000,002,286 | ---- | C] () -- C:\Users\user\Documents\cc_20140801_115315.reg
[2014/07/30 16:20:52 | 001,411,416 | ---- | C] () -- C:\Users\user\Desktop\platne_autostrady_duza.jpg
[2014/07/29 13:10:56 | 000,000,410 | ---- | C] () -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Jednotka DVD (F) Off_Road.lnk
[2014/07/29 12:05:02 | 000,000,657 | ---- | C] () -- C:\Users\Public\Desktop\Off Road.lnk
[2014/07/28 12:33:14 | 000,010,910 | ---- | C] () -- C:\Users\user\Documents\cc_20140728_123313.reg
[2014/07/24 15:44:14 | 000,000,702 | ---- | C] () -- C:\Users\user\Desktop\WRC2.lnk
[2014/07/10 15:56:13 | 000,000,499 | ---- | C] () -- C:\WINDOWS\eReg.dat
[2014/06/20 08:25:02 | 000,000,003 | ---- | C] () -- C:\Users\user\stut
[2014/06/20 08:23:10 | 000,000,510 | ---- | C] () -- C:\Users\user\rgmnr
[2014/06/19 16:57:33 | 000,192,512 | --S- | C] () -- C:\WINDOWS\SysWow64\libidn-11.dll
[2014/06/19 16:57:33 | 000,133,632 | --S- | C] () -- C:\WINDOWS\SysWow64\librtmp.dll
[2014/06/19 16:57:33 | 000,100,864 | --S- | C] () -- C:\WINDOWS\SysWow64\zlib1.dll
[2014/06/19 16:57:32 | 000,538,126 | --S- | C] () -- C:\WINDOWS\SysWow64\libcurl-4.dll
[2014/05/28 16:53:04 | 000,204,952 | ---- | C] () -- C:\WINDOWS\SysWow64\ativvsvl.dat
[2014/05/28 16:53:04 | 000,157,144 | ---- | C] () -- C:\WINDOWS\SysWow64\ativvsva.dat
[2014/05/28 16:53:00 | 000,003,917 | ---- | C] () -- C:\WINDOWS\SysWow64\atipblag.dat
[2014/05/28 16:52:30 | 000,798,734 | ---- | C] () -- C:\WINDOWS\SysWow64\amdocl_ld32.exe
[2014/05/28 16:52:28 | 000,995,342 | ---- | C] () -- C:\WINDOWS\SysWow64\amdocl_as32.exe
[2014/05/28 16:52:24 | 000,123,392 | ---- | C] () -- C:\WINDOWS\SysWow64\amdhdl32.dll
[2014/03/18 17:42:50 | 000,002,255 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2014/03/18 17:42:17 | 000,103,936 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll
[2013/12/10 17:15:31 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2013/12/10 17:05:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2013/08/22 17:36:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2013/08/22 17:36:42 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2013/08/22 16:46:23 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013/08/22 09:01:23 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2013/08/22 05:32:36 | 000,046,080 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2013/08/22 01:55:20 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2013/08/22 01:52:39 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2012/11/27 11:18:46 | 000,038,912 | ---- | C] () -- C:\WINDOWS\SysWow64\kdbsdk32.dll
========== ZeroAccess Check ==========
[2014/06/19 17:27:44 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014/06/05 12:07:37 | 021,268,952 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/06/05 12:07:37 | 018,755,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2013/08/22 11:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2013/08/22 04:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2013/08/22 11:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2014/06/26 20:48:55 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\AVAST Software
[2014/07/24 15:44:22 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\BlackBean
[2014/08/07 17:51:35 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Garmin
[2014/06/04 19:28:15 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Lenovo
[2014/06/26 22:34:55 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\LSC
[2014/07/17 18:40:51 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Off Road
[2014/06/21 12:00:56 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\OpenOffice.org
[2014/06/05 22:25:22 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\PhotoScape
[2014/08/15 16:20:12 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Seznam.cz
[2014/06/04 19:28:27 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\WebApp
========== Purity Check ==========
========== Custom Scans ==========
< >
[2013/08/22 16:45:54 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT
[2014/06/05 09:43:20 | 000,000,960 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2014/06/20 23:49:19 | 000,000,976 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf8cd17d2a3a7b.job
< >
< MD5 for: AGP440.SYS >
[2013/08/22 14:43:40 | 000,062,304 | ---- | M] (Microsoft Corporation) MD5=7DFAEBA9AD62D20102B576D5CAC45EC8 -- C:\WINDOWS\SysNative\drivers\AGP440.sys
[2013/08/22 14:43:40 | 000,062,304 | ---- | M] (Microsoft Corporation) MD5=7DFAEBA9AD62D20102B576D5CAC45EC8 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\machine.inf_amd64_1758c63a7f3ec2bf\AGP440.sys
[2013/08/22 14:43:40 | 000,062,304 | ---- | M] (Microsoft Corporation) MD5=7DFAEBA9AD62D20102B576D5CAC45EC8 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.17031_none_ab043f8a92822a60\AGP440.sys
< MD5 for: ATAPI.SYS >
[2013/08/22 14:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\WINDOWS\SysNative\drivers\atapi.sys
[2013/08/22 14:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\WINDOWS\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_64aa4354da84c2df\atapi.sys
[2013/08/22 14:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\Windows\WinSxS\amd64_mshdc.inf_31bf3856ad364e35_6.3.9600.16384_none_cdf68824f580d510\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2014/03/18 17:42:55 | 000,792,576 | ---- | M] (Microsoft Corporation) MD5=1D31E78ED5C40B5C6CC8D3DE713177A5 -- C:\Windows\SysWOW64\autochk.exe
[2014/03/18 17:42:55 | 000,792,576 | ---- | M] (Microsoft Corporation) MD5=1D31E78ED5C40B5C6CC8D3DE713177A5 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.17031_none_76c6a414dd35029f\autochk.exe
[2014/03/18 17:42:30 | 000,890,880 | ---- | M] (Microsoft Corporation) MD5=387A1E98BE548E4F199343CBA01E9D6D -- C:\WINDOWS\SysNative\autochk.exe
[2014/03/18 17:42:30 | 000,890,880 | ---- | M] (Microsoft Corporation) MD5=387A1E98BE548E4F199343CBA01E9D6D -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.17031_none_d2e53f98959273d5\autochk.exe
< MD5 for: CDROM.SYS >
[2013/08/22 10:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\WINDOWS\SysNative\drivers\cdrom.sys
[2013/08/22 10:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\WINDOWS\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_42e9c29f0affc440\cdrom.sys
[2013/08/22 10:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\Windows\WinSxS\amd64_cdrom.inf_31bf3856ad364e35_6.3.9600.16384_none_5067bbed77be70be\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2013/08/22 12:01:39 | 000,129,536 | ---- | M] (Microsoft Corporation) MD5=0EFE4B5884A8032617826A4D76F80969 -- C:\WINDOWS\SysNative\cryptsvc.dll
[2013/08/22 12:01:39 | 000,129,536 | ---- | M] (Microsoft Corporation) MD5=0EFE4B5884A8032617826A4D76F80969 -- C:\Windows\WinSxS\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.3.9600.16384_none_66bdf96f6ec6545d\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2014/06/05 12:15:45 | 002,088,160 | ---- | M] (Microsoft Corporation) MD5=119E091B5386379BC5AA598BE9440C75 -- C:\Windows\SysWOW64\explorer.exe
[2014/06/05 12:15:45 | 002,088,160 | ---- | M] (Microsoft Corporation) MD5=119E091B5386379BC5AA598BE9440C75 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17039_none_4d02a60381e74c58\explorer.exe
[2014/06/12 20:33:57 | 000,015,546 | ---- | M] () MD5=347EFF7EC89C3EB4F72F2408E1C4E16D -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17031_none_4cfaa3b381ee81a0\explorer.exe
[2014/06/12 10:24:42 | 000,169,957 | ---- | M] () MD5=6D919C26DCB567396CD2E119B8E4310E -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17031_none_42a5f9614d8dbfa5\explorer.exe
[2014/06/05 12:15:45 | 002,373,784 | ---- | M] (Microsoft Corporation) MD5=81394C91B7B5A7C799E249AE82491F13 -- C:\Windows\explorer.exe
[2014/06/05 12:15:45 | 002,373,784 | ---- | M] (Microsoft Corporation) MD5=81394C91B7B5A7C799E249AE82491F13 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17039_none_42adfbb14d868a5d\explorer.exe
< MD5 for: HAL.DLL >
[2014/06/02 04:10:31 | 000,423,768 | ---- | M] (Microsoft Corporation) MD5=08DCA300264238F9AE941302321F3D54 -- C:\WINDOWS\SysNative\hal.dll
[2014/06/02 04:10:31 | 000,423,768 | ---- | M] (Microsoft Corporation) MD5=08DCA300264238F9AE941302321F3D54 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.17196_none_9bde68c32da7abbb\hal.dll
[2014/08/19 08:38:28 | 000,024,467 | ---- | M] () MD5=2635F50EAF3E1B4A8D32B21E1203E130 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.17031_none_9c1a44f32d7b883b\hal.dll
< MD5 for: IASTORV.SYS >
[2013/08/22 14:43:45 | 000,412,000 | ---- | M] (Intel Corporation) MD5=A2200C3033FA4EF249FC096A7A7D02A2 -- C:\WINDOWS\SysNative\drivers\iaStorV.sys
[2013/08/22 14:43:45 | 000,412,000 | ---- | M] (Intel Corporation) MD5=A2200C3033FA4EF249FC096A7A7D02A2 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_5069105fb236ae4b\iaStorV.sys
[2013/08/22 14:43:45 | 000,412,000 | ---- | M] (Intel Corporation) MD5=A2200C3033FA4EF249FC096A7A7D02A2 -- C:\Windows\WinSxS\amd64_iastorv.inf_31bf3856ad364e35_6.3.9600.16384_none_9fcfb2835bbf0103\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2013/08/22 14:43:45 | 000,021,856 | ---- | M] (Microsoft Corporation) MD5=8AFEEA3955AA43616A60F133B1D25F21 -- C:\WINDOWS\SysNative\drivers\isapnp.sys
[2013/08/22 14:43:45 | 000,021,856 | ---- | M] (Microsoft Corporation) MD5=8AFEEA3955AA43616A60F133B1D25F21 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\machine.inf_amd64_1758c63a7f3ec2bf\isapnp.sys
[2013/08/22 14:43:45 | 000,021,856 | ---- | M] (Microsoft Corporation) MD5=8AFEEA3955AA43616A60F133B1D25F21 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.17031_none_ab043f8a92822a60\isapnp.sys
< MD5 for: LSASS.EXE >
[2013/08/22 15:25:35 | 000,045,008 | ---- | M] (Microsoft Corporation) MD5=F6F209DDB94959BA104FC8FC87C53759 -- C:\WINDOWS\SysNative\lsass.exe
[2013/08/22 15:25:35 | 000,045,008 | ---- | M] (Microsoft Corporation) MD5=F6F209DDB94959BA104FC8FC87C53759 -- C:\Windows\WinSxS\amd64_microsoft-windows-lsa-minwin_31bf3856ad364e35_6.3.9600.16408_none_2e8484166600f08e\lsass.exe
< MD5 for: NDIS.SYS >
[2014/03/18 17:42:15 | 001,118,552 | ---- | M] (Microsoft Corporation) MD5=F21B77B4D74092A543807D3CEB711A88 -- C:\WINDOWS\SysNative\drivers\ndis.sys
[2014/03/18 17:42:15 | 001,118,552 | ---- | M] (Microsoft Corporation) MD5=F21B77B4D74092A543807D3CEB711A88 -- C:\Windows\WinSxS\amd64_microsoft-windows-ndis-minwin_31bf3856ad364e35_6.3.9600.17031_none_4a46d083fbdd5ca3\ndis.sys
< MD5 for: NETLOGON.DLL >
[2014/06/05 12:15:44 | 000,834,560 | ---- | M] (Microsoft Corporation) MD5=2468C21E34C49E4735B4BA430D448E91 -- C:\WINDOWS\SysNative\netlogon.dll
[2014/06/05 12:15:44 | 000,834,560 | ---- | M] (Microsoft Corporation) MD5=2468C21E34C49E4735B4BA430D448E91 -- C:\Windows\WinSxS\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.17041_none_ee9e39a60bd3552e\netlogon.dll
[2014/06/13 09:39:54 | 000,058,552 | ---- | M] () MD5=35048C9600694C3BF01D644D1AAE62BE -- C:\Windows\WinSxS\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.16384_none_f8cac1a04051b0c6\netlogon.dll
[2014/06/05 12:15:45 | 000,688,640 | ---- | M] (Microsoft Corporation) MD5=582918F96C2B7E1E3AE17D08DB6DAC41 -- C:\Windows\SysWOW64\netlogon.dll
[2014/06/05 12:15:45 | 000,688,640 | ---- | M] (Microsoft Corporation) MD5=582918F96C2B7E1E3AE17D08DB6DAC41 -- C:\Windows\WinSxS\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.17041_none_f8f2e3f840341729\netlogon.dll
[2014/06/12 19:25:17 | 000,108,975 | ---- | M] () MD5=D817ED82C2A0E1CED9B396826F52F7CB -- C:\Windows\WinSxS\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.16384_none_ee76174e0bf0eecb\netlogon.dll
< MD5 for: NVRAID.SYS >
[2013/08/22 14:43:31 | 000,150,368 | ---- | M] (NVIDIA Corporation) MD5=BC6B5942AFF25EBAF62DE43C3807EDF8 -- C:\WINDOWS\SysNative\drivers\nvraid.sys
[2013/08/22 14:43:31 | 000,150,368 | ---- | M] (NVIDIA Corporation) MD5=BC6B5942AFF25EBAF62DE43C3807EDF8 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_7ba65ba4b222e751\nvraid.sys
[2013/08/22 14:43:31 | 000,150,368 | ---- | M] (NVIDIA Corporation) MD5=BC6B5942AFF25EBAF62DE43C3807EDF8 -- C:\Windows\WinSxS\amd64_nvraid.inf_31bf3856ad364e35_6.3.9600.16384_none_2a99233292f5aadb\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2013/08/22 14:43:32 | 000,168,288 | ---- | M] (NVIDIA Corporation) MD5=1F43ABFFAC3D6CA356851D517392966E -- C:\WINDOWS\SysNative\drivers\nvstor.sys
[2013/08/22 14:43:32 | 000,168,288 | ---- | M] (NVIDIA Corporation) MD5=1F43ABFFAC3D6CA356851D517392966E -- C:\WINDOWS\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_7ba65ba4b222e751\nvstor.sys
[2013/08/22 14:43:32 | 000,168,288 | ---- | M] (NVIDIA Corporation) MD5=1F43ABFFAC3D6CA356851D517392966E -- C:\Windows\WinSxS\amd64_nvraid.inf_31bf3856ad364e35_6.3.9600.16384_none_2a99233292f5aadb\nvstor.sys
< MD5 for: SCECLI.DLL >
[2013/08/22 04:48:17 | 000,207,360 | ---- | M] (Microsoft Corporation) MD5=1F142D5BD1C3869C5D902779B6FEC3EF -- C:\Windows\SysWOW64\scecli.dll
[2013/08/22 04:48:17 | 000,207,360 | ---- | M] (Microsoft Corporation) MD5=1F142D5BD1C3869C5D902779B6FEC3EF -- C:\Windows\WinSxS\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.16384_none_3320ecb8e1733781\scecli.dll
[2013/08/22 11:55:43 | 000,271,360 | ---- | M] (Microsoft Corporation) MD5=1F1B8D07708E40E54C55B392C78ECCE2 -- C:\WINDOWS\SysNative\scecli.dll
[2013/08/22 11:55:43 | 000,271,360 | ---- | M] (Microsoft Corporation) MD5=1F1B8D07708E40E54C55B392C78ECCE2 -- C:\Windows\WinSxS\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.16384_none_28cc4266ad127586\scecli.dll
< MD5 for: SMSS.EXE >
[2014/03/18 17:42:15 | 000,142,576 | ---- | M] (Microsoft Corporation) MD5=D8564418BAC13776E43DB5F6B4FA775E -- C:\WINDOWS\SysNative\smss.exe
[2014/03/18 17:42:15 | 000,142,576 | ---- | M] (Microsoft Corporation) MD5=D8564418BAC13776E43DB5F6B4FA775E -- C:\Windows\WinSxS\amd64_microsoft-windows-smss-minwin_31bf3856ad364e35_6.3.9600.17031_none_6f522891bc9cbe45\smss.exe
< MD5 for: SVCHOST.EXE >
[2013/08/22 07:30:58 | 000,031,552 | ---- | M] (Microsoft Corporation) MD5=425E22D9F5C01616AFC92987791B19E9 -- C:\Windows\SysWOW64\svchost.exe
[2013/08/22 07:30:58 | 000,031,552 | ---- | M] (Microsoft Corporation) MD5=425E22D9F5C01616AFC92987791B19E9 -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.16384_none_4a5b1e2820e75323\svchost.exe
[2013/08/22 14:45:17 | 000,037,768 | ---- | M] (Microsoft Corporation) MD5=E4CA434F251681590D0538BC21C32D2F -- C:\WINDOWS\SysNative\svchost.exe
[2013/08/22 14:45:17 | 000,037,768 | ---- | M] (Microsoft Corporation) MD5=E4CA434F251681590D0538BC21C32D2F -- C:\Windows\WinSxS\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.16384_none_a679b9abd944c459\svchost.exe
< MD5 for: TCPIP.SYS >
[2014/05/27 17:53:12 | 002,518,360 | ---- | M] (Microsoft Corporation) MD5=25AC0B50A71938890970E1508F107196 -- C:\WINDOWS\SysNative\drivers\tcpip.sys
[2014/05/27 17:53:12 | 002,518,360 | ---- | M] (Microsoft Corporation) MD5=25AC0B50A71938890970E1508F107196 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17136_none_a41467f93a330db6\tcpip.sys
[2014/08/19 08:47:05 | 000,223,198 | ---- | M] () MD5=889B53B7C56665B0277CC00EF4051DE4 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17085_none_a3dd562d3a5c82ed\tcpip.sys
[2014/06/12 20:23:42 | 000,481,873 | ---- | M] () MD5=A71AEE4A38F53E4B8C596AAA2BFDED87 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16521_none_a41a54d33a2f4e0d\tcpip.sys
[2014/08/19 08:47:10 | 000,225,256 | ---- | M] () MD5=A8DBD4B1BA356AA5C05F858E40FD0B08 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17088_none_a3e0570b3a59cef2\tcpip.sys
[2014/06/12 20:23:48 | 000,231,862 | ---- | M] () MD5=DC0CC6B2E43738CBF51E96EA3AB7A223 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17039_none_a41766f13a305c94\tcpip.sys
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\user\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17239)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d. M. yyyy
7,20 Gb Total Physical Memory | 5,66 Gb Available Physical Memory | 78,56% Memory free
9,01 Gb Paging File | 7,32 Gb Available in Paging File | 81,17% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 890,67 Gb Total Space | 801,27 Gb Free Space | 89,96% Space Free | Partition Type: NTFS
Drive D: | 25,00 Gb Total Space | 9,72 Gb Free Space | 38,90% Space Free | Partition Type: NTFS
Computer Name: USER-PC | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2014/08/19 14:27:45 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\user\Desktop\OTL.exe
PRC - [2014/07/31 22:25:06 | 004,085,896 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\avastui.exe
PRC - [2014/07/23 08:44:16 | 000,438,616 | ---- | M] (Garmin Ltd or its subsidiaries) -- C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
PRC - [2014/07/17 08:40:52 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014/05/08 15:48:38 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/01/25 09:18:32 | 000,323,584 | R--- | M] (Atheros) -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
PRC - [2012/07/12 14:59:15 | 000,155,488 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
PRC - [2012/03/29 04:34:30 | 000,091,432 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
PRC - [2008/09/30 16:45:00 | 007,418,368 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
PRC - [2008/09/30 16:43:38 | 007,424,000 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
========== Modules (No Company Name) ==========
MOD - [2014/07/17 08:40:53 | 019,329,904 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2014/07/17 08:40:53 | 000,301,152 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\aswProperty.dll
MOD - [2012/07/12 14:59:16 | 000,400,384 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\sqlite3.dll
MOD - [2012/07/12 14:59:16 | 000,062,976 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\osEvents.dll
MOD - [2012/07/12 14:59:16 | 000,062,464 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\zlib1.dll
MOD - [2012/07/12 14:59:15 | 000,891,392 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\QtNetwork4.dll
MOD - [2012/07/12 14:59:15 | 000,339,456 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\QtXml4.dll
MOD - [2012/07/12 14:59:15 | 000,322,048 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\log4cplus.dll
MOD - [2012/07/12 14:59:15 | 000,195,584 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\libgsoap.dll
MOD - [2012/07/12 14:59:15 | 000,062,976 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\ServiceManagerStarter.dll
MOD - [2012/07/12 14:59:15 | 000,019,456 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\eventsSender.dll
MOD - [2012/07/12 14:59:15 | 000,016,896 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\featureController.dll
MOD - [2012/07/12 14:59:14 | 002,281,984 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\QtCore4.dll
MOD - [2012/07/12 14:59:14 | 000,446,976 | ---- | M] () -- C:\Program Files (x86)\Intel\IntelAppStore\bin\DeviceProfile.dll
MOD - [2008/09/30 16:35:44 | 000,139,264 | ---- | M] () -- C:\Program Files (x86)\OpenOffice.org 3\Basis\program\nsldap32v50.dll
MOD - [2008/07/29 14:59:22 | 000,165,376 | ---- | M] () -- C:\Program Files (x86)\OpenOffice.org 3\Basis\program\libxslt.dll
MOD - [2008/07/29 14:55:14 | 000,969,728 | ---- | M] () -- C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
========== Services (SafeList) ==========
SRV:64bit: - [2014/08/14 08:09:46 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2014/07/17 08:40:52 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2014/06/05 12:15:44 | 001,306,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:64bit: - [2014/06/05 12:15:44 | 000,834,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2014/06/05 12:09:08 | 000,347,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:64bit: - [2014/06/05 12:09:08 | 000,023,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2014/06/05 12:07:38 | 001,584,128 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:64bit: - [2014/06/05 12:07:37 | 000,491,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:64bit: - [2014/06/05 12:07:37 | 000,201,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2014/05/28 16:52:52 | 000,239,616 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2014/05/06 15:23:54 | 001,663,880 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe -- (LSCWinService)
SRV:64bit: - [2014/03/18 17:42:47 | 000,710,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2014/03/18 17:42:46 | 000,530,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:64bit: - [2014/03/18 17:42:38 | 000,366,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2014/03/18 17:42:35 | 003,394,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2014/03/18 17:42:35 | 001,576,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2014/03/18 17:42:30 | 000,399,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2014/03/18 17:42:30 | 000,269,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2014/03/18 17:42:28 | 000,282,112 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2013/08/22 14:31:56 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2013/08/22 13:32:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:64bit: - [2013/08/22 13:31:43 | 000,040,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2013/08/22 13:22:45 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2013/08/22 13:21:15 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2013/08/22 13:16:57 | 000,118,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2013/08/22 12:25:28 | 000,164,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2013/08/22 12:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2013/08/22 12:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2013/08/22 12:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2013/08/22 12:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2013/08/22 12:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2013/08/22 12:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2013/08/22 12:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:64bit: - [2013/08/22 12:02:47 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:64bit: - [2013/08/22 11:57:25 | 000,130,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:64bit: - [2013/08/22 11:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2013/08/22 11:50:59 | 000,245,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2013/08/22 11:50:00 | 000,525,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2013/08/22 11:45:59 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:64bit: - [2013/08/22 11:40:49 | 000,248,832 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2013/08/22 11:31:03 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2013/08/22 11:15:54 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:64bit: - [2013/04/25 03:10:28 | 000,361,984 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV:64bit: - [2012/12/03 19:27:56 | 000,202,400 | ---- | M] (Conexant Systems Inc.) [Auto | Running] -- C:\Windows\SysNative\CxAudMsg64.exe -- (CxAudMsg)
SRV - [2014/07/23 08:44:16 | 000,438,616 | ---- | M] (Garmin Ltd or its subsidiaries) [Auto | Running] -- C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe -- (Garmin Core Update Service)
SRV - [2014/06/05 12:07:37 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2014/05/08 15:48:38 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/12/10 17:41:32 | 000,068,368 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe -- (VeriFaceSrv)
SRV - [2013/08/22 14:31:56 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2013/08/22 05:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2013/08/22 04:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2013/01/25 10:12:12 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Bluetooth Suite\AdminService.exe -- (AtherosSvc)
SRV - [2013/01/25 09:18:32 | 000,323,584 | R--- | M] (Atheros) [Auto | Running] -- C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe -- (ZAtheros Bt and Wlan Coex Agent)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2014/08/16 18:30:31 | 000,079,064 | ---- | M] (Malwarebytes Corporation) [Kernel | Boot | Unknown] -- C:\Windows\SysNative\drivers\jjjvq.sys -- (hkuj)
DRV:64bit: - [2014/07/17 08:40:59 | 000,427,360 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswsp.sys -- (aswSP)
DRV:64bit: - [2014/07/17 08:40:55 | 001,041,168 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswsnx.sys -- (aswSnx)
DRV:64bit: - [2014/07/17 08:40:55 | 000,224,896 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2014/07/17 08:40:55 | 000,092,008 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswstm.sys -- (aswStm)
DRV:64bit: - [2014/07/17 08:40:55 | 000,079,184 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2014/07/17 08:40:55 | 000,065,776 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2014/07/17 08:40:55 | 000,029,208 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswHwid.sys -- (aswHwid)
DRV:64bit: - [2014/07/17 08:40:54 | 000,093,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2014/06/05 12:15:46 | 000,157,016 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\WINDOWS\SysNative\drivers\wof.sys -- (Wof)
