Prosím o preventivku+problem s tiskárnou

[slamax]

Ahoj prosím o preventivku, mám problém s instalací tiskárny, tak jsetli se nenajde nějaká potvora
Díky.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Slamak at 2014-11-16 21:45:36
Microsoft Windows 8.1
System drive C: has 627 GB (67%) free of 934 GB
Total RAM: 3909 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:45:51, on 16. 11. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Users\Slamak\AppData\Local\Pokki\Engine\pokki.exe
C:\Users\Slamak\AppData\Local\Pokki\Engine\pokki.exe
C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
C:\Windows\SysWOW64\C2MP\TrayMenu.exe
C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Program Files\trend micro\Slamak.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RadioController] "C:\Program Files (x86)\RadioController\RfBtnHelper.exe" Start_Run
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [NtVdmSrv] C:\Windows\inf\ntvdm.vbe
O4 - HKLM\..\Run: [Printsrv] c:\Windows\System32\Printing_Admin_Scripts\en-US\pubpr.vbs
O4 - HKLM\..\Run: [Monitor] "C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [eM Client] "C:\Program Files (x86)\eM Client\MailClient.exe" /startup
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [Application Restart #0] C:\Users\Slamak\AppData\Local\Pokki\Engine\pokki.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resources --disable-client-side-phishing-detection --enable-file-cookies --disable-sync --disable-breakpad --disable-bundled-ppapi-flash --disable-sync-tabs --disable-speech-input --disable-custom-jumplist --process-per-tab --debug-devtools-frontend="C:\Users\Slamak\AppData\Local\Pokki\Engine\inspector" --no-first-run --lang=en-US --disable-component-update --disable-prompt-on-repost --no-startup-window --disable-translate --disable-logging --disable-desktop-notifications --disable-gpu-process-prelaunch --flag-switches-begin --flag-switches-end --restore-last-session
O4 - Global Startup: Acer Backup Manager Tray.lnk = C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
O4 - Global Startup: TrayMenu.lnk = C:\Windows\SysWOW64\C2MP\TrayMenu.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apache2.2 - Apache Software Foundation - c:\xampp\apache\bin\httpd.exe
O23 - Service: Broadcom Card Reader Service (BrcmCardReader) - Broadcom Corp. - C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Device Fast-lane Service (DeviceFastLaneService) - Acer Incorporated - C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FileZilla Server FTP server (FileZilla Server) - FileZilla Project - c:\xampp\filezillaftp\filezillaserver.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LeapFrog Connect Device Service - LeapFrog Enterprises, Inc. - C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: mysql - Unknown owner - c:\xampp\mysql\bin\mysqld.exe
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: Protexis Licensing V2 x64 (PSI_SVC_2_x64) - arvato digital services llc - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: Služba zařazování tisku (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XAMPP Service (XAMPP) - Unknown owner - c:\xampp\service.exe

--
End of file - 10716 bytes

======Listing Processes======





wininit.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"c:\xampp\apache\bin\httpd.exe" -k runservice
"C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe"
"C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe"
dashost.exe {fa5fa833-262e-44c2-8a2d344409331dac}
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"c:\xampp\filezillaftp\filezillaserver.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe"
c:\xampp\mysql\bin\mysqld.exe --defaults-file=c:\xampp\mysql\bin\my.ini mysql
C:\xampp\apache\bin\httpd.exe -d C:/xampp/apache
"C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe"
"c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe"
C:\Windows\RfBtnSvc64.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc

C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
-hiberboot
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window --enable-setforeground-window --enable-kbhook-window
taskhostex.exe
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Launch Manager\LManager.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\WINDOWS\system32\igfxext.exe" -Embedding
"C:\Users\Slamak\AppData\Local\Pokki\Engine\pokki.exe"
"C:\Users\Slamak\AppData\Local\Pokki\Engine\pokki.exe" --type=renderer --disable-breakpad --disable-desktop-notifications --disable-logging --disable-speech-input --lang=en-US --force-fieldtrials=AsyncDns/disabled/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/ForceCompositingMode/disable/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_10/InfiniteCache/No/OmniboxDisallowInlineHQP/Standard/OmniboxSearchSuggest/16/OneClickSignIn/Standard/Prefetch/ContentPrefetchPrefetchOff/Prerender/PrerenderNoUse/ProxyConnectionImpact/proxy_connections_32/SBInterstitial/V1/SpdyCwnd/cwnd10/SpeculativePrefetchingLearning/SpeculativePrefetchingLearningEnabled/Test0PercentDefault/group_01/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_06/UMA-Uniformity-Trial-1-Percent/group_49/UMA-Uniformity-Trial-10-Percent/group_03/UMA-Uniformity-Trial-20-Percent/group_01/UMA-Uniformity-Trial-5-Percent/group_18/UMA-Uniformity-Trial-50-Percent/default/WarmSocketImpact/warmest_socket/ --noerrdialogs --disable-client-side-phishing-detection --disable-bundled-ppapi-flash --channel="3748.1.910085704\881594848" /prefetch:3
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k
"C:\Windows\SysWOW64\C2MP\TrayMenu.exe" vlc.ico
"C:\Program Files (x86)\RadioController\RfBtnHelper.exe" HigherRFButtonHelper
"C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
"C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
C:\WINDOWS\System32\alg.exe

"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe64_ Global\UsGthrCtrlFltPipeMssGthrPipe64 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 580 584 592 65536 588
"C:\Users\Slamak\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.223 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.60.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.60.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.223 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll


C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\extensions\
artur.dubovoy@gmail.com
{ea614400-e918-4741-9a97-7a972ff7c30b}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-06-27 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-06-27 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-11-20 2873744]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-06-11 12503184]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2014-01-29 171992]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2014-01-29 399832]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2014-01-29 442328]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"eM Client"=C:\Program Files (x86)\eM Client\MailClient.exe [2014-10-15 15558952]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"ISUSPM"=C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler []
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-10-30 6501656]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Application Restart #0"=C:\Users\Slamak\AppData\Local\Pokki\Engine\pokki.exe [2013-12-05 8285512]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"RadioController"=C:\Program Files (x86)\RadioController\RfBtnHelper.exe [2013-02-08 111216]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"NtVdmSrv"=C:\Windows\inf\ntvdm.vbe [2013-06-20 1219]
"Printsrv"=c:\Windows\System32\Printing_Admin_Scripts\en-US\pubpr.vbs []
"Monitor"=C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe [2014-01-22 106496]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-05-07 256896]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Acer Backup Manager Tray.lnk - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
TrayMenu.lnk - C:\Windows\SysWOW64\C2MP\TrayMenu.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2014-01-29 442880]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.ffds"=ff_vfw.dll
"msacm.ac3acm"=AC3ACM.acm
"msacm.lameacm"=LameACM.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-11-16 21:45:36 ----D---- C:\rsit
2014-11-16 21:45:36 ----D---- C:\Program Files\trend micro
2014-11-16 12:46:53 ----A---- C:\WINDOWS\SYSWOW64\BRDP7055W.DAT
2014-11-15 16:54:29 ----D---- C:\Program Files\CCleaner
2014-11-15 16:03:09 ----SHD---- C:\Config.Msi
2014-11-15 15:41:51 ----D---- C:\Users\Slamak\AppData\Roaming\FLEXnet
2014-11-15 15:19:41 ----D---- C:\Users\Slamak\AppData\Roaming\Nuance
2014-11-15 15:19:35 ----D---- C:\ProgramData\ScanSoft
2014-11-15 15:19:05 ----D---- C:\ProgramData\Nuance
2014-11-15 15:16:16 ----D---- C:\ProgramData\Brother
2014-11-13 00:06:17 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-11-13 00:06:17 ----A---- C:\WINDOWS\system32\schannel.dll
2014-11-13 00:06:16 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2014-11-13 00:06:16 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-11-13 00:06:16 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2014-11-13 00:05:53 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2014-11-13 00:05:52 ----A---- C:\WINDOWS\system32\msi.dll
2014-11-13 00:05:52 ----A---- C:\WINDOWS\system32\authui.dll
2014-11-13 00:05:51 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-11-13 00:05:50 ----A---- C:\WINDOWS\SYSWOW64\msihnd.dll
2014-11-13 00:05:50 ----A---- C:\WINDOWS\system32\msihnd.dll
2014-11-13 00:05:50 ----A---- C:\WINDOWS\system32\consent.exe
2014-11-13 00:05:49 ----A---- C:\WINDOWS\system32\appinfo.dll
2014-11-13 00:05:39 ----A---- C:\WINDOWS\system32\user32.dll
2014-11-13 00:05:38 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2014-11-13 00:05:37 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-11-13 00:05:37 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-11-13 00:05:36 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-11-13 00:05:34 ----A---- C:\WINDOWS\SYSWOW64\winshfhc.dll
2014-11-13 00:05:34 ----A---- C:\WINDOWS\system32\winshfhc.dll
2014-11-13 00:05:03 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-11-13 00:05:02 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-11-13 00:04:48 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-11-13 00:04:47 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-11-13 00:04:47 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-11-13 00:04:47 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-11-13 00:04:47 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-11-13 00:04:47 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-11-13 00:04:46 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-11-13 00:04:46 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-11-13 00:04:46 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-11-13 00:04:45 ----A---- C:\WINDOWS\system32\EncDump.dll
2014-11-13 00:04:42 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-11-13 00:04:40 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-11-13 00:03:44 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-11-13 00:03:35 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-11-13 00:03:27 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-11-13 00:03:23 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-11-13 00:03:21 ----A---- C:\WINDOWS\system32\wininet.dll
2014-11-13 00:03:20 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-11-13 00:03:20 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-11-13 00:03:19 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-11-13 00:03:19 ----A---- C:\WINDOWS\system32\inetcomm.dll
2014-11-13 00:03:19 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-11-13 00:03:18 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2014-11-13 00:03:18 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-11-13 00:03:17 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-11-13 00:03:16 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2014-11-13 00:03:16 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-11-13 00:03:16 ----A---- C:\WINDOWS\system32\jscript.dll
2014-11-13 00:03:15 ----A---- C:\WINDOWS\system32\ieui.dll
2014-11-13 00:03:14 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-11-13 00:03:14 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-11-13 00:03:13 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-11-13 00:03:12 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-11-13 00:03:12 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2014-11-13 00:03:12 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-11-13 00:03:10 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-11-13 00:03:10 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-11-13 00:03:09 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-11-13 00:03:09 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-11-13 00:03:09 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-11-13 00:03:09 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-11-13 00:03:07 ----A---- C:\WINDOWS\system32\webcheck.dll
2014-11-13 00:03:07 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-11-13 00:03:06 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2014-11-13 00:03:06 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-11-13 00:03:04 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2014-11-13 00:03:04 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-11-13 00:03:03 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-11-13 00:03:03 ----A---- C:\WINDOWS\system32\msrating.dll
2014-11-13 00:03:03 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-11-13 00:03:03 ----A---- C:\WINDOWS\system32\iesysprep.dll
2014-11-13 00:03:03 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-11-13 00:03:03 ----A---- C:\WINDOWS\system32\hlink.dll
2014-11-13 00:03:02 ----A---- C:\WINDOWS\SYSWOW64\inseng.dll
2014-11-13 00:03:02 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-11-13 00:03:02 ----A---- C:\WINDOWS\SYSWOW64\iesysprep.dll
2014-11-13 00:03:02 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2014-11-13 00:03:02 ----A---- C:\WINDOWS\system32\iepeers.dll
2014-11-13 00:03:02 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-11-13 00:03:01 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-11-13 00:03:01 ----A---- C:\WINDOWS\system32\inseng.dll
2014-11-13 00:03:00 ----A---- C:\WINDOWS\SYSWOW64\msfeedsbs.dll
2014-11-13 00:03:00 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-11-13 00:03:00 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-11-13 00:03:00 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2014-11-13 00:03:00 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-11-13 00:03:00 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-11-13 00:02:59 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2014-11-13 00:02:59 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-11-13 00:02:59 ----A---- C:\WINDOWS\SYSWOW64\IEAdvpack.dll
2014-11-13 00:02:59 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-11-13 00:02:58 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-13 00:02:58 ----A---- C:\WINDOWS\SYSWOW64\imgutil.dll
2014-11-13 00:02:58 ----A---- C:\WINDOWS\SYSWOW64\iexpress.exe
2014-11-13 00:02:58 ----A---- C:\WINDOWS\system32\occache.dll
2014-11-13 00:02:57 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-11-13 00:02:57 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-11-13 00:02:57 ----A---- C:\WINDOWS\system32\licmgr10.dll
2014-11-13 00:02:57 ----A---- C:\WINDOWS\system32\imgutil.dll
2014-11-13 00:02:56 ----A---- C:\WINDOWS\SYSWOW64\wextract.exe
2014-11-13 00:02:56 ----A---- C:\WINDOWS\SYSWOW64\pngfilt.dll
2014-11-13 00:02:56 ----A---- C:\WINDOWS\SYSWOW64\licmgr10.dll
2014-11-13 00:02:56 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-11-13 00:02:56 ----A---- C:\WINDOWS\system32\pngfilt.dll
2014-11-13 00:02:56 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-11-13 00:02:55 ----A---- C:\WINDOWS\SYSWOW64\url.dll
2014-11-13 00:02:55 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-11-13 00:02:55 ----A---- C:\WINDOWS\system32\url.dll
2014-11-13 00:02:54 ----A---- C:\WINDOWS\system32\wextract.exe
2014-11-13 00:02:54 ----A---- C:\WINDOWS\system32\IEAdvpack.dll
2014-11-13 00:02:53 ----A---- C:\WINDOWS\SYSWOW64\mshta.exe
2014-11-13 00:02:53 ----A---- C:\WINDOWS\SYSWOW64\msfeedssync.exe
2014-11-13 00:02:53 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2014-11-13 00:02:53 ----A---- C:\WINDOWS\system32\iexpress.exe
2014-11-13 00:02:53 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-11-13 00:02:52 ----A---- C:\WINDOWS\system32\mshta.exe
2014-11-13 00:02:06 ----A---- C:\WINDOWS\system32\win32k.sys
2014-11-13 00:02:04 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2014-11-13 00:02:04 ----A---- C:\WINDOWS\system32\packager.dll
2014-11-13 00:02:02 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-11-13 00:02:01 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-11-13 00:02:01 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-11-13 00:02:01 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-11-13 00:02:01 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-11-13 00:02:01 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-11-13 00:02:01 ----A---- C:\WINDOWS\system32\certcli.dll
2014-11-13 00:02:01 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-11-13 00:02:00 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2014-11-13 00:02:00 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2014-11-13 00:02:00 ----A---- C:\WINDOWS\system32\rdpudd.dll
2014-11-13 00:02:00 ----A---- C:\WINDOWS\system32\msaudite.dll
2014-11-13 00:02:00 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2014-11-13 00:01:14 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-11-13 00:01:13 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2014-11-13 00:01:12 ----A---- C:\WINDOWS\system32\devinv.dll
2014-11-13 00:01:11 ----A---- C:\WINDOWS\system32\generaltel.dll
2014-11-13 00:01:11 ----A---- C:\WINDOWS\system32\aepdu.dll
2014-11-13 00:01:11 ----A---- C:\WINDOWS\system32\aeinv.dll
2014-11-13 00:01:09 ----A---- C:\WINDOWS\system32\aepic.dll
2014-11-13 00:01:07 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-11-13 00:01:06 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-11-13 00:01:06 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-11-13 00:01:06 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-11-13 00:01:05 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-11-13 00:01:05 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-11-13 00:01:05 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-11-13 00:01:05 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-11-13 00:01:05 ----A---- C:\WINDOWS\system32\wups.dll
2014-11-13 00:01:05 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-11-13 00:01:04 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-11-13 00:01:04 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-11-13 00:01:04 ----A---- C:\WINDOWS\system32\wups2.dll
2014-11-13 00:01:04 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-11-13 00:01:04 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-11-13 00:01:04 ----A---- C:\WINDOWS\system32\wuaext.dll
2014-11-13 00:00:20 ----A---- C:\WINDOWS\system32\shell32.dll
2014-11-13 00:00:17 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-11-13 00:00:15 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-11-13 00:00:11 ----A---- C:\WINDOWS\system32\twinui.dll
2014-11-13 00:00:11 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-11-13 00:00:09 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-11-13 00:00:09 ----A---- C:\WINDOWS\system32\localspl.dll
2014-11-13 00:00:09 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-11-13 00:00:08 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-11-13 00:00:07 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-11-13 00:00:06 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2014-11-13 00:00:06 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-11-13 00:00:06 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-11-13 00:00:05 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2014-11-13 00:00:05 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2014-11-13 00:00:04 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2014-11-13 00:00:04 ----A---- C:\WINDOWS\system32\puiobj.dll
2014-11-13 00:00:03 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2014-11-13 00:00:02 ----AC---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2014-11-13 00:00:00 ----A---- C:\WINDOWS\system32\untfs.dll
2014-11-13 00:00:00 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-11-12 23:59:59 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2014-11-12 23:59:58 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2014-11-12 23:59:57 ----A---- C:\WINDOWS\SYSWOW64\FXSAPI.dll
2014-11-12 23:59:57 ----A---- C:\WINDOWS\system32\FXSAPI.dll
2014-10-27 07:47:04 ----D---- C:\ProgramData\Steam
2014-10-27 07:42:54 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2014-10-27 07:42:54 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2014-10-27 07:42:54 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2014-10-27 07:42:54 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2014-10-27 07:42:53 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2014-10-27 07:42:53 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2014-10-27 07:42:51 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_43.dll
2014-10-27 07:42:51 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2014-10-27 07:42:50 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_43.dll
2014-10-27 07:42:50 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2014-10-27 07:42:49 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_43.dll
2014-10-27 07:42:49 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_43.dll
2014-10-27 07:42:49 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2014-10-27 07:42:49 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2014-10-27 07:42:48 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_43.dll
2014-10-27 07:42:48 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2014-10-27 07:42:47 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2014-10-27 07:42:47 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2014-10-27 07:42:47 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2014-10-27 07:42:47 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2014-10-27 07:42:46 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2014-10-27 07:42:46 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2014-10-27 07:42:45 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_5.dll
2014-10-27 07:42:45 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2014-10-27 07:42:44 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2014-10-27 07:42:44 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2014-10-27 07:42:43 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2014-10-27 07:42:43 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2014-10-27 07:42:41 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2014-10-27 07:42:41 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2014-10-27 07:42:40 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2014-10-27 07:42:40 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2014-10-27 07:42:39 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_42.dll
2014-10-27 07:42:39 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2014-10-27 07:42:38 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_42.dll
2014-10-27 07:42:38 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2014-10-27 07:42:36 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_41.dll
2014-10-27 07:42:36 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_41.dll
2014-10-27 07:42:36 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2014-10-27 07:42:36 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2014-10-27 07:42:34 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2014-10-27 07:42:34 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2014-10-27 07:42:32 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2014-10-27 07:42:32 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_3.dll
2014-10-27 07:42:32 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2014-10-27 07:42:32 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2014-10-27 07:42:32 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2014-10-27 07:42:32 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2014-10-27 07:42:31 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2014-10-27 07:42:31 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2014-10-27 07:42:29 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2014-10-27 07:42:29 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2014-10-27 07:42:29 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2014-10-27 07:42:29 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2014-10-27 07:42:26 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2014-10-27 07:42:26 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2014-10-27 07:42:25 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2014-10-27 07:42:25 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2014-10-27 07:42:25 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2014-10-27 07:42:25 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2014-10-27 07:42:24 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2014-10-27 07:42:24 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2014-10-27 07:42:23 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2014-10-27 07:42:23 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2014-10-27 07:42:22 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_2.dll
2014-10-27 07:42:22 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_1.dll
2014-10-27 07:42:22 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2014-10-27 07:42:22 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2014-10-27 07:42:21 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2014-10-27 07:42:21 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2014-10-27 07:42:19 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_39.dll
2014-10-27 07:42:19 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_39.dll
2014-10-27 07:42:19 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2014-10-27 07:42:19 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2014-10-27 07:42:17 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2014-10-27 07:42:15 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2014-10-27 07:42:15 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2014-10-27 07:42:15 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2014-10-27 07:42:15 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2014-10-27 07:42:14 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2014-10-27 07:42:14 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2014-10-27 07:42:14 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2014-10-27 07:42:14 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2014-10-27 07:42:12 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2014-10-27 07:42:12 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2014-10-27 07:42:11 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2014-10-27 07:42:11 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2014-10-27 07:42:09 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2014-10-27 07:42:09 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2014-10-27 07:42:07 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2014-10-27 07:42:07 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2014-10-27 07:42:06 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2014-10-27 07:42:06 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2014-10-27 07:42:05 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2014-10-27 07:42:05 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2014-10-27 07:42:04 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2014-10-27 07:42:04 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2014-10-27 07:42:04 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2014-10-27 07:42:04 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2014-10-27 07:42:01 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2014-10-27 07:42:01 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2014-10-27 07:42:00 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2014-10-27 07:42:00 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2014-10-27 07:41:53 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2014-10-27 07:41:53 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2014-10-27 07:41:52 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2014-10-27 07:41:52 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2014-10-27 07:41:47 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2014-10-27 07:41:47 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2014-10-27 07:41:45 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2014-10-27 07:41:45 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2014-10-27 07:41:41 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2014-10-27 07:41:41 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2014-10-27 07:41:41 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2014-10-27 07:41:41 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2014-10-27 07:41:37 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2014-10-27 07:41:37 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2014-10-27 07:41:36 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2014-10-27 07:41:36 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2014-10-27 07:41:36 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2014-10-27 07:41:36 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2014-10-27 07:41:33 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2014-10-27 07:41:33 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2014-10-27 07:41:33 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2014-10-27 07:41:33 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2014-10-27 07:41:25 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2014-10-27 07:41:25 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2014-10-27 07:41:24 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2014-10-27 07:41:24 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2014-10-27 07:41:23 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2014-10-27 07:41:23 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2014-10-27 07:41:20 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2014-10-27 07:41:20 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2014-10-27 07:41:20 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2014-10-27 07:41:20 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2014-10-27 07:41:17 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2014-10-27 07:41:17 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2014-10-27 07:41:16 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2014-10-27 07:41:16 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2014-10-27 07:41:14 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2014-10-27 07:41:14 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2014-10-27 07:41:13 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2014-10-27 07:41:13 ----A---- C:\WINDOWS\system32\d3dx10.dll
2014-10-27 07:41:10 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_32.dll
2014-10-27 07:41:10 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2014-10-27 07:41:08 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2014-10-27 07:41:08 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2014-10-27 07:41:08 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2014-10-27 07:41:08 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2014-10-27 07:41:04 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_31.dll
2014-10-27 07:41:04 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2014-10-27 07:41:03 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2014-10-27 07:41:03 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2014-10-27 07:41:02 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2014-10-27 07:41:02 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2014-10-27 07:41:01 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2014-10-27 07:41:01 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2014-10-27 07:41:01 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2014-10-27 07:41:01 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2014-10-27 07:40:59 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2014-10-27 07:40:59 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2014-10-27 07:40:38 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2014-10-27 07:40:38 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2014-10-27 07:40:36 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2014-10-27 07:40:36 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2014-10-27 07:40:36 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2014-10-27 07:40:36 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2014-10-27 07:40:33 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2014-10-27 07:40:33 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2014-10-27 07:40:31 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2014-10-27 07:40:31 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2014-10-27 07:40:28 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2014-10-27 07:40:28 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2014-10-27 07:40:26 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2014-10-27 07:40:26 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2014-10-27 07:40:23 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2014-10-27 07:40:23 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2014-10-27 07:40:22 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2014-10-27 07:40:22 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2014-10-27 07:02:04 ----D---- C:\Program Files (x86)\Sniper Elite 3