DRV:64bit: - [2014/06/05 12:15:45 | 000,136,024 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2014/06/05 12:15:44 | 000,376,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2014/06/05 12:09:08 | 000,257,880 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2014/06/05 12:09:08 | 000,123,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:64bit: - [2014/06/05 12:09:08 | 000,035,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2014/06/05 12:07:36 | 000,384,856 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2014/05/31 12:07:07 | 000,467,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2014/05/28 16:52:54 | 013,209,088 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2014/05/28 16:52:54 | 000,626,688 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2014/05/01 15:31:39 | 000,055,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2014/04/28 06:33:30 | 000,599,240 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btfilter.sys -- (BtFilter)
DRV:64bit: - [2014/03/18 17:42:37 | 000,924,504 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refs.sys -- (ReFS)
DRV:64bit: - [2014/03/18 17:42:31 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:64bit: - [2014/03/18 17:42:31 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2014/03/18 17:42:15 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2014/03/18 17:42:14 | 000,086,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:64bit: - [2014/03/18 17:42:13 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2014/03/18 17:42:13 | 000,236,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2014/03/18 17:42:13 | 000,226,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BthLEEnum.sys -- (BthLEEnum)
DRV:64bit: - [2014/03/18 17:42:13 | 000,189,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2014/03/18 17:42:13 | 000,079,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2014/03/18 17:42:13 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:64bit: - [2014/03/18 17:42:13 | 000,039,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:64bit: - [2014/03/18 17:42:13 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2014/03/18 17:10:21 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2014/03/18 17:10:16 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2013/12/10 17:41:57 | 000,039,008 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\LhdX64.sys -- (LHDmgr)
DRV:64bit: - [2013/12/10 17:41:57 | 000,033,560 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AcpiVpc.sys -- (ACPIVPC)
DRV:64bit: - [2013/08/22 15:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:64bit: - [2013/08/22 15:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2013/08/22 14:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:64bit: - [2013/08/22 14:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2013/08/22 14:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:64bit: - [2013/08/22 14:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2013/08/22 14:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2013/08/22 14:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2013/08/22 14:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2013/08/22 14:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2013/08/22 14:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2013/08/22 14:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:64bit: - [2013/08/22 14:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:64bit: - [2013/08/22 14:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2013/08/22 14:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2013/08/22 14:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:64bit: - [2013/08/22 14:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2013/08/22 14:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2013/08/22 14:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2013/08/22 14:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2013/08/22 14:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2013/08/22 14:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2013/08/22 14:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2013/08/22 14:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:64bit: - [2013/08/22 14:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2013/08/22 14:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2013/08/22 14:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:64bit: - [2013/08/22 14:37:27 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:64bit: - [2013/08/22 14:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2013/08/22 13:39:54 | 000,076,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:64bit: - [2013/08/22 13:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2013/08/22 13:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2013/08/22 13:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2013/08/22 13:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2013/08/22 13:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2013/08/22 13:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2013/08/22 13:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2013/08/22 13:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2013/08/22 13:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2013/08/22 13:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2013/08/22 13:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2013/08/22 13:37:46 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2013/08/22 13:37:42 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2013/08/22 13:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2013/08/22 13:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2013/08/22 13:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2013/08/22 13:36:43 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:64bit: - [2013/08/22 13:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:64bit: - [2013/08/22 13:36:17 | 000,124,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2013/08/22 13:36:07 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2013/08/22 13:35:42 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2013/08/22 10:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2013/08/13 01:25:46 | 000,017,624 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:64bit: - [2013/08/10 02:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:64bit: - [2013/07/30 20:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:64bit: - [2013/07/25 21:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:64bit: - [2013/06/18 16:44:59 | 000,129,224 | ---- | M] (Qualcomm Atheros Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C63x64.sys -- (L1C)
DRV:64bit: - [2013/04/23 13:38:22 | 000,098,744 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW86.sys -- (AtiHDAudioService)
DRV:64bit: - [2013/04/18 17:04:28 | 000,219,360 | ---- | M] (AppEx Networks Corporation) [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\appexDrv.sys -- (APXACC)
DRV:64bit: - [2013/04/10 15:52:22 | 008,243,272 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rtsuvc.sys -- (rtsuvc)
DRV:64bit: - [2013/03/25 08:24:22 | 003,776,000 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athw8x.sys -- (athr)
DRV:64bit: - [2013/03/18 09:21:52 | 000,327,752 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUVStor.sys -- (RSUSBVSTOR)
DRV:64bit: - [2013/02/27 08:44:24 | 000,355,664 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:64bit: - [2013/02/26 07:08:24 | 001,680,992 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CHDRT64.sys -- (CnxtHdAudService)
DRV:64bit: - [2013/02/14 02:33:06 | 000,037,472 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdkmpfd.sys -- (amdkmpfd)
DRV:64bit: - [2013/01/25 09:46:24 | 000,136,424 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_rcp.sys -- (BTATH_RCP)
DRV:64bit: - [2013/01/25 09:46:22 | 000,077,464 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_lwflt.sys -- (BTATH_LWFLT)
DRV:64bit: - [2013/01/25 09:46:20 | 000,346,192 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_a2dp.sys -- (BTATH_A2DP)
DRV:64bit: - [2013/01/25 09:46:20 | 000,179,432 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_hcrp.sys -- (BTATH_HCRP)
DRV:64bit: - [2013/01/25 09:46:20 | 000,115,280 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_avdt.sys -- (btath_avdt)
DRV:64bit: - [2013/01/25 09:46:20 | 000,089,168 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_flt.sys -- (AthBTPort)
DRV:64bit: - [2013/01/25 09:46:20 | 000,034,384 | ---- | M] (Qualcomm Atheros) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btath_bus.sys -- (BTATH_BUS)
DRV:64bit: - [2012/11/30 08:31:02 | 000,026,280 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_xata.sys -- (amd_xata)
DRV:64bit: - [2012/11/30 08:31:00 | 000,080,552 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_sata.sys -- (amd_sata)
DRV:64bit: - [2012/08/28 14:27:24 | 000,058,536 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64bit: - [2012/06/14 03:10:32 | 000,102,376 | ---- | M] ("CyberLink) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wsvd.sys -- (wsvd)
DRV:64bit: - [2012/04/09 20:13:58 | 000,057,472 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys -- (AODDriver4.2)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7
IE:64bit: - HKLM\..\SearchScopes\{6FD9F3AD-227D-4931-A968-9E70CE986543}: "URL" = http://www.bing.com/search?q={searchTer ... TR&pc=LCJB
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7
IE - HKLM\..\SearchScopes\{6FD9F3AD-227D-4931-A968-9E70CE986543}: "URL" = http://www.bing.com/search?q={searchTer ... TR&pc=LCJB
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-2819330432-1451585950-2559875713-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
IE - HKU\S-1-5-21-2819330432-1451585950-2559875713-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.lenovo.com [binary data]
IE - HKU\S-1-5-21-2819330432-1451585950-2559875713-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.co.uk/
IE - HKU\S-1-5-21-2819330432-1451585950-2559875713-1002\..\SearchScopes,DefaultScope = {67521279-4CF8-4774-A408-1387DA5C5944}
IE - HKU\S-1-5-21-2819330432-1451585950-2559875713-1002\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IESR02
IE - HKU\S-1-5-21-2819330432-1451585950-2559875713-1002\..\SearchScopes\{67521279-4CF8-4774-A408-1387DA5C5944}: "URL" = http://www.google.com/search?q={searchT ... NB_csCZ591
IE - HKU\S-1-5-21-2819330432-1451585950-2559875713-1002\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7
IE - HKU\S-1-5-21-2819330432-1451585950-2559875713-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
========== FireFox ==========
FF:64bit: - HKLM\Software\MozillaPlugins\@garmin.com/GpsControl: C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF - HKLM\Software\MozillaPlugins\@garmin.com/GpsControl: C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2014/08/16 07:00:32 | 000,000,000 | ---D | M]
========== Chrome ==========
CHR - default_search_provider: (Enabled)
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - homepage: https://www.google.co.uk/
CHR - plugin: Error reading preferences file
CHR - Extension: Add to Fashiolista! = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\iclekbbjgpehabpidkpgnnjmohldmedi\1.3.2_0\
CHR - Extension: Peněženka Google = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_1\
O1 HOSTS File: ([2013/08/22 15:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKU\S-1-5-21-2819330432-1451585950-2559875713-1002\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:64bit: - HKLM..\Run: [cAudioFilterAgent] C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe (Conexant Systems, Inc.)
O4:64bit: - HKLM..\Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited)
O4:64bit: - HKLM..\Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\utility.exe (Lenovo(beijing) Limited)
O4:64bit: - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
O4:64bit: - HKLM..\Run: [RtsFT] C:\WINDOWS\RTFTrack.exe (Realtek semiconductor)
O4:64bit: - HKLM..\Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SACpl.exe (Conexant Systems, Inc.)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Intel AppUp(SM) center] C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe (Intel Corporation)
O4 - HKLM..\Run: [RemoteControl10] C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [seznam-listicka-distribuce] C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe ()
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [UpdateP2GShortCut] C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKU\S-1-5-21-2819330432-1451585950-2559875713-1002..\Run: [GarminExpressTrayApp] C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe (Garmin Ltd or its subsidiaries)
O4 - Startup: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.0.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: BtvStack = "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe" (Qualcomm Atheros Commnucations)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 1
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: Garmin Communicator Plug-In https://static.garmincdn.com/gcp/ie/4.2 ... rol_32.CAB (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 78.157.167.7 78.157.167.57
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9BF2C452-042D-4BEC-8C74-5DB4D36AD1F7}: DhcpNameServer = 78.157.167.7 78.157.167.57
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30 - LSA: Security Packages - (livessp) - File not found
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs:64bit: lfsvc - C:\Windows\SysNative\GeofenceMonitorService.dll (Microsoft Corporation)
NetSvcs:64bit: wlidsvc - C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
NetSvcs:64bit: DsmSvc - C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
NetSvcs:64bit: NcaSvc - C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.clmp3enc - C:\Program Files (x86)\Lenovo\Power2Go\CLMP3Enc.ACM (CyberLink Corp.)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\WINDOWS\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: VIDC.WMV3 - C:\WINDOWS\SysWow64\wmv9vcm.dll (Microsoft Corporation)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2014/08/19 14:27:45 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\user\Desktop\OTL.exe
[2014/08/16 18:30:31 | 000,079,064 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\jjjvq.sys
[2014/08/16 16:55:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014/08/15 16:23:20 | 000,536,576 | ---- | C] (SQLite Development Team) -- C:\WINDOWS\SysWow64\sqlite3.dll
[2014/08/15 16:22:05 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014/08/14 08:18:59 | 002,001,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl
[2014/08/14 08:18:58 | 000,631,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll
[2014/08/14 08:18:56 | 002,087,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl
[2014/08/14 08:18:54 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieapfltr.dll
[2014/08/14 08:18:54 | 000,452,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtmsft.dll
[2014/08/14 08:18:53 | 000,292,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtrans.dll
[2014/08/14 08:18:53 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mshtmled.dll
[2014/08/14 08:18:52 | 005,824,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2014/08/14 08:18:52 | 000,846,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieapfltr.dll
[2014/08/14 08:18:52 | 000,758,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9diag.dll
[2014/08/14 08:18:50 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mshtmled.dll
[2014/08/14 08:18:49 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript9diag.dll
[2014/08/14 08:18:39 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe
[2014/08/14 08:18:39 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\JavaScriptCollectionAgent.dll
[2014/08/14 08:18:39 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\JavaScriptCollectionAgent.dll
[2014/08/14 08:18:38 | 000,548,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll
[2014/08/14 08:18:38 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MshtmlDac.dll
[2014/08/14 08:18:38 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MshtmlDac.dll
[2014/08/14 08:18:34 | 001,273,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rpcrt4.dll
[2014/08/14 08:17:22 | 002,133,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll
[2014/08/14 08:17:22 | 000,517,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxgi.dll
[2014/08/14 08:17:13 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TsWpfWrp.exe
[2014/08/14 08:17:13 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TsWpfWrp.exe
[2014/08/14 08:17:00 | 003,118,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Wpc.dll
[2014/08/14 08:17:00 | 003,048,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcMon.exe
[2014/08/14 08:16:59 | 002,861,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcWebSync.dll
[2014/08/14 08:16:59 | 002,344,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Wpc.dll
[2014/08/14 08:16:53 | 004,756,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SyncEngine.dll
[2014/08/14 08:16:53 | 001,120,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SkyDrive.exe
[2014/08/14 08:16:53 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SkyDriveTelemetry.dll
[2014/08/14 08:16:45 | 002,144,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll
[2014/08/14 08:16:45 | 002,125,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d9.dll
[2014/08/14 08:16:43 | 002,140,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll
[2014/08/14 08:16:43 | 001,025,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\localspl.dll
[2014/08/14 08:16:42 | 001,726,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntdll.dll
[2014/08/14 08:16:42 | 000,721,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapi.dll
[2014/08/14 08:16:42 | 000,403,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vpnike.dll
[2014/08/14 08:16:41 | 002,844,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\actxprxy.dll
[2014/08/14 08:16:41 | 000,301,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\framedynos.dll
[2014/08/14 08:16:41 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SkyDriveShell.dll
[2014/08/14 08:16:41 | 000,265,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SkyDriveShell.dll
[2014/08/14 08:16:40 | 000,271,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dhcpcore6.dll
[2014/08/14 08:16:39 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\framedynos.dll
[2014/08/14 08:16:39 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dhcpcore6.dll
[2014/08/14 08:16:38 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncobjapi.dll
[2014/08/14 08:16:37 | 000,262,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\framedyn.dll
[2014/08/14 08:16:37 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winbici.dll
[2014/08/14 08:16:37 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ncobjapi.dll
[2014/08/14 08:16:36 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Robocopy.exe
[2014/08/14 08:16:36 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Robocopy.exe
[2014/08/14 08:16:36 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dhcpcsvc6.dll
[2014/08/14 08:16:35 | 000,207,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\framedyn.dll
[2014/08/14 08:16:35 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BulkOperationHost.exe
[2014/08/14 08:16:34 | 000,997,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\reseteng.dll
[2014/08/14 08:16:12 | 016,871,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll
[2014/08/14 08:16:10 | 012,711,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll
[2014/08/14 08:16:08 | 000,440,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\usbport.sys
[2014/08/14 08:16:07 | 000,467,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBHUB3.SYS
[2014/08/14 08:16:07 | 000,323,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DaOtpCredentialProvider.dll
[2014/08/14 08:16:07 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WUDFHost.exe
[2014/08/14 08:16:07 | 000,216,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rsaenh.dll
[2014/08/14 08:16:07 | 000,209,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WUDFPlatform.dll
[2014/08/14 08:16:06 | 000,423,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hal.dll
[2014/08/14 08:16:06 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DaOtpCredentialProvider.dll
[2014/08/14 08:16:06 | 000,027,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\usbd.sys
[2014/08/14 08:15:51 | 000,623,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDMAgent.exe
[2014/08/14 08:15:49 | 000,918,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MrmCoreR.dll
[2014/08/14 08:15:46 | 001,336,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32.dll
[2014/08/14 08:15:34 | 002,790,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msi.dll
[2014/08/14 08:15:34 | 002,642,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll
[2014/08/14 08:15:34 | 002,318,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll
[2014/08/14 08:15:33 | 000,356,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msihnd.dll
[2014/08/14 08:15:33 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msihnd.dll
[2014/08/14 08:15:33 | 000,114,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\consent.exe
[2014/08/07 17:53:45 | 000,000,000 | ---D | C] -- C:\Users\user\Documents\Garmin
[2014/08/07 17:50:49 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\Garmin
[2014/08/07 17:50:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Garmin
[2014/08/07 17:50:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
[2014/08/07 17:50:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Garmin
[2014/08/07 17:49:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache
[2014/08/07 17:13:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Garmin GPS Plugin
[2014/08/07 17:13:44 | 000,000,000 | ---D | C] -- C:\Program Files\Garmin GPS Plugin
[2014/08/07 17:13:12 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\Garmin
[2014/08/05 16:21:00 | 000,000,000 | ---D | C] -- C:\ProgramData\DiamondCaves3
[2014/08/05 11:00:11 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\ElevatedDiagnostics
[2014/07/31 09:15:30 | 000,000,000 | ---D | C] -- C:\Users\user\Documents\Euro Truck Simulator 2
[2014/07/29 12:05:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xplosiv
[2014/07/24 15:44:22 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\BlackBean
[2014/07/24 15:44:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Black Bean Games
========== Files - Modified Within 30 Days ==========
[2014/08/19 14:41:23 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014/08/19 14:35:42 | 000,039,394 | ---- | M] () -- C:\Users\user\Desktop\viry.odt
[2014/08/19 14:27:45 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\user\Desktop\OTL.exe
[2014/08/19 13:54:00 | 000,000,976 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf8cd17d2a3a7b.job
[2014/08/19 09:52:24 | 001,745,984 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2014/08/19 09:52:24 | 000,739,924 | ---- | M] () -- C:\WINDOWS\SysNative\perfh005.dat
[2014/08/19 09:52:24 | 000,722,476 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2014/08/19 09:52:24 | 000,151,610 | ---- | M] () -- C:\WINDOWS\SysNative\perfc005.dat
[2014/08/19 09:52:24 | 000,135,592 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2014/08/19 09:51:04 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014/08/19 07:32:00 | 000,002,214 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014/08/19 07:31:54 | 000,000,960 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2014/08/17 21:50:08 | 000,035,277 | ---- | M] () -- C:\Users\user\AppData\Local\recently-used.xbel
[2014/08/17 20:37:58 | 000,007,168 | -H-- | M] () -- C:\Users\user\Desktop\photothumb.db
[2014/08/16 18:30:31 | 000,079,064 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\jjjvq.sys
[2014/08/16 07:03:32 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2014/08/16 07:03:26 | 1891,844,095 | -HS- | M] () -- C:\hiberfil.sys
[2014/08/16 07:02:52 | 000,004,608 | ---- | M] () -- C:\WINDOWS\SysNative\VfService.trf
[2014/08/16 07:01:17 | 000,001,953 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2014/08/15 07:36:12 | 000,352,168 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2014/08/14 19:26:02 | 001,222,144 | ---- | M] () -- C:\Users\user\Desktop\RSITx64.exe
[2014/08/14 19:16:49 | 000,000,460 | ---- | M] () -- C:\Users\user\Documents\cc_20140814_191608.reg
[2014/08/14 08:14:48 | 000,233,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfps.dll
[2014/08/14 08:11:04 | 000,428,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\FWPKCLNT.SYS
[2014/08/14 08:09:58 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msrating.dll
[2014/08/14 08:09:46 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieUnatt.exe
[2014/08/14 08:09:46 | 000,112,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieUnatt.exe
[2014/08/14 08:09:46 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieetwcollector.exe
[2014/08/14 08:09:46 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieetwproxystub.dll
[2014/08/14 08:09:46 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieetwproxystub.dll
[2014/08/14 08:09:46 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieetwcollectorres.dll
[2014/08/14 08:09:45 | 000,066,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesetup.dll
[2014/08/14 08:09:45 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iesetup.dll
[2014/08/14 08:09:45 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iernonce.dll
[2014/08/14 08:09:45 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iernonce.dll
[2014/08/14 08:09:41 | 000,195,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msrating.dll
[2014/08/11 14:55:18 | 000,005,000 | ---- | M] () -- C:\Users\user\Documents\cc_20140811_145515.reg
[2014/08/07 17:50:15 | 000,001,915 | ---- | M] () -- C:\Users\Public\Desktop\Garmin Express.lnk
[2014/08/07 04:12:27 | 001,336,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32.dll
[2014/08/05 11:00:56 | 000,000,375 | ---- | M] () -- C:\Users\user\Domácí skupina – zástupce.lnk
[2014/08/02 05:11:49 | 000,918,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MrmCoreR.dll
[2014/08/02 02:17:43 | 000,704,480 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2014/08/02 02:17:43 | 000,105,440 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[2014/08/01 11:53:20 | 000,002,286 | ---- | M] () -- C:\Users\user\Documents\cc_20140801_115315.reg
[2014/07/30 16:19:14 | 001,411,416 | ---- | M] () -- C:\Users\user\Desktop\platne_autostrady_duza.jpg
[2014/07/29 12:05:02 | 000,000,657 | ---- | M] () -- C:\Users\Public\Desktop\Off Road.lnk
[2014/07/28 12:33:16 | 000,010,910 | ---- | M] () -- C:\Users\user\Documents\cc_20140728_123313.reg
[2014/07/25 15:28:27 | 000,548,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll
[2014/07/25 15:25:45 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MshtmlDac.dll
[2014/07/25 14:59:28 | 000,758,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9diag.dll
[2014/07/25 14:40:12 | 000,452,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtmsft.dll
[2014/07/25 14:30:32 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MshtmlDac.dll
[2014/07/25 14:28:15 | 005,824,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2014/07/25 14:28:05 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\JavaScriptCollectionAgent.dll
[2014/07/25 14:17:26 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mshtmled.dll
[2014/07/25 14:10:53 | 000,292,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtrans.dll
[2014/07/25 14:08:47 | 000,597,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript9diag.dll
[2014/07/25 13:47:50 | 000,631,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll
[2014/07/25 13:43:16 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\JavaScriptCollectionAgent.dll
[2014/07/25 13:42:31 | 000,692,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe
[2014/07/25 13:39:29 | 002,087,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl
[2014/07/25 13:34:04 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mshtmled.dll
[2014/07/25 13:07:49 | 002,001,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl
[2014/07/25 12:17:47 | 000,846,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieapfltr.dll
[2014/07/25 12:09:19 | 000,704,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieapfltr.dll
[2014/07/24 15:49:18 | 000,000,702 | ---- | M] () -- C:\Users\user\Desktop\WRC2.lnk
========== Files Created - No Company Name ==========
[2014/08/19 14:41:23 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014/08/19 14:35:41 | 000,039,394 | ---- | C] () -- C:\Users\user\Desktop\viry.odt
[2014/08/17 21:50:08 | 000,035,277 | ---- | C] () -- C:\Users\user\AppData\Local\recently-used.xbel
[2014/08/16 07:01:17 | 000,001,953 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2014/08/14 19:26:02 | 001,222,144 | ---- | C] () -- C:\Users\user\Desktop\RSITx64.exe
[2014/08/14 19:16:48 | 000,000,460 | ---- | C] () -- C:\Users\user\Documents\cc_20140814_191608.reg
[2014/08/14 08:16:34 | 000,050,745 | ---- | C] () -- C:\WINDOWS\SysNative\srms.dat
[2014/08/11 14:55:16 | 000,005,000 | ---- | C] () -- C:\Users\user\Documents\cc_20140811_145515.reg
[2014/08/07 17:50:15 | 000,001,915 | ---- | C] () -- C:\Users\Public\Desktop\Garmin Express.lnk
[2014/08/05 11:00:56 | 000,000,375 | ---- | C] () -- C:\Users\user\Domácí skupina – zástupce.lnk
[2014/08/05 10:58:34 | 000,000,303 | ---- | C] () -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Domácí skupina.lnk
[2014/08/01 11:53:19 | 000,002,286 | ---- | C] () -- C:\Users\user\Documents\cc_20140801_115315.reg
[2014/07/30 16:20:52 | 001,411,416 | ---- | C] () -- C:\Users\user\Desktop\platne_autostrady_duza.jpg
[2014/07/29 13:10:56 | 000,000,410 | ---- | C] () -- C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Jednotka DVD (F) Off_Road.lnk
[2014/07/29 12:05:02 | 000,000,657 | ---- | C] () -- C:\Users\Public\Desktop\Off Road.lnk
[2014/07/28 12:33:14 | 000,010,910 | ---- | C] () -- C:\Users\user\Documents\cc_20140728_123313.reg
[2014/07/24 15:44:14 | 000,000,702 | ---- | C] () -- C:\Users\user\Desktop\WRC2.lnk
[2014/07/10 15:56:13 | 000,000,499 | ---- | C] () -- C:\WINDOWS\eReg.dat
[2014/06/20 08:25:02 | 000,000,003 | ---- | C] () -- C:\Users\user\stut
[2014/06/20 08:23:10 | 000,000,510 | ---- | C] () -- C:\Users\user\rgmnr
[2014/06/19 16:57:33 | 000,192,512 | --S- | C] () -- C:\WINDOWS\SysWow64\libidn-11.dll
[2014/06/19 16:57:33 | 000,133,632 | --S- | C] () -- C:\WINDOWS\SysWow64\librtmp.dll
[2014/06/19 16:57:33 | 000,100,864 | --S- | C] () -- C:\WINDOWS\SysWow64\zlib1.dll
[2014/06/19 16:57:32 | 000,538,126 | --S- | C] () -- C:\WINDOWS\SysWow64\libcurl-4.dll
[2014/05/28 16:53:04 | 000,204,952 | ---- | C] () -- C:\WINDOWS\SysWow64\ativvsvl.dat
[2014/05/28 16:53:04 | 000,157,144 | ---- | C] () -- C:\WINDOWS\SysWow64\ativvsva.dat
[2014/05/28 16:53:00 | 000,003,917 | ---- | C] () -- C:\WINDOWS\SysWow64\atipblag.dat
[2014/05/28 16:52:30 | 000,798,734 | ---- | C] () -- C:\WINDOWS\SysWow64\amdocl_ld32.exe
[2014/05/28 16:52:28 | 000,995,342 | ---- | C] () -- C:\WINDOWS\SysWow64\amdocl_as32.exe
[2014/05/28 16:52:24 | 000,123,392 | ---- | C] () -- C:\WINDOWS\SysWow64\amdhdl32.dll
[2014/03/18 17:42:50 | 000,002,255 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2014/03/18 17:42:17 | 000,103,936 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll
[2013/12/10 17:15:31 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2013/12/10 17:05:47 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2013/08/22 17:36:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2013/08/22 17:36:42 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2013/08/22 16:46:23 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013/08/22 09:01:23 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2013/08/22 05:32:36 | 000,046,080 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2013/08/22 01:55:20 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2013/08/22 01:52:39 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2012/11/27 11:18:46 | 000,038,912 | ---- | C] () -- C:\WINDOWS\SysWow64\kdbsdk32.dll
========== ZeroAccess Check ==========
[2014/06/19 17:27:44 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014/06/05 12:07:37 | 021,268,952 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/06/05 12:07:37 | 018,755,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2013/08/22 11:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2013/08/22 04:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2013/08/22 11:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2014/06/26 20:48:55 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\AVAST Software
[2014/07/24 15:44:22 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\BlackBean
[2014/08/07 17:51:35 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Garmin
[2014/06/04 19:28:15 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Lenovo
[2014/06/26 22:34:55 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\LSC
[2014/07/17 18:40:51 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Off Road
[2014/06/21 12:00:56 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\OpenOffice.org
[2014/06/05 22:25:22 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\PhotoScape
[2014/08/15 16:20:12 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Seznam.cz
[2014/06/04 19:28:27 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\WebApp
========== Purity Check ==========
========== Custom Scans ==========
< >
[2013/08/22 16:45:54 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT
[2014/06/05 09:43:20 | 000,000,960 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2014/06/20 23:49:19 | 000,000,976 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf8cd17d2a3a7b.job
< >
< MD5 for: AGP440.SYS >
[2013/08/22 14:43:40 | 000,062,304 | ---- | M] (Microsoft Corporation) MD5=7DFAEBA9AD62D20102B576D5CAC45EC8 -- C:\WINDOWS\SysNative\drivers\AGP440.sys
[2013/08/22 14:43:40 | 000,062,304 | ---- | M] (Microsoft Corporation) MD5=7DFAEBA9AD62D20102B576D5CAC45EC8 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\machine.inf_amd64_1758c63a7f3ec2bf\AGP440.sys
[2013/08/22 14:43:40 | 000,062,304 | ---- | M] (Microsoft Corporation) MD5=7DFAEBA9AD62D20102B576D5CAC45EC8 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.17031_none_ab043f8a92822a60\AGP440.sys
< MD5 for: ATAPI.SYS >
[2013/08/22 14:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\WINDOWS\SysNative\drivers\atapi.sys
[2013/08/22 14:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\WINDOWS\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_64aa4354da84c2df\atapi.sys
[2013/08/22 14:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\Windows\WinSxS\amd64_mshdc.inf_31bf3856ad364e35_6.3.9600.16384_none_cdf68824f580d510\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2014/03/18 17:42:55 | 000,792,576 | ---- | M] (Microsoft Corporation) MD5=1D31E78ED5C40B5C6CC8D3DE713177A5 -- C:\Windows\SysWOW64\autochk.exe
[2014/03/18 17:42:55 | 000,792,576 | ---- | M] (Microsoft Corporation) MD5=1D31E78ED5C40B5C6CC8D3DE713177A5 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.17031_none_76c6a414dd35029f\autochk.exe
[2014/03/18 17:42:30 | 000,890,880 | ---- | M] (Microsoft Corporation) MD5=387A1E98BE548E4F199343CBA01E9D6D -- C:\WINDOWS\SysNative\autochk.exe
[2014/03/18 17:42:30 | 000,890,880 | ---- | M] (Microsoft Corporation) MD5=387A1E98BE548E4F199343CBA01E9D6D -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.17031_none_d2e53f98959273d5\autochk.exe
< MD5 for: CDROM.SYS >
[2013/08/22 10:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\WINDOWS\SysNative\drivers\cdrom.sys
[2013/08/22 10:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\WINDOWS\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_42e9c29f0affc440\cdrom.sys
[2013/08/22 10:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\Windows\WinSxS\amd64_cdrom.inf_31bf3856ad364e35_6.3.9600.16384_none_5067bbed77be70be\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2013/08/22 12:01:39 | 000,129,536 | ---- | M] (Microsoft Corporation) MD5=0EFE4B5884A8032617826A4D76F80969 -- C:\WINDOWS\SysNative\cryptsvc.dll
[2013/08/22 12:01:39 | 000,129,536 | ---- | M] (Microsoft Corporation) MD5=0EFE4B5884A8032617826A4D76F80969 -- C:\Windows\WinSxS\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.3.9600.16384_none_66bdf96f6ec6545d\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2014/06/05 12:15:45 | 002,088,160 | ---- | M] (Microsoft Corporation) MD5=119E091B5386379BC5AA598BE9440C75 -- C:\Windows\SysWOW64\explorer.exe
[2014/06/05 12:15:45 | 002,088,160 | ---- | M] (Microsoft Corporation) MD5=119E091B5386379BC5AA598BE9440C75 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17039_none_4d02a60381e74c58\explorer.exe
[2014/06/12 20:33:57 | 000,015,546 | ---- | M] () MD5=347EFF7EC89C3EB4F72F2408E1C4E16D -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17031_none_4cfaa3b381ee81a0\explorer.exe
[2014/06/12 10:24:42 | 000,169,957 | ---- | M] () MD5=6D919C26DCB567396CD2E119B8E4310E -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17031_none_42a5f9614d8dbfa5\explorer.exe
[2014/06/05 12:15:45 | 002,373,784 | ---- | M] (Microsoft Corporation) MD5=81394C91B7B5A7C799E249AE82491F13 -- C:\Windows\explorer.exe
[2014/06/05 12:15:45 | 002,373,784 | ---- | M] (Microsoft Corporation) MD5=81394C91B7B5A7C799E249AE82491F13 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17039_none_42adfbb14d868a5d\explorer.exe
< MD5 for: HAL.DLL >
[2014/06/02 04:10:31 | 000,423,768 | ---- | M] (Microsoft Corporation) MD5=08DCA300264238F9AE941302321F3D54 -- C:\WINDOWS\SysNative\hal.dll
[2014/06/02 04:10:31 | 000,423,768 | ---- | M] (Microsoft Corporation) MD5=08DCA300264238F9AE941302321F3D54 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.17196_none_9bde68c32da7abbb\hal.dll
[2014/08/19 08:38:28 | 000,024,467 | ---- | M] () MD5=2635F50EAF3E1B4A8D32B21E1203E130 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.17031_none_9c1a44f32d7b883b\hal.dll
< MD5 for: IASTORV.SYS >
[2013/08/22 14:43:45 | 000,412,000 | ---- | M] (Intel Corporation) MD5=A2200C3033FA4EF249FC096A7A7D02A2 -- C:\WINDOWS\SysNative\drivers\iaStorV.sys
[2013/08/22 14:43:45 | 000,412,000 | ---- | M] (Intel Corporation) MD5=A2200C3033FA4EF249FC096A7A7D02A2 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_5069105fb236ae4b\iaStorV.sys
[2013/08/22 14:43:45 | 000,412,000 | ---- | M] (Intel Corporation) MD5=A2200C3033FA4EF249FC096A7A7D02A2 -- C:\Windows\WinSxS\amd64_iastorv.inf_31bf3856ad364e35_6.3.9600.16384_none_9fcfb2835bbf0103\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2013/08/22 14:43:45 | 000,021,856 | ---- | M] (Microsoft Corporation) MD5=8AFEEA3955AA43616A60F133B1D25F21 -- C:\WINDOWS\SysNative\drivers\isapnp.sys
[2013/08/22 14:43:45 | 000,021,856 | ---- | M] (Microsoft Corporation) MD5=8AFEEA3955AA43616A60F133B1D25F21 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\machine.inf_amd64_1758c63a7f3ec2bf\isapnp.sys
[2013/08/22 14:43:45 | 000,021,856 | ---- | M] (Microsoft Corporation) MD5=8AFEEA3955AA43616A60F133B1D25F21 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.17031_none_ab043f8a92822a60\isapnp.sys
< MD5 for: LSASS.EXE >
[2013/08/22 15:25:35 | 000,045,008 | ---- | M] (Microsoft Corporation) MD5=F6F209DDB94959BA104FC8FC87C53759 -- C:\WINDOWS\SysNative\lsass.exe
[2013/08/22 15:25:35 | 000,045,008 | ---- | M] (Microsoft Corporation) MD5=F6F209DDB94959BA104FC8FC87C53759 -- C:\Windows\WinSxS\amd64_microsoft-windows-lsa-minwin_31bf3856ad364e35_6.3.9600.16408_none_2e8484166600f08e\lsass.exe
< MD5 for: NDIS.SYS >
[2014/03/18 17:42:15 | 001,118,552 | ---- | M] (Microsoft Corporation) MD5=F21B77B4D74092A543807D3CEB711A88 -- C:\WINDOWS\SysNative\drivers\ndis.sys
[2014/03/18 17:42:15 | 001,118,552 | ---- | M] (Microsoft Corporation) MD5=F21B77B4D74092A543807D3CEB711A88 -- C:\Windows\WinSxS\amd64_microsoft-windows-ndis-minwin_31bf3856ad364e35_6.3.9600.17031_none_4a46d083fbdd5ca3\ndis.sys
< MD5 for: NETLOGON.DLL >
[2014/06/05 12:15:44 | 000,834,560 | ---- | M] (Microsoft Corporation) MD5=2468C21E34C49E4735B4BA430D448E91 -- C:\WINDOWS\SysNative\netlogon.dll
[2014/06/05 12:15:44 | 000,834,560 | ---- | M] (Microsoft Corporation) MD5=2468C21E34C49E4735B4BA430D448E91 -- C:\Windows\WinSxS\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.17041_none_ee9e39a60bd3552e\netlogon.dll
[2014/06/13 09:39:54 | 000,058,552 | ---- | M] () MD5=35048C9600694C3BF01D644D1AAE62BE -- C:\Windows\WinSxS\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.16384_none_f8cac1a04051b0c6\netlogon.dll
[2014/06/05 12:15:45 | 000,688,640 | ---- | M] (Microsoft Corporation) MD5=582918F96C2B7E1E3AE17D08DB6DAC41 -- C:\Windows\SysWOW64\netlogon.dll
[2014/06/05 12:15:45 | 000,688,640 | ---- | M] (Microsoft Corporation) MD5=582918F96C2B7E1E3AE17D08DB6DAC41 -- C:\Windows\WinSxS\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.17041_none_f8f2e3f840341729\netlogon.dll
[2014/06/12 19:25:17 | 000,108,975 | ---- | M] () MD5=D817ED82C2A0E1CED9B396826F52F7CB -- C:\Windows\WinSxS\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.16384_none_ee76174e0bf0eecb\netlogon.dll
< MD5 for: NVRAID.SYS >
[2013/08/22 14:43:31 | 000,150,368 | ---- | M] (NVIDIA Corporation) MD5=BC6B5942AFF25EBAF62DE43C3807EDF8 -- C:\WINDOWS\SysNative\drivers\nvraid.sys
[2013/08/22 14:43:31 | 000,150,368 | ---- | M] (NVIDIA Corporation) MD5=BC6B5942AFF25EBAF62DE43C3807EDF8 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_7ba65ba4b222e751\nvraid.sys
[2013/08/22 14:43:31 | 000,150,368 | ---- | M] (NVIDIA Corporation) MD5=BC6B5942AFF25EBAF62DE43C3807EDF8 -- C:\Windows\WinSxS\amd64_nvraid.inf_31bf3856ad364e35_6.3.9600.16384_none_2a99233292f5aadb\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2013/08/22 14:43:32 | 000,168,288 | ---- | M] (NVIDIA Corporation) MD5=1F43ABFFAC3D6CA356851D517392966E -- C:\WINDOWS\SysNative\drivers\nvstor.sys
[2013/08/22 14:43:32 | 000,168,288 | ---- | M] (NVIDIA Corporation) MD5=1F43ABFFAC3D6CA356851D517392966E -- C:\WINDOWS\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_7ba65ba4b222e751\nvstor.sys
[2013/08/22 14:43:32 | 000,168,288 | ---- | M] (NVIDIA Corporation) MD5=1F43ABFFAC3D6CA356851D517392966E -- C:\Windows\WinSxS\amd64_nvraid.inf_31bf3856ad364e35_6.3.9600.16384_none_2a99233292f5aadb\nvstor.sys
< MD5 for: SCECLI.DLL >
[2013/08/22 04:48:17 | 000,207,360 | ---- | M] (Microsoft Corporation) MD5=1F142D5BD1C3869C5D902779B6FEC3EF -- C:\Windows\SysWOW64\scecli.dll
[2013/08/22 04:48:17 | 000,207,360 | ---- | M] (Microsoft Corporation) MD5=1F142D5BD1C3869C5D902779B6FEC3EF -- C:\Windows\WinSxS\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.16384_none_3320ecb8e1733781\scecli.dll
[2013/08/22 11:55:43 | 000,271,360 | ---- | M] (Microsoft Corporation) MD5=1F1B8D07708E40E54C55B392C78ECCE2 -- C:\WINDOWS\SysNative\scecli.dll
[2013/08/22 11:55:43 | 000,271,360 | ---- | M] (Microsoft Corporation) MD5=1F1B8D07708E40E54C55B392C78ECCE2 -- C:\Windows\WinSxS\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.16384_none_28cc4266ad127586\scecli.dll
< MD5 for: SMSS.EXE >
[2014/03/18 17:42:15 | 000,142,576 | ---- | M] (Microsoft Corporation) MD5=D8564418BAC13776E43DB5F6B4FA775E -- C:\WINDOWS\SysNative\smss.exe
[2014/03/18 17:42:15 | 000,142,576 | ---- | M] (Microsoft Corporation) MD5=D8564418BAC13776E43DB5F6B4FA775E -- C:\Windows\WinSxS\amd64_microsoft-windows-smss-minwin_31bf3856ad364e35_6.3.9600.17031_none_6f522891bc9cbe45\smss.exe
< MD5 for: SVCHOST.EXE >
[2013/08/22 07:30:58 | 000,031,552 | ---- | M] (Microsoft Corporation) MD5=425E22D9F5C01616AFC92987791B19E9 -- C:\Windows\SysWOW64\svchost.exe
[2013/08/22 07:30:58 | 000,031,552 | ---- | M] (Microsoft Corporation) MD5=425E22D9F5C01616AFC92987791B19E9 -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.16384_none_4a5b1e2820e75323\svchost.exe
[2013/08/22 14:45:17 | 000,037,768 | ---- | M] (Microsoft Corporation) MD5=E4CA434F251681590D0538BC21C32D2F -- C:\WINDOWS\SysNative\svchost.exe
[2013/08/22 14:45:17 | 000,037,768 | ---- | M] (Microsoft Corporation) MD5=E4CA434F251681590D0538BC21C32D2F -- C:\Windows\WinSxS\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.16384_none_a679b9abd944c459\svchost.exe
< MD5 for: TCPIP.SYS >
[2014/05/27 17:53:12 | 002,518,360 | ---- | M] (Microsoft Corporation) MD5=25AC0B50A71938890970E1508F107196 -- C:\WINDOWS\SysNative\drivers\tcpip.sys
[2014/05/27 17:53:12 | 002,518,360 | ---- | M] (Microsoft Corporation) MD5=25AC0B50A71938890970E1508F107196 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17136_none_a41467f93a330db6\tcpip.sys
[2014/08/19 08:47:05 | 000,223,198 | ---- | M] () MD5=889B53B7C56665B0277CC00EF4051DE4 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17085_none_a3dd562d3a5c82ed\tcpip.sys
[2014/06/12 20:23:42 | 000,481,873 | ---- | M] () MD5=A71AEE4A38F53E4B8C596AAA2BFDED87 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16521_none_a41a54d33a2f4e0d\tcpip.sys
[2014/08/19 08:47:10 | 000,225,256 | ---- | M] () MD5=A8DBD4B1BA356AA5C05F858E40FD0B08 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17088_none_a3e0570b3a59cef2\tcpip.sys
[2014/06/12 20:23:48 | 000,231,862 | ---- | M] () MD5=DC0CC6B2E43738CBF51E96EA3AB7A223 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17039_none_a41766f13a305c94\tcpip.sys
Re: Prosím o kontrolu logu. Děkuji!:)
< MD5 for: USERINIT.EXE >
[2013/08/22 12:03:12 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=08C191B2917862BE90C33E31CB6B6D79 -- C:\WINDOWS\SysNative\userinit.exe
[2013/08/22 12:03:12 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=08C191B2917862BE90C33E31CB6B6D79 -- C:\Windows\WinSxS\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.16384_none_cce71a20a5a6fe7f\userinit.exe
[2013/08/22 04:54:12 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=41636F77AD6D9A396EA34E4786B96F2B -- C:\Windows\SysWOW64\userinit.exe
[2013/08/22 04:54:12 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=41636F77AD6D9A396EA34E4786B96F2B -- C:\Windows\WinSxS\x86_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.16384_none_70c87e9ced498d49\userinit.exe
< MD5 for: WINLOGON.EXE >
[2014/03/18 17:42:32 | 000,562,176 | ---- | M] (Microsoft Corporation) MD5=306EB21E5B480AE9065EA55AC8C35936 -- C:\WINDOWS\SysNative\winlogon.exe
[2014/03/18 17:42:32 | 000,562,176 | ---- | M] (Microsoft Corporation) MD5=306EB21E5B480AE9065EA55AC8C35936 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.17031_none_60b45365a8c2ccdb\winlogon.exe
< MD5 for: WS2_32.DLL >
[2013/08/22 07:17:54 | 000,313,488 | ---- | M] (Microsoft Corporation) MD5=428AF7FA03FF09CE1CD373ABFEBAD8A3 -- C:\Windows\SysWOW64\ws2_32.dll
[2013/08/22 07:17:54 | 000,313,488 | ---- | M] (Microsoft Corporation) MD5=428AF7FA03FF09CE1CD373ABFEBAD8A3 -- C:\Windows\WinSxS\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.3.9600.16384_none_87577549e9ef9b02\ws2_32.dll
[2013/08/22 15:25:35 | 000,355,872 | ---- | M] (Microsoft Corporation) MD5=6F997D98C6A30D79C622811FBAB9119E -- C:\WINDOWS\SysNative\ws2_32.dll
[2013/08/22 15:25:35 | 000,355,872 | ---- | M] (Microsoft Corporation) MD5=6F997D98C6A30D79C622811FBAB9119E -- C:\Windows\WinSxS\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.3.9600.16384_none_e37610cda24d0c38\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[2 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[4 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[4 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2014/06/05 08:59:41 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Adobe
[2014/06/04 05:07:38 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Atheros
[2014/06/04 05:07:47 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\ATI
[2014/06/26 20:48:55 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\AVAST Software
[2014/07/24 15:44:22 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\BlackBean
[2014/06/04 20:39:21 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\CyberLink
[2014/08/07 17:51:35 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Garmin
[2014/06/05 11:57:50 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Identities
[2014/07/19 14:34:29 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\InstallShield
[2014/06/04 19:28:15 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Lenovo
[2014/06/26 22:34:55 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\LSC
[2013/12/10 17:28:09 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Macromedia
[2014/07/10 08:11:46 | 000,000,000 | --SD | M] -- C:\Users\user\AppData\Roaming\Microsoft
[2014/07/17 18:40:51 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Off Road
[2014/06/21 12:00:56 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\OpenOffice.org
[2014/06/05 22:25:22 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\PhotoScape
[2014/08/15 16:20:12 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Seznam.cz
[2014/07/19 14:43:41 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\THQ
[2014/06/04 19:28:27 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\WebApp
< %APPDATA%\*.exe /s >
[2014/06/26 21:24:43 | 037,217,224 | ---- | M] (Lenovo Group Limited) -- C:\Users\user\AppData\Roaming\LSC\Local Store\LSCSetup64.exe
[2014/06/26 21:10:31 | 000,054,432 | ---- | M] (Adobe Systems Inc.) -- C:\Users\user\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"GarminExpressTrayApp" = "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" -- [2014/07/23 08:44:36 | 000,688,984 | ---- | M] (Garmin Ltd or its subsidiaries)
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014/08/19 14:41:23 | 000,000,512 | ---- | M] () MD5=722034460C0AA55D6785249B9C5DD700 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2013/11/30 17:27:56 | 000,062,238 | ---- | M] () -- \Program Files\GIMP 2\share\gimp\2.0\patterns\cracked.pat
[2014/08/16 13:17:06 | 000,000,311 | ---- | M] () -- \Users\user\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\J1KBSFRL\www.cracked[1].xml
[2014/08/14 12:31:20 | 000,071,289 | ---- | M] () -- \Users\user\Desktop\summer\Summer Street Style\atlantic\firecracker.jpg
< *keygen* /s >
< *AntiWPA* /s >
< *loader* /s >
[2014/07/23 08:43:16 | 000,042,496 | ---- | M] () -- \Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MyDownloader.Core.dll
[2012/05/26 03:47:16 | 000,126,064 | ---- | M] () -- \Program Files (x86)\Lenovo\PowerDVD10\PK\Koan\pyloader.dll
[2012/05/26 03:47:16 | 000,028,238 | ---- | M] () -- \Program Files (x86)\Lenovo\PowerDVD10\PK\subsys\PyImpLoader\PyImpLoader.kc
[2012/05/26 03:47:16 | 000,121,968 | ---- | M] () -- \Program Files (x86)\Lenovo\PowerDVD10\PK\subsys\PyImpLoader\_PyImpLoader.pyd
[2012/05/18 08:15:48 | 000,010,781 | ---- | M] () -- \Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\mm\MediaCtrl\ImageLoader.kc
[2012/05/18 08:15:50 | 000,003,492 | ---- | M] () -- \Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\widget\langloader.kc
[2012/05/18 08:15:50 | 000,013,453 | ---- | M] () -- \Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\widget\layoutloader.kc
[2012/08/01 03:15:46 | 000,010,775 | ---- | M] () -- \Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cox\mm\MediaCtrl\ImageLoader.kc