======List of files/folders modified in the last 1 month======

2014-11-16 21:45:36 ----RD---- C:\Program Files
2014-11-16 21:44:38 ----D---- C:\WINDOWS\Prefetch
2014-11-16 21:00:01 ----D---- C:\WINDOWS\system32\sru
2014-11-16 20:59:57 ----D---- C:\WINDOWS\Temp
2014-11-16 20:13:27 ----RD---- C:\WINDOWS\System32
2014-11-16 20:13:27 ----D---- C:\WINDOWS\Inf
2014-11-16 20:13:27 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-11-16 20:09:12 ----D---- C:\Windows
2014-11-16 14:53:37 ----D---- C:\WINDOWS\system32\drivers\etc
2014-11-16 12:47:07 ----HD---- C:\ProgramData
2014-11-16 12:46:53 ----D---- C:\WINDOWS\SysWOW64
2014-11-16 12:32:56 ----D---- C:\Users\Slamak\AppData\Roaming\eM Client
2014-11-16 12:32:30 ----D---- C:\WINDOWS\system32\drivers
2014-11-16 12:01:53 ----D---- C:\WINDOWS\system32\config
2014-11-16 11:57:44 ----D---- C:\WINDOWS\Microsoft.NET
2014-11-16 06:26:24 ----RD---- C:\Program Files (x86)
2014-11-16 06:21:59 ----D---- C:\Users\Slamak\AppData\Roaming\Seznam.cz
2014-11-16 06:21:29 ----D---- C:\Program Files (x86)\Seznam.cz
2014-11-16 06:21:07 ----SHD---- C:\WINDOWS\Installer
2014-11-16 06:18:50 ----D---- C:\Program Files (x86)\Common Files
2014-11-16 06:16:38 ----D---- C:\Users\Slamak\AppData\Roaming\.minecraft
2014-11-16 06:14:24 ----D---- C:\WINDOWS\SoftwareDistribution
2014-11-15 17:54:36 ----D---- C:\WINDOWS\system32\DriverStore
2014-11-15 17:53:44 ----D---- C:\WINDOWS\WinSxS
2014-11-15 17:34:46 ----D---- C:\WINDOWS\debug
2014-11-15 17:04:59 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2014-11-15 16:59:25 ----D---- C:\Users\Slamak\AppData\Roaming\DAEMON Tools Lite
2014-11-15 16:59:24 ----D---- C:\Users\Slamak\AppData\Roaming\FileZilla
2014-11-15 16:59:11 ----DC---- C:\WINDOWS\Panther
2014-11-15 16:59:11 ----D---- C:\WINDOWS\Logs
2014-11-15 16:54:37 ----D---- C:\WINDOWS\system32\Tasks
2014-11-15 16:36:42 ----D---- C:\WINDOWS\rescache
2014-11-15 15:19:05 ----D---- C:\ProgramData\FLEXnet
2014-11-15 15:17:06 ----D---- C:\WINDOWS\system32\catroot2
2014-11-15 15:17:00 ----SHD---- C:\System Volume Information
2014-11-14 13:15:03 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-14 13:12:14 ----D---- C:\Program Files\Windows Defender
2014-11-14 13:12:14 ----D---- C:\Program Files (x86)\Windows Defender
2014-11-14 13:12:13 ----D---- C:\WINDOWS\system32\wbem
2014-11-14 13:12:12 ----D---- C:\WINDOWS\system32\cs-CZ
2014-11-14 13:12:11 ----SD---- C:\WINDOWS\system32\CompatTel
2014-11-14 13:12:10 ----RD---- C:\WINDOWS\ToastData
2014-11-14 13:12:09 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-11-14 13:12:09 ----D---- C:\WINDOWS\apppatch
2014-11-14 13:12:06 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-11-14 13:12:04 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-11-14 13:12:04 ----D---- C:\WINDOWS\system32\migration
2014-11-14 13:12:04 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-14 13:12:03 ----D---- C:\Program Files\Internet Explorer
2014-11-14 13:09:07 ----D---- C:\WINDOWS\AppReadiness
2014-11-13 22:14:01 ----RSD---- C:\WINDOWS\assembly
2014-11-13 14:28:26 ----HD---- C:\Program Files\WindowsApps
2014-11-13 14:28:15 ----D---- C:\WINDOWS\CbsTemp
2014-11-13 14:25:35 ----D---- C:\WINDOWS\system32\MRT
2014-11-13 14:21:26 ----A---- C:\WINDOWS\system32\MRT.exe
2014-11-12 22:14:46 ----D---- C:\WINDOWS\Tasks
2014-11-10 21:13:25 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-10-30 12:25:26 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2014-10-30 01:55:02 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-10-28 22:43:46 ----D---- C:\Users\Slamak\AppData\Roaming\VSO
2014-10-26 07:04:17 ----D---- C:\WINDOWS\LiveKernelReports
2014-10-17 11:12:34 ----D---- C:\ProgramData\SWTCWRH
2014-10-17 06:53:27 ----D---- C:\WINDOWS\MediaViewer
2014-10-17 06:53:26 ----D---- C:\WINDOWS\FileManager
2014-10-17 06:53:26 ----D---- C:\WINDOWS\Camera
2014-10-17 06:53:21 ----D---- C:\WINDOWS\WinStore

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 Wof;Windows Overlay File System Filter Driver; C:\WINDOWS\system32\drivers\Wof.sys [2014-07-15 157016]
R1 dtsoftbus01;@oem1.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-09-29 283064]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\WINDOWS\system32\DRIVERS\RMCAST.sys [2013-08-22 144384]
R3 b57xdbd;@oem24.inf,%bcmxd_16bf_svcd%;Broadcom xD Picture Bus Driver Service; C:\WINDOWS\System32\drivers\b57xdbd.sys [2012-08-13 72280]
R3 b57xdmp;@oem24.inf,%BXD_SVCDESC%;Broadcom xD Picture vstorp client drv; C:\WINDOWS\System32\drivers\b57xdmp.sys [2012-08-13 21080]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 – ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2013-07-01 8536752]
R3 bScsiMSa;bScsiMSa; C:\WINDOWS\System32\drivers\bScsiMSa.sys [2012-06-19 55384]
R3 bScsiSDa;bScsiSDa; C:\WINDOWS\System32\drivers\bScsiSDa.sys [2012-08-14 70744]
R3 ETD;@oem3.inf,%PS2.DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2012-11-20 331152]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2014-01-29 5363200]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-06-12 4060560]
R3 IntcDAud;@oem21.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\system32\DRIVERS\k57nd60a.sys [2013-06-18 425984]
R3 MEIx64;@oem25.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-02 62784]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2010-04-20 18432]
R3 Ps2Kb2Hid;@oem26.inf,%Ps2Kb2Hid.SVCDESC%;PS/2 Keyboard to HID Driver; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [2013-02-08 26736]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2010-07-09 17408]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfdx64.sys [2012-06-11 26112]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-08-22 44544]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\WINDOWS\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 Apache2.2;Apache2.2; c:\xampp\apache\bin\httpd.exe [2010-10-18 20549]
R2 BrcmCardReader;Broadcom Card Reader Service; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [2012-08-21 176640]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2012-10-26 2449552]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-12-10 350544]
R2 FileZilla Server;FileZilla Server FTP server; c:\xampp\filezillaftp\filezillaserver.exe [2010-10-17 742912]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LeapFrog Connect Device Service;LeapFrog Connect Device Service; C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe [2014-01-22 7393280]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 mysql;mysql; c:\xampp\mysql\bin\mysqld.exe [2010-12-03 8133120]
R2 NAUpdate;Nero Update; C:\Program Files (x86)\Nero\Update\NASvc.exe [2013-07-18 762192]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [2012-11-03 259136]
R2 PSI_SVC_2_x64;Protexis Licensing V2 x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2010-11-30 336824]
R2 RfButtonDriverService;Dritek RF Button Command Service; C:\Windows\RfBtnSvc64.exe [2013-02-08 96880]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2012-10-23 658064]
S2 Freemake Improver;Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2014-05-07 108032]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-28 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-11 267440]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-01-29 279000]
S3 DeviceFastLaneService;Device Fast-lane Service; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [2012-11-16 469648]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-02-08 655624]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-28 116648]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-10 114288]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]

-----------------EOF-----------------

[Márty84]

Zdravim

Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.

[slamax]

# AdwCleaner v4.101 - Report created 17/11/2014 at 18:57:13
# Updated 09/11/2014 by Xplode
# Database : 2014-11-16.1 [Live]
# Operating System : Windows 8.1 (64 bits)
# Username : Slamak - SLAMAKACER
# Running from : C:\Users\Slamak\Desktop\adwcleaner_4.101.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

[!] Folder Deleted : C:\Users\Slamak\AppData\Local\Pokki
Folder Deleted : C:\Users\Slamak\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj
File Deleted : C:\Users\Slamak\AppData\Local\Temp\Uninstall.exe

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj
Key Deleted : HKCU\Software\Classes\pokki
Key Deleted : HKCU\Software\Classes\AllFileSystemObjects\shell\pokki
Key Deleted : HKCU\Software\Classes\Directory\shell\pokki
Key Deleted : HKCU\Software\Classes\Drive\shell\pokki
Key Deleted : HKCU\Software\Classes\lnkfile\shell\pokki
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{A75BE48D-BF58-4A8B-B96C-F9A09DFB9844}
Key Deleted : HKCU\Software\Pokki
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17416


-\\ Mozilla Firefox v33.1 (x86 cs)

[gjyzp0az.default\prefs.js] - Line Deleted : user_pref("extensions.toolbar.mindspark.lastInstalled", "safepcrepair@mindspark.com");

-\\ Google Chrome v38.0.2125.111

[C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.zonealarm.com/search?Source=Browser&oemCode=ZLN23774809096958-1001&toolbarId=base&affiliateId=1025&Lan=en&utid=8cdfa8b7000000000000001a4d0972ae&q={searchTerms}
[C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://websearch.ask.com/redirect?client=cr&src=kw&tb=CLM&o=15427&locale=en_EU&apn_uid=f5875812-a331-4957-8e61-72272735b198&apn_ptnrs=LE&apn_sauid=EF858957-BD5C-44AD-9A2F-6E6B489DAA28&apn_dtid=YYYYYYYYCZ&q={searchTerms}
[C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://websearch.ask.com/redirect?client=cr&src=kw&tb=CLM&o=15427&locale=en_EU&apn_uid=f5875812-a331-4957-8e61-72272735b198&apn_ptnrs=LE&apn_sauid=EF858957-BD5C-44AD-9A2F-6E6B489DAA28&apn_dtid=YYYYYYYYCZ&q={searchTerms}
[C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2645238&SearchSource=3&q={searchTerms}
[C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2645238&SearchSource=3&q={searchTerms}
[C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://home.myplaycity.com/results.php?category=web&s={searchTerms}
[C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://blekko.com/ws/?source=c3348dd4&tbp=rbox&toolbarid=blekkotb_031&u=29551CF2CCFF5623B6488650327C62E7&q={searchTerms}
[C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://websearch.just-browse.info/?l=1&q={searchTerms}

*************************

AdwCleaner[R0].txt - [3632 octets] - [17/11/2014 18:55:46]
AdwCleaner[S0].txt - [3567 octets] - [17/11/2014 18:57:13]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3627 octets] ##########

[Márty84]

Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=29&t=137928 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

[slamax]

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 17. 11. 2014
Čas skenování: 22:19:10
Protokol:
Správce: Ano

Verze: 2.00.3.1025
Databáze malwaru: v2014.11.17.06
Databáze rootkitů: v2014.11.12.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Sebeobrany: Vypnuto

OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: Slamak

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 609817
Uplynulý čas: 2 hod, 1 min, 28 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Žádné zákerné zjištěny položek)

Moduly: 0
(Žádné zákerné zjištěny položek)

Klíče registru: 0
(Žádné zákerné zjištěny položek)

Hodnoty registru: 2
Malware.Trace, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|NtVdmSrv, C:\Windows\inf\ntvdm.vbe, , [a535d963c9b3ae8860878cfdab59f010]
PUP.Optional.FreeMakeConverter.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|fmconverter@gmail.com, C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\, , [e1f9003cdca051e56995f5418e754bb5]

Data registru: 0
(Žádné zákerné zjištěny položek)

Složky: 1
PUP.Optional.MindSpark.A, C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\SafePCRepair_89, , [b1296cd04e2e2313ebd7f21ea0639868],

Soubory: 8
Adware.Agent, C:\Program Files (x86)\LucasArts\Republic Heroes\1911.dll, , [6476d864b5c7fa3c6a35c3b9897750b0],
PUP.Optional.OpenCandy, C:\Users\Slamak\AppData\Roaming\GRETECH\GomPlayer\GrLauncherTempSetup.exe, , [20ba7bc14735f83e45bdfd7442c305fb],
PUP.Optional.Koyote.A, C:\Users\Slamak\Downloads\FreeVideoConverterSetup-r136-n-bf.exe, , [6c6e4af282fa2e087a162831df224eb2],
PUP.Optional.OpenCandy, C:\Users\Slamak\Downloads\DTLite-setup.exe, , [13c7be7e9ce0a294a35f640d689d36ca],
PUP.Optional.OpenCandy, C:\Users\Slamak\Downloads\DTLite4491-0356.exe, , [fae0b18bb9c352e48280d69b41c4837d],
BitcoinMiner, C:\Windows\Inf\mswinsb\mswinsb.exe, , [9a40d8645b21c96d6c1c1df9f809ab55],
Malware.Trace, C:\Windows\Inf\ntvdm.vbe, , [a535d963c9b3ae8860878cfdab59f010],
Malware.Trace, C:\Windows\Inf\ntvdm.inf, , [e0fa4fed6418d462dc0c81083ec601ff],

Fyzické sektory: 0
(Žádné zákerné zjištěny položek)


(end)

[Márty84]

Vsechny nalezy hodte do karanteny. Po restartu pc test zopakujte, at vime, jestli se to nevraci. Napiste vysledek testu a podle nej zvolim dalsi postup.

[slamax]

Po dalším skenu nenalezeny další hrozby.

[Márty84]

MBAM odinstalujte a dejte novy log z RSIT

[slamax]

Logfile of random's system information tool 1.10 (written by random/random)
Run by Slamak at 2014-11-19 14:10:24
Microsoft Windows 8.1
System drive C: has 701 GB (75%) free of 934 GB
Total RAM: 3909 MB (61% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:10:34, on 19. 11. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
C:\Windows\SysWOW64\C2MP\TrayMenu.exe
C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Slamak.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RadioController] "C:\Program Files (x86)\RadioController\RfBtnHelper.exe" Start_Run
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Printsrv] c:\Windows\System32\Printing_Admin_Scripts\en-US\pubpr.vbs
O4 - HKLM\..\Run: [Monitor] "C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [eM Client] "C:\Program Files (x86)\eM Client\MailClient.exe" /startup
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [Application Restart #0] C:\Users\Slamak\AppData\Local\Pokki\Engine\pokki.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resources --disable-client-side-phishing-detection --enable-file-cookies --disable-sync --disable-breakpad --disable-bundled-ppapi-flash --disable-sync-tabs --disable-speech-input --disable-custom-jumplist --process-per-tab --debug-devtools-frontend="C:\Users\Slamak\AppData\Local\Pokki\Engine\inspector" --no-first-run --lang=en-US --disable-component-update --disable-prompt-on-repost --no-startup-window --disable-translate --disable-logging --disable-desktop-notifications --disable-gpu-process-prelaunch --flag-switches-begin --flag-switches-end --restore-last-session
O4 - Global Startup: Acer Backup Manager Tray.lnk = C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
O4 - Global Startup: TrayMenu.lnk = C:\Windows\SysWOW64\C2MP\TrayMenu.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apache2.2 - Apache Software Foundation - c:\xampp\apache\bin\httpd.exe
O23 - Service: Broadcom Card Reader Service (BrcmCardReader) - Broadcom Corp. - C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
O23 - Service: CCDMonitorService - Acer Incorporated - C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Device Fast-lane Service (DeviceFastLaneService) - Acer Incorporated - C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FileZilla Server FTP server (FileZilla Server) - FileZilla Project - c:\xampp\filezillaftp\filezillaserver.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LeapFrog Connect Device Service - LeapFrog Enterprises, Inc. - C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: mysql - Unknown owner - c:\xampp\mysql\bin\mysqld.exe
O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: Protexis Licensing V2 x64 (PSI_SVC_2_x64) - arvato digital services llc - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: Služba zařazování tisku (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: XAMPP Service (XAMPP) - Unknown owner - c:\xampp\service.exe

--
End of file - 10522 bytes

======Listing Processes======





wininit.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"c:\xampp\apache\bin\httpd.exe" -k runservice
"C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe"
"C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe"
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
dashost.exe {9edffaa0-b8cd-40dc-984c73e8fa9743b7}
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"c:\xampp\filezillaftp\filezillaserver.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe"
C:\xampp\apache\bin\httpd.exe -d C:/xampp/apache
c:\xampp\mysql\bin\mysqld.exe --defaults-file=c:\xampp\mysql\bin\my.ini mysql
"C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe"
"c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe"
C:\Windows\RfBtnSvc64.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc

C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\System32\svchost.exe -k LocalServicePeerNet

C:\WINDOWS\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"

C:\WINDOWS\System32\WinLogon.exe -SpecialSession
-hiberboot
"C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window --enable-setforeground-window --enable-kbhook-window
C:\WINDOWS\Explorer.EXE
"C:\Program Files (x86)\Launch Manager\LManager.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
"C:\WINDOWS\system32\igfxext.exe" -Embedding
taskhostex.exe
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k
"C:\Windows\SysWOW64\C2MP\TrayMenu.exe" vlc.ico
"C:\Program Files (x86)\RadioController\RfBtnHelper.exe" HigherRFButtonHelper
"C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe"
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
"C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"

"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe19_ Global\UsGthrCtrlFltPipeMssGthrPipe19 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 580 584 592 65536 588
"C:\Users\Slamak\Downloads\RSITx64(1).exe"

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.223 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.60.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.60.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.223 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll


C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\extensions\
artur.dubovoy@gmail.com
{ea614400-e918-4741-9a97-7a972ff7c30b}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-06-27 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-06-27 171944]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-11-20 2873744]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-06-11 12503184]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2014-01-29 171992]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2014-01-29 399832]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2014-01-29 442328]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"eM Client"=C:\Program Files (x86)\eM Client\MailClient.exe [2014-10-15 15558952]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-10-30 6501656]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Application Restart #0"=C:\Users\Slamak\AppData\Local\Pokki\Engine\pokki.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resources --disable-client-side-phishing-detection --enable-file-cookies --disable-sync --disable-breakpad --disable-bundled-ppapi-flash --disable-sync-tabs --disable-speech-input --disable-custom-jumplist --process-per-tab --debug-devtools-frontend=C:\Users\Slamak\AppData\Local\Pokki\Engine\inspector --no-first-run --lang=en-US --disable-component-update --disable-prompt-on-repost --no-startup-window --disable-translate --disable-logging --disable-desktop-notifications --disable-gpu-process-prelaunch --flag-switches-begin --flag-switches-end --restore-last-session []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"RadioController"=C:\Program Files (x86)\RadioController\RfBtnHelper.exe [2013-02-08 111216]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"Printsrv"=c:\Windows\System32\Printing_Admin_Scripts\en-US\pubpr.vbs []
"Monitor"=C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe [2014-01-22 106496]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-05-07 256896]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Acer Backup Manager Tray.lnk - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
TrayMenu.lnk - C:\Windows\SysWOW64\C2MP\TrayMenu.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2014-01-29 442880]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"ConsentPromptBehaviorAdmin"=0
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.ffds"=ff_vfw.dll
"msacm.ac3acm"=AC3ACM.acm
"msacm.lameacm"=LameACM.acm

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-11-17 20:31:10 ----D---- C:\ProgramData\Malwarebytes
2014-11-17 18:55:42 ----D---- C:\AdwCleaner
2014-11-16 21:45:36 ----D---- C:\rsit
2014-11-16 21:45:36 ----D---- C:\Program Files\trend micro
2014-11-16 12:46:53 ----A---- C:\WINDOWS\SYSWOW64\BRDP7055W.DAT
2014-11-16 08:27:24 ----A---- C:\WINDOWS\system32\BrWi209d.dll
2014-11-16 08:27:24 ----A---- C:\WINDOWS\system32\BrUsi09d.dll
2014-11-16 08:27:23 ----A---- C:\WINDOWS\system32\BrJDec.dll
2014-11-15 16:54:29 ----D---- C:\Program Files\CCleaner
2014-11-15 16:03:09 ----SHD---- C:\Config.Msi
2014-11-15 15:41:51 ----D---- C:\Users\Slamak\AppData\Roaming\FLEXnet
2014-11-15 15:19:41 ----D---- C:\Users\Slamak\AppData\Roaming\Nuance
2014-11-15 15:19:35 ----D---- C:\ProgramData\ScanSoft
2014-11-15 15:19:05 ----D---- C:\ProgramData\Nuance
2014-11-15 15:16:16 ----D---- C:\ProgramData\Brother
2014-11-13 00:06:17 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-11-13 00:06:17 ----A---- C:\WINDOWS\system32\schannel.dll
2014-11-13 00:06:16 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2014-11-13 00:06:16 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-11-13 00:06:16 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2014-11-13 00:05:53 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2014-11-13 00:05:52 ----A---- C:\WINDOWS\system32\msi.dll
2014-11-13 00:05:52 ----A---- C:\WINDOWS\system32\authui.dll
2014-11-13 00:05:51 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-11-13 00:05:50 ----A---- C:\WINDOWS\SYSWOW64\msihnd.dll
2014-11-13 00:05:50 ----A---- C:\WINDOWS\system32\msihnd.dll
2014-11-13 00:05:50 ----A---- C:\WINDOWS\system32\consent.exe
2014-11-13 00:05:49 ----A---- C:\WINDOWS\system32\appinfo.dll
2014-11-13 00:05:39 ----A---- C:\WINDOWS\system32\user32.dll
2014-11-13 00:05:38 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2014-11-13 00:05:37 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-11-13 00:05:37 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-11-13 00:05:36 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-11-13 00:05:34 ----A---- C:\WINDOWS\SYSWOW64\winshfhc.dll
2014-11-13 00:05:34 ----A---- C:\WINDOWS\system32\winshfhc.dll
2014-11-13 00:05:03 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-11-13 00:05:02 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-11-13 00:04:48 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-11-13 00:04:47 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-11-13 00:04:47 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-11-13 00:04:47 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-11-13 00:04:47 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-11-13 00:04:47 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-11-13 00:04:46 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-11-13 00:04:46 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-11-13 00:04:46 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-11-13 00:04:45 ----A---- C:\WINDOWS\system32\EncDump.dll
2014-11-13 00:04:42 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-11-13 00:04:40 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-11-13 00:03:44 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-11-13 00:03:35 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-11-13 00:03:27 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-11-13 00:03:23 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-11-13 00:03:21 ----A---- C:\WINDOWS\system32\wininet.dll
2014-11-13 00:03:20 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-11-13 00:03:20 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-11-13 00:03:19 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-11-13 00:03:19 ----A---- C:\WINDOWS\system32\inetcomm.dll
2014-11-13 00:03:19 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-11-13 00:03:18 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2014-11-13 00:03:18 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-11-13 00:03:17 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-11-13 00:03:16 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2014-11-13 00:03:16 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-11-13 00:03:16 ----A---- C:\WINDOWS\system32\jscript.dll
2014-11-13 00:03:15 ----A---- C:\WINDOWS\system32\ieui.dll
2014-11-13 00:03:14 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-11-13 00:03:14 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-11-13 00:03:13 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-11-13 00:03:12 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-11-13 00:03:12 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2014-11-13 00:03:12 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-11-13 00:03:10 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-11-13 00:03:10 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-11-13 00:03:09 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-11-13 00:03:09 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-11-13 00:03:09 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-11-13 00:03:09 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-11-13 00:03:07 ----A---- C:\WINDOWS\system32\webcheck.dll
2014-11-13 00:03:07 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-11-13 00:03:06 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2014-11-13 00:03:06 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-11-13 00:03:04 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2014-11-13 00:03:04 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-11-13 00:03:03 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-11-13 00:03:03 ----A---- C:\WINDOWS\system32\msrating.dll
2014-11-13 00:03:03 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-11-13 00:03:03 ----A---- C:\WINDOWS\system32\iesysprep.dll
2014-11-13 00:03:03 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-11-13 00:03:03 ----A---- C:\WINDOWS\system32\hlink.dll
2014-11-13 00:03:02 ----A---- C:\WINDOWS\SYSWOW64\inseng.dll
2014-11-13 00:03:02 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-11-13 00:03:02 ----A---- C:\WINDOWS\SYSWOW64\iesysprep.dll
2014-11-13 00:03:02 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2014-11-13 00:03:02 ----A---- C:\WINDOWS\system32\iepeers.dll
2014-11-13 00:03:02 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-11-13 00:03:01 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-11-13 00:03:01 ----A---- C:\WINDOWS\system32\inseng.dll
2014-11-13 00:03:00 ----A---- C:\WINDOWS\SYSWOW64\msfeedsbs.dll
2014-11-13 00:03:00 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-11-13 00:03:00 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-11-13 00:03:00 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2014-11-13 00:03:00 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-11-13 00:03:00 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-11-13 00:02:59 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2014-11-13 00:02:59 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-11-13 00:02:59 ----A---- C:\WINDOWS\SYSWOW64\IEAdvpack.dll
2014-11-13 00:02:59 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-11-13 00:02:58 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-13 00:02:58 ----A---- C:\WINDOWS\SYSWOW64\imgutil.dll
2014-11-13 00:02:58 ----A---- C:\WINDOWS\SYSWOW64\iexpress.exe
2014-11-13 00:02:58 ----A---- C:\WINDOWS\system32\occache.dll
2014-11-13 00:02:57 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-11-13 00:02:57 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-11-13 00:02:57 ----A---- C:\WINDOWS\system32\licmgr10.dll
2014-11-13 00:02:57 ----A---- C:\WINDOWS\system32\imgutil.dll
2014-11-13 00:02:56 ----A---- C:\WINDOWS\SYSWOW64\wextract.exe
2014-11-13 00:02:56 ----A---- C:\WINDOWS\SYSWOW64\pngfilt.dll
2014-11-13 00:02:56 ----A---- C:\WINDOWS\SYSWOW64\licmgr10.dll
2014-11-13 00:02:56 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-11-13 00:02:56 ----A---- C:\WINDOWS\system32\pngfilt.dll
2014-11-13 00:02:56 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-11-13 00:02:55 ----A---- C:\WINDOWS\SYSWOW64\url.dll
2014-11-13 00:02:55 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-11-13 00:02:55 ----A---- C:\WINDOWS\system32\url.dll
2014-11-13 00:02:54 ----A---- C:\WINDOWS\system32\wextract.exe
2014-11-13 00:02:54 ----A---- C:\WINDOWS\system32\IEAdvpack.dll
2014-11-13 00:02:53 ----A---- C:\WINDOWS\SYSWOW64\mshta.exe
2014-11-13 00:02:53 ----A---- C:\WINDOWS\SYSWOW64\msfeedssync.exe
2014-11-13 00:02:53 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2014-11-13 00:02:53 ----A---- C:\WINDOWS\system32\iexpress.exe
2014-11-13 00:02:53 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-11-13 00:02:52 ----A---- C:\WINDOWS\system32\mshta.exe
2014-11-13 00:02:06 ----A---- C:\WINDOWS\system32\win32k.sys
2014-11-13 00:02:04 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2014-11-13 00:02:04 ----A---- C:\WINDOWS\system32\packager.dll
2014-11-13 00:02:02 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-11-13 00:02:01 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-11-13 00:02:01 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-11-13 00:02:01 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-11-13 00:02:01 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-11-13 00:02:01 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-11-13 00:02:01 ----A---- C:\WINDOWS\system32\certcli.dll
2014-11-13 00:02:01 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-11-13 00:02:00 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2014-11-13 00:02:00 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2014-11-13 00:02:00 ----A---- C:\WINDOWS\system32\rdpudd.dll
2014-11-13 00:02:00 ----A---- C:\WINDOWS\system32\msaudite.dll
2014-11-13 00:02:00 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2014-11-13 00:01:14 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-11-13 00:01:13 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2014-11-13 00:01:12 ----A---- C:\WINDOWS\system32\devinv.dll
2014-11-13 00:01:11 ----A---- C:\WINDOWS\system32\generaltel.dll
2014-11-13 00:01:11 ----A---- C:\WINDOWS\system32\aepdu.dll
2014-11-13 00:01:11 ----A---- C:\WINDOWS\system32\aeinv.dll
2014-11-13 00:01:09 ----A---- C:\WINDOWS\system32\aepic.dll
2014-11-13 00:01:07 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-11-13 00:01:06 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-11-13 00:01:06 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-11-13 00:01:06 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-11-13 00:01:05 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-11-13 00:01:05 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-11-13 00:01:05 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-11-13 00:01:05 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-11-13 00:01:05 ----A---- C:\WINDOWS\system32\wups.dll
2014-11-13 00:01:05 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-11-13 00:01:04 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-11-13 00:01:04 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-11-13 00:01:04 ----A---- C:\WINDOWS\system32\wups2.dll
2014-11-13 00:01:04 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-11-13 00:01:04 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-11-13 00:01:04 ----A---- C:\WINDOWS\system32\wuaext.dll
2014-11-13 00:00:20 ----A---- C:\WINDOWS\system32\shell32.dll
2014-11-13 00:00:17 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-11-13 00:00:15 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-11-13 00:00:11 ----A---- C:\WINDOWS\system32\twinui.dll
2014-11-13 00:00:11 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-11-13 00:00:09 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-11-13 00:00:09 ----A---- C:\WINDOWS\system32\localspl.dll
2014-11-13 00:00:09 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-11-13 00:00:08 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-11-13 00:00:07 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-11-13 00:00:06 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2014-11-13 00:00:06 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-11-13 00:00:06 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-11-13 00:00:05 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2014-11-13 00:00:05 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2014-11-13 00:00:04 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2014-11-13 00:00:04 ----A---- C:\WINDOWS\system32\puiobj.dll
2014-11-13 00:00:03 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2014-11-13 00:00:02 ----AC---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2014-11-13 00:00:00 ----A---- C:\WINDOWS\system32\untfs.dll
2014-11-13 00:00:00 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-11-12 23:59:59 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2014-11-12 23:59:58 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2014-11-12 23:59:57 ----A---- C:\WINDOWS\SYSWOW64\FXSAPI.dll
2014-11-12 23:59:57 ----A---- C:\WINDOWS\system32\FXSAPI.dll
2014-10-27 07:47:04 ----D---- C:\ProgramData\Steam
2014-10-27 07:42:54 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2014-10-27 07:42:54 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2014-10-27 07:42:54 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2014-10-27 07:42:54 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2014-10-27 07:42:53 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2014-10-27 07:42:53 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2014-10-27 07:42:51 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_43.dll
2014-10-27 07:42:51 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2014-10-27 07:42:50 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_43.dll
2014-10-27 07:42:50 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2014-10-27 07:42:49 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_43.dll
2014-10-27 07:42:49 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_43.dll
2014-10-27 07:42:49 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2014-10-27 07:42:49 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2014-10-27 07:42:48 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_43.dll
2014-10-27 07:42:48 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2014-10-27 07:42:47 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2014-10-27 07:42:47 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2014-10-27 07:42:47 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2014-10-27 07:42:47 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2014-10-27 07:42:46 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2014-10-27 07:42:46 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2014-10-27 07:42:45 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_5.dll
2014-10-27 07:42:45 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2014-10-27 07:42:44 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2014-10-27 07:42:44 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2014-10-27 07:42:43 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2014-10-27 07:42:43 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2014-10-27 07:42:41 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2014-10-27 07:42:41 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2014-10-27 07:42:40 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2014-10-27 07:42:40 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2014-10-27 07:42:39 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_42.dll
2014-10-27 07:42:39 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2014-10-27 07:42:38 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_42.dll
2014-10-27 07:42:38 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2014-10-27 07:42:36 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_41.dll
2014-10-27 07:42:36 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_41.dll
2014-10-27 07:42:36 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2014-10-27 07:42:36 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2014-10-27 07:42:34 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2014-10-27 07:42:34 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2014-10-27 07:42:32 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2014-10-27 07:42:32 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_3.dll
2014-10-27 07:42:32 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2014-10-27 07:42:32 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2014-10-27 07:42:32 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2014-10-27 07:42:32 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2014-10-27 07:42:31 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2014-10-27 07:42:31 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2014-10-27 07:42:29 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2014-10-27 07:42:29 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2014-10-27 07:42:29 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2014-10-27 07:42:29 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2014-10-27 07:42:26 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2014-10-27 07:42:26 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2014-10-27 07:42:25 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2014-10-27 07:42:25 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2014-10-27 07:42:25 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2014-10-27 07:42:25 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2014-10-27 07:42:24 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2014-10-27 07:42:24 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2014-10-27 07:42:23 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2014-10-27 07:42:23 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2014-10-27 07:42:22 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_2.dll
2014-10-27 07:42:22 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_1.dll
2014-10-27 07:42:22 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2014-10-27 07:42:22 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2014-10-27 07:42:21 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2014-10-27 07:42:21 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2014-10-27 07:42:19 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_39.dll
2014-10-27 07:42:19 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_39.dll
2014-10-27 07:42:19 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2014-10-27 07:42:19 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2014-10-27 07:42:17 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2014-10-27 07:42:15 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2014-10-27 07:42:15 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2014-10-27 07:42:15 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2014-10-27 07:42:15 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2014-10-27 07:42:14 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2014-10-27 07:42:14 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2014-10-27 07:42:14 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2014-10-27 07:42:14 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2014-10-27 07:42:12 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2014-10-27 07:42:12 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2014-10-27 07:42:11 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2014-10-27 07:42:11 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2014-10-27 07:42:09 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2014-10-27 07:42:09 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2014-10-27 07:42:07 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2014-10-27 07:42:07 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2014-10-27 07:42:06 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2014-10-27 07:42:06 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2014-10-27 07:42:05 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2014-10-27 07:42:05 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2014-10-27 07:42:04 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2014-10-27 07:42:04 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2014-10-27 07:42:04 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2014-10-27 07:42:04 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2014-10-27 07:42:01 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2014-10-27 07:42:01 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2014-10-27 07:42:00 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2014-10-27 07:42:00 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2014-10-27 07:41:53 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2014-10-27 07:41:53 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2014-10-27 07:41:52 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2014-10-27 07:41:52 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2014-10-27 07:41:47 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2014-10-27 07:41:47 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2014-10-27 07:41:45 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2014-10-27 07:41:45 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2014-10-27 07:41:41 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2014-10-27 07:41:41 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2014-10-27 07:41:41 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2014-10-27 07:41:41 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2014-10-27 07:41:37 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2014-10-27 07:41:37 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2014-10-27 07:41:36 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2014-10-27 07:41:36 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2014-10-27 07:41:36 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2014-10-27 07:41:36 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2014-10-27 07:41:33 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2014-10-27 07:41:33 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2014-10-27 07:41:33 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2014-10-27 07:41:33 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2014-10-27 07:41:25 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2014-10-27 07:41:25 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2014-10-27 07:41:24 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2014-10-27 07:41:24 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2014-10-27 07:41:23 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2014-10-27 07:41:23 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2014-10-27 07:41:20 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2014-10-27 07:41:20 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2014-10-27 07:41:20 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2014-10-27 07:41:20 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2014-10-27 07:41:17 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2014-10-27 07:41:17 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2014-10-27 07:41:16 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2014-10-27 07:41:16 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2014-10-27 07:41:14 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2014-10-27 07:41:14 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2014-10-27 07:41:13 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2014-10-27 07:41:13 ----A---- C:\WINDOWS\system32\d3dx10.dll
2014-10-27 07:41:10 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_32.dll
2014-10-27 07:41:10 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2014-10-27 07:41:08 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2014-10-27 07:41:08 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2014-10-27 07:41:08 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2014-10-27 07:41:08 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2014-10-27 07:41:04 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_31.dll
2014-10-27 07:41:04 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2014-10-27 07:41:03 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2014-10-27 07:41:03 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2014-10-27 07:41:02 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2014-10-27 07:41:02 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2014-10-27 07:41:01 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2014-10-27 07:41:01 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2014-10-27 07:41:01 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2014-10-27 07:41:01 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2014-10-27 07:40:59 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2014-10-27 07:40:59 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2014-10-27 07:40:38 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2014-10-27 07:40:38 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2014-10-27 07:40:36 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2014-10-27 07:40:36 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2014-10-27 07:40:36 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2014-10-27 07:40:36 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2014-10-27 07:40:33 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2014-10-27 07:40:33 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2014-10-27 07:40:31 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2014-10-27 07:40:31 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2014-10-27 07:40:28 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2014-10-27 07:40:28 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2014-10-27 07:40:26 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2014-10-27 07:40:26 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2014-10-27 07:40:23 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2014-10-27 07:40:23 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2014-10-27 07:40:22 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2014-10-27 07:40:22 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2014-10-27 07:02:04 ----D---- C:\Program Files (x86)\Sniper Elite 3

======List of files/folders modified in the last 1 month======

2014-11-19 14:10:26 ----D---- C:\WINDOWS\Prefetch
2014-11-19 14:09:09 ----RD---- C:\Program Files (x86)
2014-11-19 14:09:09 ----D---- C:\WINDOWS\system32\drivers
2014-11-19 14:02:02 ----D---- C:\WINDOWS\system32\sru
2014-11-19 13:48:39 ----D---- C:\WINDOWS\WinSxS
2014-11-19 13:48:32 ----SHD---- C:\System Volume Information
2014-11-19 13:38:10 ----D---- C:\WINDOWS\CbsTemp
2014-11-19 13:37:44 ----D---- C:\Users\Slamak\AppData\Roaming\eM Client
2014-11-19 13:37:20 ----D---- C:\WINDOWS\system32\config
2014-11-19 09:00:24 ----D---- C:\WINDOWS\Temp
2014-11-19 09:00:24 ----D---- C:\WINDOWS\Microsoft.NET
2014-11-19 00:05:43 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2014-11-19 00:02:09 ----D---- C:\WINDOWS\Help
2014-11-19 00:01:08 ----D---- C:\WINDOWS\Inf
2014-11-18 18:43:31 ----RD---- C:\WINDOWS\System32
2014-11-18 18:43:31 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-11-18 18:35:38 ----D---- C:\WINDOWS\twain_32
2014-11-18 18:35:35 ----D---- C:\WINDOWS\system32\DriverStore
2014-11-17 20:31:10 ----HD---- C:\ProgramData
2014-11-17 18:58:39 ----D---- C:\Windows
2014-11-17 08:52:00 ----D---- C:\WINDOWS\debug
2014-11-16 22:41:07 ----D---- C:\WINDOWS\SoftwareDistribution
2014-11-16 22:41:06 ----D---- C:\WINDOWS\Logs
2014-11-16 21:45:36 ----RD---- C:\Program Files
2014-11-16 14:53:37 ----D---- C:\WINDOWS\system32\drivers\etc
2014-11-16 12:46:53 ----D---- C:\WINDOWS\SysWOW64
2014-11-16 06:21:59 ----D---- C:\Users\Slamak\AppData\Roaming\Seznam.cz
2014-11-16 06:21:29 ----D---- C:\Program Files (x86)\Seznam.cz
2014-11-16 06:21:07 ----SHD---- C:\WINDOWS\Installer
2014-11-16 06:18:50 ----D---- C:\Program Files (x86)\Common Files
2014-11-16 06:16:38 ----D---- C:\Users\Slamak\AppData\Roaming\.minecraft
2014-11-15 16:59:25 ----D---- C:\Users\Slamak\AppData\Roaming\DAEMON Tools Lite
2014-11-15 16:59:24 ----D---- C:\Users\Slamak\AppData\Roaming\FileZilla
2014-11-15 16:59:11 ----DC---- C:\WINDOWS\Panther
2014-11-15 16:54:37 ----D---- C:\WINDOWS\system32\Tasks
2014-11-15 16:36:42 ----D---- C:\WINDOWS\rescache
2014-11-15 15:19:05 ----D---- C:\ProgramData\FLEXnet
2014-11-15 15:17:06 ----D---- C:\WINDOWS\system32\catroot2
2014-11-14 13:15:03 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-14 13:12:14 ----D---- C:\Program Files\Windows Defender
2014-11-14 13:12:14 ----D---- C:\Program Files (x86)\Windows Defender
2014-11-14 13:12:13 ----D---- C:\WINDOWS\system32\wbem
2014-11-14 13:12:12 ----D---- C:\WINDOWS\system32\cs-CZ
2014-11-14 13:12:11 ----SD---- C:\WINDOWS\system32\CompatTel
2014-11-14 13:12:10 ----RD---- C:\WINDOWS\ToastData
2014-11-14 13:12:09 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-11-14 13:12:09 ----D---- C:\WINDOWS\apppatch
2014-11-14 13:12:06 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-11-14 13:12:04 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-11-14 13:12:04 ----D---- C:\WINDOWS\system32\migration
2014-11-14 13:12:04 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-14 13:12:03 ----D---- C:\Program Files\Internet Explorer
2014-11-14 13:09:07 ----D---- C:\WINDOWS\AppReadiness
2014-11-13 22:14:01 ----RSD---- C:\WINDOWS\assembly
2014-11-13 14:28:26 ----HD---- C:\Program Files\WindowsApps
2014-11-13 14:25:35 ----D---- C:\WINDOWS\system32\MRT
2014-11-13 14:21:26 ----A---- C:\WINDOWS\system32\MRT.exe
2014-11-12 22:14:46 ----D---- C:\WINDOWS\Tasks
2014-11-10 21:13:25 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-10-30 12:25:26 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2014-10-30 01:55:02 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-10-28 22:43:46 ----D---- C:\Users\Slamak\AppData\Roaming\VSO
2014-10-26 07:04:17 ----D---- C:\WINDOWS\LiveKernelReports