[2012/08/01 03:15:48 | 000,003,567 | ---- | M] () -- \Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cox\widget\langloader.kc
[2012/08/01 03:15:48 | 000,013,369 | ---- | M] () -- \Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cox\widget\layoutloader.kc
[2008/09/30 16:12:22 | 000,006,308 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.py
[2008/07/29 18:19:06 | 000,022,528 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.uno.dll
[2008/09/30 17:04:34 | 000,000,171 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.uno.ini
[2008/07/29 16:04:50 | 000,029,696 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\URE\bin\javaloader.uno.dll
[2008/07/29 15:26:36 | 000,003,688 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\URE\java\unoloader.jar
[2013/01/21 16:05:16 | 000,030,608 | ---- | M] () -- \Program Files (x86)\Seznam.cz\distribution\install\cz.seznam.software.libfoxloader-3.0.0-win32.zip
[2014/07/17 08:40:51 | 000,071,968 | ---- | M] () -- \Program Files\AVAST Software\Avast\aswWrcIELoader32.exe
[2014/07/17 08:40:52 | 000,085,376 | ---- | M] () -- \Program Files\AVAST Software\Avast\aswWrcIELoader64.exe
[2011/03/08 08:43:28 | 000,013,734 | ---- | M] () -- \Program Files\GIMP 2\Python\Lib\unittest\loader.py
[2014/06/06 20:02:26 | 000,000,708 | ---- | M] () -- \Program Files\WindowsApps\FilmOnLiveTVFree.FilmOnLiveTVFree_1.3.6.115_x64__zx03kxexxb716\js\player\plugins\unloader-plugin.js
[2014/03/18 17:17:41 | 000,000,856 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.BingTravel_3.0.2.309_x64__8wekyb3d8bbwe\js\HtmlFileLoader.js
[2014/03/18 17:14:05 | 000,001,160 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20573_x64__8wekyb3d8bbwe\modernpeople\appframe\backgroundloader.js
[2014/03/18 17:14:06 | 000,004,996 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20573_x64__8wekyb3d8bbwe\modernshareanything\sharedataloader.js
[2014/03/18 17:14:06 | 000,002,125 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20573_x64__8wekyb3d8bbwe\modernsharetarget\sharemaildataloader.js
[2014/03/18 17:17:54 | 000,043,128 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2014/08/18 16:56:37 | 000,036,271 | ---- | M] () -- \Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\0Z254VP5\fineuploader-3.1.1.min[1].js
[2014/08/18 11:05:15 | 000,053,274 | ---- | M] () -- \Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\CFNOIW5Y\qq.file_uploader[1].js
[2014/08/19 14:45:27 | 000,003,847 | ---- | M] () -- \Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\D22IL0OU\jquery-ocz-loader[1].js
[2014/08/18 17:59:21 | 000,002,883 | ---- | M] () -- \Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\DYHDZW02\QuickLoader[1].js
[2014/08/18 16:56:37 | 000,003,986 | ---- | M] () -- \Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\MCIF3GC7\fineuploader[1].css
[2014/08/15 12:39:53 | 000,005,431 | ---- | M] () -- \Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\RGXB0UIC\imageLoader[1].js
[2014/07/03 17:19:06 | 000,000,000 | ---- | M] () -- \Users\user\Downloads\SoftonicDownloader_for_photoscape (1).exe.ckl6rle.partial
[2014/07/03 17:30:54 | 000,000,000 | ---- | M] () -- \Users\user\Downloads\SoftonicDownloader_for_photoscape.exe.vxkkkxe.partial
[2013/08/22 06:17:27 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 06:17:25 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 06:17:24 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 06:17:20 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 06:17:34 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 06:17:33 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 05:55:19 | 000,036,352 | ---- | M] () -- \Windows\System32\dmloader.dll
[2013/08/22 15:25:39 | 000,003,584 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 15:25:39 | 000,003,072 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 15:25:38 | 000,002,560 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 06:17:27 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 06:17:25 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 06:17:24 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 06:17:20 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 06:17:34 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 06:17:33 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 05:55:19 | 000,036,352 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2013/08/22 15:25:39 | 000,003,584 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 15:25:39 | 000,003,072 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 15:25:38 | 000,002,560 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-stringloader-l1-1-1.dll
[2014/03/18 18:19:56 | 000,592,677 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.16384_none_210fb36c397c4e2b\hvloader.efi
[2014/03/18 18:19:55 | 000,536,051 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.16384_none_210fb36c397c4e2b\hvloader.exe
[2014/06/12 07:58:18 | 000,598,463 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17031_none_2142a5b03956989d\hvloader.efi
[2014/06/12 07:58:15 | 000,542,292 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17031_none_2142a5b03956989d\hvloader.exe
[2014/06/12 07:58:58 | 000,598,454 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17039_none_214aa800394f6355\hvloader.efi
[2014/06/12 07:58:55 | 000,542,288 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17039_none_214aa800394f6355\hvloader.exe
[2013/08/22 13:21:30 | 000,046,592 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.3.9600.16384_none_36b27bfc6399d5ce\dmloader.dll
[2013/08/22 15:25:37 | 000,003,584 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 15:25:37 | 000,003,072 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 15:25:36 | 000,002,560 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 13:45:31 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 13:45:33 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 13:45:35 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 13:45:30 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 13:45:40 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 13:45:44 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-stringloader-l1-1-1.dll
[2014/03/18 17:44:52 | 000,000,465 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb.manifest
[2014/03/18 18:22:59 | 000,009,588 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb_winload.efi.mui_35ee487d
[2014/03/18 18:22:59 | 000,009,604 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb_winload.exe.mui_3bc5b827
[2014/03/18 18:22:59 | 000,007,885 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb_winresume.efi.mui_f412814e
[2014/03/18 18:22:59 | 000,007,900 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb_winresume.exe.mui_ff8b5358
[2014/03/18 17:44:57 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e.manifest
[2014/03/18 18:23:02 | 000,724,144 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e_winload.efi_75834aa0
[2014/03/18 18:23:03 | 000,660,345 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e_winload.exe_75835076
[2014/03/18 18:23:04 | 000,646,217 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e_winresume.efi_85cd069f
[2014/03/18 18:23:06 | 000,586,798 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e_winresume.exe_85cd1215
[2013/08/22 17:34:52 | 000,000,596 | ---- | M] () -- \Windows\WinSxS\FileMaps\programdata_microsoft_network_downloader_7fafaef6d33e4371.cdf-ms
[2014/03/18 16:52:41 | 000,000,463 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_2400ceb4d1008089.manifest
[2014/03/18 17:39:48 | 000,000,465 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb.manifest
[2013/08/22 17:22:38 | 000,000,542 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16384_none_4be51a3d409de6bc.manifest
[2014/03/18 17:39:49 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e.manifest
[2013/08/22 05:55:19 | 000,036,352 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.3.9600.16384_none_da93e078ab3c6498\dmloader.dll
[2013/08/22 15:25:39 | 000,003,584 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 15:25:39 | 000,003,072 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 15:25:38 | 000,002,560 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 06:17:27 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 06:17:25 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 06:17:24 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 06:17:20 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 06:17:34 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 06:17:33 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-stringloader-l1-1-1.dll
< *minodlogin* /s >
< *tnod* /s >
< *AutoKMS* /s >
< *activator* /s >
< *serial* /s >
[2012/07/12 14:59:16 | 000,539,136 | ---- | M] () -- \Program Files (x86)\Intel\IntelAppStore\bin\serializer.dll
[2014/07/02 09:30:28 | 000,970,752 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2014/07/02 09:34:24 | 000,847,872 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2014/06/05 12:00:10 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2013/02/19 12:31:36 | 000,001,114 | ---- | M] () -- \Program Files\WindowsApps\C59AD0AF.LenovoCloudStorageBySugarSync_1.3.0.889_neutral__m3tnjedffpfhj\SugarSyncWin8.Support\SerializationConfig.xml
[2012/10/22 00:02:06 | 000,002,481 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoCompanion_2.0.40.0_x86__k1h2ywk1493x8\Sections_Registration\Assets\FindSerial_ThinkCentreNetVistaValueLineAndOtherDesktops.gif
[2012/10/22 00:02:06 | 000,003,976 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoCompanion_2.0.40.0_x86__k1h2ywk1493x8\Sections_Registration\Assets\FindSerial_ThinkPadAndValueLineNotebooks.gif
[2012/10/22 00:02:06 | 000,021,466 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoCompanion_2.0.40.0_x86__k1h2ywk1493x8\Sections_Registration\Assets\FindSerial_ValueLineAndIdeaCentreDesktops.gif
[2012/10/22 00:02:06 | 000,027,531 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoCompanion_2.0.40.0_x86__k1h2ywk1493x8\Sections_Registration\Assets\FindSerial_ValueLineAndIdeaPadNotebooks.gif
[2014/08/02 07:39:11 | 000,011,902 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoCompanion_2.0.40.0_x86__k1h2ywk1493x8\Sections_Registration\Views\Pages\FindSerialNumberPage.xbf
[2012/10/22 00:02:06 | 000,002,481 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoCompanion_2.0.40.0_x86__k1h2ywk1493x8\Sections_Warranty\Assets\FindSerial_ThinkCentreNetVistaValueLineAndOtherDesktops.gif
[2012/10/22 00:02:06 | 000,003,976 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoCompanion_2.0.40.0_x86__k1h2ywk1493x8\Sections_Warranty\Assets\FindSerial_ThinkPadAndValueLineNotebooks.gif
[2012/10/22 00:02:06 | 000,021,466 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoCompanion_2.0.40.0_x86__k1h2ywk1493x8\Sections_Warranty\Assets\FindSerial_ValueLineAndIdeaCentreDesktops.gif
[2012/10/22 00:02:06 | 000,027,531 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoCompanion_2.0.40.0_x86__k1h2ywk1493x8\Sections_Warranty\Assets\FindSerial_ValueLineAndIdeaPadNotebooks.gif
[2014/08/02 07:39:11 | 000,011,888 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoCompanion_2.0.40.0_x86__k1h2ywk1493x8\Sections_Warranty\Views\Pages\SerialNumberCheck.xbf
[2012/10/22 00:02:06 | 000,002,481 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoSupport_2.0.4.0_x86__k1h2ywk1493x8\Sections_Registration\Assets\FindSerial_ThinkCentreNetVistaValueLineAndOtherDesktops.gif
[2012/10/22 00:02:06 | 000,003,976 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoSupport_2.0.4.0_x86__k1h2ywk1493x8\Sections_Registration\Assets\FindSerial_ThinkPadAndValueLineNotebooks.gif
[2012/10/22 00:02:06 | 000,021,466 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoSupport_2.0.4.0_x86__k1h2ywk1493x8\Sections_Registration\Assets\FindSerial_ValueLineAndIdeaCentreDesktops.gif
[2012/10/22 00:02:06 | 000,039,047 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoSupport_2.0.4.0_x86__k1h2ywk1493x8\Sections_Registration\Assets\FindSerial_ValueLineAndIdeaPadNotebooks.gif
[2014/06/06 20:08:12 | 000,009,132 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoSupport_2.0.4.0_x86__k1h2ywk1493x8\Sections_Registration\Views\Pages\FindSerialNumberPage.xbf
[2012/10/22 00:02:06 | 000,002,481 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoSupport_2.0.4.0_x86__k1h2ywk1493x8\Sections_Warranty\Assets\FindSerial_ThinkCentreNetVistaValueLineAndOtherDesktops.gif
[2012/10/22 00:02:06 | 000,003,976 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoSupport_2.0.4.0_x86__k1h2ywk1493x8\Sections_Warranty\Assets\FindSerial_ThinkPadAndValueLineNotebooks.gif
[2012/10/22 00:02:06 | 000,021,466 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoSupport_2.0.4.0_x86__k1h2ywk1493x8\Sections_Warranty\Assets\FindSerial_ValueLineAndIdeaCentreDesktops.gif
[2012/10/22 00:02:06 | 000,027,531 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoSupport_2.0.4.0_x86__k1h2ywk1493x8\Sections_Warranty\Assets\FindSerial_ValueLineAndIdeaPadNotebooks.gif
[2014/06/06 20:08:13 | 000,012,181 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoSupport_2.0.4.0_x86__k1h2ywk1493x8\Sections_Warranty\Views\Pages\SerialNumberCheck.xbf
[2014/08/15 12:39:31 | 000,001,919 | ---- | M] () -- \Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\D22IL0OU\jquery.serialScroll[1].js
[2013/08/17 02:06:37 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/06/24 00:12:42 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2014/06/05 12:00:09 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2014/07/02 09:30:28 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014/08/18 12:32:59 | 000,311,296 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\06caafefa45767a6f6f8447a4186c41e\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014/06/05 21:49:03 | 002,804,736 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\183eaaded316165bfbd32a991e4e8c8a\System.Runtime.Serialization.ni.dll
[2014/06/05 21:49:03 | 000,000,980 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\183eaaded316165bfbd32a991e4e8c8a\System.Runtime.Serialization.ni.dll.aux
[2014/06/09 08:01:16 | 000,009,728 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtdf6812ee#\d7c19ec0784ce130d53d43af71a371db\System.Runtime.Serialization.Primitives.ni.dll
[2014/06/09 08:01:16 | 000,000,300 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtdf6812ee#\d7c19ec0784ce130d53d43af71a371db\System.Runtime.Serialization.Primitives.ni.dll.aux
[2014/06/05 12:58:27 | 003,530,752 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\209aa0718fe1f200de5ea360d5d4de25\System.Runtime.Serialization.ni.dll
[2014/06/05 12:58:26 | 000,000,980 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\209aa0718fe1f200de5ea360d5d4de25\System.Runtime.Serialization.ni.dll.aux
[2013/08/22 17:32:39 | 000,001,032 | ---- | M] () -- \Windows\Inf\c_multiportserial.inf
[2014/03/18 16:53:44 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/10 02:55:16 | 000,142,104 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 02:55:16 | 000,029,392 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Json\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Json.dll
[2013/08/10 02:55:16 | 000,029,432 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Primitives\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Primitives.dll
[2014/03/18 16:53:44 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2013/08/10 02:55:16 | 000,029,896 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Xml\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Xml.dll
[2013/08/10 02:55:16 | 001,060,528 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013/08/10 02:55:49 | 000,045,720 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2013/08/10 02:55:49 | 000,029,848 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.XmlSerializer\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Xml.XmlSerializer.dll
[2014/06/24 00:12:42 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/17 02:06:37 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/07/02 09:30:29 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013/08/10 02:55:16 | 001,060,528 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2013/08/10 02:55:16 | 000,142,104 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 02:55:16 | 000,029,392 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Json.dll
[2013/08/10 02:55:16 | 000,029,432 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2013/08/10 02:55:16 | 000,029,896 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2013/08/10 02:55:49 | 000,045,720 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2013/08/10 02:55:49 | 000,029,848 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.XmlSerializer.dll
[2014/03/18 16:53:44 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/03/18 16:53:44 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2014/06/24 00:12:50 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/17 02:06:37 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2014/07/02 09:34:25 | 000,847,872 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013/08/10 02:41:27 | 001,060,528 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.dll
[2013/08/10 02:41:27 | 000,142,104 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 02:41:27 | 000,029,392 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Json.dll
[2013/08/10 02:41:28 | 000,029,432 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2013/08/10 02:41:28 | 000,029,896 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2013/08/10 02:42:08 | 000,045,720 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.Serialization.dll
[2013/08/10 02:42:08 | 000,029,848 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.XmlSerializer.dll
[2014/03/18 16:53:43 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/03/18 16:53:44 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2013/08/22 22:12:22 | 000,008,827 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~cs-CZ~6.3.9600.16384.cat
[2013/08/22 21:40:12 | 000,000,781 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~cs-CZ~6.3.9600.16384.mum
[2013/08/22 14:55:01 | 000,008,827 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~~6.3.9600.16384.cat
[2013/08/22 08:47:48 | 000,000,511 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~~6.3.9600.16384.mum
[2013/08/22 05:48:16 | 000,015,872 | ---- | M] () -- \Windows\System32\serialui.dll
[2013/08/22 22:12:22 | 000,008,827 | ---- | M] () -- \Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~cs-CZ~6.3.9600.16384.cat
[2013/08/22 14:55:01 | 000,008,827 | ---- | M] () -- \Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~~6.3.9600.16384.cat
[2014/03/18 16:53:30 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2014/03/18 16:53:20 | 000,000,232 | ---- | M] () -- \Windows\System32\DriverStore\en-US\c_multiportserial.inf_loc
[2013/08/22 08:57:38 | 000,001,032 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\c_multiportserial.inf_amd64_7875073d426d59a6\c_multiportserial.inf
[2014/06/05 11:33:30 | 000,004,224 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\c_multiportserial.inf_amd64_7875073d426d59a6\c_multiportserial.PNF
[2013/08/22 13:40:08 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_amd64_1be60ad3a61e5531\serial.sys
[2013/08/22 05:48:16 | 000,015,872 | ---- | M] () -- \Windows\SysWOW64\serialui.dll
[2014/03/18 16:53:30 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\cs-CZ\serialui.dll.mui
[2014/03/18 16:53:20 | 000,000,232 | ---- | M] () -- \Windows\WinSxS\amd64_c_multiportserial.inf.resources_31bf3856ad364e35_6.3.9600.16384_en-us_35eaebe6834354eb\c_multiportserial.inf_loc
[2013/08/22 08:57:38 | 000,001,032 | ---- | M] () -- \Windows\WinSxS\amd64_c_multiportserial.inf_31bf3856ad364e35_6.3.9600.16384_none_91b10a007e43beff\c_multiportserial.inf
[2014/08/19 08:45:00 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_b0eacafe7f4d1992\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2013/08/17 02:06:37 | 000,011,776 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.17226_cs-cz_b12d926c7f1ac114\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2014/08/19 08:45:02 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.20708_cs-cz_b1ceee03982636a5\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2014/03/18 16:53:30 | 000,005,120 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_3f29419cb7a1caf0\serialui.dll.mui
[2013/08/22 13:13:54 | 000,017,920 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.3.9600.16384_none_e5c00198f2a1c32d\serialui.dll
[2014/08/19 08:47:20 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_4e32729c2675dfcf\System.RunTime.Serialization.Resources.dll
[2014/06/05 12:00:10 | 000,090,112 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.3.9600.17226_cs-cz_4e753a0a26438751\System.RunTime.Serialization.Resources.dll
[2014/08/19 08:47:21 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.3.9600.20708_cs-cz_4f1695a13f4efce2\System.RunTime.Serialization.Resources.dll
[2014/03/18 16:53:20 | 000,009,728 | ---- | M] () -- \Windows\WinSxS\amd64_msports.inf.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_b574829120336a99\serial.sys.mui
[2013/08/22 13:40:08 | 000,083,456 | ---- | M] () -- \Windows\WinSxS\amd64_msports.inf_31bf3856ad364e35_6.3.9600.16384_none_e95610bc8c554aa7\serial.sys
[2014/03/18 16:53:44 | 000,113,864 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..alization.resources_b03f5f7f11d50a3a_4.0.9600.16384_cs-cz_1da5c476c59b0e5b\System.RunTime.Serialization.resources.dll
[2013/08/10 02:41:27 | 000,142,104 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..ion.formatters.soap_b03f5f7f11d50a3a_4.0.9600.16384_none_f73c7de0bb1de286\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 02:41:28 | 000,029,432 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..lization.primitives_b03f5f7f11d50a3a_4.0.9600.16384_none_64635c6af076b012\System.Runtime.Serialization.Primitives.dll
[2014/03/18 16:53:43 | 000,027,920 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..ters.soap.resources_b03f5f7f11d50a3a_4.0.9600.16384_cs-cz_65f374ee29342685\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/10 02:41:27 | 000,029,392 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_031841e9b021a288\System.Runtime.Serialization.Json.dll
[2013/08/10 02:41:28 | 000,029,896 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_ea3019bcd508d7f5\System.Runtime.Serialization.Xml.dll
[2013/08/10 02:41:27 | 001,060,528 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runtime.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_afcfdcce0af8e4ba\System.Runtime.Serialization.dll
[2013/08/10 02:42:08 | 000,045,720 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.xml.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_1f92ce7ac9b9f399\System.Xml.Serialization.dll
[2013/08/10 02:42:08 | 000,029,848 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_0b1c65bd7b1ef04c\System.Xml.XmlSerializer.dll
[2014/08/19 08:51:50 | 000,000,531 | ---- | M] () -- \Windows\WinSxS\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.16384_none_f057a9271ce694b1\System.Runtime.Serialization.Formatters.Soap.dll
[2014/06/24 00:12:50 | 000,131,072 | ---- | M] () -- \Windows\WinSxS\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.17226_none_f0517be51cec2cbf\System.Runtime.Serialization.Formatters.Soap.dll
[2014/08/19 08:51:51 | 000,000,491 | ---- | M] () -- \Windows\WinSxS\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.20708_none_d981a48b36959176\System.Runtime.Serialization.Formatters.Soap.dll
[2014/08/19 08:53:54 | 000,000,639 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.16384_none_9fc99c9c7c4c05c7\System.Runtime.Serialization.dll
[2014/07/02 09:34:25 | 000,847,872 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.17226_none_9fc36f5a7c519dd5\System.Runtime.Serialization.dll
[2014/08/19 08:53:56 | 000,000,424 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.20708_none_88f3980095fb028c\System.Runtime.Serialization.dll
[2014/08/19 08:53:59 | 000,000,639 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_daa0a966d0440060\System.Runtime.Serialization.dll
[2014/07/02 09:34:24 | 000,847,872 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17226_none_da9a7c24d049986e\System.Runtime.Serialization.dll
[2014/08/19 08:54:01 | 000,000,424 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20708_none_c3caa4cae9f2fd25\System.Runtime.Serialization.dll
[2014/03/18 16:51:46 | 000,000,276 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_c_multiportserial.inf-languagepack_31bf3856ad364e35_6.3.9600.16384_cs-cz_c3036df581d2c4e4.manifest
[2014/03/18 16:52:06 | 000,000,249 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_c_multiportserial.inf.resources_31bf3856ad364e35_6.3.9600.16384_en-us_35eaebe6834354eb.manifest
[2013/08/22 17:20:14 | 000,000,210 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_c_multiportserial.inf_31bf3856ad364e35_6.3.9600.16384_none_91b10a007e43beff.manifest
[2013/08/22 15:25:34 | 000,000,297 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.3.9600.16384_none_0273ed2980a1f589.manifest
[2013/08/22 17:22:11 | 000,001,512 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-serial-classextension_31bf3856ad364e35_6.3.9600.16384_none_26d3123b2d2a9360.manifest
[2013/08/22 17:22:07 | 000,000,110 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.3.9600.16384_none_1d7b32f2da6cfe0c.manifest
[2013/08/22 17:24:27 | 000,000,402 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_031841e9b021a288.manifest