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 Wof;Windows Overlay File System Filter Driver; C:\WINDOWS\system32\drivers\Wof.sys [2014-07-15 157016]
R1 dtsoftbus01;@oem1.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-09-29 283064]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\WINDOWS\system32\DRIVERS\RMCAST.sys [2013-08-22 144384]
R3 b57xdbd;@oem24.inf,%bcmxd_16bf_svcd%;Broadcom xD Picture Bus Driver Service; C:\WINDOWS\System32\drivers\b57xdbd.sys [2012-08-13 72280]
R3 b57xdmp;@oem24.inf,%BXD_SVCDESC%;Broadcom xD Picture vstorp client drv; C:\WINDOWS\System32\drivers\b57xdmp.sys [2012-08-13 21080]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 – ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2013-07-01 8536752]
R3 bScsiMSa;bScsiMSa; C:\WINDOWS\System32\drivers\bScsiMSa.sys [2012-06-19 55384]
R3 bScsiSDa;bScsiSDa; C:\WINDOWS\System32\drivers\bScsiSDa.sys [2012-08-14 70744]
R3 ETD;@oem3.inf,%PS2.DeviceDesc%;ELAN PS/2 Port Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2012-11-20 331152]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2014-01-29 5363200]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-06-12 4060560]
R3 IntcDAud;@oem21.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\system32\DRIVERS\k57nd60a.sys [2013-06-18 425984]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys []
R3 MEIx64;@oem25.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-02 62784]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2010-04-20 18432]
R3 Ps2Kb2Hid;@oem26.inf,%Ps2Kb2Hid.SVCDESC%;PS/2 Keyboard to HID Driver; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [2013-02-08 26736]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2010-07-09 17408]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfdx64.sys [2012-06-11 26112]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-08-22 44544]
S3 WinUsb;@wpdmtp.inf,%WinUsb.SvcDesc%;WinUsb; C:\WINDOWS\system32\DRIVERS\WinUsb.sys [2013-08-22 78848]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 Apache2.2;Apache2.2; c:\xampp\apache\bin\httpd.exe [2010-10-18 20549]
R2 BrcmCardReader;Broadcom Card Reader Service; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [2012-08-21 176640]
R2 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2012-10-26 2449552]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-12-10 350544]
R2 FileZilla Server;FileZilla Server FTP server; c:\xampp\filezillaftp\filezillaserver.exe [2010-10-17 742912]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LeapFrog Connect Device Service;LeapFrog Connect Device Service; C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe [2014-01-22 7393280]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 mysql;mysql; c:\xampp\mysql\bin\mysqld.exe [2010-12-03 8133120]
R2 NAUpdate;Nero Update; C:\Program Files (x86)\Nero\Update\NASvc.exe [2013-07-18 762192]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [2012-11-03 259136]
R2 PSI_SVC_2_x64;Protexis Licensing V2 x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2010-11-30 336824]
R2 RfButtonDriverService;Dritek RF Button Command Service; C:\Windows\RfBtnSvc64.exe [2013-02-08 96880]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-07-18 364416]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2012-10-23 658064]
S2 Freemake Improver;Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2014-05-07 108032]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-28 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-11 267440]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-01-29 279000]
S3 DeviceFastLaneService;Device Fast-lane Service; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [2012-11-16 469648]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-02-08 655624]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-28 116648]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-10 114288]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]

-----------------EOF-----------------

[Márty84]

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s

Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).

[slamax]

OTL logfile created on: 20. 11. 2014 6:22:55 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Slamak\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17416)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d. M. yyyy

3,82 Gb Total Physical Memory | 2,52 Gb Available Physical Memory | 66,06% Memory free
4,51 Gb Paging File | 3,16 Gb Available in Paging File | 70,25% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 911,75 Gb Total Space | 683,10 Gb Free Space | 74,92% Space Free | Partition Type: NTFS

Computer Name: SLAMAKACER | User Name: Slamak | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014/11/20 06:21:07 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Slamak\Desktop\OTL.exe
PRC - [2014/11/10 21:13:24 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2014/09/12 10:43:06 | 000,064,704 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2014/05/07 12:33:30 | 000,108,032 | ---- | M] (Freemake) -- C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
PRC - [2014/01/22 12:05:52 | 000,106,496 | ---- | M] (LeapFrog Enterprises, Inc.) -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe
PRC - [2014/01/22 11:44:22 | 007,393,280 | ---- | M] (LeapFrog Enterprises, Inc.) -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
PRC - [2013/07/18 15:39:40 | 000,762,192 | ---- | M] (Nero AG) -- C:\Program Files (x86)\Nero\Update\NASvc.exe
PRC - [2013/02/24 21:04:04 | 000,704,008 | ---- | M] () -- C:\Windows\SysWOW64\C2MP\TrayMenu.exe
PRC - [2013/02/08 21:11:52 | 000,111,216 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\RadioController\RfBtnHelper.exe
PRC - [2012/12/10 09:39:12 | 000,475,984 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LMutilps32.exe
PRC - [2012/12/10 09:39:09 | 000,350,544 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe
PRC - [2012/12/10 09:39:08 | 001,192,784 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LManager.exe
PRC - [2012/11/03 01:36:52 | 000,259,136 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
PRC - [2012/11/03 01:36:24 | 000,624,192 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
PRC - [2012/10/26 06:39:50 | 002,449,552 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
PRC - [2012/09/20 01:07:44 | 000,995,856 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
PRC - [2012/07/18 01:10:34 | 000,364,416 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2012/07/18 01:10:32 | 000,276,864 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2012/07/18 01:10:18 | 000,165,760 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
PRC - [2010/12/03 19:18:12 | 008,133,120 | ---- | M] () -- c:\xampp\mysql\bin\mysqld.exe
PRC - [2010/10/18 01:32:10 | 000,020,549 | ---- | M] (Apache Software Foundation) -- C:\xampp\apache\bin\httpd.exe
PRC - [2010/10/18 01:32:10 | 000,020,549 | ---- | M] (Apache Software Foundation) -- c:\xampp\apache\bin\httpd.exe
PRC - [2010/10/17 20:38:42 | 000,742,912 | ---- | M] (FileZilla Project) -- c:\xampp\FileZillaFTP\FileZillaServer.exe


========== Modules (No Company Name) ==========

MOD - [2014/11/10 21:13:21 | 003,649,648 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2013/02/24 21:04:04 | 000,704,008 | ---- | M] () -- C:\Windows\SysWOW64\C2MP\TrayMenu.exe
MOD - [2012/11/03 01:38:02 | 000,465,384 | ---- | M] () -- C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll


========== Services (SafeList) ==========

SRV:64bit: - [2014/10/31 05:51:25 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2014/10/07 02:54:27 | 000,226,304 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2014/09/22 04:05:56 | 000,368,632 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:64bit: - [2014/09/22 04:05:56 | 000,023,792 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2014/08/16 04:29:38 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2014/08/16 01:58:35 | 000,287,744 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2014/08/16 01:45:51 | 000,267,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2014/07/24 08:28:58 | 001,600,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:64bit: - [2014/07/15 08:11:24 | 001,306,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:64bit: - [2014/07/15 08:11:24 | 000,834,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2014/07/15 08:04:54 | 000,491,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:64bit: - [2014/03/18 16:42:47 | 000,710,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2014/03/18 16:42:46 | 000,530,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:64bit: - [2014/03/18 16:42:38 | 000,366,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2014/03/18 16:42:35 | 003,394,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2014/03/18 16:42:35 | 001,576,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2014/03/18 16:42:30 | 000,399,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2013/08/22 12:32:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:64bit: - [2013/08/22 12:31:43 | 000,040,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2013/08/22 12:22:45 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2013/08/22 12:21:15 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2013/08/22 12:16:57 | 000,118,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2013/08/22 11:25:28 | 000,164,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:64bit: - [2013/08/22 11:02:47 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:64bit: - [2013/08/22 10:57:25 | 000,130,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:64bit: - [2013/08/22 10:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2013/08/22 10:50:59 | 000,245,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2013/08/22 10:50:00 | 000,525,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2013/08/22 10:45:59 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:64bit: - [2013/08/22 10:40:49 | 000,248,832 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2013/08/22 10:31:03 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2013/08/22 10:15:54 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:64bit: - [2012/11/16 23:07:20 | 000,469,648 | ---- | M] (Acer Incorporated) [On_Demand | Stopped] -- C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe -- (DeviceFastLaneService)
SRV:64bit: - [2012/10/23 20:26:26 | 000,658,064 | ---- | M] (Acer Incorporated) [On_Demand | Running] -- C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe -- (ePowerSvc)
SRV:64bit: - [2012/08/21 01:36:22 | 000,176,640 | ---- | M] (Broadcom Corp.) [Auto | Running] -- C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe -- (BrcmCardReader)
SRV:64bit: - [2012/04/20 23:16:12 | 000,635,104 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV:64bit: - [2010/11/30 12:27:58 | 000,336,824 | ---- | M] (arvato digital services llc) [Auto | Running] -- c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2_x64)
SRV - [2014/11/11 20:53:10 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/11/10 21:13:22 | 000,114,288 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014/09/12 10:43:06 | 000,064,704 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2014/08/16 04:29:38 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2014/07/15 08:04:54 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2014/05/07 12:33:30 | 000,108,032 | ---- | M] (Freemake) [Auto | Running] -- C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe -- (Freemake Improver)
SRV - [2014/01/29 22:02:44 | 000,279,000 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2014/01/22 11:44:22 | 007,393,280 | ---- | M] (LeapFrog Enterprises, Inc.) [Auto | Running] -- C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe -- (LeapFrog Connect Device Service)
SRV - [2013/10/23 08:15:08 | 000,172,192 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/08/22 04:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2013/08/22 03:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2013/07/18 15:39:40 | 000,762,192 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2013/02/08 21:34:08 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2013/02/08 21:11:52 | 000,096,880 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\RfBtnSvc64.exe -- (RfButtonDriverService)
SRV - [2012/12/10 09:39:09 | 000,350,544 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe -- (DsiWMIService)
SRV - [2012/11/03 01:36:52 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe -- (NTI IScheduleSvc)
SRV - [2012/10/26 06:39:50 | 002,449,552 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe -- (CCDMonitorService)
SRV - [2012/07/18 01:10:34 | 000,364,416 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012/07/18 01:10:32 | 000,276,864 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012/07/18 01:10:18 | 000,165,760 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2012/06/11 10:33:26 | 000,724,376 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010/12/03 19:18:12 | 008,133,120 | ---- | M] () [Auto | Running] -- c:\xampp\mysql\bin\mysqld.exe -- (mysql)
SRV - [2010/10/18 01:32:10 | 000,020,549 | ---- | M] (Apache Software Foundation) [Auto | Running] -- c:\xampp\apache\bin\httpd.exe -- (Apache2.2)
SRV - [2010/10/17 20:38:42 | 000,742,912 | ---- | M] (FileZilla Project) [Auto | Running] -- c:\xampp\FileZillaFTP\FileZillaServer.exe -- (FileZilla Server)
SRV - [2007/12/21 03:01:02 | 000,060,928 | ---- | M] () [Auto | Stopped] -- c:\xampp\service.exe -- (XAMPP)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2014/10/10 02:58:57 | 000,027,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2014/09/29 05:02:18 | 000,283,064 | ---- | M] (Disc Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2014/09/22 04:06:16 | 000,258,368 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2014/09/22 04:06:16 | 000,114,496 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:64bit: - [2014/09/22 03:49:43 | 000,035,320 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2014/08/15 01:36:55 | 000,146,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2014/07/24 16:28:38 | 000,468,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2014/07/24 16:28:38 | 000,412,992 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2014/07/24 12:42:22 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2014/07/15 08:13:20 | 000,055,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2014/07/15 08:11:25 | 000,157,016 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\WINDOWS\SysNative\drivers\wof.sys -- (Wof)
DRV:64bit: - [2014/07/15 08:11:25 | 000,136,024 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2014/07/15 08:11:24 | 000,376,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2014/03/18 16:42:37 | 000,924,504 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refs.sys -- (ReFS)
DRV:64bit: - [2014/03/18 16:42:31 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:64bit: - [2014/03/18 16:42:15 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2014/03/18 16:42:14 | 000,086,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:64bit: - [2014/03/18 16:42:13 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2014/03/18 16:42:13 | 000,236,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2014/03/18 16:42:13 | 000,189,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2014/03/18 16:42:13 | 000,079,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2014/03/18 16:42:13 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:64bit: - [2014/03/18 16:42:13 | 000,039,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:64bit: - [2014/03/18 16:42:13 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2014/03/18 16:10:16 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2014/01/29 22:02:28 | 005,363,200 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2013/08/22 14:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:64bit: - [2013/08/22 14:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2013/08/22 13:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:64bit: - [2013/08/22 13:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2013/08/22 13:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:64bit: - [2013/08/22 13:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2013/08/22 13:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2013/08/22 13:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2013/08/22 13:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2013/08/22 13:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2013/08/22 13:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2013/08/22 13:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:64bit: - [2013/08/22 13:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:64bit: - [2013/08/22 13:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2013/08/22 13:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2013/08/22 13:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:64bit: - [2013/08/22 13:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2013/08/22 13:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2013/08/22 13:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2013/08/22 13:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2013/08/22 13:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2013/08/22 13:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2013/08/22 13:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2013/08/22 13:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:64bit: - [2013/08/22 13:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2013/08/22 13:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2013/08/22 13:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:64bit: - [2013/08/22 13:37:27 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:64bit: - [2013/08/22 13:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2013/08/22 12:39:58 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV:64bit: - [2013/08/22 12:39:54 | 000,076,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:64bit: - [2013/08/22 12:39:50 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDScan.sys -- (WSDScan)
DRV:64bit: - [2013/08/22 12:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2013/08/22 12:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2013/08/22 12:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2013/08/22 12:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2013/08/22 12:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2013/08/22 12:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2013/08/22 12:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2013/08/22 12:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2013/08/22 12:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2013/08/22 12:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2013/08/22 12:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2013/08/22 12:37:46 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2013/08/22 12:37:42 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2013/08/22 12:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2013/08/22 12:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2013/08/22 12:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2013/08/22 12:36:43 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:64bit: - [2013/08/22 12:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:64bit: - [2013/08/22 12:36:23 | 000,144,384 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\rmcast.sys -- (RMCAST)
DRV:64bit: - [2013/08/22 12:36:07 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2013/08/22 12:35:42 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2013/08/22 09:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2013/08/13 00:25:46 | 000,017,624 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:64bit: - [2013/08/10 01:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:64bit: - [2013/07/30 19:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:64bit: - [2013/07/25 20:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:64bit: - [2013/07/01 17:50:06 | 008,536,752 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL63a.SYS -- (BCM43XX)
DRV:64bit: - [2013/06/18 15:45:14 | 000,425,984 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\k57nd60a.sys -- (k57nd60a)
DRV:64bit: - [2013/02/08 21:11:52 | 000,026,736 | ---- | M] (Dritek System Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\aPs2Kb2Hid.sys -- (Ps2Kb2Hid)
DRV:64bit: - [2012/11/20 11:48:40 | 000,331,152 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:64bit: - [2012/08/16 22:33:42 | 000,645,952 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:64bit: - [2012/08/14 20:15:36 | 000,070,744 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bScsiSDa.sys -- (bScsiSDa)
DRV:64bit: - [2012/08/13 19:59:42 | 000,072,280 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\b57xdbd.sys -- (b57xdbd)
DRV:64bit: - [2012/08/13 19:59:42 | 000,021,080 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\b57xdmp.sys -- (b57xdmp)
DRV:64bit: - [2012/07/02 23:16:02 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2012/06/19 15:40:51 | 000,342,528 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2012/06/19 01:20:52 | 000,055,384 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\bScsiMSa.sys -- (bScsiMSa)
DRV:64bit: - [2012/06/11 10:33:46 | 000,026,112 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV:64bit: - [2010/07/09 04:51:50 | 000,017,408 | ---- | M] (NTI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UBHelper.sys -- (UBHelper)
DRV:64bit: - [2010/04/20 03:35:14 | 000,018,432 | ---- | M] (NTI Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NTIDrvr.sys -- (NTIDrvr)

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A9BB02B-2030-4929-AE57-F965133B84E3}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6A9BB02B-2030-4929-AE57-F965133B84E3}: "URL" = http://www.bing.com/search?q={searchTer ... &pc=MAARJS
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {6A9BB02B-2030-4929-AE57-F965133B84E3}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A9BB02B-2030-4929-AE57-F965133B84E3}: "URL" = http://www.bing.com/search?q={searchTer ... &pc=MAARJS


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-3621977129-2832859686-462106091-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer13.msn.com
IE - HKU\S-1-5-21-3621977129-2832859686-462106091-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.cz/
IE - HKU\S-1-5-21-3621977129-2832859686-462106091-1001\..\SearchScopes,DefaultScope = {6A9BB02B-2030-4929-AE57-F965133B84E3}
IE - HKU\S-1-5-21-3621977129-2832859686-462106091-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IESR02
IE - HKU\S-1-5-21-3621977129-2832859686-462106091-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledAddons: gpxdown%40geocaching.com:1.140520
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:33.1
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.60.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.60.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Nero.com/KM: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 33.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 33.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2013/10/05 13:32:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Slamak\AppData\Roaming\Mozilla\Extensions
[2014/11/12 20:58:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\extensions
[2014/09/30 15:09:30 | 000,000,000 | ---D | M] (Seznam lištička) -- C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2014/11/12 20:58:13 | 000,000,000 | ---D | M] ("Flash Video Downloader - Full HD Download") -- C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\extensions\artur.dubovoy@gmail.com
[2014/11/06 14:02:28 | 002,551,527 | ---- | M] () (No name found) -- C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\extensions\firebug@software.joehewitt.com.xpi
[2014/05/30 12:52:32 | 000,017,860 | ---- | M] () (No name found) -- C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\extensions\gpxdown@geocaching.com.xpi
[2013/10/05 14:13:38 | 000,089,442 | ---- | M] () (No name found) -- C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\extensions\{B17C1C5A-04B1-11DB-9804-B622A1EF5492}.xpi
[2014/09/24 20:25:42 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2014/11/10 21:13:25 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

========== Chrome ==========

CHR - default_search_provider: (Enabled)
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - plugin: Error reading preferences file
CHR - Extension: No name found = C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\amhhdbdhoghppijbjfdkiaconkmfbbpa\3.0.7_0\
CHR - Extension: No name found = C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\
CHR - Extension: No name found = C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: No name found = C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig\1.3.13_0\
CHR - Extension: No name found = C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd\1.2.13_0\
CHR - Extension: No name found = C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: No name found = C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: No name found = C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: No name found = C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak\1.7.1_0\
CHR - Extension: No name found = C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
CHR - Extension: No name found = C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkejgpgaflkeonkliblcplomemekogop\2.17_0\
CHR - Extension: No name found = C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkejgpgaflkeonkliblcplomemekogop\2.18_0\

O1 HOSTS File: ([2013/08/22 14:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\WINDOWS\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\WINDOWS\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Monitor] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe (LeapFrog Enterprises, Inc.)
O4 - HKLM..\Run: [Printsrv] C:\Windows\SysWOW64\Printing_Admin_Scripts\en-US\pubpr.vbs ()
O4 - HKLM..\Run: [RadioController] C:\Program Files (x86)\RadioController\RfBtnHelper.exe (Dritek System Inc.)
O4 - HKU\S-1-5-21-3621977129-2832859686-462106091-1001..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O4 - HKU\S-1-5-21-3621977129-2832859686-462106091-1001..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (Disc Soft Ltd)
O4 - HKU\S-1-5-21-3621977129-2832859686-462106091-1001..\Run: [eM Client] C:\Program Files (x86)\eM Client\MailClient.exe (eM Client, Inc.)
O4 - HKU\S-1-5-21-3621977129-2832859686-462106091-1001..\RunOnce: [Application Restart #0] C:\Users\Slamak\AppData\Local\Pokki\Engine\pokki.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resources --disable-client-side-phishing-detection --enable-file-cookies --disable-sync --disable-breakpad --disable-bundled-ppapi-flash --disable-sync-tabs --disable-speech-input --disable-custom-jumplist --process-per-tab --debug-devtools-frontend="C:\Users\Slamak\AppData\Local\Pokki\Engine\inspector" --no-first-run --lang=en-US --disable-component-update --disable-prompt-on-repost --no-startup-window --disable-translate --disable-logging --disable-desktop-notifications --disable-gpu-process-prelaunch --flag-switches-begin --flag-switches-end --restore-last-session File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15:64bit: - ..Trusted Domains: localhost ([]http in Internet)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.154.240.3 10.154.240.66
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F77BFE06-AE58-4493-81BA-FFFBDC2587A6}: DhcpNameServer = 10.154.240.3 10.154.240.66
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\WINDOWS\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30 - LSA: Security Packages - (livessp) - File not found
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{87aedc8a-fe23-11e3-bec6-20898455de28}\Shell - "" = AutoRun
O33 - MountPoints2\{87aedc8a-fe23-11e3-bec6-20898455de28}\Shell\AutoRun\command - "" = "F:\setup.exe"
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs:64bit: lfsvc - C:\Windows\SysNative\GeofenceMonitorService.dll (Microsoft Corporation)
NetSvcs:64bit: wlidsvc - C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
NetSvcs:64bit: DsmSvc - C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
NetSvcs:64bit: NcaSvc - C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)

Drivers32:64bit: msacm.ac3acm - AC3ACM.acm (fccHandler)
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: msacm.lameacm - LameACM.acm (http://www.mp3dev.org/)
Drivers32:64bit: vidc.ffds - ff_vfw.dll ()
Drivers32: msacm.ac3acm - C:\WINDOWS\SysWow64\AC3ACM.acm (fccHandler)
Drivers32: msacm.divxa32 - C:\WINDOWS\SysWow64\DivXa32.acm (Packed With Joy !)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3codecp - C:\WINDOWS\SysWow64\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\WINDOWS\SysWow64\lameACM.acm (http://www.mp3dev.org/)
Drivers32: vidc.cvid - C:\WINDOWS\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: vidc.ffds - C:\WINDOWS\SysWow64\ff_vfw.dll ()
Drivers32: vidc.lags - C:\WINDOWS\SysWow64\Lagarith.dll ( )
Drivers32: vidc.x264 - C:\WINDOWS\SysWow64\x264vfw.dll (x264vfw project)
Drivers32: vidc.xvid - C:\WINDOWS\SysWow64\xvidvfw.dll ()
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2014/11/20 06:21:04 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Slamak\Desktop\OTL.exe
[2014/11/17 20:31:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014/11/17 18:55:42 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014/11/17 18:55:42 | 000,000,000 | ---D | C] -- \AdwCleaner
[2014/11/16 21:45:36 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2014/11/16 21:45:36 | 000,000,000 | ---D | C] -- C:\rsit
[2014/11/16 21:45:36 | 000,000,000 | ---D | C] -- \rsit
[2014/11/16 08:27:24 | 001,439,744 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\SysNative\BrWi209d.dll
[2014/11/16 08:27:24 | 000,050,688 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\SysNative\BrUsi09d.dll
[2014/11/16 08:27:23 | 000,278,528 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\SysNative\BrJDec.dll
[2014/11/15 16:54:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2014/11/15 16:54:29 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2014/11/15 16:03:09 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2014/11/15 16:03:09 | 000,000,000 | -HSD | C] -- \Config.Msi
[2014/11/15 15:42:57 | 000,000,000 | -HSD | C] -- C:\Users\Slamak\AppData\Local\EmieBrowserModeList
[2014/11/15 15:41:51 | 000,000,000 | ---D | C] -- C:\Users\Slamak\AppData\Roaming\FLEXnet
[2014/11/15 15:19:41 | 000,000,000 | ---D | C] -- C:\Users\Slamak\AppData\Roaming\Nuance
[2014/11/15 15:19:35 | 000,000,000 | ---D | C] -- C:\ProgramData\ScanSoft
[2014/11/15 15:19:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Nuance
[2014/11/15 15:16:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Brother
[2014/11/13 00:06:16 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpapisrv.dll
[2014/11/13 00:06:16 | 000,104,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncryptsslp.dll
[2014/11/13 00:06:16 | 000,088,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ncryptsslp.dll
[2014/11/13 00:05:52 | 003,320,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msi.dll
[2014/11/13 00:05:52 | 002,773,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll
[2014/11/13 00:05:51 | 002,459,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll
[2014/11/13 00:05:50 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msihnd.dll
[2014/11/13 00:05:50 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msihnd.dll
[2014/11/13 00:05:50 | 000,116,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\consent.exe
[2014/11/13 00:05:39 | 001,519,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\user32.dll
[2014/11/13 00:05:37 | 000,258,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdFilter.sys
[2014/11/13 00:05:37 | 000,114,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdNisDrv.sys
[2014/11/13 00:05:36 | 000,035,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdBoot.sys
[2014/11/13 00:05:34 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winshfhc.dll
[2014/11/13 00:05:34 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winshfhc.dll
[2014/11/13 00:04:47 | 000,500,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll
[2014/11/13 00:04:47 | 000,394,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AUDIOKSE.dll
[2014/11/13 00:04:47 | 000,344,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AUDIOKSE.dll
[2014/11/13 00:04:47 | 000,272,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\audiodg.exe
[2014/11/13 00:04:46 | 000,482,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEng.dll
[2014/11/13 00:04:46 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEndpointBuilder.dll
[2014/11/13 00:04:45 | 000,108,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EncDump.dll
[2014/11/13 00:03:27 | 006,040,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2014/11/13 00:03:18 | 002,865,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\actxprxy.dll
[2014/11/13 00:03:16 | 000,814,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9diag.dll
[2014/11/13 00:03:16 | 000,812,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript.dll
[2014/11/13 00:03:16 | 000,661,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript.dll
[2014/11/13 00:03:15 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieui.dll
[2014/11/13 00:03:14 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll
[2014/11/13 00:03:14 | 000,620,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript9diag.dll
[2014/11/13 00:03:12 | 000,580,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll
[2014/11/13 00:03:12 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieui.dll
[2014/11/13 00:03:11 | 002,051,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl
[2014/11/13 00:03:10 | 000,708,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieapfltr.dll
[2014/11/13 00:03:10 | 000,490,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtmsft.dll
[2014/11/13 00:03:09 | 002,124,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl
[2014/11/13 00:03:09 | 000,799,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieapfltr.dll
[2014/11/13 00:03:09 | 000,316,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtrans.dll
[2014/11/13 00:03:07 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieetwproxystub.dll
[2014/11/13 00:03:04 | 000,340,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\html.iec
[2014/11/13 00:03:03 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe
[2014/11/13 00:03:03 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msrating.dll
[2014/11/13 00:03:03 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msrating.dll
[2014/11/13 00:03:03 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieUnatt.exe
[2014/11/13 00:03:03 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesysprep.dll
[2014/11/13 00:03:03 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hlink.dll
[2014/11/13 00:03:02 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iepeers.dll
[2014/11/13 00:03:02 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iepeers.dll
[2014/11/13 00:03:02 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieUnatt.exe
[2014/11/13 00:03:02 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieetwcollector.exe
[2014/11/13 00:03:02 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inseng.dll
[2014/11/13 00:03:02 | 000,090,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iesysprep.dll
[2014/11/13 00:03:01 | 000,417,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\html.iec
[2014/11/13 00:03:01 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inseng.dll
[2014/11/13 00:03:01 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tdc.ocx
[2014/11/13 00:03:00 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mshtmled.dll
[2014/11/13 00:03:00 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\JavaScriptCollectionAgent.dll
[2014/11/13 00:03:00 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tdc.ocx
[2014/11/13 00:02:59 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\occache.dll
[2014/11/13 00:02:59 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\IEAdvpack.dll
[2014/11/13 00:02:59 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MshtmlDac.dll
[2014/11/13 00:02:59 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mshtmled.dll
[2014/11/13 00:02:58 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\occache.dll
[2014/11/13 00:02:58 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iexpress.exe
[2014/11/13 00:02:58 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\JavaScriptCollectionAgent.dll
[2014/11/13 00:02:57 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MshtmlDac.dll
[2014/11/13 00:02:57 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\imgutil.dll
[2014/11/13 00:02:57 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieetwproxystub.dll
[2014/11/13 00:02:57 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\licmgr10.dll
[2014/11/13 00:02:56 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wextract.exe
[2014/11/13 00:02:56 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pngfilt.dll
[2014/11/13 00:02:56 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\pngfilt.dll
[2014/11/13 00:02:56 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iernonce.dll
[2014/11/13 00:02:56 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iernonce.dll
[2014/11/13 00:02:56 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\licmgr10.dll
[2014/11/13 00:02:55 | 000,237,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\url.dll
[2014/11/13 00:02:55 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\url.dll
[2014/11/13 00:02:55 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iesetup.dll
[2014/11/13 00:02:54 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wextract.exe
[2014/11/13 00:02:54 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\IEAdvpack.dll
[2014/11/13 00:02:53 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iexpress.exe
[2014/11/13 00:02:53 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesetup.dll
[2014/11/13 00:02:53 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeedssync.exe
[2014/11/13 00:02:53 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msfeedssync.exe
[2014/11/13 00:02:52 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mshta.exe
[2014/11/13 00:02:04 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\packager.dll
[2014/11/13 00:02:04 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\packager.dll
[2014/11/13 00:02:02 | 003,547,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpcorets.dll
[2014/11/13 00:02:01 | 001,441,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll
[2014/11/13 00:02:01 | 000,736,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\adtschema.dll
[2014/11/13 00:02:01 | 000,736,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\adtschema.dll
[2014/11/13 00:02:01 | 000,445,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\certcli.dll
[2014/11/13 00:02:01 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\certcli.dll
[2014/11/13 00:02:00 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msaudite.dll
[2014/11/13 00:02:00 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msaudite.dll
[2014/11/13 00:02:00 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpudd.dll
[2014/11/13 00:02:00 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rfxvmt.dll
[2014/11/13 00:02:00 | 000,027,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\rdpvideominiport.sys
[2014/11/13 00:01:14 | 000,789,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\oleaut32.dll
[2014/11/13 00:01:12 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\devinv.dll
[2014/11/13 00:01:11 | 000,537,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aeinv.dll
[2014/11/13 00:01:11 | 000,304,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\generaltel.dll
[2014/11/13 00:01:11 | 000,228,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aepdu.dll
[2014/11/13 00:01:09 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aepic.dll
[2014/11/13 00:01:06 | 001,714,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wucltux.dll
[2014/11/13 00:01:06 | 000,894,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapi.dll
[2014/11/13 00:01:06 | 000,723,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapi.dll
[2014/11/13 00:01:05 | 000,407,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WUSettingsProvider.dll
[2014/11/13 00:01:05 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuwebv.dll
[2014/11/13 00:01:05 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuwebv.dll
[2014/11/13 00:01:05 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wudriver.dll
[2014/11/13 00:01:05 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wudriver.dll
[2014/11/13 00:01:05 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups.dll
[2014/11/13 00:01:04 | 000,055,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuauclt.exe
[2014/11/13 00:01:04 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups2.dll
[2014/11/13 00:01:04 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapp.exe
[2014/11/13 00:01:04 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapp.exe
[2014/11/13 00:01:04 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wups.dll
[2014/11/13 00:01:04 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuaext.dll
[2014/11/13 00:00:17 | 007,484,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe
[2014/11/13 00:00:11 | 013,424,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll
[2014/11/13 00:00:11 | 002,714,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers.dll
[2014/11/13 00:00:09 | 001,053,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\localspl.dll
[2014/11/13 00:00:09 | 000,941,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFMediaEngine.dll
[2014/11/13 00:00:08 | 000,836,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll
[2014/11/13 00:00:07 | 011,820,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll
[2014/11/13 00:00:06 | 000,822,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32spl.dll
[2014/11/13 00:00:06 | 000,799,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFMediaEngine.dll
[2014/11/13 00:00:06 | 000,670,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll
[2014/11/13 00:00:05 | 000,474,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\netio.sys
[2014/11/13 00:00:04 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\puiobj.dll
[2014/11/13 00:00:03 | 000,334,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\puiobj.dll
[2014/11/13 00:00:00 | 000,545,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\untfs.dll
[2014/11/13 00:00:00 | 000,428,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\FWPKCLNT.SYS
[2014/11/12 23:59:59 | 000,485,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\untfs.dll
[2014/11/12 23:59:58 | 000,615,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FXSCOMEX.dll
[2014/11/12 23:59:57 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FXSAPI.dll
[2014/11/12 23:59:57 | 000,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\FXSAPI.dll
[2014/10/27 07:47:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Steam
[2014/10/27 07:42:54 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_7.dll
[2014/10/27 07:42:54 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_7.dll
[2014/10/27 07:42:54 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_5.dll
[2014/10/27 07:42:54 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_5.dll
[2014/10/27 07:42:53 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_7.dll
[2014/10/27 07:42:53 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_7.dll
[2014/10/27 07:42:51 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_43.dll
[2014/10/27 07:42:51 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_43.dll
[2014/10/27 07:42:50 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dcsx_43.dll
[2014/10/27 07:42:50 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dcsx_43.dll
[2014/10/27 07:42:49 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_43.dll
[2014/10/27 07:42:49 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_43.dll
[2014/10/27 07:42:49 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx11_43.dll
[2014/10/27 07:42:49 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx11_43.dll
[2014/10/27 07:42:48 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_43.dll
[2014/10/27 07:42:48 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_43.dll
[2014/10/27 07:42:47 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_6.dll
[2014/10/27 07:42:47 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_6.dll
[2014/10/27 07:42:47 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_4.dll
[2014/10/27 07:42:47 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_4.dll
[2014/10/27 07:42:46 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_6.dll
[2014/10/27 07:42:46 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_6.dll
[2014/10/27 07:42:45 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_5.dll
[2014/10/27 07:42:45 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_5.dll
[2014/10/27 07:42:44 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_5.dll
[2014/10/27 07:42:44 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_5.dll
[2014/10/27 07:42:43 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_42.dll
[2014/10/27 07:42:43 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_42.dll
[2014/10/27 07:42:41 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dcsx_42.dll
[2014/10/27 07:42:41 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dcsx_42.dll
[2014/10/27 07:42:40 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx11_42.dll
[2014/10/27 07:42:40 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx11_42.dll
[2014/10/27 07:42:39 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_42.dll
[2014/10/27 07:42:39 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_42.dll
[2014/10/27 07:42:38 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_42.dll
[2014/10/27 07:42:38 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_42.dll
[2014/10/27 07:42:36 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_41.dll
[2014/10/27 07:42:36 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_41.dll
[2014/10/27 07:42:36 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_41.dll
[2014/10/27 07:42:36 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_41.dll
[2014/10/27 07:42:34 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_41.dll
[2014/10/27 07:42:34 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_41.dll
[2014/10/27 07:42:32 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_4.dll
[2014/10/27 07:42:32 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_4.dll
[2014/10/27 07:42:32 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_4.dll
[2014/10/27 07:42:32 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_4.dll
[2014/10/27 07:42:32 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_3.dll
[2014/10/27 07:42:32 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_3.dll
[2014/10/27 07:42:31 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_6.dll
[2014/10/27 07:42:31 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_6.dll
[2014/10/27 07:42:29 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_40.dll
[2014/10/27 07:42:29 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_40.dll
[2014/10/27 07:42:29 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_40.dll
[2014/10/27 07:42:29 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_40.dll
[2014/10/27 07:42:26 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_40.dll
[2014/10/27 07:42:26 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_40.dll
[2014/10/27 07:42:25 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_3.dll
[2014/10/27 07:42:25 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_3.dll
[2014/10/27 07:42:25 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_2.dll
[2014/10/27 07:42:25 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_2.dll
[2014/10/27 07:42:24 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_3.dll
[2014/10/27 07:42:24 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_3.dll
[2014/10/27 07:42:23 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_5.dll
[2014/10/27 07:42:23 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_5.dll
[2014/10/27 07:42:22 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_2.dll
[2014/10/27 07:42:22 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_2.dll
[2014/10/27 07:42:22 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_1.dll
[2014/10/27 07:42:22 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_1.dll
[2014/10/27 07:42:21 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_2.dll
[2014/10/27 07:42:21 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_2.dll
[2014/10/27 07:42:19 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_39.dll
[2014/10/27 07:42:19 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_39.dll
[2014/10/27 07:42:19 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_39.dll
[2014/10/27 07:42:19 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_39.dll
[2014/10/27 07:42:17 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_39.dll
[2014/10/27 07:42:15 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_1.dll
[2014/10/27 07:42:15 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_1.dll
[2014/10/27 07:42:15 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_0.dll
[2014/10/27 07:42:15 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_0.dll
[2014/10/27 07:42:14 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_1.dll
[2014/10/27 07:42:14 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_1.dll
[2014/10/27 07:42:14 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_4.dll
[2014/10/27 07:42:14 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_4.dll
[2014/10/27 07:42:12 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_38.dll
[2014/10/27 07:42:12 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_38.dll
[2014/10/27 07:42:11 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_38.dll
[2014/10/27 07:42:11 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_38.dll
[2014/10/27 07:42:09 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_38.dll
[2014/10/27 07:42:09 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_38.dll
[2014/10/27 07:42:07 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_0.dll
[2014/10/27 07:42:07 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_0.dll
[2014/10/27 07:42:06 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_0.dll
[2014/10/27 07:42:06 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_0.dll
[2014/10/27 07:42:05 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_3.dll
[2014/10/27 07:42:05 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_3.dll
[2014/10/27 07:42:04 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_37.dll
[2014/10/27 07:42:04 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_37.dll
[2014/10/27 07:42:04 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_37.dll
[2014/10/27 07:42:04 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_37.dll
[2014/10/27 07:42:01 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_37.dll
[2014/10/27 07:42:01 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_37.dll
[2014/10/27 07:42:00 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_10.dll
[2014/10/27 07:42:00 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_10.dll
[2014/10/27 07:41:53 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_36.dll
[2014/10/27 07:41:53 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_36.dll
[2014/10/27 07:41:52 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_36.dll
[2014/10/27 07:41:52 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_36.dll
[2014/10/27 07:41:47 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_36.dll
[2014/10/27 07:41:47 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_36.dll
[2014/10/27 07:41:45 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_9.dll
[2014/10/27 07:41:45 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_9.dll
[2014/10/27 07:41:41 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_35.dll
[2014/10/27 07:41:41 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_35.dll
[2014/10/27 07:41:41 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_35.dll
[2014/10/27 07:41:41 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_35.dll
[2014/10/27 07:41:37 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_35.dll
[2014/10/27 07:41:37 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_35.dll
[2014/10/27 07:41:36 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_8.dll
[2014/10/27 07:41:36 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_8.dll
[2014/10/27 07:41:36 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_2.dll
[2014/10/27 07:41:36 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_2.dll
[2014/10/27 07:41:33 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_34.dll
[2014/10/27 07:41:33 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_34.dll
[2014/10/27 07:41:33 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_34.dll
[2014/10/27 07:41:33 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_34.dll
[2014/10/27 07:41:25 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_34.dll
[2014/10/27 07:41:25 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_34.dll
[2014/10/27 07:41:24 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xinput1_3.dll
[2014/10/27 07:41:24 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xinput1_3.dll
[2014/10/27 07:41:23 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_7.dll
[2014/10/27 07:41:23 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_7.dll
[2014/10/27 07:41:20 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_33.dll
[2014/10/27 07:41:20 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_33.dll
[2014/10/27 07:41:20 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_33.dll
[2014/10/27 07:41:20 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_33.dll
[2014/10/27 07:41:17 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_33.dll
[2014/10/27 07:41:17 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_33.dll
[2014/10/27 07:41:16 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_6.dll
[2014/10/27 07:41:16 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_6.dll
[2014/10/27 07:41:14 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_5.dll
[2014/10/27 07:41:14 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_5.dll
[2014/10/27 07:41:13 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10.dll
[2014/10/27 07:41:13 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10.dll
[2014/10/27 07:41:10 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_32.dll
[2014/10/27 07:41:10 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_32.dll
[2014/10/27 07:41:08 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_4.dll
[2014/10/27 07:41:08 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_4.dll
[2014/10/27 07:41:08 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\x3daudio1_1.dll
[2014/10/27 07:41:08 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\x3daudio1_1.dll
[2014/10/27 07:41:04 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_31.dll
[2014/10/27 07:41:04 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_31.dll
[2014/10/27 07:41:03 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_3.dll
[2014/10/27 07:41:03 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_3.dll
[2014/10/27 07:41:02 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xinput1_2.dll
[2014/10/27 07:41:02 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xinput1_2.dll
[2014/10/27 07:41:01 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_2.dll
[2014/10/27 07:41:01 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_2.dll
[2014/10/27 07:41:01 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xinput1_1.dll
[2014/10/27 07:41:01 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xinput1_1.dll
[2014/10/27 07:40:59 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_1.dll
[2014/10/27 07:40:59 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_1.dll
[2014/10/27 07:40:38 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_30.dll
[2014/10/27 07:40:38 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_30.dll
[2014/10/27 07:40:36 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_0.dll
[2014/10/27 07:40:36 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_0.dll
[2014/10/27 07:40:36 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\x3daudio1_0.dll
[2014/10/27 07:40:36 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\x3daudio1_0.dll
[2014/10/27 07:40:33 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_29.dll
[2014/10/27 07:40:33 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_29.dll
[2014/10/27 07:40:31 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_28.dll
[2014/10/27 07:40:31 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_28.dll
[2014/10/27 07:40:28 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_27.dll
[2014/10/27 07:40:28 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_27.dll
[2014/10/27 07:40:26 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_26.dll
[2014/10/27 07:40:26 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_26.dll
[2014/10/27 07:40:23 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_25.dll
[2014/10/27 07:40:23 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_25.dll
[2014/10/27 07:40:22 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_24.dll
[2014/10/27 07:40:22 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_24.dll
[2014/10/27 07:02:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sniper Elite 3
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2014/11/20 06:24:39 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014/11/20 06:21:07 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Slamak\Desktop\OTL.exe
[2014/11/20 06:19:50 | 000,000,982 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2014/11/20 06:08:54 | 000,000,978 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2014/11/20 06:08:35 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014/11/20 05:36:54 | 000,000,374 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\etc\hosts.ics
[2014/11/20 05:36:27 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2014/11/20 05:36:26 | 3279,339,520 | -HS- | M] () -- C:\hiberfil.sys
[2014/11/19 21:52:00 | 000,000,914 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2014/11/19 20:15:10 | 000,741,408 | ---- | M] () -- C:\WINDOWS\SysNative\perfh005.dat
[2014/11/19 20:15:10 | 000,723,960 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2014/11/19 20:15:10 | 000,152,788 | ---- | M] () -- C:\WINDOWS\SysNative\perfc005.dat
[2014/11/19 20:15:10 | 000,136,770 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2014/11/19 20:15:09 | 001,751,604 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2014/11/18 21:22:11 | 000,002,207 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014/11/17 18:59:00 | 000,475,856 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2014/11/17 18:52:41 | 002,140,160 | ---- | M] () -- C:\Users\Slamak\Desktop\adwcleaner_4.101.exe
[2014/11/16 22:15:11 | 000,042,458 | ---- | M] () -- C:\Users\Slamak\Documents\cc_20141116_221502.reg
[2014/11/16 12:46:53 | 000,000,055 | ---- | M] () -- C:\WINDOWS\SysWow64\BRDP7055W.DAT
[2014/11/15 16:56:16 | 000,182,982 | ---- | M] () -- C:\Users\Slamak\Documents\cc_20141115_165550.reg
[2014/11/15 16:54:35 | 000,000,838 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2014/11/05 00:38:37 | 000,228,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aepdu.dll
[2014/11/04 13:36:45 | 000,040,025 | ---- | M] () -- C:\Users\Slamak\Documents\Faktura_1400495 bruntal.pdf
[2014/11/04 01:10:18 | 000,304,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\generaltel.dll
[2014/10/31 06:12:41 | 000,143,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wextract.exe
[2014/10/31 06:12:05 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mshta.exe
[2014/10/31 06:10:13 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iexpress.exe
[2014/10/31 06:09:37 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pngfilt.dll
[2014/10/31 06:08:00 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeedssync.exe
[2014/10/31 06:06:45 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesetup.dll
[2014/10/31 06:06:21 | 000,237,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\url.dll
[2014/10/31 06:06:09 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll
[2014/10/31 06:06:00 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieetwproxystub.dll
[2014/10/31 06:05:50 | 000,417,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\html.iec
[2014/10/31 06:04:28 | 000,088,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MshtmlDac.dll
[2014/10/31 05:56:53 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iernonce.dll
[2014/10/31 05:54:13 | 000,132,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\IEAdvpack.dll
[2014/10/31 05:53:32 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aepic.dll
[2014/10/31 05:53:06 | 000,633,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieui.dll
[2014/10/31 05:52:22 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hlink.dll
[2014/10/31 05:51:37 | 000,144,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieUnatt.exe
[2014/10/31 05:51:31 | 000,812,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript.dll
[2014/10/31 05:51:25 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieetwcollector.exe
[2014/10/31 05:50:44 | 000,814,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9diag.dll
[2014/10/31 05:50:11 | 006,040,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2014/10/31 05:49:39 | 000,537,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aeinv.dll
[2014/10/31 05:40:07 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\licmgr10.dll
[2014/10/31 05:38:28 | 000,490,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtmsft.dll
[2014/10/31 05:30:28 | 000,077,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\JavaScriptCollectionAgent.dll
[2014/10/31 05:29:50 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesysprep.dll
[2014/10/31 05:29:17 | 000,087,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tdc.ocx
[2014/10/31 05:28:58 | 000,107,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inseng.dll
[2014/10/31 05:25:24 | 000,199,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msrating.dll
[2014/10/31 05:24:48 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\devinv.dll
[2014/10/31 05:24:25 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mshtmled.dll
[2014/10/31 05:23:46 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iepeers.dll
[2014/10/31 05:21:30 | 000,316,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtrans.dll
[2014/10/31 05:19:49 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\occache.dll
[2014/10/31 05:05:52 | 000,716,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe
[2014/10/31 05:05:35 | 000,800,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll
[2014/10/31 05:03:02 | 002,124,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl
[2014/10/31 04:44:32 | 002,865,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\actxprxy.dll
[2014/10/31 04:42:04 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\imgutil.dll
[2014/10/31 04:28:47 | 000,137,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wextract.exe
[2014/10/31 04:27:26 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iexpress.exe
[2014/10/31 04:26:45 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\pngfilt.dll
[2014/10/31 04:25:24 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msfeedssync.exe
[2014/10/31 04:24:23 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iesetup.dll
[2014/10/31 04:24:00 | 000,235,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\url.dll
[2014/10/31 04:23:37 | 000,047,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieetwproxystub.dll
[2014/10/31 04:23:21 | 000,340,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\html.iec
[2014/10/31 04:22:08 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MshtmlDac.dll
[2014/10/31 04:20:27 | 000,799,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieapfltr.dll
[2014/10/31 04:15:59 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iernonce.dll
[2014/10/31 04:14:25 | 000,112,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\IEAdvpack.dll
[2014/10/31 04:13:35 | 000,478,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieui.dll
[2014/10/31 04:12:17 | 000,661,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript.dll
[2014/10/31 04:12:17 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieUnatt.exe
[2014/10/31 04:11:30 | 000,620,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript9diag.dll
[2014/10/31 04:03:33 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\licmgr10.dll
[2014/10/31 03:57:20 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\JavaScriptCollectionAgent.dll
[2014/10/31 03:56:44 | 000,090,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iesysprep.dll
[2014/10/31 03:56:18 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tdc.ocx
[2014/10/31 03:56:08 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inseng.dll
[2014/10/31 03:53:21 | 000,168,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msrating.dll
[2014/10/31 03:52:23 | 000,076,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mshtmled.dll
[2014/10/31 03:51:02 | 000,128,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iepeers.dll
[2014/10/31 03:48:50 | 000,130,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\occache.dll
[2014/10/31 03:39:28 | 002,051,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl
[2014/10/31 03:11:30 | 000,708,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieapfltr.dll
[2014/10/30 01:55:02 | 000,714,208 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerApp.exe
[2014/10/30 01:55:02 | 000,106,976 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl
[2014/10/27 07:36:22 | 000,001,004 | ---- | M] () -- C:\Users\Public\Desktop\Sniper Elite 3.lnk
[2014/10/23 06:48:37 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\packager.dll
[2014/10/23 06:05:08 | 000,072,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\packager.dll
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2014/11/20 06:24:39 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014/11/20 06:24:39 | 000,000,512 | ---- | C] () -- \PhysicalMBR.bin
[2014/11/17 18:52:38 | 002,140,160 | ---- | C] () -- C:\Users\Slamak\Desktop\adwcleaner_4.101.exe
[2014/11/16 22:15:05 | 000,042,458 | ---- | C] () -- C:\Users\Slamak\Documents\cc_20141116_221502.reg
[2014/11/16 12:46:53 | 000,000,055 | ---- | C] () -- C:\WINDOWS\SysWow64\BRDP7055W.DAT
[2014/11/15 16:55:53 | 000,182,982 | ---- | C] () -- C:\Users\Slamak\Documents\cc_20141115_165550.reg
[2014/11/15 16:54:35 | 000,000,838 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2014/11/12 23:59:55 | 000,389,176 | ---- | C] () -- C:\WINDOWS\SysNative\ApnDatabase.xml
[2014/11/04 13:36:45 | 000,040,025 | ---- | C] () -- C:\Users\Slamak\Documents\Faktura_1400495 bruntal.pdf
[2014/10/27 07:36:22 | 000,001,004 | ---- | C] () -- C:\Users\Public\Desktop\Sniper Elite 3.lnk
[2014/10/27 07:36:21 | 000,001,016 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sniper Elite 3.lnk
[2014/09/12 20:51:22 | 019,730,907 | ---- | C] () -- C:\WINDOWS\SysWow64\FOTOKNIHY ONLINE_FOTOKNIHY ONLINE_uninstaller.exe
[2014/05/29 10:30:35 | 007,974,531 | ---- | C] () -- C:\WINDOWS\SysWow64\AZ FOTO AlbumMaker_AZ FOTO AlbumMaker_uninstaller.exe
[2014/03/18 16:42:50 | 000,002,255 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2014/03/18 16:42:17 | 000,103,936 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll
[2014/03/05 20:33:26 | 000,000,056 | ---- | C] () -- C:\Users\Slamak\AppData\Local\Images.fl
[2014/02/03 22:35:34 | 000,000,193 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2014/01/29 22:02:22 | 000,077,312 | ---- | C] () -- C:\WINDOWS\SysWow64\igdde32.dll
[2014/01/14 22:32:53 | 001,741,396 | ---- | C] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI
[2014/01/11 19:50:13 | 000,007,602 | ---- | C] () -- C:\Users\Slamak\AppData\Local\Resmon.ResmonCfg
[2013/11/29 20:30:07 | 000,000,000 | ---- | C] () -- C:\Users\Slamak\regbcm
[2013/08/22 16:36:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2013/08/22 16:36:42 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2013/08/22 15:46:23 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013/08/22 08:01:23 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2013/08/22 04:32:36 | 000,046,080 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2013/08/22 00:55:20 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2013/08/22 00:52:39 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2013/02/24 22:14:24 | 000,038,720 | ---- | C] () -- C:\WINDOWS\SysWow64\dischandler.exe
[2013/02/24 15:05:32 | 003,915,776 | ---- | C] () -- C:\WINDOWS\SysWow64\ffmpeg.dll
[2013/02/24 15:04:30 | 000,112,640 | ---- | C] () -- C:\WINDOWS\SysWow64\ff_vfw.dll
[2013/02/24 15:03:22 | 000,271,360 | ---- | C] () -- C:\WINDOWS\SysWow64\TomsMoComp_ff.dll
[2013/02/24 15:03:20 | 000,099,840 | ---- | C] () -- C:\WINDOWS\SysWow64\ff_wmv9.dll
[2013/02/24 15:03:18 | 000,157,184 | ---- | C] () -- C:\WINDOWS\SysWow64\ff_unrar.dll
[2013/02/24 15:03:16 | 000,147,456 | ---- | C] () -- C:\WINDOWS\SysWow64\ff_libmad.dll
[2013/02/24 15:03:14 | 000,114,688 | ---- | C] () -- C:\WINDOWS\SysWow64\ff_liba52.dll
[2013/02/24 15:03:12 | 001,525,760 | ---- | C] () -- C:\WINDOWS\SysWow64\ff_samplerate.dll
[2013/02/24 15:03:12 | 000,211,968 | ---- | C] () -- C:\WINDOWS\SysWow64\ff_libdts.dll
[2013/02/10 15:15:04 | 000,384,472 | ---- | C] () -- C:\WINDOWS\SysWow64\swscale-lav-2.dll
[2013/02/10 15:15:04 | 000,188,072 | ---- | C] () -- C:\WINDOWS\SysWow64\libbluray.dll
[2013/02/10 15:15:02 | 007,833,552 | ---- | C] () -- C:\WINDOWS\SysWow64\avcodec-lav-54.dll
[2013/02/10 15:15:02 | 001,256,952 | ---- | C] () -- C:\WINDOWS\SysWow64\avformat-lav-54.dll
[2013/02/10 15:15:02 | 000,247,920 | ---- | C] () -- C:\WINDOWS\SysWow64\avutil-lav-52.dll
[2013/02/10 15:15:02 | 000,169,888 | ---- | C] () -- C:\WINDOWS\SysWow64\avfilter-lav-3.dll
[2013/02/10 15:15:02 | 000,165,160 | ---- | C] () -- C:\WINDOWS\SysWow64\avresample-lav-1.dll
[2013/02/08 21:01:47 | 3279,339,520 | -HS- | C] () -- \hiberfil.sys
[2013/02/08 20:57:36 | 268,435,456 | -HS- | C] () -- \swapfile.sys