[2013/08/22 17:24:29 | 000,000,401 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_ea3019bcd508d7f5.manifest
[2013/08/22 17:24:24 | 000,000,420 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.runtime.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_afcfdcce0af8e4ba.manifest
[2013/08/22 17:24:28 | 000,000,397 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.xml.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_1f92ce7ac9b9f399.manifest
[2013/08/22 17:24:27 | 000,000,403 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_0b1c65bd7b1ef04c.manifest
[2013/08/22 17:24:13 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.16384_none_9fc99c9c7c4c05c7.manifest
[2014/08/14 08:13:48 | 000,000,404 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.17226_none_9fc36f5a7c519dd5.manifest
[2014/08/14 08:13:48 | 000,000,407 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.20708_none_88f3980095fb028c.manifest
[2013/08/22 17:24:13 | 000,000,416 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_daa0a966d0440060.manifest
[2014/08/14 08:13:48 | 000,000,413 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17226_none_da9a7c24d049986e.manifest
[2014/08/14 08:13:48 | 000,000,415 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20708_none_c3caa4cae9f2fd25.manifest
[2013/08/22 17:24:29 | 000,000,418 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_61eedd30ec040245.manifest
[2013/08/22 17:24:24 | 000,000,430 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.primitives_b03f5f7f11d50a3a_4.0.9600.16384_none_dde82ee214ba2d3d.manifest
[2013/08/22 17:24:13 | 000,000,400 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.16384_none_ed2ffed67c428df1.manifest
[2014/08/14 08:13:48 | 000,000,399 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.17226_none_ed29d1947c4825ff.manifest
[2014/08/14 08:13:48 | 000,000,399 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.20708_none_d659fa3a95f18ab6.manifest
[2014/03/18 16:52:55 | 000,000,448 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.16384_cs-cz_25789e4d6d93f144.manifest
[2014/03/18 16:52:53 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.16384_cs-cz_7adb458f8b8eae0b.manifest
[2014/08/14 08:13:47 | 000,000,406 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.17226_cs-cz_7ad5184d8b944619.manifest
[2014/08/14 08:13:47 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.20708_cs-cz_640540f3a53daad0.manifest
[2013/08/22 17:24:24 | 000,000,419 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_0d0d9cf22bac10f4.manifest
[2013/08/22 17:24:27 | 000,000,471 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.16384_none_c8108d2e85eed25d.manifest
[2013/08/22 17:24:13 | 000,000,422 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.16384_none_1d733470a3e98f24.manifest
[2014/08/14 08:13:48 | 000,000,421 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.17226_none_1d6d072ea3ef2732.manifest
[2014/08/14 08:13:48 | 000,000,421 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.20708_none_069d2fd4bd988be9.manifest
[2013/08/22 17:24:28 | 000,000,447 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.xml.serialization_b77a5c561934e089_4.0.9600.16384_none_5aaf0d34c0033202.manifest
[2013/08/22 17:24:24 | 000,000,420 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_3cc4c9f9340d8755.manifest
[2013/08/22 17:24:56 | 000,000,411 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_224de03de4c02966.manifest
[2014/08/14 08:13:48 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17226_none_2247b2fbe4c5c174.manifest
[2014/08/14 08:13:48 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20708_none_0b77dba1fe6f262b.manifest
[2013/08/10 02:55:16 | 000,142,104 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_4.0.9600.16384_none_0dbd81c1c9e100df\System.Runtime.Serialization.Formatters.Soap.dll
[2014/08/19 08:57:18 | 000,000,531 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.16384_none_63202903e7dbbda6\System.Runtime.Serialization.Formatters.Soap.dll
[2014/06/24 00:12:42 | 000,131,072 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.17226_none_6319fbc1e7e155b4\System.Runtime.Serialization.Formatters.Soap.dll
[2014/08/19 08:57:19 | 000,000,491 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.20708_none_4c4a2468018aba6b\System.Runtime.Serialization.Formatters.Soap.dll
[2014/03/18 16:53:44 | 000,027,920 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_4.0.9600.16384_cs-cz_c6e6982dc37909d8\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/08/19 08:57:19 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.3.9600.16384_cs-cz_1c493f6fe173c69f\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/17 02:06:37 | 000,011,776 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.3.9600.17226_cs-cz_1c43122de1795ead\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/08/19 08:57:20 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.3.9600.20708_cs-cz_05733ad3fb22c364\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/10 02:55:16 | 000,029,392 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_61eedd30ec040245\System.Runtime.Serialization.Json.dll
[2013/08/10 02:55:16 | 000,029,432 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.primitives_b03f5f7f11d50a3a_4.0.9600.16384_none_dde82ee214ba2d3d\System.Runtime.Serialization.Primitives.dll
[2014/08/19 08:57:22 | 000,000,661 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.16384_none_ed2ffed67c428df1\System.Runtime.Serialization.dll
[2014/07/02 09:30:29 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.17226_none_ed29d1947c4825ff\System.Runtime.Serialization.dll
[2014/08/19 08:57:25 | 000,000,433 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.20708_none_d659fa3a95f18ab6\System.Runtime.Serialization.dll
[2014/03/18 16:53:44 | 000,113,864 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.16384_cs-cz_25789e4d6d93f144\System.RunTime.Serialization.resources.dll
[2014/08/19 08:57:26 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.16384_cs-cz_7adb458f8b8eae0b\System.RunTime.Serialization.Resources.dll
[2014/06/05 12:00:09 | 000,090,112 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.17226_cs-cz_7ad5184d8b944619\System.RunTime.Serialization.Resources.dll
[2014/08/19 08:57:26 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.20708_cs-cz_640540f3a53daad0\System.RunTime.Serialization.Resources.dll
[2013/08/10 02:55:16 | 000,029,896 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_0d0d9cf22bac10f4\System.Runtime.Serialization.Xml.dll
[2013/08/10 02:55:16 | 001,060,528 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.16384_none_c8108d2e85eed25d\System.Runtime.Serialization.dll
[2014/08/19 08:57:29 | 000,000,661 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.16384_none_1d733470a3e98f24\System.Runtime.Serialization.dll
[2014/07/02 09:30:28 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.17226_none_1d6d072ea3ef2732\System.Runtime.Serialization.dll
[2014/08/19 08:57:32 | 000,000,433 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.20708_none_069d2fd4bd988be9\System.Runtime.Serialization.dll
[2013/08/10 02:55:49 | 000,045,720 | ---- | M] () -- \Windows\WinSxS\msil_system.xml.serialization_b77a5c561934e089_4.0.9600.16384_none_5aaf0d34c0033202\System.Xml.Serialization.dll
[2013/08/10 02:55:49 | 000,029,848 | ---- | M] () -- \Windows\WinSxS\msil_system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_3cc4c9f9340d8755\System.Xml.XmlSerializer.dll
[2014/08/19 11:04:40 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_54cc2f7ac6efa85c\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/17 02:06:37 | 000,011,776 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.17226_cs-cz_550ef6e8c6bd4fde\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/08/19 11:04:44 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.20708_cs-cz_55b0527fdfc8c56f\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/03/18 16:53:30 | 000,005,120 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_e30aa618ff4459ba\serialui.dll.mui
[2013/08/22 05:48:16 | 000,015,872 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.3.9600.16384_none_89a166153a4451f7\serialui.dll
[2014/08/19 11:08:29 | 000,000,661 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_224de03de4c02966\System.Runtime.Serialization.dll
[2014/07/02 09:30:28 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17226_none_2247b2fbe4c5c174\System.Runtime.Serialization.dll
[2014/08/19 11:08:32 | 000,000,433 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20708_none_0b77dba1fe6f262b\System.Runtime.Serialization.dll
< *w7lxe* /s >
< End of report >
[2013/08/22 12:03:12 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=08C191B2917862BE90C33E31CB6B6D79 -- C:\WINDOWS\SysNative\userinit.exe
[2013/08/22 12:03:12 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=08C191B2917862BE90C33E31CB6B6D79 -- C:\Windows\WinSxS\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.16384_none_cce71a20a5a6fe7f\userinit.exe
[2013/08/22 04:54:12 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=41636F77AD6D9A396EA34E4786B96F2B -- C:\Windows\SysWOW64\userinit.exe
[2013/08/22 04:54:12 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=41636F77AD6D9A396EA34E4786B96F2B -- C:\Windows\WinSxS\x86_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.16384_none_70c87e9ced498d49\userinit.exe
< MD5 for: WINLOGON.EXE >
[2014/03/18 17:42:32 | 000,562,176 | ---- | M] (Microsoft Corporation) MD5=306EB21E5B480AE9065EA55AC8C35936 -- C:\WINDOWS\SysNative\winlogon.exe
[2014/03/18 17:42:32 | 000,562,176 | ---- | M] (Microsoft Corporation) MD5=306EB21E5B480AE9065EA55AC8C35936 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.17031_none_60b45365a8c2ccdb\winlogon.exe
< MD5 for: WS2_32.DLL >
[2013/08/22 07:17:54 | 000,313,488 | ---- | M] (Microsoft Corporation) MD5=428AF7FA03FF09CE1CD373ABFEBAD8A3 -- C:\Windows\SysWOW64\ws2_32.dll
[2013/08/22 07:17:54 | 000,313,488 | ---- | M] (Microsoft Corporation) MD5=428AF7FA03FF09CE1CD373ABFEBAD8A3 -- C:\Windows\WinSxS\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.3.9600.16384_none_87577549e9ef9b02\ws2_32.dll
[2013/08/22 15:25:35 | 000,355,872 | ---- | M] (Microsoft Corporation) MD5=6F997D98C6A30D79C622811FBAB9119E -- C:\WINDOWS\SysNative\ws2_32.dll
[2013/08/22 15:25:35 | 000,355,872 | ---- | M] (Microsoft Corporation) MD5=6F997D98C6A30D79C622811FBAB9119E -- C:\Windows\WinSxS\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.3.9600.16384_none_e37610cda24d0c38\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[2 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[4 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[4 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2014/06/05 08:59:41 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Adobe
[2014/06/04 05:07:38 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Atheros
[2014/06/04 05:07:47 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\ATI
[2014/06/26 20:48:55 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\AVAST Software
[2014/07/24 15:44:22 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\BlackBean
[2014/06/04 20:39:21 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\CyberLink
[2014/08/07 17:51:35 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Garmin
[2014/06/05 11:57:50 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Identities
[2014/07/19 14:34:29 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\InstallShield
[2014/06/04 19:28:15 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Lenovo
[2014/06/26 22:34:55 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\LSC
[2013/12/10 17:28:09 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Macromedia
[2014/07/10 08:11:46 | 000,000,000 | --SD | M] -- C:\Users\user\AppData\Roaming\Microsoft
[2014/07/17 18:40:51 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Off Road
[2014/06/21 12:00:56 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\OpenOffice.org
[2014/06/05 22:25:22 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\PhotoScape
[2014/08/15 16:20:12 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\Seznam.cz
[2014/07/19 14:43:41 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\THQ
[2014/06/04 19:28:27 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\WebApp
< %APPDATA%\*.exe /s >
[2014/06/26 21:24:43 | 037,217,224 | ---- | M] (Lenovo Group Limited) -- C:\Users\user\AppData\Roaming\LSC\Local Store\LSCSetup64.exe
[2014/06/26 21:10:31 | 000,054,432 | ---- | M] (Adobe Systems Inc.) -- C:\Users\user\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"GarminExpressTrayApp" = "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe" -- [2014/07/23 08:44:36 | 000,688,984 | ---- | M] (Garmin Ltd or its subsidiaries)
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014/08/19 14:41:23 | 000,000,512 | ---- | M] () MD5=722034460C0AA55D6785249B9C5DD700 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
[2013/11/30 17:27:56 | 000,062,238 | ---- | M] () -- \Program Files\GIMP 2\share\gimp\2.0\patterns\cracked.pat
[2014/08/16 13:17:06 | 000,000,311 | ---- | M] () -- \Users\user\AppData\LocalLow\Microsoft\Internet Explorer\DOMStore\J1KBSFRL\www.cracked[1].xml
[2014/08/14 12:31:20 | 000,071,289 | ---- | M] () -- \Users\user\Desktop\summer\Summer Street Style\atlantic\firecracker.jpg
< *keygen* /s >
< *AntiWPA* /s >
< *loader* /s >
[2014/07/23 08:43:16 | 000,042,496 | ---- | M] () -- \Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MyDownloader.Core.dll
[2012/05/26 03:47:16 | 000,126,064 | ---- | M] () -- \Program Files (x86)\Lenovo\PowerDVD10\PK\Koan\pyloader.dll
[2012/05/26 03:47:16 | 000,028,238 | ---- | M] () -- \Program Files (x86)\Lenovo\PowerDVD10\PK\subsys\PyImpLoader\PyImpLoader.kc
[2012/05/26 03:47:16 | 000,121,968 | ---- | M] () -- \Program Files (x86)\Lenovo\PowerDVD10\PK\subsys\PyImpLoader\_PyImpLoader.pyd
[2012/05/18 08:15:48 | 000,010,781 | ---- | M] () -- \Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\mm\MediaCtrl\ImageLoader.kc
[2012/05/18 08:15:50 | 000,003,492 | ---- | M] () -- \Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\widget\langloader.kc
[2012/05/18 08:15:50 | 000,013,453 | ---- | M] () -- \Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\widget\layoutloader.kc
[2012/08/01 03:15:46 | 000,010,775 | ---- | M] () -- \Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cox\mm\MediaCtrl\ImageLoader.kc
[2012/08/01 03:15:48 | 000,003,567 | ---- | M] () -- \Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cox\widget\langloader.kc
[2012/08/01 03:15:48 | 000,013,369 | ---- | M] () -- \Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cox\widget\layoutloader.kc
[2008/09/30 16:12:22 | 000,006,308 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.py
[2008/07/29 18:19:06 | 000,022,528 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.uno.dll
[2008/09/30 17:04:34 | 000,000,171 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\Basis\program\pythonloader.uno.ini
[2008/07/29 16:04:50 | 000,029,696 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\URE\bin\javaloader.uno.dll
[2008/07/29 15:26:36 | 000,003,688 | ---- | M] () -- \Program Files (x86)\OpenOffice.org 3\URE\java\unoloader.jar
[2013/01/21 16:05:16 | 000,030,608 | ---- | M] () -- \Program Files (x86)\Seznam.cz\distribution\install\cz.seznam.software.libfoxloader-3.0.0-win32.zip
[2014/07/17 08:40:51 | 000,071,968 | ---- | M] () -- \Program Files\AVAST Software\Avast\aswWrcIELoader32.exe
[2014/07/17 08:40:52 | 000,085,376 | ---- | M] () -- \Program Files\AVAST Software\Avast\aswWrcIELoader64.exe
[2011/03/08 08:43:28 | 000,013,734 | ---- | M] () -- \Program Files\GIMP 2\Python\Lib\unittest\loader.py
[2014/06/06 20:02:26 | 000,000,708 | ---- | M] () -- \Program Files\WindowsApps\FilmOnLiveTVFree.FilmOnLiveTVFree_1.3.6.115_x64__zx03kxexxb716\js\player\plugins\unloader-plugin.js
[2014/03/18 17:17:41 | 000,000,856 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.BingTravel_3.0.2.309_x64__8wekyb3d8bbwe\js\HtmlFileLoader.js
[2014/03/18 17:14:05 | 000,001,160 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20573_x64__8wekyb3d8bbwe\modernpeople\appframe\backgroundloader.js
[2014/03/18 17:14:06 | 000,004,996 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20573_x64__8wekyb3d8bbwe\modernshareanything\sharedataloader.js
[2014/03/18 17:14:06 | 000,002,125 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20573_x64__8wekyb3d8bbwe\modernsharetarget\sharemaildataloader.js
[2014/03/18 17:17:54 | 000,043,128 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2014/08/18 16:56:37 | 000,036,271 | ---- | M] () -- \Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\0Z254VP5\fineuploader-3.1.1.min[1].js
[2014/08/18 11:05:15 | 000,053,274 | ---- | M] () -- \Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\CFNOIW5Y\qq.file_uploader[1].js
[2014/08/19 14:45:27 | 000,003,847 | ---- | M] () -- \Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\D22IL0OU\jquery-ocz-loader[1].js
[2014/08/18 17:59:21 | 000,002,883 | ---- | M] () -- \Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\DYHDZW02\QuickLoader[1].js
[2014/08/18 16:56:37 | 000,003,986 | ---- | M] () -- \Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\MCIF3GC7\fineuploader[1].css
[2014/08/15 12:39:53 | 000,005,431 | ---- | M] () -- \Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\RGXB0UIC\imageLoader[1].js
[2014/07/03 17:19:06 | 000,000,000 | ---- | M] () -- \Users\user\Downloads\SoftonicDownloader_for_photoscape (1).exe.ckl6rle.partial
[2014/07/03 17:30:54 | 000,000,000 | ---- | M] () -- \Users\user\Downloads\SoftonicDownloader_for_photoscape.exe.vxkkkxe.partial
[2013/08/22 06:17:27 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 06:17:25 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 06:17:24 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 06:17:20 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 06:17:34 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 06:17:33 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 05:55:19 | 000,036,352 | ---- | M] () -- \Windows\System32\dmloader.dll
[2013/08/22 15:25:39 | 000,003,584 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 15:25:39 | 000,003,072 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 15:25:38 | 000,002,560 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 06:17:27 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 06:17:25 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 06:17:24 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 06:17:20 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 06:17:34 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 06:17:33 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 05:55:19 | 000,036,352 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2013/08/22 15:25:39 | 000,003,584 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 15:25:39 | 000,003,072 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 15:25:38 | 000,002,560 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-stringloader-l1-1-1.dll
[2014/03/18 18:19:56 | 000,592,677 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.16384_none_210fb36c397c4e2b\hvloader.efi
[2014/03/18 18:19:55 | 000,536,051 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.16384_none_210fb36c397c4e2b\hvloader.exe
[2014/06/12 07:58:18 | 000,598,463 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17031_none_2142a5b03956989d\hvloader.efi
[2014/06/12 07:58:15 | 000,542,292 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17031_none_2142a5b03956989d\hvloader.exe
[2014/06/12 07:58:58 | 000,598,454 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17039_none_214aa800394f6355\hvloader.efi
[2014/06/12 07:58:55 | 000,542,288 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17039_none_214aa800394f6355\hvloader.exe
[2013/08/22 13:21:30 | 000,046,592 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.3.9600.16384_none_36b27bfc6399d5ce\dmloader.dll
[2013/08/22 15:25:37 | 000,003,584 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 15:25:37 | 000,003,072 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 15:25:36 | 000,002,560 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 13:45:31 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 13:45:33 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 13:45:35 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 13:45:30 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 13:45:40 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 13:45:44 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-stringloader-l1-1-1.dll
[2014/03/18 17:44:52 | 000,000,465 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb.manifest
[2014/03/18 18:22:59 | 000,009,588 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb_winload.efi.mui_35ee487d
[2014/03/18 18:22:59 | 000,009,604 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb_winload.exe.mui_3bc5b827
[2014/03/18 18:22:59 | 000,007,885 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb_winresume.efi.mui_f412814e
[2014/03/18 18:22:59 | 000,007,900 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb_winresume.exe.mui_ff8b5358
[2014/03/18 17:44:57 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e.manifest
[2014/03/18 18:23:02 | 000,724,144 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e_winload.efi_75834aa0
[2014/03/18 18:23:03 | 000,660,345 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e_winload.exe_75835076
[2014/03/18 18:23:04 | 000,646,217 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e_winresume.efi_85cd069f
[2014/03/18 18:23:06 | 000,586,798 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e_winresume.exe_85cd1215
[2013/08/22 17:34:52 | 000,000,596 | ---- | M] () -- \Windows\WinSxS\FileMaps\programdata_microsoft_network_downloader_7fafaef6d33e4371.cdf-ms
[2014/03/18 16:52:41 | 000,000,463 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_2400ceb4d1008089.manifest
[2014/03/18 17:39:48 | 000,000,465 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb.manifest
[2013/08/22 17:22:38 | 000,000,542 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16384_none_4be51a3d409de6bc.manifest
[2014/03/18 17:39:49 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e.manifest
[2013/08/22 05:55:19 | 000,036,352 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.3.9600.16384_none_da93e078ab3c6498\dmloader.dll
[2013/08/22 15:25:39 | 000,003,584 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 15:25:39 | 000,003,072 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 15:25:38 | 000,002,560 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 06:17:27 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 06:17:25 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 06:17:24 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 06:17:20 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 06:17:34 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 06:17:33 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-stringloader-l1-1-1.dll
< *minodlogin* /s >
< *tnod* /s >
< *AutoKMS* /s >
< *activator* /s >
< *serial* /s >
[2012/07/12 14:59:16 | 000,539,136 | ---- | M] () -- \Program Files (x86)\Intel\IntelAppStore\bin\serializer.dll
[2014/07/02 09:30:28 | 000,970,752 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2014/07/02 09:34:24 | 000,847,872 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2014/06/05 12:00:10 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2013/02/19 12:31:36 | 000,001,114 | ---- | M] () -- \Program Files\WindowsApps\C59AD0AF.LenovoCloudStorageBySugarSync_1.3.0.889_neutral__m3tnjedffpfhj\SugarSyncWin8.Support\SerializationConfig.xml
[2012/10/22 00:02:06 | 000,002,481 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoCompanion_2.0.40.0_x86__k1h2ywk1493x8\Sections_Registration\Assets\FindSerial_ThinkCentreNetVistaValueLineAndOtherDesktops.gif
[2012/10/22 00:02:06 | 000,003,976 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoCompanion_2.0.40.0_x86__k1h2ywk1493x8\Sections_Registration\Assets\FindSerial_ThinkPadAndValueLineNotebooks.gif
[2012/10/22 00:02:06 | 000,021,466 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoCompanion_2.0.40.0_x86__k1h2ywk1493x8\Sections_Registration\Assets\FindSerial_ValueLineAndIdeaCentreDesktops.gif
[2012/10/22 00:02:06 | 000,027,531 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoCompanion_2.0.40.0_x86__k1h2ywk1493x8\Sections_Registration\Assets\FindSerial_ValueLineAndIdeaPadNotebooks.gif
[2014/08/02 07:39:11 | 000,011,902 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoCompanion_2.0.40.0_x86__k1h2ywk1493x8\Sections_Registration\Views\Pages\FindSerialNumberPage.xbf
[2012/10/22 00:02:06 | 000,002,481 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoCompanion_2.0.40.0_x86__k1h2ywk1493x8\Sections_Warranty\Assets\FindSerial_ThinkCentreNetVistaValueLineAndOtherDesktops.gif
[2012/10/22 00:02:06 | 000,003,976 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoCompanion_2.0.40.0_x86__k1h2ywk1493x8\Sections_Warranty\Assets\FindSerial_ThinkPadAndValueLineNotebooks.gif
[2012/10/22 00:02:06 | 000,021,466 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoCompanion_2.0.40.0_x86__k1h2ywk1493x8\Sections_Warranty\Assets\FindSerial_ValueLineAndIdeaCentreDesktops.gif
[2012/10/22 00:02:06 | 000,027,531 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoCompanion_2.0.40.0_x86__k1h2ywk1493x8\Sections_Warranty\Assets\FindSerial_ValueLineAndIdeaPadNotebooks.gif