[slamax]

[2012/11/22 12:21:44 | 000,272,928 | ---- | C] () -- C:\WINDOWS\SysWow64\igvpkrng600.bin
[2012/11/22 12:21:35 | 000,963,452 | ---- | C] () -- C:\WINDOWS\SysWow64\igcodeckrng600.bin
[2012/07/26 09:18:43 | 000,000,001 | -HS- | C] () -- \BOOTNXT
[2007/11/07 08:12:28 | 000,232,960 | ---- | C] () -- \VC_RED.MSI
[2007/11/07 08:09:22 | 001,442,522 | ---- | C] () -- \VC_RED.cab
[2007/11/07 08:03:18 | 000,562,688 | ---- | C] () -- \install.exe
[2007/11/07 08:03:18 | 000,097,296 | ---- | C] () -- \install.res.1036.dll
[2007/11/07 08:03:18 | 000,096,272 | ---- | C] () -- \install.res.3082.dll
[2007/11/07 08:03:18 | 000,096,272 | ---- | C] () -- \install.res.1031.dll
[2007/11/07 08:03:18 | 000,095,248 | ---- | C] () -- \install.res.1040.dll
[2007/11/07 08:03:18 | 000,091,152 | ---- | C] () -- \install.res.1033.dll
[2007/11/07 08:03:18 | 000,081,424 | ---- | C] () -- \install.res.1041.dll
[2007/11/07 08:03:18 | 000,079,888 | ---- | C] () -- \install.res.1042.dll
[2007/11/07 08:03:18 | 000,076,304 | ---- | C] () -- \install.res.1028.dll
[2007/11/07 08:03:18 | 000,075,792 | ---- | C] () -- \install.res.2052.dll
[2007/11/07 08:00:40 | 000,005,686 | ---- | C] () -- \vcredist.bmp
[2007/11/07 08:00:40 | 000,001,110 | ---- | C] () -- \globdata.ini
[2007/11/07 08:00:40 | 000,000,843 | ---- | C] () -- \install.ini

========== ZeroAccess Check ==========

[2014/09/18 16:21:00 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014/08/31 01:15:33 | 021,197,152 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/08/30 23:59:13 | 018,723,112 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2013/08/22 10:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2013/08/22 03:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2013/08/22 10:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2014/11/16 06:16:38 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\.minecraft
[2013/12/27 07:49:07 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\AVG
[2014/11/15 16:59:25 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\DAEMON Tools Lite
[2014/11/20 06:20:29 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\eM Client
[2014/11/19 16:06:51 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\FileZilla
[2014/10/12 15:35:48 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\Hive Cluster
[2013/10/04 23:50:26 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\LibreOffice
[2013/10/05 12:08:47 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\lm
[2014/07/17 16:12:03 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\Mediatronic
[2014/05/29 15:56:29 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\Nokia
[2014/11/15 15:19:41 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\Nuance
[2013/10/21 12:08:57 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\ObviousIdea
[2013/10/06 19:11:49 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\OpenOffice
[2013/11/21 00:40:23 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\openvr
[2014/06/27 19:35:24 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\Oracle
[2014/05/29 15:55:48 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\PC Suite
[2014/11/16 06:21:59 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\Seznam.cz
[2013/11/12 16:25:43 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\Thunderbird
[2014/10/28 22:43:46 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\VSO
[2014/01/11 20:11:49 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\WildTangent

========== Purity Check ==========



========== Custom Scans ==========

< >
[2013/08/22 15:45:54 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT
[2013/10/12 16:58:03 | 000,000,914 | ---- | C] () -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
[2013/12/28 14:37:34 | 000,000,978 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[2013/12/28 14:37:35 | 000,000,982 | ---- | C] () -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job

< >

< MD5 for: AGP440.SYS >
[2013/08/22 13:43:40 | 000,062,304 | ---- | M] (Microsoft Corporation) MD5=7DFAEBA9AD62D20102B576D5CAC45EC8 -- C:\WINDOWS\SysNative\drivers\AGP440.sys
[2013/08/22 13:43:40 | 000,062,304 | ---- | M] (Microsoft Corporation) MD5=7DFAEBA9AD62D20102B576D5CAC45EC8 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\machine.inf_amd64_36be84f8fc597ea3\AGP440.sys
[2013/08/22 13:43:40 | 000,062,304 | ---- | M] (Microsoft Corporation) MD5=7DFAEBA9AD62D20102B576D5CAC45EC8 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.17238_none_ab0b455c927bd60f\AGP440.sys
[2014/09/18 07:39:39 | 000,000,012 | ---- | M] () MD5=AC26F500DB64617F336315BB5A0FDBE1 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.17031_none_ab043f8a92822a60\AGP440.sys

< MD5 for: ATAPI.SYS >
[2013/08/22 13:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\WINDOWS\SysNative\drivers\atapi.sys
[2013/08/22 13:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\WINDOWS\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_64aa4354da84c2df\atapi.sys
[2013/08/22 13:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\Windows\WinSxS\amd64_mshdc.inf_31bf3856ad364e35_6.3.9600.16384_none_cdf68824f580d510\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2014/03/18 16:42:55 | 000,792,576 | ---- | M] (Microsoft Corporation) MD5=1D31E78ED5C40B5C6CC8D3DE713177A5 -- C:\Windows\SysWOW64\autochk.exe
[2014/03/18 16:42:55 | 000,792,576 | ---- | M] (Microsoft Corporation) MD5=1D31E78ED5C40B5C6CC8D3DE713177A5 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.17031_none_76c6a414dd35029f\autochk.exe
[2014/03/18 16:42:30 | 000,890,880 | ---- | M] (Microsoft Corporation) MD5=387A1E98BE548E4F199343CBA01E9D6D -- C:\WINDOWS\SysNative\autochk.exe
[2014/03/18 16:42:30 | 000,890,880 | ---- | M] (Microsoft Corporation) MD5=387A1E98BE548E4F199343CBA01E9D6D -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.17031_none_d2e53f98959273d5\autochk.exe

< MD5 for: CDROM.SYS >
[2013/08/22 09:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\WINDOWS\SysNative\drivers\cdrom.sys
[2013/08/22 09:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\WINDOWS\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_42e9c29f0affc440\cdrom.sys
[2013/08/22 09:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\Windows\WinSxS\amd64_cdrom.inf_31bf3856ad364e35_6.3.9600.16384_none_5067bbed77be70be\cdrom.sys

< MD5 for: CRYPTSVC.DLL >
[2013/08/22 11:01:39 | 000,129,536 | ---- | M] (Microsoft Corporation) MD5=0EFE4B5884A8032617826A4D76F80969 -- C:\WINDOWS\SysNative\cryptsvc.dll
[2013/08/22 11:01:39 | 000,129,536 | ---- | M] (Microsoft Corporation) MD5=0EFE4B5884A8032617826A4D76F80969 -- C:\Windows\WinSxS\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.3.9600.16384_none_66bdf96f6ec6545d\cryptsvc.dll

< MD5 for: EVENTLOG.DLL >
[2009/12/19 23:00:00 | 000,037,520 | ---- | M] (perl.org) MD5=2852D57385C4709EAAE2F9DB01AD3672 -- C:\xampp\perl\site\lib\auto\Win32\EventLog\EventLog.dll

< MD5 for: EXPLORER.EXE >
[2014/08/23 08:13:24 | 002,084,520 | ---- | M] (Microsoft Corporation) MD5=195822ACCDAA2B4815DD01BAFC335595 -- C:\Windows\SysWOW64\explorer.exe
[2014/08/23 08:13:24 | 002,084,520 | ---- | M] (Microsoft Corporation) MD5=195822ACCDAA2B4815DD01BAFC335595 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17284_none_4cc798c1821453a8\explorer.exe
[2014/09/18 07:42:43 | 000,270,774 | ---- | M] () MD5=2195687491E604BA42961470EDA7660E -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17238_none_42acff334d876b54\explorer.exe
[2014/09/20 12:46:00 | 000,220,250 | ---- | M] () MD5=286928E00AD34E9F88EB5BFA52660A70 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17238_none_4d01a98581e82d4f\explorer.exe
[2014/07/31 14:49:58 | 000,015,546 | ---- | M] () MD5=347EFF7EC89C3EB4F72F2408E1C4E16D -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17031_none_4cfaa3b381ee81a0\explorer.exe
[2014/09/18 07:42:35 | 000,271,249 | ---- | M] () MD5=667BC926C7CB889BF276A5FEA316CAEE -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17039_none_42adfbb14d868a5d\explorer.exe
[2014/07/31 12:52:16 | 000,169,957 | ---- | M] () MD5=6D919C26DCB567396CD2E119B8E4310E -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17031_none_42a5f9614d8dbfa5\explorer.exe
[2014/08/23 08:48:28 | 002,374,784 | ---- | M] (Microsoft Corporation) MD5=ACDBE1ED38167C8B01B8F63161BB2CEA -- C:\Windows\explorer.exe
[2014/08/23 08:48:28 | 002,374,784 | ---- | M] (Microsoft Corporation) MD5=ACDBE1ED38167C8B01B8F63161BB2CEA -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17284_none_4272ee6f4db391ad\explorer.exe
[2014/09/20 12:45:43 | 000,208,662 | ---- | M] () MD5=C131BC6F12417306A9C8469CA49110B1 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17039_none_4d02a60381e74c58\explorer.exe

< MD5 for: HAL.DLL >
[2014/07/15 08:09:36 | 000,423,768 | ---- | M] (Microsoft Corporation) MD5=08DCA300264238F9AE941302321F3D54 -- C:\WINDOWS\SysNative\hal.dll
[2014/07/15 08:09:36 | 000,423,768 | ---- | M] (Microsoft Corporation) MD5=08DCA300264238F9AE941302321F3D54 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.17196_none_9bde68c32da7abbb\hal.dll
[2014/07/31 12:52:36 | 000,024,467 | ---- | M] () MD5=2635F50EAF3E1B4A8D32B21E1203E130 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.17031_none_9c1a44f32d7b883b\hal.dll

< MD5 for: IASTORV.SYS >
[2013/08/22 13:43:45 | 000,412,000 | ---- | M] (Intel Corporation) MD5=A2200C3033FA4EF249FC096A7A7D02A2 -- C:\WINDOWS\SysNative\drivers\iaStorV.sys
[2013/08/22 13:43:45 | 000,412,000 | ---- | M] (Intel Corporation) MD5=A2200C3033FA4EF249FC096A7A7D02A2 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_5069105fb236ae4b\iaStorV.sys
[2013/08/22 13:43:45 | 000,412,000 | ---- | M] (Intel Corporation) MD5=A2200C3033FA4EF249FC096A7A7D02A2 -- C:\Windows\WinSxS\amd64_iastorv.inf_31bf3856ad364e35_6.3.9600.16384_none_9fcfb2835bbf0103\iaStorV.sys

< MD5 for: ISAPNP.SYS >
[2013/08/22 13:43:45 | 000,021,856 | ---- | M] (Microsoft Corporation) MD5=8AFEEA3955AA43616A60F133B1D25F21 -- C:\WINDOWS\SysNative\drivers\isapnp.sys
[2013/08/22 13:43:45 | 000,021,856 | ---- | M] (Microsoft Corporation) MD5=8AFEEA3955AA43616A60F133B1D25F21 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\machine.inf_amd64_36be84f8fc597ea3\isapnp.sys
[2013/08/22 13:43:45 | 000,021,856 | ---- | M] (Microsoft Corporation) MD5=8AFEEA3955AA43616A60F133B1D25F21 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.17238_none_ab0b455c927bd60f\isapnp.sys
[2014/09/18 07:39:40 | 000,000,012 | ---- | M] () MD5=AC26F500DB64617F336315BB5A0FDBE1 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.17031_none_ab043f8a92822a60\isapnp.sys

< MD5 for: LSASS.EXE >
[2013/08/22 14:25:35 | 000,045,008 | ---- | M] (Microsoft Corporation) MD5=F6F209DDB94959BA104FC8FC87C53759 -- C:\WINDOWS\SysNative\lsass.exe
[2013/08/22 14:25:35 | 000,045,008 | ---- | M] (Microsoft Corporation) MD5=F6F209DDB94959BA104FC8FC87C53759 -- C:\Windows\WinSxS\amd64_microsoft-windows-lsa-minwin_31bf3856ad364e35_6.3.9600.16408_none_2e8484166600f08e\lsass.exe

< MD5 for: NDIS.SYS >
[2014/09/18 07:45:34 | 000,025,682 | ---- | M] () MD5=D2D6A481A75207BF24E9D48C61B7F012 -- C:\Windows\WinSxS\amd64_microsoft-windows-ndis-minwin_31bf3856ad364e35_6.3.9600.17031_none_4a46d083fbdd5ca3\ndis.sys
[2014/06/05 15:00:18 | 001,118,040 | ---- | M] (Microsoft Corporation) MD5=E4B4BE2D7750849C07589DA0B0AABA01 -- C:\WINDOWS\SysNative\drivers\ndis.sys
[2014/06/05 15:00:18 | 001,118,040 | ---- | M] (Microsoft Corporation) MD5=E4B4BE2D7750849C07589DA0B0AABA01 -- C:\Windows\WinSxS\amd64_microsoft-windows-ndis-minwin_31bf3856ad364e35_6.3.9600.17199_none_4a0df531fc06cc28\ndis.sys

< MD5 for: NETLOGON.DLL >
[2014/07/15 08:11:24 | 000,834,560 | ---- | M] (Microsoft Corporation) MD5=2468C21E34C49E4735B4BA430D448E91 -- C:\WINDOWS\SysNative\netlogon.dll
[2014/07/15 08:11:24 | 000,834,560 | ---- | M] (Microsoft Corporation) MD5=2468C21E34C49E4735B4BA430D448E91 -- C:\Windows\WinSxS\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.17041_none_ee9e39a60bd3552e\netlogon.dll
[2014/07/31 15:15:45 | 000,058,552 | ---- | M] () MD5=35048C9600694C3BF01D644D1AAE62BE -- C:\Windows\WinSxS\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.16384_none_f8cac1a04051b0c6\netlogon.dll
[2014/07/15 08:11:25 | 000,688,640 | ---- | M] (Microsoft Corporation) MD5=582918F96C2B7E1E3AE17D08DB6DAC41 -- C:\Windows\SysWOW64\netlogon.dll
[2014/07/15 08:11:25 | 000,688,640 | ---- | M] (Microsoft Corporation) MD5=582918F96C2B7E1E3AE17D08DB6DAC41 -- C:\Windows\WinSxS\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.17041_none_f8f2e3f840341729\netlogon.dll
[2014/07/31 13:18:53 | 000,108,975 | ---- | M] () MD5=D817ED82C2A0E1CED9B396826F52F7CB -- C:\Windows\WinSxS\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.16384_none_ee76174e0bf0eecb\netlogon.dll

< MD5 for: NVRAID.SYS >
[2013/08/22 13:43:31 | 000,150,368 | ---- | M] (NVIDIA Corporation) MD5=BC6B5942AFF25EBAF62DE43C3807EDF8 -- C:\WINDOWS\SysNative\drivers\nvraid.sys
[2013/08/22 13:43:31 | 000,150,368 | ---- | M] (NVIDIA Corporation) MD5=BC6B5942AFF25EBAF62DE43C3807EDF8 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_7ba65ba4b222e751\nvraid.sys
[2013/08/22 13:43:31 | 000,150,368 | ---- | M] (NVIDIA Corporation) MD5=BC6B5942AFF25EBAF62DE43C3807EDF8 -- C:\Windows\WinSxS\amd64_nvraid.inf_31bf3856ad364e35_6.3.9600.16384_none_2a99233292f5aadb\nvraid.sys

< MD5 for: NVSTOR.SYS >
[2013/08/22 13:43:32 | 000,168,288 | ---- | M] (NVIDIA Corporation) MD5=1F43ABFFAC3D6CA356851D517392966E -- C:\WINDOWS\SysNative\drivers\nvstor.sys
[2013/08/22 13:43:32 | 000,168,288 | ---- | M] (NVIDIA Corporation) MD5=1F43ABFFAC3D6CA356851D517392966E -- C:\WINDOWS\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_7ba65ba4b222e751\nvstor.sys
[2013/08/22 13:43:32 | 000,168,288 | ---- | M] (NVIDIA Corporation) MD5=1F43ABFFAC3D6CA356851D517392966E -- C:\Windows\WinSxS\amd64_nvraid.inf_31bf3856ad364e35_6.3.9600.16384_none_2a99233292f5aadb\nvstor.sys

< MD5 for: SCECLI.DLL >
[2013/08/22 03:48:17 | 000,207,360 | ---- | M] (Microsoft Corporation) MD5=1F142D5BD1C3869C5D902779B6FEC3EF -- C:\Windows\SysWOW64\scecli.dll
[2013/08/22 03:48:17 | 000,207,360 | ---- | M] (Microsoft Corporation) MD5=1F142D5BD1C3869C5D902779B6FEC3EF -- C:\Windows\WinSxS\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.16384_none_3320ecb8e1733781\scecli.dll
[2013/08/22 10:55:43 | 000,271,360 | ---- | M] (Microsoft Corporation) MD5=1F1B8D07708E40E54C55B392C78ECCE2 -- C:\WINDOWS\SysNative\scecli.dll
[2013/08/22 10:55:43 | 000,271,360 | ---- | M] (Microsoft Corporation) MD5=1F1B8D07708E40E54C55B392C78ECCE2 -- C:\Windows\WinSxS\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.16384_none_28cc4266ad127586\scecli.dll

< MD5 for: SMSS.EXE >
[2014/03/18 16:42:15 | 000,142,576 | ---- | M] (Microsoft Corporation) MD5=D8564418BAC13776E43DB5F6B4FA775E -- C:\WINDOWS\SysNative\smss.exe
[2014/03/18 16:42:15 | 000,142,576 | ---- | M] (Microsoft Corporation) MD5=D8564418BAC13776E43DB5F6B4FA775E -- C:\Windows\WinSxS\amd64_microsoft-windows-smss-minwin_31bf3856ad364e35_6.3.9600.17031_none_6f522891bc9cbe45\smss.exe

< MD5 for: SVCHOST.EXE >
[2013/08/22 06:30:58 | 000,031,552 | ---- | M] (Microsoft Corporation) MD5=425E22D9F5C01616AFC92987791B19E9 -- C:\Windows\SysWOW64\svchost.exe
[2013/08/22 06:30:58 | 000,031,552 | ---- | M] (Microsoft Corporation) MD5=425E22D9F5C01616AFC92987791B19E9 -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.16384_none_4a5b1e2820e75323\svchost.exe
[2013/08/22 13:45:17 | 000,037,768 | ---- | M] (Microsoft Corporation) MD5=E4CA434F251681590D0538BC21C32D2F -- C:\WINDOWS\SysNative\svchost.exe
[2013/08/22 13:45:17 | 000,037,768 | ---- | M] (Microsoft Corporation) MD5=E4CA434F251681590D0538BC21C32D2F -- C:\Windows\WinSxS\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.16384_none_a679b9abd944c459\svchost.exe

< MD5 for: TCPIP.SYS >
[2014/10/18 21:21:50 | 000,445,111 | ---- | M] () MD5=5F46548648648BE21060C8DED2B56238 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17238_none_a4166a733a313d8b\tcpip.sys
[2014/07/31 13:38:31 | 000,223,198 | ---- | M] () MD5=889B53B7C56665B0277CC00EF4051DE4 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17085_none_a3dd562d3a5c82ed\tcpip.sys
[2014/07/31 13:37:41 | 000,483,322 | ---- | M] () MD5=88BB7357D258AD2915307496DA6AC292 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16521_none_a41a54d33a2f4e0d\tcpip.sys
[2014/09/18 07:49:09 | 000,242,003 | ---- | M] () MD5=90511DE4535E8829764B1E1E220F56DB -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17136_none_a41467f93a330db6\tcpip.sys
[2014/09/08 04:07:38 | 002,497,344 | ---- | M] (Microsoft Corporation) MD5=CCB3A2BB60FE5073F2DEA63FE83CF8FE -- C:\WINDOWS\SysNative\drivers\tcpip.sys
[2014/09/08 04:07:38 | 002,497,344 | ---- | M] (Microsoft Corporation) MD5=CCB3A2BB60FE5073F2DEA63FE83CF8FE -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17336_none_a4146bc53a330804\tcpip.sys
[2014/07/31 13:38:06 | 000,237,133 | ---- | M] () MD5=D40C5B54A079A4AE257C9619E1DF0D3F -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17039_none_a41766f13a305c94\tcpip.sys
[2014/11/15 18:07:37 | 000,241,540 | ---- | M] () MD5=E7D9CAEE2A6C4007CB85632A13D4EEF3 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17278_none_a3eb2ac33a51ad4f\tcpip.sys

< MD5 for: USERINIT.EXE >
[2013/08/22 11:03:12 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=08C191B2917862BE90C33E31CB6B6D79 -- C:\WINDOWS\SysNative\userinit.exe
[2013/08/22 11:03:12 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=08C191B2917862BE90C33E31CB6B6D79 -- C:\Windows\WinSxS\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.16384_none_cce71a20a5a6fe7f\userinit.exe
[2013/08/22 03:54:12 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=41636F77AD6D9A396EA34E4786B96F2B -- C:\Windows\SysWOW64\userinit.exe
[2013/08/22 03:54:12 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=41636F77AD6D9A396EA34E4786B96F2B -- C:\Windows\WinSxS\x86_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.16384_none_70c87e9ced498d49\userinit.exe

< MD5 for: WINLOGON.EXE >
[2014/03/18 16:42:32 | 000,562,176 | ---- | M] (Microsoft Corporation) MD5=306EB21E5B480AE9065EA55AC8C35936 -- C:\WINDOWS\SysNative\winlogon.exe
[2014/03/18 16:42:32 | 000,562,176 | ---- | M] (Microsoft Corporation) MD5=306EB21E5B480AE9065EA55AC8C35936 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.17031_none_60b45365a8c2ccdb\winlogon.exe

< MD5 for: WS2_32.DLL >
[2013/08/22 06:17:54 | 000,313,488 | ---- | M] (Microsoft Corporation) MD5=428AF7FA03FF09CE1CD373ABFEBAD8A3 -- C:\Windows\SysWOW64\ws2_32.dll
[2013/08/22 06:17:54 | 000,313,488 | ---- | M] (Microsoft Corporation) MD5=428AF7FA03FF09CE1CD373ABFEBAD8A3 -- C:\Windows\WinSxS\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.3.9600.16384_none_87577549e9ef9b02\ws2_32.dll
[2013/08/22 14:25:35 | 000,355,872 | ---- | M] (Microsoft Corporation) MD5=6F997D98C6A30D79C622811FBAB9119E -- C:\WINDOWS\SysNative\ws2_32.dll
[2013/08/22 14:25:35 | 000,355,872 | ---- | M] (Microsoft Corporation) MD5=6F997D98C6A30D79C622811FBAB9119E -- C:\Windows\WinSxS\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.3.9600.16384_none_e37610cda24d0c38\ws2_32.dll

< >

< %systemroot%*.* /U /s >
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[4 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[2 C:\WINDOWS\Inf\Page Analysis\*.tmp files -> C:\WINDOWS\Inf\Page Analysis\*.tmp -> ]
[1 C:\WINDOWS\Inf\Page Analysis\0000\*.tmp files -> C:\WINDOWS\Inf\Page Analysis\0000\*.tmp -> ]
[1 C:\WINDOWS\Inf\Page Analysis\0005\*.tmp files -> C:\WINDOWS\Inf\Page Analysis\0005\*.tmp -> ]
[1 C:\WINDOWS\Inf\Page Analysis\0009\*.tmp files -> C:\WINDOWS\Inf\Page Analysis\0009\*.tmp -> ]
[9 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[2 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >
[2007/11/07 08:03:18 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2014/11/16 06:16:38 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\.minecraft
[2013/10/15 07:08:18 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\Adobe
[2013/12/27 07:49:07 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\AVG
[2013/10/08 00:06:06 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\Corel
[2014/11/15 16:59:25 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\DAEMON Tools Lite
[2014/11/20 06:20:29 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\eM Client
[2014/11/19 16:06:51 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\FileZilla
[2014/11/15 15:41:51 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\FLEXnet
[2013/10/05 13:37:54 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\GRETECH
[2014/10/12 15:35:48 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\Hive Cluster
[2014/07/15 08:06:12 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\Identities
[2013/10/04 23:50:26 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\LibreOffice
[2013/10/05 12:08:47 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\lm
[2013/10/05 13:26:58 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\Macromedia
[2014/07/17 16:12:03 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\Mediatronic
[2014/09/13 23:33:44 | 000,000,000 | --SD | M] -- C:\Users\Slamak\AppData\Roaming\Microsoft
[2013/10/05 13:32:16 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\Mozilla
[2014/05/29 14:08:53 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\Nero
[2014/05/29 15:56:29 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\Nokia
[2014/11/15 15:19:41 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\Nuance
[2013/10/21 12:08:57 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\ObviousIdea
[2013/10/06 19:11:49 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\OpenOffice
[2013/11/21 00:40:23 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\openvr
[2014/06/27 19:35:24 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\Oracle
[2014/05/29 15:55:48 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\PC Suite
[2014/11/16 06:21:59 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\Seznam.cz
[2014/07/16 21:17:05 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\Skype
[2013/11/12 16:25:43 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\Thunderbird
[2013/12/20 21:00:36 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\vlc
[2014/10/28 22:43:46 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\VSO
[2014/01/11 20:11:49 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\WildTangent
[2013/10/05 17:14:45 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >
[2014/03/25 03:47:24 | 000,139,368 | ---- | M] () -- C:\Users\Slamak\AppData\Roaming\GRETECH\GomPlayer\GrLauncher.exe
[2014/11/12 20:58:12 | 000,428,889 | ---- | M] () -- C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\extensions\artur.dubovoy@gmail.com\modules\ffmpeg\ffmpeg.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >
[2014/11/20 05:38:54 | 000,000,018 | ---- | M] () -- C:\WINDOWS\system32\log.txt

< %SYSTEMDRIVE%\*.exe >
[2007/11/07 08:03:18 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"eM Client" = "C:\Program Files (x86)\eM Client\MailClient.exe" /startup -- [2014/10/15 15:08:26 | 015,558,952 | ---- | M] (eM Client, Inc.)
"DAEMON Tools Lite" = "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun -- [2014/03/04 10:19:52 | 003,696,912 | ---- | M] (Disc Soft Ltd)
"CCleaner Monitoring" = "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR -- [2014/10/30 15:45:50 | 006,501,656 | ---- | M] (Piriform Ltd)

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs

< >

< type c:\boot.ini >> test.txt /c >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014/11/20 06:24:39 | 000,000,512 | ---- | M] () MD5=79973BC87FDD55F7AFBB5401F18A924E -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2012/07/12 20:20:06 | 000,092,827 | ---- | M] () -- \Program Files\Corel\CorelDRAW Graphics Suite X6\Custom Data\Bumpmap\Cracks.cpt
[2012/07/12 20:20:06 | 000,017,870 | ---- | M] () -- \Program Files\Corel\CorelDRAW Graphics Suite X6\Custom Data\Canvas\cracks2c.bmp
[2014/07/16 11:22:09 | 000,023,487 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Adera_2.5.2.34894_x86__8wekyb3d8bbwe\Assets\Episode1\Data\Scenes\Canyon\WallCrackZoom.xml
[2014/07/16 11:22:09 | 000,079,559 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Adera_2.5.2.34894_x86__8wekyb3d8bbwe\Assets\Episode2\Data\Scenes\CrackedWall\CrackedWall.xml
[2014/07/16 11:22:09 | 000,005,094 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.Adera_2.5.2.34894_x86__8wekyb3d8bbwe\Assets\Episode3\Data\Scenes\StoneCocoonChamber\FloorCrackZoom.xml
[2014/09/06 23:58:13 | 1164,967,935 | ---- | M] () -- \Users\Slamak\Desktop\Nová složka\Star Wars - The Clone Wars - Republic Heroes + Crack.iso