[2014/08/02 07:39:11 | 000,011,888 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoCompanion_2.0.40.0_x86__k1h2ywk1493x8\Sections_Warranty\Views\Pages\SerialNumberCheck.xbf
[2012/10/22 00:02:06 | 000,002,481 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoSupport_2.0.4.0_x86__k1h2ywk1493x8\Sections_Registration\Assets\FindSerial_ThinkCentreNetVistaValueLineAndOtherDesktops.gif
[2012/10/22 00:02:06 | 000,003,976 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoSupport_2.0.4.0_x86__k1h2ywk1493x8\Sections_Registration\Assets\FindSerial_ThinkPadAndValueLineNotebooks.gif
[2012/10/22 00:02:06 | 000,021,466 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoSupport_2.0.4.0_x86__k1h2ywk1493x8\Sections_Registration\Assets\FindSerial_ValueLineAndIdeaCentreDesktops.gif
[2012/10/22 00:02:06 | 000,039,047 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoSupport_2.0.4.0_x86__k1h2ywk1493x8\Sections_Registration\Assets\FindSerial_ValueLineAndIdeaPadNotebooks.gif
[2014/06/06 20:08:12 | 000,009,132 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoSupport_2.0.4.0_x86__k1h2ywk1493x8\Sections_Registration\Views\Pages\FindSerialNumberPage.xbf
[2012/10/22 00:02:06 | 000,002,481 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoSupport_2.0.4.0_x86__k1h2ywk1493x8\Sections_Warranty\Assets\FindSerial_ThinkCentreNetVistaValueLineAndOtherDesktops.gif
[2012/10/22 00:02:06 | 000,003,976 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoSupport_2.0.4.0_x86__k1h2ywk1493x8\Sections_Warranty\Assets\FindSerial_ThinkPadAndValueLineNotebooks.gif
[2012/10/22 00:02:06 | 000,021,466 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoSupport_2.0.4.0_x86__k1h2ywk1493x8\Sections_Warranty\Assets\FindSerial_ValueLineAndIdeaCentreDesktops.gif
[2012/10/22 00:02:06 | 000,027,531 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoSupport_2.0.4.0_x86__k1h2ywk1493x8\Sections_Warranty\Assets\FindSerial_ValueLineAndIdeaPadNotebooks.gif
[2014/06/06 20:08:13 | 000,012,181 | ---- | M] () -- \Program Files\WindowsApps\E046963F.LenovoSupport_2.0.4.0_x86__k1h2ywk1493x8\Sections_Warranty\Views\Pages\SerialNumberCheck.xbf
[2014/08/15 12:39:31 | 000,001,919 | ---- | M] () -- \Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\D22IL0OU\jquery.serialScroll[1].js
[2013/08/17 02:06:37 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/06/24 00:12:42 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2014/06/05 12:00:09 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2014/07/02 09:30:28 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014/08/18 12:32:59 | 000,311,296 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\06caafefa45767a6f6f8447a4186c41e\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014/06/05 21:49:03 | 002,804,736 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\183eaaded316165bfbd32a991e4e8c8a\System.Runtime.Serialization.ni.dll
[2014/06/05 21:49:03 | 000,000,980 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\183eaaded316165bfbd32a991e4e8c8a\System.Runtime.Serialization.ni.dll.aux
[2014/06/09 08:01:16 | 000,009,728 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtdf6812ee#\d7c19ec0784ce130d53d43af71a371db\System.Runtime.Serialization.Primitives.ni.dll
[2014/06/09 08:01:16 | 000,000,300 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runtdf6812ee#\d7c19ec0784ce130d53d43af71a371db\System.Runtime.Serialization.Primitives.ni.dll.aux
[2014/06/05 12:58:27 | 003,530,752 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\209aa0718fe1f200de5ea360d5d4de25\System.Runtime.Serialization.ni.dll
[2014/06/05 12:58:26 | 000,000,980 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\209aa0718fe1f200de5ea360d5d4de25\System.Runtime.Serialization.ni.dll.aux
[2013/08/22 17:32:39 | 000,001,032 | ---- | M] () -- \Windows\Inf\c_multiportserial.inf
[2014/03/18 16:53:44 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/10 02:55:16 | 000,142,104 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 02:55:16 | 000,029,392 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Json\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Json.dll
[2013/08/10 02:55:16 | 000,029,432 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Primitives\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Primitives.dll
[2014/03/18 16:53:44 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2013/08/10 02:55:16 | 000,029,896 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Xml\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Xml.dll
[2013/08/10 02:55:16 | 001,060,528 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013/08/10 02:55:49 | 000,045,720 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2013/08/10 02:55:49 | 000,029,848 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.XmlSerializer\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Xml.XmlSerializer.dll
[2014/06/24 00:12:42 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/17 02:06:37 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/07/02 09:30:29 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013/08/10 02:55:16 | 001,060,528 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2013/08/10 02:55:16 | 000,142,104 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 02:55:16 | 000,029,392 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Json.dll
[2013/08/10 02:55:16 | 000,029,432 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2013/08/10 02:55:16 | 000,029,896 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2013/08/10 02:55:49 | 000,045,720 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2013/08/10 02:55:49 | 000,029,848 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.XmlSerializer.dll
[2014/03/18 16:53:44 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/03/18 16:53:44 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2014/06/24 00:12:50 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/17 02:06:37 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2014/07/02 09:34:25 | 000,847,872 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013/08/10 02:41:27 | 001,060,528 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.dll
[2013/08/10 02:41:27 | 000,142,104 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 02:41:27 | 000,029,392 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Json.dll
[2013/08/10 02:41:28 | 000,029,432 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2013/08/10 02:41:28 | 000,029,896 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2013/08/10 02:42:08 | 000,045,720 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.Serialization.dll
[2013/08/10 02:42:08 | 000,029,848 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.XmlSerializer.dll
[2014/03/18 16:53:43 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/03/18 16:53:44 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2013/08/22 22:12:22 | 000,008,827 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~cs-CZ~6.3.9600.16384.cat
[2013/08/22 21:40:12 | 000,000,781 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~cs-CZ~6.3.9600.16384.mum
[2013/08/22 14:55:01 | 000,008,827 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~~6.3.9600.16384.cat
[2013/08/22 08:47:48 | 000,000,511 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~~6.3.9600.16384.mum
[2013/08/22 05:48:16 | 000,015,872 | ---- | M] () -- \Windows\System32\serialui.dll
[2013/08/22 22:12:22 | 000,008,827 | ---- | M] () -- \Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~cs-CZ~6.3.9600.16384.cat
[2013/08/22 14:55:01 | 000,008,827 | ---- | M] () -- \Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~~6.3.9600.16384.cat
[2014/03/18 16:53:30 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2014/03/18 16:53:20 | 000,000,232 | ---- | M] () -- \Windows\System32\DriverStore\en-US\c_multiportserial.inf_loc
[2013/08/22 08:57:38 | 000,001,032 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\c_multiportserial.inf_amd64_7875073d426d59a6\c_multiportserial.inf
[2014/06/05 11:33:30 | 000,004,224 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\c_multiportserial.inf_amd64_7875073d426d59a6\c_multiportserial.PNF
[2013/08/22 13:40:08 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_amd64_1be60ad3a61e5531\serial.sys
[2013/08/22 05:48:16 | 000,015,872 | ---- | M] () -- \Windows\SysWOW64\serialui.dll
[2014/03/18 16:53:30 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\cs-CZ\serialui.dll.mui
[2014/03/18 16:53:20 | 000,000,232 | ---- | M] () -- \Windows\WinSxS\amd64_c_multiportserial.inf.resources_31bf3856ad364e35_6.3.9600.16384_en-us_35eaebe6834354eb\c_multiportserial.inf_loc
[2013/08/22 08:57:38 | 000,001,032 | ---- | M] () -- \Windows\WinSxS\amd64_c_multiportserial.inf_31bf3856ad364e35_6.3.9600.16384_none_91b10a007e43beff\c_multiportserial.inf
[2014/08/19 08:45:00 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_b0eacafe7f4d1992\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2013/08/17 02:06:37 | 000,011,776 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.17226_cs-cz_b12d926c7f1ac114\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2014/08/19 08:45:02 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.20708_cs-cz_b1ceee03982636a5\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2014/03/18 16:53:30 | 000,005,120 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_3f29419cb7a1caf0\serialui.dll.mui
[2013/08/22 13:13:54 | 000,017,920 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.3.9600.16384_none_e5c00198f2a1c32d\serialui.dll
[2014/08/19 08:47:20 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_4e32729c2675dfcf\System.RunTime.Serialization.Resources.dll
[2014/06/05 12:00:10 | 000,090,112 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.3.9600.17226_cs-cz_4e753a0a26438751\System.RunTime.Serialization.Resources.dll
[2014/08/19 08:47:21 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.3.9600.20708_cs-cz_4f1695a13f4efce2\System.RunTime.Serialization.Resources.dll
[2014/03/18 16:53:20 | 000,009,728 | ---- | M] () -- \Windows\WinSxS\amd64_msports.inf.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_b574829120336a99\serial.sys.mui
[2013/08/22 13:40:08 | 000,083,456 | ---- | M] () -- \Windows\WinSxS\amd64_msports.inf_31bf3856ad364e35_6.3.9600.16384_none_e95610bc8c554aa7\serial.sys
[2014/03/18 16:53:44 | 000,113,864 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..alization.resources_b03f5f7f11d50a3a_4.0.9600.16384_cs-cz_1da5c476c59b0e5b\System.RunTime.Serialization.resources.dll
[2013/08/10 02:41:27 | 000,142,104 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..ion.formatters.soap_b03f5f7f11d50a3a_4.0.9600.16384_none_f73c7de0bb1de286\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 02:41:28 | 000,029,432 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..lization.primitives_b03f5f7f11d50a3a_4.0.9600.16384_none_64635c6af076b012\System.Runtime.Serialization.Primitives.dll
[2014/03/18 16:53:43 | 000,027,920 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..ters.soap.resources_b03f5f7f11d50a3a_4.0.9600.16384_cs-cz_65f374ee29342685\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/10 02:41:27 | 000,029,392 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_031841e9b021a288\System.Runtime.Serialization.Json.dll
[2013/08/10 02:41:28 | 000,029,896 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_ea3019bcd508d7f5\System.Runtime.Serialization.Xml.dll
[2013/08/10 02:41:27 | 001,060,528 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runtime.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_afcfdcce0af8e4ba\System.Runtime.Serialization.dll
[2013/08/10 02:42:08 | 000,045,720 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.xml.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_1f92ce7ac9b9f399\System.Xml.Serialization.dll
[2013/08/10 02:42:08 | 000,029,848 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_0b1c65bd7b1ef04c\System.Xml.XmlSerializer.dll
[2014/08/19 08:51:50 | 000,000,531 | ---- | M] () -- \Windows\WinSxS\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.16384_none_f057a9271ce694b1\System.Runtime.Serialization.Formatters.Soap.dll
[2014/06/24 00:12:50 | 000,131,072 | ---- | M] () -- \Windows\WinSxS\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.17226_none_f0517be51cec2cbf\System.Runtime.Serialization.Formatters.Soap.dll
[2014/08/19 08:51:51 | 000,000,491 | ---- | M] () -- \Windows\WinSxS\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.20708_none_d981a48b36959176\System.Runtime.Serialization.Formatters.Soap.dll
[2014/08/19 08:53:54 | 000,000,639 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.16384_none_9fc99c9c7c4c05c7\System.Runtime.Serialization.dll
[2014/07/02 09:34:25 | 000,847,872 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.17226_none_9fc36f5a7c519dd5\System.Runtime.Serialization.dll
[2014/08/19 08:53:56 | 000,000,424 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.20708_none_88f3980095fb028c\System.Runtime.Serialization.dll
[2014/08/19 08:53:59 | 000,000,639 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_daa0a966d0440060\System.Runtime.Serialization.dll
[2014/07/02 09:34:24 | 000,847,872 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17226_none_da9a7c24d049986e\System.Runtime.Serialization.dll
[2014/08/19 08:54:01 | 000,000,424 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20708_none_c3caa4cae9f2fd25\System.Runtime.Serialization.dll
[2014/03/18 16:51:46 | 000,000,276 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_c_multiportserial.inf-languagepack_31bf3856ad364e35_6.3.9600.16384_cs-cz_c3036df581d2c4e4.manifest
[2014/03/18 16:52:06 | 000,000,249 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_c_multiportserial.inf.resources_31bf3856ad364e35_6.3.9600.16384_en-us_35eaebe6834354eb.manifest
[2013/08/22 17:20:14 | 000,000,210 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_c_multiportserial.inf_31bf3856ad364e35_6.3.9600.16384_none_91b10a007e43beff.manifest
[2013/08/22 15:25:34 | 000,000,297 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.3.9600.16384_none_0273ed2980a1f589.manifest
[2013/08/22 17:22:11 | 000,001,512 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-serial-classextension_31bf3856ad364e35_6.3.9600.16384_none_26d3123b2d2a9360.manifest
[2013/08/22 17:22:07 | 000,000,110 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.3.9600.16384_none_1d7b32f2da6cfe0c.manifest
[2013/08/22 17:24:27 | 000,000,402 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_031841e9b021a288.manifest
[2013/08/22 17:24:29 | 000,000,401 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_ea3019bcd508d7f5.manifest
[2013/08/22 17:24:24 | 000,000,420 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.runtime.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_afcfdcce0af8e4ba.manifest
[2013/08/22 17:24:28 | 000,000,397 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.xml.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_1f92ce7ac9b9f399.manifest
[2013/08/22 17:24:27 | 000,000,403 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_0b1c65bd7b1ef04c.manifest
[2013/08/22 17:24:13 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.16384_none_9fc99c9c7c4c05c7.manifest
[2014/08/14 08:13:48 | 000,000,404 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.17226_none_9fc36f5a7c519dd5.manifest
[2014/08/14 08:13:48 | 000,000,407 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.20708_none_88f3980095fb028c.manifest
[2013/08/22 17:24:13 | 000,000,416 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_daa0a966d0440060.manifest
[2014/08/14 08:13:48 | 000,000,413 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17226_none_da9a7c24d049986e.manifest
[2014/08/14 08:13:48 | 000,000,415 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20708_none_c3caa4cae9f2fd25.manifest
[2013/08/22 17:24:29 | 000,000,418 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_61eedd30ec040245.manifest
[2013/08/22 17:24:24 | 000,000,430 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.primitives_b03f5f7f11d50a3a_4.0.9600.16384_none_dde82ee214ba2d3d.manifest
[2013/08/22 17:24:13 | 000,000,400 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.16384_none_ed2ffed67c428df1.manifest
[2014/08/14 08:13:48 | 000,000,399 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.17226_none_ed29d1947c4825ff.manifest
[2014/08/14 08:13:48 | 000,000,399 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.20708_none_d659fa3a95f18ab6.manifest
[2014/03/18 16:52:55 | 000,000,448 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.16384_cs-cz_25789e4d6d93f144.manifest
[2014/03/18 16:52:53 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.16384_cs-cz_7adb458f8b8eae0b.manifest
[2014/08/14 08:13:47 | 000,000,406 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.17226_cs-cz_7ad5184d8b944619.manifest
[2014/08/14 08:13:47 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.20708_cs-cz_640540f3a53daad0.manifest
[2013/08/22 17:24:24 | 000,000,419 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_0d0d9cf22bac10f4.manifest
[2013/08/22 17:24:27 | 000,000,471 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.16384_none_c8108d2e85eed25d.manifest
[2013/08/22 17:24:13 | 000,000,422 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.16384_none_1d733470a3e98f24.manifest
[2014/08/14 08:13:48 | 000,000,421 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.17226_none_1d6d072ea3ef2732.manifest
[2014/08/14 08:13:48 | 000,000,421 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.20708_none_069d2fd4bd988be9.manifest
[2013/08/22 17:24:28 | 000,000,447 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.xml.serialization_b77a5c561934e089_4.0.9600.16384_none_5aaf0d34c0033202.manifest
[2013/08/22 17:24:24 | 000,000,420 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_3cc4c9f9340d8755.manifest
[2013/08/22 17:24:56 | 000,000,411 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_224de03de4c02966.manifest
[2014/08/14 08:13:48 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17226_none_2247b2fbe4c5c174.manifest
[2014/08/14 08:13:48 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20708_none_0b77dba1fe6f262b.manifest
[2013/08/10 02:55:16 | 000,142,104 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_4.0.9600.16384_none_0dbd81c1c9e100df\System.Runtime.Serialization.Formatters.Soap.dll
[2014/08/19 08:57:18 | 000,000,531 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.16384_none_63202903e7dbbda6\System.Runtime.Serialization.Formatters.Soap.dll
[2014/06/24 00:12:42 | 000,131,072 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.17226_none_6319fbc1e7e155b4\System.Runtime.Serialization.Formatters.Soap.dll
[2014/08/19 08:57:19 | 000,000,491 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.20708_none_4c4a2468018aba6b\System.Runtime.Serialization.Formatters.Soap.dll
[2014/03/18 16:53:44 | 000,027,920 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_4.0.9600.16384_cs-cz_c6e6982dc37909d8\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/08/19 08:57:19 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.3.9600.16384_cs-cz_1c493f6fe173c69f\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/17 02:06:37 | 000,011,776 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.3.9600.17226_cs-cz_1c43122de1795ead\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/08/19 08:57:20 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.3.9600.20708_cs-cz_05733ad3fb22c364\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/10 02:55:16 | 000,029,392 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_61eedd30ec040245\System.Runtime.Serialization.Json.dll
[2013/08/10 02:55:16 | 000,029,432 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.primitives_b03f5f7f11d50a3a_4.0.9600.16384_none_dde82ee214ba2d3d\System.Runtime.Serialization.Primitives.dll
[2014/08/19 08:57:22 | 000,000,661 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.16384_none_ed2ffed67c428df1\System.Runtime.Serialization.dll
[2014/07/02 09:30:29 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.17226_none_ed29d1947c4825ff\System.Runtime.Serialization.dll
[2014/08/19 08:57:25 | 000,000,433 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.20708_none_d659fa3a95f18ab6\System.Runtime.Serialization.dll
[2014/03/18 16:53:44 | 000,113,864 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.16384_cs-cz_25789e4d6d93f144\System.RunTime.Serialization.resources.dll
[2014/08/19 08:57:26 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.16384_cs-cz_7adb458f8b8eae0b\System.RunTime.Serialization.Resources.dll
[2014/06/05 12:00:09 | 000,090,112 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.17226_cs-cz_7ad5184d8b944619\System.RunTime.Serialization.Resources.dll
[2014/08/19 08:57:26 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.20708_cs-cz_640540f3a53daad0\System.RunTime.Serialization.Resources.dll
[2013/08/10 02:55:16 | 000,029,896 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_0d0d9cf22bac10f4\System.Runtime.Serialization.Xml.dll
[2013/08/10 02:55:16 | 001,060,528 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.16384_none_c8108d2e85eed25d\System.Runtime.Serialization.dll
[2014/08/19 08:57:29 | 000,000,661 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.16384_none_1d733470a3e98f24\System.Runtime.Serialization.dll
[2014/07/02 09:30:28 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.17226_none_1d6d072ea3ef2732\System.Runtime.Serialization.dll
[2014/08/19 08:57:32 | 000,000,433 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.20708_none_069d2fd4bd988be9\System.Runtime.Serialization.dll
[2013/08/10 02:55:49 | 000,045,720 | ---- | M] () -- \Windows\WinSxS\msil_system.xml.serialization_b77a5c561934e089_4.0.9600.16384_none_5aaf0d34c0033202\System.Xml.Serialization.dll
[2013/08/10 02:55:49 | 000,029,848 | ---- | M] () -- \Windows\WinSxS\msil_system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_3cc4c9f9340d8755\System.Xml.XmlSerializer.dll
[2014/08/19 11:04:40 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_54cc2f7ac6efa85c\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/17 02:06:37 | 000,011,776 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.17226_cs-cz_550ef6e8c6bd4fde\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/08/19 11:04:44 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.20708_cs-cz_55b0527fdfc8c56f\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/03/18 16:53:30 | 000,005,120 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_e30aa618ff4459ba\serialui.dll.mui
[2013/08/22 05:48:16 | 000,015,872 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.3.9600.16384_none_89a166153a4451f7\serialui.dll
[2014/08/19 11:08:29 | 000,000,661 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_224de03de4c02966\System.Runtime.Serialization.dll
[2014/07/02 09:30:28 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17226_none_2247b2fbe4c5c174\System.Runtime.Serialization.dll
[2014/08/19 11:08:32 | 000,000,433 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20708_none_0b77dba1fe6f262b\System.Runtime.Serialization.dll
< *w7lxe* /s >
< End of report >
Re: Prosím o kontrolu logu. Děkuji!:)
OTL Extras logfile created on: 19. 8. 2014 14:39:33 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\user\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17239)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d. M. yyyy
7,20 Gb Total Physical Memory | 5,66 Gb Available Physical Memory | 78,56% Memory free
9,01 Gb Paging File | 7,32 Gb Available in Paging File | 81,17% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 890,67 Gb Total Space | 801,27 Gb Free Space | 89,96% Space Free | Partition Type: NTFS
Drive D: | 25,00 Gb Total Space | 9,72 Gb Free Space | 38,90% Space Free | Partition Type: NTFS
Computer Name: USER-PC | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = AC 1C AE C5 46 9F CE 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0433A709-9BB2-417E-BECB-FBD45FEB510B}" = lport=2869 | protocol=6 | dir=in | app=system |
"{19770E74-465D-44CE-86A2-E17445BFCD8B}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{50A821C5-2CDA-4E53-898B-B9EF252A3348}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{558F47BA-AC9A-4208-B0A7-A06116D6D81F}" = lport=10243 | protocol=6 | dir=in | app=system |
"{5D486FC0-4160-435B-B391-37846D82E04E}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{80DB28AB-FE18-4BA6-9CCB-7F9B95B71B11}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8B47AF45-B636-41DF-B691-945E0A475304}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8FDB41F5-B422-4219-9406-C533AAF65360}" = rport=10243 | protocol=6 | dir=out | app=system |
"{A4F7DC11-9781-45C8-A41E-AF9116111A86}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{E4AAA84D-529E-4A16-B797-453C72E16809}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{07BB4C52-1A48-43C5-B330-750321CC75AE}" = dir=out | name=@{microsoft.bingnews_3.0.2.309_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/brandedapptitle} |
"{0F13861F-E0CD-4BAB-BCBA-2B29090DE792}" = dir=out | name=windows_ie_ac_001 |
"{0F293A80-BD9E-4677-A3A6-1A8FEA2AA23F}" = dir=in | name=onenote |
"{104B1FFE-E9AF-41A4-8800-5EC13F09259A}" = dir=out | name=@{microsoft.zunevideo_2.6.215.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{12EE1358-0F87-4CD9-89C7-D0EE66D9B63C}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.2.313_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{1325B436-8604-493F-9701-0A5DAE5AC54F}" = dir=out | name=accuweather for windows 8 |
"{15CCB97F-DEE6-48B1-8F4A-91BEDC036867}" = dir=out | name=@{microsoft.xboxlivegames_2.0.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{160BC933-7DDA-4493-8981-74D0379A0F38}" = dir=in | name=f5 vpn |
"{2508FCB2-9AE1-41AD-A8A9-DE4C91BD4104}" = dir=out | name=@{microsoft.reader_6.2.9200.20780_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{25C178AA-6259-4F88-A84D-DD56225898C7}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{29F522C6-2076-4237-BCD6-D5C5FEDE2778}" = dir=out | name=@{filmonlivetvfree.filmonlivetvfree_1.3.6.115_x64__zx03kxexxb716?ms-resource://filmonlivetvfree.filmonlivetvfree/whitelabel/app-name} |
"{2D83F9AA-3DC9-4C08-B148-7204F4D84AFB}" = dir=out | name=f5 vpn |
"{3229601B-57D6-46EA-BA56-9B0A3DDA3C35}" = protocol=17 | dir=in | app=d:\hry\juiced 2\juiced2_hin.exe |
"{335FDD7B-FB86-4734-A7FE-9D8577EE071D}" = dir=out | name=@{microsoft.zunevideo_1.4.19.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{33D788CE-1A8C-4724-9E6F-2620B14446EE}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{34C52FFF-1883-4931-B49B-1790A1ECA7B1}" = dir=out | name=@{microsoft.bingfinance_2.0.0.300_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{39DA970A-CF4D-4CD2-8A8A-1174AD277458}" = dir=out | name=@{microsoft.bingsports_2.0.0.273_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{4282FE99-8560-4BC7-9576-5F3ED84E263F}" = dir=in | name=checkpoint.vpn |
"{4BBB1788-3527-499F-90F2-1A137B32CBF9}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{4C2512A8-004D-444E-AE91-1BCCA5237575}" = dir=in | app=c:\program files (x86)\lenovo\powerdvd10\powerdvd10.exe |
"{4CF454A9-6E1A-402A-8578-48BF1E82CEFA}" = dir=in | name=powerdvd for lenovo idea |
"{548DCF8C-BFF2-4BA4-AA88-FBAF9AC8BCC6}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{560448D6-095C-4907-B046-AC7F710701A7}" = dir=in | name=sonicwall.mobileconnect |
"{56543418-D80C-4687-85BE-5B3DA912518F}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{5AFF31F1-9455-45BE-9AE1-768F23F290AE}" = dir=out | name=check point vpn |
"{5F4632C0-D5B1-40C3-B0D9-E3A759C81B9E}" = dir=out | name=sonicwall.mobileconnect |
"{64177ECF-4C46-433F-B82A-DFE83B5507E6}" = dir=out | name=@{microsoft.bingtravel_3.0.2.309_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/brandedapptitle} |
"{67967204-122F-4CE2-A67B-9DF70BE02FF2}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{6B6C512C-FE37-4A3C-95AB-AA71DD20E759}" = dir=in | name=sonicwall mobile connect |
"{7135388F-C38B-4115-A288-8169B0A722C1}" = dir=out | name=@{microsoft.bingsports_3.0.2.317_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/brandedapptitle} |
"{714F6F77-AAFD-44D9-B20C-A2A5AFF7A810}" = dir=out | name=@{microsoft.bingfinance_3.0.2.258_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/brandedapptitle} |
"{71F24E0F-BA9F-420E-83EE-C25EB003B6B9}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{73C748EE-6FBB-49FA-B3E6-567DD5D5C39E}" = dir=out | name=windows_ie_ac_001 |
"{7512224B-CDF5-4EE1-830C-43463E9EF952}" = dir=out | name=@{microsoft.bingnews_2.0.0.273_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{78D77339-9D92-4DC0-A72F-D29AA8B7608E}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7C30A8BD-6598-4E48-8409-AF509B880086}" = dir=in | name=juniper networks junos pulse |
"{7C565E81-C4C7-4258-95F4-851627CCBA2A}" = dir=out | name=@{microsoft.bingmaps_1.6.1821.2624_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{83618D8E-D497-40DB-BE5C-3B6957B110B0}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{89CFFD77-2B86-440C-94B5-4002ACFC23C2}" = dir=out | name=@{microsoft.zunemusic_2.2.931.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{956F5C52-EE94-43AB-BE0C-F2A207BA0426}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.2.315_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{95C1B4AB-AEF6-4235-9325-072C3FF9DD2E}" = dir=out | name=evernote touch |
"{9856B8F8-3173-4317-9C4F-C144436D0DBC}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{9905955B-2D80-405F-8676-240DEE7AE999}" = dir=in | name=@{filmonlivetvfree.filmonlivetvfree_1.3.6.115_x64__zx03kxexxb716?ms-resource://filmonlivetvfree.filmonlivetvfree/whitelabel/app-name} |
"{9BF79BD6-C818-49F1-933B-24EF92E37C1B}" = dir=out | name=@{microsoft.zunemusic_1.4.18.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{9E3D57FC-7C37-4424-9352-4831E97D029D}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{9FA4C94D-A42B-49E3-B142-EB44684D4D30}" = dir=in | name=mcafee® central for lenovo |
"{A298DC20-6F9A-4715-8711-A76EA9F0FCC8}" = dir=out | name=skype |
"{A38A76CD-11CF-4E82-BD09-A182D65DAC0F}" = dir=in | name=zinio |
"{A51754AA-A70F-42D5-AB01-6581920FA0D2}" = dir=out | name=@{microsoft.bingtravel_2.0.0.274_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{AAC1F7D1-CD62-40F0-BEFD-2149E3025B44}" = dir=out | name=lenovo support |
"{AB5545C4-70CA-4D4C-9DC6-9979C9ECAC28}" = dir=out | name=lenovo cloud storage by sugarsync |
"{AD45EF13-030A-4964-87A1-1FAF388406B8}" = dir=in | name=skype |
"{B60CDE07-C477-4302-B575-A1017B3D3B3F}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{B628FB75-3C92-4399-AD6D-F6DFA556FB4E}" = dir=out | name=zinio |
"{B7654027-3EE2-4A04-816E-A8CE058847F0}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.5.9600.20573_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{B82E351A-5AE9-4974-93BE-CA543F7DB4FF}" = dir=out | name=@{microsoft.bingweather_3.0.2.309_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/brandedapptitle} |
"{BB68B241-1B96-4154-851A-CF94E195C742}" = dir=out | name=mcafee® central for lenovo |
"{BF68CB74-B547-4F8B-A2C6-611E9D10329A}" = dir=out | name=juniper networks junos pulse |
"{BFBCF1B5-BF02-4936-B71A-B8F6FF7FAF11}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C2D21133-8A0A-4109-874C-E1219BD463DB}" = dir=out | name=onenote |
"{C6F18A4E-6E17-47E2-88F1-94389B6A0A89}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{C86F5D6C-F840-4C85-AD66-D8AFE20A3142}" = dir=out | name=windows_ie_ac_001 |
"{CABFDCD9-2B08-4763-9309-024C4D8F32B0}" = protocol=6 | dir=out | app=system |
"{CCE9DE1D-F7B1-4BF8-8194-3F4521ED5307}" = dir=in | name=evernote touch |
"{D015F990-C65B-43AF-B45A-F2F555F1651F}" = dir=out | name=companion |
"{D04E267A-B33A-4489-89A2-FA6313F571A0}" = dir=out | name=@{microsoft.bingweather_2.0.0.288_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{D3A7352F-132C-4D28-B2B0-D67B866674CF}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.5.9600.20573_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{D5AE91A3-BF0C-4489-A887-6E8680AE6E93}" = dir=in | name=check point vpn |
"{D5C5FFBB-950D-481D-A64B-1E97AC5C8A0F}" = protocol=6 | dir=in | app=d:\hry\juiced 2\juiced2_hin.exe |
"{D6980480-941A-4DF6-AB81-3734ECD3D779}" = dir=out | name=junipernetworks.junospulsevpn |
"{DB59588E-ED90-4C47-A7B5-7929DD0C0BD2}" = dir=out | name=checkpoint.vpn |
"{DD9BA4AF-C868-4025-8318-84EBF3D83AC0}" = dir=out | name=powerdvd for lenovo idea |
"{DDE3532F-3D8A-4DDE-9C4B-6401B066D6FC}" = dir=in | app=c:\program files (x86)\lenovo\powerdvd10\powerdvd cinema\powerdvdcinema10.exe |
"{E055FEAE-F900-487F-8ED1-DA9F752F8735}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{E9CC5455-4F1C-499E-A5DB-0B5FC48B8421}" = dir=out | name=sonicwall mobile connect |
"{EC799E33-72BA-42D7-9127-DEFE68F9799D}" = dir=in | name=junipernetworks.junospulsevpn |
"{EE261051-5F38-483D-A2C8-15B1D6D0438D}" = dir=out | name=@{microsoft.bingmaps_2.1.2922.2139_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{EE35CBD7-576D-4C83-A241-ED1E81EA7D74}" = dir=out | name=@{microsoft.xboxlivegames_1.3.10.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{F0173937-368D-4795-B209-5F959EDBB87D}" = dir=in | name=@{microsoft.reader_6.2.9200.20780_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{F64300AD-D559-4000-BD45-0997BCC8E70A}" = dir=out | name=f5.vpn.client |
"{F69D18C6-FD4C-440A-A05B-4210A775807C}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{F77E5446-4378-4E99-8B7A-7061AAAEA193}" = dir=in | name=f5.vpn.client |
"TCP Query User{7B2B3D3F-73AE-4700-A301-4321E41640FD}C:\program files (x86)\intel\intelappstore\bin\ismagent.exe" = protocol=6 | dir=in | app=c:\program files (x86)\intel\intelappstore\bin\ismagent.exe |
"UDP Query User{BABD13CF-DCE7-4901-925D-6644337978F9}C:\program files (x86)\intel\intelappstore\bin\ismagent.exe" = protocol=17 | dir=in | app=c:\program files (x86)\intel\intelappstore\bin\ismagent.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{2F45A217-E9C7-4984-B0AC-5BE31FF4712B}" = Lenovo Solution Center
"{35CB8D35-C04C-BDD6-A9DE-A37E05F8E08E}" = AMD Accelerated Video Transcoding
"{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"{615F90EB-5A61-F351-CC25-9823C9F124EB}" = ccc-utility64
"{70A381F1-C161-4D61-A20C-BE12FC6777DF}" = Garmin Communicator Plugin x64
"{A02609EB-395E-4638-8DD7-30CE043014E5}" = ANT Drivers Installer x64
"{A84A4FB1-D703-48DB-89E0-68B6499D2801}" = Qualcomm Atheros Bluetooth Suite (64)
"{B6CEDB2C-C8F8-7213-7BDD-9409B34F77EA}" = AMD Catalyst Install Manager
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{DBC4294A-247D-7662-96F6-E4FD264F3E38}" = AMD Fuel
"{E9EED4AE-682B-4501-9574-D09A21717599}_is1" = AMD Quick Stream
"{EF79C448-6946-4D71-8134-03407888C054}" = Shared C Run-time for x64
"71BC3FD63F450BA0A957AAECBDB4A000C4F2BE42" = Windows Driver Package - Lenovo (ACPIVPC) System (06/15/2012 8.1.0.1)
"8A223E56FB1ED4F697B54E5BF96F1EB63B512684" = Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (06/19/2012 10.13.29.733)
"CCleaner" = CCleaner
"CNXT_AUDIO_HDA" = Conexant HD Audio
"D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2" = Balíček ovladače systému Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1)
"Elantech" = Lenovo pointing device
"F9D2A789F9CFF8CEC36B544F53877C80F1F73C46" = Balíček ovladače systému Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201)
"GIMP-2_is1" = GIMP 2.8.10
"Lenovo VeriFace" = Lenovo VeriFace
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1AEEC028-008B-80C8-E266-1E8652700960}" = CCC Help Czech
"{1BE14165-9DC8-32E2-A069-2F52ADAAC71D}" = CCC Help Japanese
"{1E39A76D-691C-990D-5E16-3F14AAEF391A}" = CCC Help Thai
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{253633D2-6ACB-0E34-1921-5F5BE278D007}" = CCC Help Greek
"{26B12BCB-7D35-B975-F215-9F6071AC24D7}" = CCC Help Norwegian
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Qualcomm Atheros Client Installation Program
"{2F750C77-1FEC-44F9-88CC-2CE322EBD61E}" = Microsoft Games for Windows - LIVE Redistributable
"{30CF3073-240B-71A9-FE00-718241A36843}" = CCC Help Italian
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{31610C80-309D-40C5-8CF4-9D1EA19DBA0B}_is1" = 18 Wheels of Steel American Long Haul
"{350C303A-EE74-56E1-FEC9-B95ADDC5F9C7}" = CCC Help Finnish
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{44058FC9-C890-B2D0-4E65-0F5CD93AA811}" = CCC Help Swedish
"{498970AC-C706-83D8-37F9-182A2BE02AB1}" = CCC Help French
"{4A146BA0-11D5-23C9-75D3-456EAB4528CA}" = CCC Help Chinese Traditional
"{5164307F-0790-D17A-FF93-0719015FB729}" = CCC Help Korean
"{548083DD-D99B-2CE1-8D2B-D78BEB834F7A}" = OEM Application Profile
"{54F0FA1B-8D7A-B358-C457-8B0B6740D022}" = CCC Help Spanish
"{560D64A9-BDFD-44B7-90D1-8FBBED7F4A19}" = Garmin Express
"{575C3501-67B7-B141-7D64-4186C7B2D034}" = AMD VISION Engine Control Center
"{5AFECC61-5BB7-4079-B322-9914D0F2E997}" = CCC Help Danish
"{6D181996-F404-4639-9B95-15012541CB7C}" = Garmin Express Tray
"{6E7361A1-AF6E-5B66-9C63-63ECDDF766B0}" = CCC Help Russian
"{71DBFBF2-F7EB-4268-8485-9471D83C4E66}" = Garmin Communicator Plugin
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{77D28FF5-242F-488A-8215-937D6A4D69E0}" = Adobe AIR
"{817c6bb8-ea2d-4e12-abbc-e33c3de43f64}" = Garmin Express
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8ED78D56-893D-70CE-0701-ECA09E4B8F67}" = Catalyst Control Center Localization All
"{90150000-0138-0409-0000-0000000FF1CE}" = Microsoft Office
"{9135BA5B-51B4-49BF-867A-D152B5CE67D4}" = Off Road
"{92B79901-C57D-409F-8D2F-4E5337383569}" = OpenOffice.org 3.0
"{95390A23-8A69-0F59-9479-0980AD33D6AA}" = CCC Help English
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A0FF3070-6103-B0BE-5D63-29619D7546AA}" = CCC Help Turkish
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.08) - Czech
"{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}" = Dolby Advanced Audio v2
"{BE17ECD5-555F-4B03-B421-428E3470CFB2}" = Juiced2_HIN
"{BF06AC24-07B6-AE15-5FF0-E69833F20D70}" = CCC Help German
"{C330B7B9-7879-5FC2-55EC-C33EA2986A5D}" = CCC Help Portuguese
"{C47BD14D-210F-4EC3-8B41-0149954C71D4}" = Catalyst Control Center - Branding
"{ce085a78-074e-4823-8dc1-8a721b94b76d}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
"{CF4B9A19-A00D-44CC-D394-FE4ABBF69773}" = CCC Help Chinese Standard
"{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
"{D6C5F35F-405C-DD68-16A7-B7CFC8D7CF03}" = CCC Help Polish
"{D968FBF3-E4A6-4D82-981D-D7FF9B7BFC30}" = Elevated Installer
"{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = Lenovo PowerDVD10
"{DECC44DB-C728-E718-F261-A282FD5AD5DF}" = CCC Help Hungarian
"{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}" = Lenovo EasyCamera
"{E7EFDC5A-B117-4247-B50D-E55D5390A81C}" = Catalyst Control Center InstallProxy
"{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}" = UserGuide
"{F0A8BF4A-972F-41E0-9800-1EFE3BF28266}" = Realtek Card Reader
"{F231432A-7C86-2CFF-775E-34342F2F11F8}" = CCC Help Dutch
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"Adobe AIR" = Adobe AIR
"Avast" = avast! Free Antivirus
"Extreme Trucker 2_is1" = Extreme Trucker 2
"GOGPACKSCREAMER4X4_is1" = Screamer 4x4
"Google Chrome" = Google Chrome
"InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
"InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = Lenovo PowerDVD10
"InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}" = UserGuide
"Intel AppUp(SM) center 33057" = Intel AppUp(SM) center
"Network Play System (Patching)" = Network Play System (Patching)
"OpenAL" = OpenAL
"PhotoScape" = PhotoScape
"Screamer 4x4" = Screamer 4x4
"SugarSync" = SugarSync Manager
"The Sims" = The Sims
"WinRAR archiver" = WinRAR
"WMV9_VCM" = Microsoft Windows Media Video 9 VCM
"WRC2_is1" = WRC2
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 20. 7. 2014 8:59:27 | Computer Name = user-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Juiced2_HIN.exe, verze: 0.0.1.8, časové
razítko: 0x473b0e4a Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko:
0x00000000 Kód výjimky: 0xc0000005 Posun chyby: 0x00000710 ID chybujícího procesu:
0x1d4 Čas spuštění chybující aplikace: 0x01cfa40dc4bd6448 Cesta k chybující aplikaci:
D:\Hry\juiced 2\Juiced2_HIN.exe Cesta k chybujícímu modulu: unknown ID zprávy: adb3905b-100d-11e4-be89-40f02f740885
Úplný
název chybujícího balíčku: ID aplikace související s chybujícím balíčkem:
Error - 25. 7. 2014 6:59:31 | Computer Name = user-PC | Source = Application Hang | ID = 1002
Description = Program IEXPLORE.EXE verze 11.0.9600.17126 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID
procesu: 41d0 Čas spuštění: 01cfa7f759836016 Čas ukončení: 0 Cesta k aplikaci: C:\Program
Files (x86)\Internet Explorer\IEXPLORE.EXE ID hlášení: becf438c-13ea-11e4-be89-40f02f740885
Úplný
název chybujícího balíčku: ID aplikace související s chybujícím balíčkem:
Error - 27. 7. 2014 3:02:26 | Computer Name = user-PC | Source = Application Hang | ID = 1002
Description = Program IEXPLORE.EXE verze 11.0.9600.17126 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID
procesu: 838 Čas spuštění: 01cfa965e2fe255b Čas ukončení: 80 Cesta k aplikaci: C:\Program
Files (x86)\Internet Explorer\IEXPLORE.EXE ID hlášení: f4a082ae-155b-11e4-be8b-40f02f740885
Úplný
název chybujícího balíčku: ID aplikace související s chybujícím balíčkem:
Error - 1. 8. 2014 7:58:41 | Computer Name = user-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: eurotrucks2.exe, verze: 1.10.0.7, časové
razítko: 0x53712273 Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko:
0x00000000 Kód výjimky: 0xc0000005 Posun chyby: 0x41319018 ID chybujícího procesu:
0x87c Čas spuštění chybující aplikace: 0x01cfad714e404662 Cesta k chybující aplikaci:
C:\Users\user\Downloads\Euro Truck Simulator 2 v1.10.1s (DLC Metallics and East)\bin\win_x86\eurotrucks2.exe
Cesta
k chybujícímu modulu: unknown ID zprávy: 2d6699fd-1973-11e4-be8b-40f02f740885 Úplný
název chybujícího balíčku: ID aplikace související s chybujícím balíčkem:
Error - 5. 8. 2014 7:41:28 | Computer Name = user-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: IEXPLORE.EXE, verze: 11.0.9600.17126, časové
razítko: 0x53882e30 Název chybujícího modulu: Flash.ocx, verze: 14.0.0.145, časové
razítko: 0x53aa3a98 Kód výjimky: 0xc0000005 Posun chyby: 0x003e7efa ID chybujícího
procesu: 0x1fc8 Čas spuštění chybující aplikace: 0x01cfb0a213106923 Cesta k chybující
aplikaci: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE Cesta k chybujícímu
modulu: C:\Windows\SYSTEM32\Macromed\Flash\Flash.ocx ID zprávy: 6f60f311-1c95-11e4-be8b-40f02f740885
Úplný
název chybujícího balíčku: ID aplikace související s chybujícím balíčkem:
Error - 5. 8. 2014 10:22:00 | Computer Name = user-PC | Source = .NET Runtime | ID = 1026
Description =
Error - 5. 8. 2014 10:22:00 | Computer Name = user-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: dc3game.exe, verze: 3.2.5.26, časové razítko:
0x5220e2a8 Název chybujícího modulu: KERNELBASE.dll, verze: 6.3.9600.17055, časové
razítko: 0x532943a3 Kód výjimky: 0xe0434352 Posun chyby: 0x00011d4d ID chybujícího
procesu: 0x25c4 Čas spuštění chybující aplikace: 0x01cfb0b89ef2daae Cesta k chybující
aplikaci: D:\Hry\diamond caves\Diamond Caves 3\dc3game.exe Cesta k chybujícímu modulu:
C:\WINDOWS\SYSTEM32\KERNELBASE.dll ID zprávy: dcdb93da-1cab-11e4-be8b-40f02f740885
Úplný
název chybujícího balíčku: ID aplikace související s chybujícím balíčkem:
Error - 5. 8. 2014 10:22:24 | Computer Name = user-PC | Source = .NET Runtime | ID = 1026
Description =
Error - 5. 8. 2014 10:22:24 | Computer Name = user-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: dc3game.exe, verze: 3.2.5.26, časové razítko:
0x5220e2a8 Název chybujícího modulu: KERNELBASE.dll, verze: 6.3.9600.17055, časové
razítko: 0x532943a3 Kód výjimky: 0xe0434352 Posun chyby: 0x00011d4d ID chybujícího
procesu: 0x3788 Čas spuštění chybující aplikace: 0x01cfb0b8acfac922 Cesta k chybující
aplikaci: D:\Hry\diamond caves\Diamond Caves 3\dc3game.exe Cesta k chybujícímu modulu:
C:\WINDOWS\SYSTEM32\KERNELBASE.dll ID zprávy: eaba4f4e-1cab-11e4-be8b-40f02f740885
Úplný
název chybujícího balíčku: ID aplikace související s chybujícím balíčkem:
Error - 8. 8. 2014 9:28:15 | Computer Name = user-PC | Source = Application Hang | ID = 1002
Description = Program prism3d.exe verze 1.0.0.1 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
310 Čas spuštění: 01cfb30c755af362 Čas ukončení: 59 Cesta k aplikaci: D:\Hry\18 wheels
of steel\18 Wheels of Steel American Long Haul\prism3d.exe ID hlášení: c9103a36-1eff-11e4-be8b-40f02f740885
Úplný
název chybujícího balíčku: ID aplikace související s chybujícím balíčkem:
[ System Events ]
Error - 3. 8. 2014 2:03:42 | Computer Name = user-PC | Source = DCOM | ID = 10010
Description =
Error - 3. 8. 2014 2:04:12 | Computer Name = user-PC | Source = DCOM | ID = 10010
Description =
Error - 4. 8. 2014 3:17:10 | Computer Name = user-PC | Source = DCOM | ID = 10010
Description =
Error - 4. 8. 2014 3:17:40 | Computer Name = user-PC | Source = DCOM | ID = 10010
Description =
Error - 5. 8. 2014 2:18:21 | Computer Name = user-PC | Source = DCOM | ID = 10010
Description =
Error - 5. 8. 2014 2:18:51 | Computer Name = user-PC | Source = DCOM | ID = 10010
Description =
Error - 5. 8. 2014 2:28:37 | Computer Name = user-PC | Source = DCOM | ID = 10010
Description =
Error - 5. 8. 2014 2:29:07 | Computer Name = user-PC | Source = DCOM | ID = 10010
Description =
Error - 6. 8. 2014 2:36:48 | Computer Name = user-PC | Source = DCOM | ID = 10010
Description =
Error - 6. 8. 2014 2:37:18 | Computer Name = user-PC | Source = DCOM | ID = 10010
Description =
< End of report >
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\user\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17239)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d. M. yyyy
7,20 Gb Total Physical Memory | 5,66 Gb Available Physical Memory | 78,56% Memory free
9,01 Gb Paging File | 7,32 Gb Available in Paging File | 81,17% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 890,67 Gb Total Space | 801,27 Gb Free Space | 89,96% Space Free | Partition Type: NTFS
Drive D: | 25,00 Gb Total Space | 9,72 Gb Free Space | 38,90% Space Free | Partition Type: NTFS
Computer Name: USER-PC | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = AC 1C AE C5 46 9F CE 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0433A709-9BB2-417E-BECB-FBD45FEB510B}" = lport=2869 | protocol=6 | dir=in | app=system |
"{19770E74-465D-44CE-86A2-E17445BFCD8B}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{50A821C5-2CDA-4E53-898B-B9EF252A3348}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{558F47BA-AC9A-4208-B0A7-A06116D6D81F}" = lport=10243 | protocol=6 | dir=in | app=system |
"{5D486FC0-4160-435B-B391-37846D82E04E}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{80DB28AB-FE18-4BA6-9CCB-7F9B95B71B11}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8B47AF45-B636-41DF-B691-945E0A475304}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8FDB41F5-B422-4219-9406-C533AAF65360}" = rport=10243 | protocol=6 | dir=out | app=system |
"{A4F7DC11-9781-45C8-A41E-AF9116111A86}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{E4AAA84D-529E-4A16-B797-453C72E16809}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{07BB4C52-1A48-43C5-B330-750321CC75AE}" = dir=out | name=@{microsoft.bingnews_3.0.2.309_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/brandedapptitle} |
"{0F13861F-E0CD-4BAB-BCBA-2B29090DE792}" = dir=out | name=windows_ie_ac_001 |
"{0F293A80-BD9E-4677-A3A6-1A8FEA2AA23F}" = dir=in | name=onenote |
"{104B1FFE-E9AF-41A4-8800-5EC13F09259A}" = dir=out | name=@{microsoft.zunevideo_2.6.215.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{12EE1358-0F87-4CD9-89C7-D0EE66D9B63C}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.2.313_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{1325B436-8604-493F-9701-0A5DAE5AC54F}" = dir=out | name=accuweather for windows 8 |
"{15CCB97F-DEE6-48B1-8F4A-91BEDC036867}" = dir=out | name=@{microsoft.xboxlivegames_2.0.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{160BC933-7DDA-4493-8981-74D0379A0F38}" = dir=in | name=f5 vpn |
"{2508FCB2-9AE1-41AD-A8A9-DE4C91BD4104}" = dir=out | name=@{microsoft.reader_6.2.9200.20780_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{25C178AA-6259-4F88-A84D-DD56225898C7}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{29F522C6-2076-4237-BCD6-D5C5FEDE2778}" = dir=out | name=@{filmonlivetvfree.filmonlivetvfree_1.3.6.115_x64__zx03kxexxb716?ms-resource://filmonlivetvfree.filmonlivetvfree/whitelabel/app-name} |
"{2D83F9AA-3DC9-4C08-B148-7204F4D84AFB}" = dir=out | name=f5 vpn |
"{3229601B-57D6-46EA-BA56-9B0A3DDA3C35}" = protocol=17 | dir=in | app=d:\hry\juiced 2\juiced2_hin.exe |
"{335FDD7B-FB86-4734-A7FE-9D8577EE071D}" = dir=out | name=@{microsoft.zunevideo_1.4.19.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{33D788CE-1A8C-4724-9E6F-2620B14446EE}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{34C52FFF-1883-4931-B49B-1790A1ECA7B1}" = dir=out | name=@{microsoft.bingfinance_2.0.0.300_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{39DA970A-CF4D-4CD2-8A8A-1174AD277458}" = dir=out | name=@{microsoft.bingsports_2.0.0.273_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{4282FE99-8560-4BC7-9576-5F3ED84E263F}" = dir=in | name=checkpoint.vpn |
"{4BBB1788-3527-499F-90F2-1A137B32CBF9}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{4C2512A8-004D-444E-AE91-1BCCA5237575}" = dir=in | app=c:\program files (x86)\lenovo\powerdvd10\powerdvd10.exe |
"{4CF454A9-6E1A-402A-8578-48BF1E82CEFA}" = dir=in | name=powerdvd for lenovo idea |
"{548DCF8C-BFF2-4BA4-AA88-FBAF9AC8BCC6}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{560448D6-095C-4907-B046-AC7F710701A7}" = dir=in | name=sonicwall.mobileconnect |
"{56543418-D80C-4687-85BE-5B3DA912518F}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{5AFF31F1-9455-45BE-9AE1-768F23F290AE}" = dir=out | name=check point vpn |
"{5F4632C0-D5B1-40C3-B0D9-E3A759C81B9E}" = dir=out | name=sonicwall.mobileconnect |
"{64177ECF-4C46-433F-B82A-DFE83B5507E6}" = dir=out | name=@{microsoft.bingtravel_3.0.2.309_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/brandedapptitle} |
"{67967204-122F-4CE2-A67B-9DF70BE02FF2}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{6B6C512C-FE37-4A3C-95AB-AA71DD20E759}" = dir=in | name=sonicwall mobile connect |
"{7135388F-C38B-4115-A288-8169B0A722C1}" = dir=out | name=@{microsoft.bingsports_3.0.2.317_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/brandedapptitle} |
"{714F6F77-AAFD-44D9-B20C-A2A5AFF7A810}" = dir=out | name=@{microsoft.bingfinance_3.0.2.258_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/brandedapptitle} |
"{71F24E0F-BA9F-420E-83EE-C25EB003B6B9}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{73C748EE-6FBB-49FA-B3E6-567DD5D5C39E}" = dir=out | name=windows_ie_ac_001 |
"{7512224B-CDF5-4EE1-830C-43463E9EF952}" = dir=out | name=@{microsoft.bingnews_2.0.0.273_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{78D77339-9D92-4DC0-A72F-D29AA8B7608E}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7C30A8BD-6598-4E48-8409-AF509B880086}" = dir=in | name=juniper networks junos pulse |
"{7C565E81-C4C7-4258-95F4-851627CCBA2A}" = dir=out | name=@{microsoft.bingmaps_1.6.1821.2624_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{83618D8E-D497-40DB-BE5C-3B6957B110B0}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{89CFFD77-2B86-440C-94B5-4002ACFC23C2}" = dir=out | name=@{microsoft.zunemusic_2.2.931.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{956F5C52-EE94-43AB-BE0C-F2A207BA0426}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.2.315_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{95C1B4AB-AEF6-4235-9325-072C3FF9DD2E}" = dir=out | name=evernote touch |
"{9856B8F8-3173-4317-9C4F-C144436D0DBC}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{9905955B-2D80-405F-8676-240DEE7AE999}" = dir=in | name=@{filmonlivetvfree.filmonlivetvfree_1.3.6.115_x64__zx03kxexxb716?ms-resource://filmonlivetvfree.filmonlivetvfree/whitelabel/app-name} |
"{9BF79BD6-C818-49F1-933B-24EF92E37C1B}" = dir=out | name=@{microsoft.zunemusic_1.4.18.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{9E3D57FC-7C37-4424-9352-4831E97D029D}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{9FA4C94D-A42B-49E3-B142-EB44684D4D30}" = dir=in | name=mcafee® central for lenovo |
"{A298DC20-6F9A-4715-8711-A76EA9F0FCC8}" = dir=out | name=skype |
"{A38A76CD-11CF-4E82-BD09-A182D65DAC0F}" = dir=in | name=zinio |
"{A51754AA-A70F-42D5-AB01-6581920FA0D2}" = dir=out | name=@{microsoft.bingtravel_2.0.0.274_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{AAC1F7D1-CD62-40F0-BEFD-2149E3025B44}" = dir=out | name=lenovo support |
"{AB5545C4-70CA-4D4C-9DC6-9979C9ECAC28}" = dir=out | name=lenovo cloud storage by sugarsync |
"{AD45EF13-030A-4964-87A1-1FAF388406B8}" = dir=in | name=skype |
"{B60CDE07-C477-4302-B575-A1017B3D3B3F}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{B628FB75-3C92-4399-AD6D-F6DFA556FB4E}" = dir=out | name=zinio |
"{B7654027-3EE2-4A04-816E-A8CE058847F0}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.5.9600.20573_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{B82E351A-5AE9-4974-93BE-CA543F7DB4FF}" = dir=out | name=@{microsoft.bingweather_3.0.2.309_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/brandedapptitle} |
"{BB68B241-1B96-4154-851A-CF94E195C742}" = dir=out | name=mcafee® central for lenovo |
"{BF68CB74-B547-4F8B-A2C6-611E9D10329A}" = dir=out | name=juniper networks junos pulse |
"{BFBCF1B5-BF02-4936-B71A-B8F6FF7FAF11}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C2D21133-8A0A-4109-874C-E1219BD463DB}" = dir=out | name=onenote |
"{C6F18A4E-6E17-47E2-88F1-94389B6A0A89}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{C86F5D6C-F840-4C85-AD66-D8AFE20A3142}" = dir=out | name=windows_ie_ac_001 |
"{CABFDCD9-2B08-4763-9309-024C4D8F32B0}" = protocol=6 | dir=out | app=system |
"{CCE9DE1D-F7B1-4BF8-8194-3F4521ED5307}" = dir=in | name=evernote touch |
"{D015F990-C65B-43AF-B45A-F2F555F1651F}" = dir=out | name=companion |
"{D04E267A-B33A-4489-89A2-FA6313F571A0}" = dir=out | name=@{microsoft.bingweather_2.0.0.288_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{D3A7352F-132C-4D28-B2B0-D67B866674CF}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.5.9600.20573_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{D5AE91A3-BF0C-4489-A887-6E8680AE6E93}" = dir=in | name=check point vpn |
"{D5C5FFBB-950D-481D-A64B-1E97AC5C8A0F}" = protocol=6 | dir=in | app=d:\hry\juiced 2\juiced2_hin.exe |
"{D6980480-941A-4DF6-AB81-3734ECD3D779}" = dir=out | name=junipernetworks.junospulsevpn |
"{DB59588E-ED90-4C47-A7B5-7929DD0C0BD2}" = dir=out | name=checkpoint.vpn |
"{DD9BA4AF-C868-4025-8318-84EBF3D83AC0}" = dir=out | name=powerdvd for lenovo idea |
"{DDE3532F-3D8A-4DDE-9C4B-6401B066D6FC}" = dir=in | app=c:\program files (x86)\lenovo\powerdvd10\powerdvd cinema\powerdvdcinema10.exe |
"{E055FEAE-F900-487F-8ED1-DA9F752F8735}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{E9CC5455-4F1C-499E-A5DB-0B5FC48B8421}" = dir=out | name=sonicwall mobile connect |
"{EC799E33-72BA-42D7-9127-DEFE68F9799D}" = dir=in | name=junipernetworks.junospulsevpn |
"{EE261051-5F38-483D-A2C8-15B1D6D0438D}" = dir=out | name=@{microsoft.bingmaps_2.1.2922.2139_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{EE35CBD7-576D-4C83-A241-ED1E81EA7D74}" = dir=out | name=@{microsoft.xboxlivegames_1.3.10.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{F0173937-368D-4795-B209-5F959EDBB87D}" = dir=in | name=@{microsoft.reader_6.2.9200.20780_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{F64300AD-D559-4000-BD45-0997BCC8E70A}" = dir=out | name=f5.vpn.client |
"{F69D18C6-FD4C-440A-A05B-4210A775807C}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{F77E5446-4378-4E99-8B7A-7061AAAEA193}" = dir=in | name=f5.vpn.client |
"TCP Query User{7B2B3D3F-73AE-4700-A301-4321E41640FD}C:\program files (x86)\intel\intelappstore\bin\ismagent.exe" = protocol=6 | dir=in | app=c:\program files (x86)\intel\intelappstore\bin\ismagent.exe |
"UDP Query User{BABD13CF-DCE7-4901-925D-6644337978F9}C:\program files (x86)\intel\intelappstore\bin\ismagent.exe" = protocol=17 | dir=in | app=c:\program files (x86)\intel\intelappstore\bin\ismagent.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{2F45A217-E9C7-4984-B0AC-5BE31FF4712B}" = Lenovo Solution Center
"{35CB8D35-C04C-BDD6-A9DE-A37E05F8E08E}" = AMD Accelerated Video Transcoding
"{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"{615F90EB-5A61-F351-CC25-9823C9F124EB}" = ccc-utility64
"{70A381F1-C161-4D61-A20C-BE12FC6777DF}" = Garmin Communicator Plugin x64
"{A02609EB-395E-4638-8DD7-30CE043014E5}" = ANT Drivers Installer x64
"{A84A4FB1-D703-48DB-89E0-68B6499D2801}" = Qualcomm Atheros Bluetooth Suite (64)
"{B6CEDB2C-C8F8-7213-7BDD-9409B34F77EA}" = AMD Catalyst Install Manager
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{DBC4294A-247D-7662-96F6-E4FD264F3E38}" = AMD Fuel
"{E9EED4AE-682B-4501-9574-D09A21717599}_is1" = AMD Quick Stream
"{EF79C448-6946-4D71-8134-03407888C054}" = Shared C Run-time for x64
"71BC3FD63F450BA0A957AAECBDB4A000C4F2BE42" = Windows Driver Package - Lenovo (ACPIVPC) System (06/15/2012 8.1.0.1)
"8A223E56FB1ED4F697B54E5BF96F1EB63B512684" = Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (06/19/2012 10.13.29.733)
"CCleaner" = CCleaner
"CNXT_AUDIO_HDA" = Conexant HD Audio
"D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2" = Balíček ovladače systému Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1)
"Elantech" = Lenovo pointing device
"F9D2A789F9CFF8CEC36B544F53877C80F1F73C46" = Balíček ovladače systému Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201)
"GIMP-2_is1" = GIMP 2.8.10
"Lenovo VeriFace" = Lenovo VeriFace
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1AEEC028-008B-80C8-E266-1E8652700960}" = CCC Help Czech
"{1BE14165-9DC8-32E2-A069-2F52ADAAC71D}" = CCC Help Japanese
"{1E39A76D-691C-990D-5E16-3F14AAEF391A}" = CCC Help Thai
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{253633D2-6ACB-0E34-1921-5F5BE278D007}" = CCC Help Greek
"{26B12BCB-7D35-B975-F215-9F6071AC24D7}" = CCC Help Norwegian
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Qualcomm Atheros Client Installation Program
"{2F750C77-1FEC-44F9-88CC-2CE322EBD61E}" = Microsoft Games for Windows - LIVE Redistributable
"{30CF3073-240B-71A9-FE00-718241A36843}" = CCC Help Italian
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{31610C80-309D-40C5-8CF4-9D1EA19DBA0B}_is1" = 18 Wheels of Steel American Long Haul
"{350C303A-EE74-56E1-FEC9-B95ADDC5F9C7}" = CCC Help Finnish
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{44058FC9-C890-B2D0-4E65-0F5CD93AA811}" = CCC Help Swedish
"{498970AC-C706-83D8-37F9-182A2BE02AB1}" = CCC Help French
"{4A146BA0-11D5-23C9-75D3-456EAB4528CA}" = CCC Help Chinese Traditional
"{5164307F-0790-D17A-FF93-0719015FB729}" = CCC Help Korean
"{548083DD-D99B-2CE1-8D2B-D78BEB834F7A}" = OEM Application Profile
"{54F0FA1B-8D7A-B358-C457-8B0B6740D022}" = CCC Help Spanish
"{560D64A9-BDFD-44B7-90D1-8FBBED7F4A19}" = Garmin Express
"{575C3501-67B7-B141-7D64-4186C7B2D034}" = AMD VISION Engine Control Center
"{5AFECC61-5BB7-4079-B322-9914D0F2E997}" = CCC Help Danish
"{6D181996-F404-4639-9B95-15012541CB7C}" = Garmin Express Tray
"{6E7361A1-AF6E-5B66-9C63-63ECDDF766B0}" = CCC Help Russian
"{71DBFBF2-F7EB-4268-8485-9471D83C4E66}" = Garmin Communicator Plugin
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{77D28FF5-242F-488A-8215-937D6A4D69E0}" = Adobe AIR
"{817c6bb8-ea2d-4e12-abbc-e33c3de43f64}" = Garmin Express
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8ED78D56-893D-70CE-0701-ECA09E4B8F67}" = Catalyst Control Center Localization All
"{90150000-0138-0409-0000-0000000FF1CE}" = Microsoft Office
"{9135BA5B-51B4-49BF-867A-D152B5CE67D4}" = Off Road
"{92B79901-C57D-409F-8D2F-4E5337383569}" = OpenOffice.org 3.0
"{95390A23-8A69-0F59-9479-0980AD33D6AA}" = CCC Help English
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A0FF3070-6103-B0BE-5D63-29619D7546AA}" = CCC Help Turkish
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.08) - Czech
"{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}" = Dolby Advanced Audio v2
"{BE17ECD5-555F-4B03-B421-428E3470CFB2}" = Juiced2_HIN
"{BF06AC24-07B6-AE15-5FF0-E69833F20D70}" = CCC Help German
"{C330B7B9-7879-5FC2-55EC-C33EA2986A5D}" = CCC Help Portuguese
"{C47BD14D-210F-4EC3-8B41-0149954C71D4}" = Catalyst Control Center - Branding
"{ce085a78-074e-4823-8dc1-8a721b94b76d}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
"{CF4B9A19-A00D-44CC-D394-FE4ABBF69773}" = CCC Help Chinese Standard
"{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
"{D6C5F35F-405C-DD68-16A7-B7CFC8D7CF03}" = CCC Help Polish
"{D968FBF3-E4A6-4D82-981D-D7FF9B7BFC30}" = Elevated Installer
"{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = Lenovo PowerDVD10
"{DECC44DB-C728-E718-F261-A282FD5AD5DF}" = CCC Help Hungarian
"{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}" = Lenovo EasyCamera
"{E7EFDC5A-B117-4247-B50D-E55D5390A81C}" = Catalyst Control Center InstallProxy
"{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}" = UserGuide
"{F0A8BF4A-972F-41E0-9800-1EFE3BF28266}" = Realtek Card Reader
"{F231432A-7C86-2CFF-775E-34342F2F11F8}" = CCC Help Dutch
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"Adobe AIR" = Adobe AIR
"Avast" = avast! Free Antivirus
"Extreme Trucker 2_is1" = Extreme Trucker 2
"GOGPACKSCREAMER4X4_is1" = Screamer 4x4
"Google Chrome" = Google Chrome
"InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
"InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = Lenovo PowerDVD10
"InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}" = UserGuide
"Intel AppUp(SM) center 33057" = Intel AppUp(SM) center
"Network Play System (Patching)" = Network Play System (Patching)
"OpenAL" = OpenAL
"PhotoScape" = PhotoScape
"Screamer 4x4" = Screamer 4x4
"SugarSync" = SugarSync Manager
"The Sims" = The Sims
"WinRAR archiver" = WinRAR
"WMV9_VCM" = Microsoft Windows Media Video 9 VCM
"WRC2_is1" = WRC2
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 20. 7. 2014 8:59:27 | Computer Name = user-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Juiced2_HIN.exe, verze: 0.0.1.8, časové
razítko: 0x473b0e4a Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko:
0x00000000 Kód výjimky: 0xc0000005 Posun chyby: 0x00000710 ID chybujícího procesu:
0x1d4 Čas spuštění chybující aplikace: 0x01cfa40dc4bd6448 Cesta k chybující aplikaci:
D:\Hry\juiced 2\Juiced2_HIN.exe Cesta k chybujícímu modulu: unknown ID zprávy: adb3905b-100d-11e4-be89-40f02f740885
Úplný
název chybujícího balíčku: ID aplikace související s chybujícím balíčkem:
Error - 25. 7. 2014 6:59:31 | Computer Name = user-PC | Source = Application Hang | ID = 1002
Description = Program IEXPLORE.EXE verze 11.0.9600.17126 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID
procesu: 41d0 Čas spuštění: 01cfa7f759836016 Čas ukončení: 0 Cesta k aplikaci: C:\Program
Files (x86)\Internet Explorer\IEXPLORE.EXE ID hlášení: becf438c-13ea-11e4-be89-40f02f740885
Úplný
název chybujícího balíčku: ID aplikace související s chybujícím balíčkem:
Error - 27. 7. 2014 3:02:26 | Computer Name = user-PC | Source = Application Hang | ID = 1002
Description = Program IEXPLORE.EXE verze 11.0.9600.17126 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID
procesu: 838 Čas spuštění: 01cfa965e2fe255b Čas ukončení: 80 Cesta k aplikaci: C:\Program
Files (x86)\Internet Explorer\IEXPLORE.EXE ID hlášení: f4a082ae-155b-11e4-be8b-40f02f740885
Úplný
název chybujícího balíčku: ID aplikace související s chybujícím balíčkem:
Error - 1. 8. 2014 7:58:41 | Computer Name = user-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: eurotrucks2.exe, verze: 1.10.0.7, časové
razítko: 0x53712273 Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko:
0x00000000 Kód výjimky: 0xc0000005 Posun chyby: 0x41319018 ID chybujícího procesu:
0x87c Čas spuštění chybující aplikace: 0x01cfad714e404662 Cesta k chybující aplikaci:
C:\Users\user\Downloads\Euro Truck Simulator 2 v1.10.1s (DLC Metallics and East)\bin\win_x86\eurotrucks2.exe
Cesta
k chybujícímu modulu: unknown ID zprávy: 2d6699fd-1973-11e4-be8b-40f02f740885 Úplný
název chybujícího balíčku: ID aplikace související s chybujícím balíčkem:
Error - 5. 8. 2014 7:41:28 | Computer Name = user-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: IEXPLORE.EXE, verze: 11.0.9600.17126, časové
razítko: 0x53882e30 Název chybujícího modulu: Flash.ocx, verze: 14.0.0.145, časové
razítko: 0x53aa3a98 Kód výjimky: 0xc0000005 Posun chyby: 0x003e7efa ID chybujícího
procesu: 0x1fc8 Čas spuštění chybující aplikace: 0x01cfb0a213106923 Cesta k chybující
aplikaci: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE Cesta k chybujícímu
modulu: C:\Windows\SYSTEM32\Macromed\Flash\Flash.ocx ID zprávy: 6f60f311-1c95-11e4-be8b-40f02f740885
Úplný
název chybujícího balíčku: ID aplikace související s chybujícím balíčkem:
Error - 5. 8. 2014 10:22:00 | Computer Name = user-PC | Source = .NET Runtime | ID = 1026
Description =
Error - 5. 8. 2014 10:22:00 | Computer Name = user-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: dc3game.exe, verze: 3.2.5.26, časové razítko:
0x5220e2a8 Název chybujícího modulu: KERNELBASE.dll, verze: 6.3.9600.17055, časové
razítko: 0x532943a3 Kód výjimky: 0xe0434352 Posun chyby: 0x00011d4d ID chybujícího
procesu: 0x25c4 Čas spuštění chybující aplikace: 0x01cfb0b89ef2daae Cesta k chybující
aplikaci: D:\Hry\diamond caves\Diamond Caves 3\dc3game.exe Cesta k chybujícímu modulu:
C:\WINDOWS\SYSTEM32\KERNELBASE.dll ID zprávy: dcdb93da-1cab-11e4-be8b-40f02f740885
Úplný
název chybujícího balíčku: ID aplikace související s chybujícím balíčkem:
Error - 5. 8. 2014 10:22:24 | Computer Name = user-PC | Source = .NET Runtime | ID = 1026
Description =
Error - 5. 8. 2014 10:22:24 | Computer Name = user-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: dc3game.exe, verze: 3.2.5.26, časové razítko:
0x5220e2a8 Název chybujícího modulu: KERNELBASE.dll, verze: 6.3.9600.17055, časové
razítko: 0x532943a3 Kód výjimky: 0xe0434352 Posun chyby: 0x00011d4d ID chybujícího
procesu: 0x3788 Čas spuštění chybující aplikace: 0x01cfb0b8acfac922 Cesta k chybující
aplikaci: D:\Hry\diamond caves\Diamond Caves 3\dc3game.exe Cesta k chybujícímu modulu:
C:\WINDOWS\SYSTEM32\KERNELBASE.dll ID zprávy: eaba4f4e-1cab-11e4-be8b-40f02f740885
Úplný
název chybujícího balíčku: ID aplikace související s chybujícím balíčkem:
Error - 8. 8. 2014 9:28:15 | Computer Name = user-PC | Source = Application Hang | ID = 1002
Description = Program prism3d.exe verze 1.0.0.1 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
310 Čas spuštění: 01cfb30c755af362 Čas ukončení: 59 Cesta k aplikaci: D:\Hry\18 wheels
of steel\18 Wheels of Steel American Long Haul\prism3d.exe ID hlášení: c9103a36-1eff-11e4-be8b-40f02f740885
Úplný
název chybujícího balíčku: ID aplikace související s chybujícím balíčkem:
[ System Events ]
Error - 3. 8. 2014 2:03:42 | Computer Name = user-PC | Source = DCOM | ID = 10010
Description =
Error - 3. 8. 2014 2:04:12 | Computer Name = user-PC | Source = DCOM | ID = 10010
Description =
Error - 4. 8. 2014 3:17:10 | Computer Name = user-PC | Source = DCOM | ID = 10010
Description =
Error - 4. 8. 2014 3:17:40 | Computer Name = user-PC | Source = DCOM | ID = 10010
Description =
Error - 5. 8. 2014 2:18:21 | Computer Name = user-PC | Source = DCOM | ID = 10010
Description =
Error - 5. 8. 2014 2:18:51 | Computer Name = user-PC | Source = DCOM | ID = 10010
Description =
Error - 5. 8. 2014 2:28:37 | Computer Name = user-PC | Source = DCOM | ID = 10010
Description =
Error - 5. 8. 2014 2:29:07 | Computer Name = user-PC | Source = DCOM | ID = 10010
Description =
Error - 6. 8. 2014 2:36:48 | Computer Name = user-PC | Source = DCOM | ID = 10010
Description =
Error - 6. 8. 2014 2:37:18 | Computer Name = user-PC | Source = DCOM | ID = 10010
Description =
< End of report >
Re: Prosím o kontrolu logu. Děkuji!:)
Napiste mi velikost adresare plochy (C:\Users\user\Desktop) Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne Znovu spustte OTL jako spravceDo spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)
Kód: Vybrat vše
:commands
[EMPTYTEMP]
[EMPTYFLASH]
[Purity]
[CreateRestorePoint]
:services
MBAMSwissArmy
hkuj
AdobeARMservice
gupdate
gupdatem
gusvc
:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf8cd17d2a3a7b.job
C:\WINDOWS\System32\drivers\jjjvq.sys
C:\ProgramData\Malwarebytes
:otl
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6FD9F3AD-227D-4931-A968-9E70CE986543}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=LCJB
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6FD9F3AD-227D-4931-A968-9E70CE986543}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=LCJB
IE - HKU\S-1-5-21-2819330432-1451585950-2559875713-1002\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
[2 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[1 C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[4 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[4 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]
:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}"=-
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=-
"seznam-listicka-distribuce"=-
Po restartu se objevi novy log, ten sem dejte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Prosím o kontrolu logu. Děkuji!:)
Já jsem ve složce user desktop nenašla.
All processes killed
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 57311 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Default.migrated
User: Public
User: user
->Temp folder emptied: 3172444 bytes
->Temporary Internet Files folder emptied: 233245861 bytes
->Google Chrome cache emptied: 424167464 bytes
->Flash cache emptied: 63453 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 26424796 bytes
RecycleBin emptied: 44282988 bytes
Total Files Cleaned = 698,00 mb
[EMPTYFLASH]
User: All Users
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: Default.migrated
User: Public
User: user
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
Restore point Set: OTL Restore Point
========== SERVICES/DRIVERS ==========
Service MBAMSwissArmy stopped successfully!
Service MBAMSwissArmy deleted successfully!
Error: No service named hkuj was found to stop!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\hkuj deleted successfully.
Service AdobeARMservice stopped successfully!
Service AdobeARMservice deleted successfully!
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
Service gusvc stopped successfully!
Service gusvc deleted successfully!
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf8cd17d2a3a7b.job moved successfully.
File\Folder C:\WINDOWS\System32\drivers\jjjvq.sys not found.
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Quarantine folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Logs folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Configuration folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware folder moved successfully.
C:\ProgramData\Malwarebytes folder moved successfully.
========== OTL ==========
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6FD9F3AD-227D-4931-A968-9E70CE986543}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6FD9F3AD-227D-4931-A968-9E70CE986543}\ not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6FD9F3AD-227D-4931-A968-9E70CE986543}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6FD9F3AD-227D-4931-A968-9E70CE986543}\ not found.
Registry key HKEY_USERS\S-1-5-21-2819330432-1451585950-2559875713-1002\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4AE2.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP839.tmp\System.Design.dll deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP839.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAP3C9.tmp folder deleted successfully.
C:\WINDOWS\Installer\MSI83B2.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSI8848.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIB2D5.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIB6AE.tmp- folder deleted successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce deleted successfully.
OTL by OldTimer - Version 3.2.69.0 log created on 08222014_114313
Files\Folders moved on Reboot...
File\Folder C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\X9XCYE3F\context[1].htm not found!
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.
File move failed. C:\WINDOWS\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
All processes killed
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 57311 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Default.migrated
User: Public
User: user
->Temp folder emptied: 3172444 bytes
->Temporary Internet Files folder emptied: 233245861 bytes
->Google Chrome cache emptied: 424167464 bytes
->Flash cache emptied: 63453 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 26424796 bytes
RecycleBin emptied: 44282988 bytes
Total Files Cleaned = 698,00 mb
[EMPTYFLASH]
User: All Users
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: Default.migrated
User: Public
User: user
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
Restore point Set: OTL Restore Point
========== SERVICES/DRIVERS ==========
Service MBAMSwissArmy stopped successfully!
Service MBAMSwissArmy deleted successfully!
Error: No service named hkuj was found to stop!
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\hkuj deleted successfully.
Service AdobeARMservice stopped successfully!
Service AdobeARMservice deleted successfully!
Service gupdate stopped successfully!
Service gupdate deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
Service gusvc stopped successfully!
Service gusvc deleted successfully!
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA1cf8cd17d2a3a7b.job moved successfully.
File\Folder C:\WINDOWS\System32\drivers\jjjvq.sys not found.
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Quarantine folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Logs folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Configuration folder moved successfully.
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware folder moved successfully.
C:\ProgramData\Malwarebytes folder moved successfully.
========== OTL ==========
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6FD9F3AD-227D-4931-A968-9E70CE986543}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6FD9F3AD-227D-4931-A968-9E70CE986543}\ not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Local Page| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6FD9F3AD-227D-4931-A968-9E70CE986543}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6FD9F3AD-227D-4931-A968-9E70CE986543}\ not found.
Registry key HKEY_USERS\S-1-5-21-2819330432-1451585950-2559875713-1002\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4AE2.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP839.tmp\System.Design.dll deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP839.tmp folder deleted successfully.
C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\ZAP3C9.tmp folder deleted successfully.
C:\WINDOWS\Installer\MSI83B2.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSI8848.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIB2D5.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIB6AE.tmp- folder deleted successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce deleted successfully.
OTL by OldTimer - Version 3.2.69.0 log created on 08222014_114313
Files\Folders moved on Reboot...
File\Folder C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Low\IE\X9XCYE3F\context[1].htm not found!
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.
File move failed. C:\WINDOWS\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
Re: Prosím o kontrolu logu. Děkuji!:)
Tak tam mate cesky Plocha misto desktopMmoni píše:Já jsem ve složce user desktop nenašla.
Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce) vyosek píše:
- Stahnete a spustte
- Pro potvrzeni volby mackejte A, Enter
- Po pouziti utilitu smazte
- Antiviry mohou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
Stahnete OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc.
Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)
Defragmentujte disk(y) (SSD Disky ne!)Stahnete program Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
Pri instalaci opet pozor na toolbar
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.
Pak napiste, jak je na tom pc.Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Přispějete na provoz fóra?