< *keygen* /s >

< *AntiWPA* /s >

< *loader* /s >
[2013/09/07 02:54:56 | 000,004,613 | ---- | M] () -- \AdwCleaner\Quarantine\C\Users\Slamak\AppData\Local\Pokki\Engine\frames\frame\loader.gif.vir
[2012/08/01 14:38:42 | 000,855,112 | ---- | M] () -- \FOTOONLINE\FOTOKNIHY\MPR500 Pro 5\AlbumFTPUploader.exe
[2013/07/11 13:41:56 | 000,001,904 | ---- | M] () -- \FOTOONLINE\FOTOKNIHY\MPR500 Pro 5\Lang\Czech\AlbumFTPUploaderDialogs.txt
[2009/10/02 10:58:00 | 000,100,685 | ---- | M] () -- \FOTOONLINE\FOTOKNIHY\MPR500 Pro 5\Lang\Czech\AlbumMakerHelp_files\FTP_uploader.png
[2013/07/16 12:09:50 | 000,001,824 | ---- | M] () -- \FOTOONLINE\FOTOKNIHY\MPR500 Pro 5\Lang\English\AlbumFTPUploaderDialogs.txt
[2012/10/26 06:40:10 | 001,592,464 | ---- | M] () -- \Program Files (x86)\Acer\Acer Cloud\BT\Win32\SmBIOSWmiLoader.dll
[2012/10/26 06:40:10 | 002,168,976 | ---- | M] () -- \Program Files (x86)\Acer\Acer Cloud\BT\x64\SmBIOSWmiLoader.dll
[2012/09/12 11:50:15 | 000,010,776 | ---- | M] () -- \Program Files (x86)\Acer\clear.fi SDK21\Movie\mm\MediaCtrl\ImageLoader.kc
[2012/09/12 11:50:17 | 000,003,505 | ---- | M] () -- \Program Files (x86)\Acer\clear.fi SDK21\Movie\widget\langloader.kc
[2012/09/12 11:50:17 | 000,012,808 | ---- | M] () -- \Program Files (x86)\Acer\clear.fi SDK21\Movie\widget\layoutloader.kc
[2012/09/28 07:31:09 | 000,126,064 | ---- | M] () -- \Program Files (x86)\Acer\clear.fi SDK21\Video\koan\pyloader.dll
[2007/11/13 02:54:34 | 000,070,944 | ---- | M] () -- \Program Files (x86)\AGEIA Technologies\demos\physxloader.dll
[2011/10/18 12:25:42 | 000,855,136 | ---- | M] () -- \Program Files (x86)\AZ FOTO\MPR500 Pro 5\AlbumFTPUploader.exe
[2012/07/31 12:27:09 | 000,001,904 | ---- | M] () -- \Program Files (x86)\AZ FOTO\MPR500 Pro 5\Lang\Czech\AlbumFTPUploaderDialogs.txt
[2011/08/31 15:06:54 | 000,066,880 | ---- | M] () -- \Program Files (x86)\AZ FOTO\MPR500 Pro 5\Lang\Czech\AlbumMakerHelp_files\FTP_uploader.jpg
[2008/07/30 09:06:58 | 000,072,192 | ---- | M] () -- \Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\coloader80.dll
[2008/07/29 02:43:16 | 000,004,096 | ---- | M] () -- \Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\coloader80.tlb
[2007/10/12 16:19:58 | 000,052,232 | ---- | M] () -- \Program Files (x86)\Common Files\Microsoft Shared\VSTO\8.0\AddinLoader.dll
[2007/10/12 16:20:18 | 000,129,024 | ---- | M] () -- \Program Files (x86)\Common Files\Microsoft Shared\VSTO\8.0\VSTOLoader.dll
[2007/10/12 16:20:14 | 000,017,416 | ---- | M] () -- \Program Files (x86)\Common Files\Microsoft Shared\VSTO\8.0\1033\VSTOLoaderUI.dll
[2008/07/29 23:23:46 | 000,211,456 | ---- | M] () -- \Program Files (x86)\Common Files\Microsoft Shared\VSTO\9.0\VSTOLoader.dll
[2008/06/17 18:39:56 | 000,018,952 | ---- | M] () -- \Program Files (x86)\Common Files\Microsoft Shared\VSTO\9.0\1033\VSTOLoaderUI.dll
[2012/09/20 01:09:50 | 000,127,504 | ---- | M] () -- \Program Files (x86)\CyberLink\MediaEspresso\Koan\pyloader.dll
[2012/09/19 03:49:56 | 000,018,123 | ---- | M] () -- \Program Files (x86)\CyberLink\MediaEspresso\subsys\DataCenter\ImageLoader.kc
[2014/05/07 12:28:42 | 000,015,511 | ---- | M] () -- \Program Files (x86)\Freemake\Freemake Video Converter\FMCommon\FreemakeCommon\Profiles\FmDownloaderProfiles.xml
[2014/05/07 12:28:42 | 000,064,651 | ---- | M] () -- \Program Files (x86)\Freemake\Freemake Video Converter\FMCommon\FreemakeCommon\Resources\VideoDownloader.png
[2014/05/07 12:28:42 | 000,064,719 | ---- | M] () -- \Program Files (x86)\Freemake\Freemake Video Converter\FMCommon\FreemakeCommon\Resources\VideoDownloaderOn.png
[2014/05/07 12:34:20 | 000,043,008 | ---- | M] () -- \Program Files (x86)\Freemake\Freemake Video Converter\FMWeb\Downloader\DownloaderCommon.dll
[2014/05/07 12:34:20 | 000,020,992 | ---- | M] () -- \Program Files (x86)\Freemake\Freemake Video Converter\FMWeb\Downloader\FMDownloader.Detector.dll
[2014/05/07 12:29:42 | 000,008,192 | ---- | M] () -- \Program Files (x86)\Freemake\Freemake Video Converter\FMWeb\Downloader\FMDownloader.GlobalSettings.dll
[2014/05/07 12:34:24 | 000,014,336 | ---- | M] () -- \Program Files (x86)\Freemake\Freemake Video Converter\FMWeb\Downloader\FMDownloader.HtmlParser.dll
[2014/05/07 12:34:18 | 000,045,568 | ---- | M] () -- \Program Files (x86)\Freemake\Freemake Video Converter\FMWeb\Downloader\FMDownloader.Interface.dll
[2014/05/07 12:29:42 | 000,020,480 | ---- | M] () -- \Program Files (x86)\Freemake\Freemake Video Converter\FMWeb\Downloader\FMDownloader.Miscellaneous.dll
[2014/05/07 12:34:18 | 000,066,048 | ---- | M] () -- \Program Files (x86)\Freemake\Freemake Video Converter\FMWeb\Downloader\FMDownloader.SmartDownloader.Core.dll
[2014/05/07 12:34:20 | 000,158,720 | ---- | M] () -- \Program Files (x86)\Freemake\Freemake Video Converter\FMWeb\Downloader\FMDownloader.SmartDownloader.Extensions.dll
[2014/05/07 12:34:24 | 000,146,432 | ---- | M] () -- \Program Files (x86)\Freemake\Freemake Video Converter\FMWeb\Downloader\FMDownloader.SupportedSite.dll
[2014/05/07 12:34:18 | 000,019,456 | ---- | M] () -- \Program Files (x86)\Freemake\Freemake Video Converter\FMWeb\Downloader\FMDownloader.TrackDownloaderLib.dll
[2014/05/07 12:28:30 | 000,034,304 | ---- | M] () -- \Program Files (x86)\Freemake\Freemake Video Converter\FMWeb\Uploader\FMYouTubeUploader.dll
[2012/07/04 19:29:36 | 000,367,168 | ---- | M] () -- \Program Files (x86)\NTI\NTI Media Maker 9\LauncherLoader.exe
[2013/09/17 03:54:36 | 000,029,696 | ---- | M] () -- \Program Files (x86)\OpenOffice 4\program\javaloader.uno.dll
[2013/09/17 03:57:36 | 000,005,813 | ---- | M] () -- \Program Files (x86)\OpenOffice 4\program\pythonloader.py
[2013/09/17 03:54:38 | 000,020,992 | ---- | M] () -- \Program Files (x86)\OpenOffice 4\program\pythonloader.uno.dll
[2013/09/20 12:57:06 | 000,000,171 | ---- | M] () -- \Program Files (x86)\OpenOffice 4\program\pythonloader.uno.ini
[2013/09/20 12:39:02 | 000,003,868 | ---- | M] () -- \Program Files (x86)\OpenOffice 4\program\classes\unoloader.jar
[2013/09/16 21:10:56 | 000,013,420 | ---- | M] () -- \Program Files (x86)\OpenOffice 4\program\python-core-2.7.5\lib\unittest\loader.py
[2012/07/13 00:51:40 | 000,012,744 | ---- | M] () -- \Program Files\Corel\CorelDRAW Graphics Suite X6\Programs64\Reflectionloader.dll
[2012/11/15 10:17:50 | 000,003,282 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_01.scale-100.png
[2012/11/15 10:17:50 | 000,003,471 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_01.scale-140.png
[2014/07/16 11:32:05 | 000,001,754 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_01.scale-180.png
[2012/11/15 10:17:50 | 000,003,303 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_02.scale-100.png
[2012/11/15 10:17:50 | 000,003,447 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_02.scale-140.png
[2014/07/16 11:32:05 | 000,001,752 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_02.scale-180.png
[2012/11/15 10:17:50 | 000,003,290 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_03.scale-100.png
[2012/11/15 10:17:50 | 000,003,450 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_03.scale-140.png
[2014/07/16 11:32:05 | 000,001,745 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_03.scale-180.png
[2012/11/15 10:17:50 | 000,003,307 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_04.scale-100.png
[2012/11/15 10:17:50 | 000,003,478 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_04.scale-140.png
[2014/07/16 11:32:05 | 000,001,752 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_04.scale-180.png
[2012/11/15 10:17:50 | 000,003,272 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_05.scale-100.png
[2012/11/15 10:17:50 | 000,003,456 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_05.scale-140.png
[2014/07/16 11:32:05 | 000,001,752 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_05.scale-180.png
[2012/11/15 10:17:50 | 000,003,303 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_06.scale-100.png
[2012/11/15 10:17:50 | 000,003,458 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_06.scale-140.png
[2014/07/16 11:32:05 | 000,001,754 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_06.scale-180.png
[2012/11/15 10:17:50 | 000,003,286 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_07.scale-100.png
[2012/11/15 10:17:50 | 000,003,469 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_07.scale-140.png
[2014/07/16 11:32:05 | 000,001,766 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_07.scale-180.png
[2012/11/15 10:17:50 | 000,003,298 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_08.scale-100.png
[2012/11/15 10:17:50 | 000,003,456 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_08.scale-140.png
[2014/07/16 11:32:05 | 000,001,745 | ---- | M] () -- \Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.0.3002_neutral__48frkmn4z8aw4\Data\UISource\loader_08.scale-180.png
[2014/07/16 11:29:31 | 000,001,849 | ---- | M] () -- \Program Files\WindowsApps\esobiIncorporated.newsXpressoMetro_2.0.2.208_neutral__sngswjb5h6fyg\Assets\Web\lib\galleria\classic-loader.gif
[2012/11/14 18:55:32 | 000,001,849 | ---- | M] () -- \Program Files\WindowsApps\Evernote.Skitch_2.4.2000.1918_neutral__q4d96b2w5wcc2\app\win\map\images\ajax-loader_rev.gif
[2014/07/16 11:31:25 | 000,001,748 | ---- | M] () -- \Program Files\WindowsApps\Evernote.Skitch_2.4.2000.1918_neutral__q4d96b2w5wcc2\lib\require\deploader.js
[2014/03/18 16:17:41 | 000,000,856 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.212_x64__8wekyb3d8bbwe\js\HtmlFileLoader.js
[2014/07/16 11:12:33 | 000,038,912 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.MicrosoftMahjong_2.4.1408.2503_x86__8wekyb3d8bbwe\Arkadium.SharpDXEngine.AudioLoader.dll
[2014/07/16 11:12:33 | 000,002,560 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.MicrosoftMahjong_2.4.1408.2503_x86__8wekyb3d8bbwe\Arkadium.SharpDXEngine.AudioLoader.winmd
[2014/07/16 11:12:33 | 000,032,768 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.MicrosoftMahjong_2.4.1408.2503_x86__8wekyb3d8bbwe\Arkadium.SharpDXEngine.DDSLoader.dll
[2014/07/16 11:12:33 | 000,002,560 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.MicrosoftMahjong_2.4.1408.2503_x86__8wekyb3d8bbwe\Arkadium.SharpDXEngine.DDSLoader.winmd
[2014/07/16 11:15:24 | 000,001,338 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.MicrosoftMahjong_2.4.1408.2503_x86__8wekyb3d8bbwe\LoaderPage.xbf
[2014/09/17 10:46:48 | 000,011,300 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.MicrosoftMahjong_2.4.1408.2503_x86__8wekyb3d8bbwe\MvvmStructure\View\Controls\PreloaderPage.xbf
[2014/07/16 11:15:24 | 000,002,178 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.MicrosoftMahjong_2.4.1408.2503_x86__8wekyb3d8bbwe\MvvmStructure\View\Controls\StandartPreloaderControl.xbf
[2014/07/16 11:12:31 | 000,001,290 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_2.4.1408.2701_x86__8wekyb3d8bbwe\ApplicationLoader.xbf
[2014/07/16 11:12:33 | 000,038,912 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_2.4.1408.2701_x86__8wekyb3d8bbwe\Arkadium.SharpDXEngine.AudioLoader.dll
[2014/07/16 11:12:33 | 000,002,560 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_2.4.1408.2701_x86__8wekyb3d8bbwe\Arkadium.SharpDXEngine.AudioLoader.winmd
[2014/07/16 11:12:33 | 000,032,768 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_2.4.1408.2701_x86__8wekyb3d8bbwe\Arkadium.SharpDXEngine.DDSLoader.dll
[2014/07/16 11:12:33 | 000,002,560 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_2.4.1408.2701_x86__8wekyb3d8bbwe\Arkadium.SharpDXEngine.DDSLoader.winmd
[2014/07/16 11:12:57 | 000,004,686 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_2.4.1408.2701_x86__8wekyb3d8bbwe\MvvmStructure\View\Controls\PreloaderControl.xbf
[2014/03/18 16:14:05 | 000,001,160 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\modernpeople\appframe\backgroundloader.js
[2014/03/18 16:14:06 | 000,004,996 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\modernshareanything\sharedataloader.js
[2014/03/18 16:14:06 | 000,002,125 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\modernsharetarget\sharemaildataloader.js
[2014/03/18 16:17:54 | 000,043,128 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2014/08/27 21:41:31 | 000,061,528 | ---- | M] () -- \Program Files\WinRAR\Ace32Loader.exe
[2014/05/07 12:28:42 | 000,015,511 | ---- | M] () -- \ProgramData\Freemake\FreemakeUtilsService\ErrorReporter\FMCommon\FreemakeCommon\Profiles\FmDownloaderProfiles.xml
[2014/05/07 12:28:42 | 000,064,651 | ---- | M] () -- \ProgramData\Freemake\FreemakeUtilsService\ErrorReporter\FMCommon\FreemakeCommon\Resources\VideoDownloader.png
[2014/05/07 12:28:42 | 000,064,719 | ---- | M] () -- \ProgramData\Freemake\FreemakeUtilsService\ErrorReporter\FMCommon\FreemakeCommon\Resources\VideoDownloaderOn.png
[2013/07/03 13:58:42 | 000,000,232 | ---- | M] () -- \ProgramData\Nero\Nero 10\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2014/05/07 12:28:42 | 000,015,511 | ---- | M] () -- \Users\All Users\Freemake\FreemakeUtilsService\ErrorReporter\FMCommon\FreemakeCommon\Profiles\FmDownloaderProfiles.xml
[2014/05/07 12:28:42 | 000,064,651 | ---- | M] () -- \Users\All Users\Freemake\FreemakeUtilsService\ErrorReporter\FMCommon\FreemakeCommon\Resources\VideoDownloader.png
[2014/05/07 12:28:42 | 000,064,719 | ---- | M] () -- \Users\All Users\Freemake\FreemakeUtilsService\ErrorReporter\FMCommon\FreemakeCommon\Resources\VideoDownloaderOn.png
[2013/07/03 13:58:42 | 000,000,232 | ---- | M] () -- \Users\All Users\Nero\Nero 10\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2014/10/30 16:36:02 | 000,012,800 | ---- | M] () -- \Users\Slamak\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.Sh130cfbe4#\9ef21ae2ff95f96dcc5d7181d3ef82d5\Arkadium.SharpDXEngine.AudioLoader.ni.dll
[2014/10/30 16:36:02 | 000,000,728 | ---- | M] () -- \Users\Slamak\AppData\Local\Packages\Microsoft.MicrosoftMahjong_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.Sh130cfbe4#\9ef21ae2ff95f96dcc5d7181d3ef82d5\Arkadium.SharpDXEngine.AudioLoader.ni.dll.aux
[2014/10/30 16:36:54 | 000,012,800 | ---- | M] () -- \Users\Slamak\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.Sh130cfbe4#\9ef21ae2ff95f96dcc5d7181d3ef82d5\Arkadium.SharpDXEngine.AudioLoader.ni.dll
[2014/10/30 16:36:54 | 000,000,728 | ---- | M] () -- \Users\Slamak\AppData\Local\Packages\Microsoft.MicrosoftSolitaireCollection_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0_32\NativeImages\Arkadium.Sh130cfbe4#\9ef21ae2ff95f96dcc5d7181d3ef82d5\Arkadium.SharpDXEngine.AudioLoader.ni.dll.aux
[2014/02/18 17:46:42 | 000,072,638 | ---- | M] () -- \Users\Slamak\AppData\Local\Skype\Apps\login\images\loader.gif
[2014/02/18 17:46:42 | 000,003,032 | ---- | M] () -- \Users\Slamak\AppData\Local\Skype\Apps\login\images\loader.png
[2014/02/18 17:46:42 | 000,006,012 | ---- | M] () -- \Users\Slamak\AppData\Local\Skype\Apps\login\images\normal\loader_15fps.gif
[2014/02/18 17:46:42 | 000,021,956 | ---- | M] () -- \Users\Slamak\AppData\Local\Skype\Apps\login\images\normal\loader_30fps.gif
[2014/02/18 17:46:42 | 000,009,772 | ---- | M] () -- \Users\Slamak\AppData\Local\Skype\Apps\login\images\retina\loader@2x.png
[2014/11/12 20:58:01 | 000,001,339 | ---- | M] () -- \Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\extensions\artur.dubovoy@gmail.com\chrome\content\dialogs\offer_downloader.css
[2014/11/12 20:58:01 | 000,002,240 | ---- | M] () -- \Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\extensions\artur.dubovoy@gmail.com\chrome\content\dialogs\offer_downloader.js
[2014/11/12 20:58:01 | 000,001,238 | ---- | M] () -- \Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\extensions\artur.dubovoy@gmail.com\chrome\content\dialogs\offer_downloader.xul
[2014/11/12 20:58:02 | 000,000,223 | ---- | M] () -- \Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\extensions\artur.dubovoy@gmail.com\chrome\locale\ar\fvd.offer_downloader.dtd
[2014/11/12 20:58:02 | 000,000,223 | ---- | M] () -- \Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\extensions\artur.dubovoy@gmail.com\chrome\locale\en-US\fvd.offer_downloader.dtd
[2014/11/12 20:58:02 | 000,000,223 | ---- | M] () -- \Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\extensions\artur.dubovoy@gmail.com\chrome\locale\hy-AM\fvd.offer_downloader.dtd
[2014/11/12 20:58:02 | 000,000,223 | ---- | M] () -- \Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\extensions\artur.dubovoy@gmail.com\chrome\locale\lt\fvd.offer_downloader.dtd
[2014/11/12 20:58:02 | 000,000,223 | ---- | M] () -- \Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\extensions\artur.dubovoy@gmail.com\chrome\locale\ru\fvd.offer_downloader.dtd
[2013/09/29 01:52:40 | 000,001,917 | ---- | M] () -- \Users\Slamak\Desktop\opencart-1.5.6\upload\system\engine\loader.php
[2012/02/23 15:35:04 | 000,003,972 | ---- | M] () -- \Users\Slamak\Desktop\sqc1\sqc\admin\template\default\images\fm-loader.gif
[2012/02/23 15:35:04 | 000,000,723 | ---- | M] () -- \Users\Slamak\Desktop\sqc1\sqc\admin\template\default\images\loader-inline.gif
[2012/02/23 15:35:06 | 000,000,847 | ---- | M] () -- \Users\Slamak\Desktop\sqc1\sqc\admin\template\default\images\loader.gif
[2012/02/23 15:35:48 | 000,003,208 | ---- | M] () -- \Users\Slamak\Desktop\sqc1\sqc\template\default\images\ajax-loader.gif
[2012/11/30 20:16:34 | 000,003,972 | ---- | M] () -- \Users\Slamak\Desktop\sqc1\zaloha 4.10.2014\sqc\admin\template\default\images\fm-loader.gif
[2012/11/30 20:16:34 | 000,000,723 | ---- | M] () -- \Users\Slamak\Desktop\sqc1\zaloha 4.10.2014\sqc\admin\template\default\images\loader-inline.gif
[2012/11/30 20:16:34 | 000,000,847 | ---- | M] () -- \Users\Slamak\Desktop\sqc1\zaloha 4.10.2014\sqc\admin\template\default\images\loader.gif
[2012/11/30 20:17:38 | 000,003,208 | ---- | M] () -- \Users\Slamak\Desktop\sqc1\zaloha 4.10.2014\sqc\template\default\images\ajax-loader.gif
[2013/12/12 17:57:56 | 000,000,847 | ---- | M] () -- \Users\Slamak\Desktop\wordpress soubory pluginy\contact-form-7\images\ajax-loader.gif
[2013/12/08 07:28:10 | 000,045,687 | ---- | M] () -- \Users\Slamak\Desktop\wordpress soubory pluginy\wordpress\wp-includes\script-loader.php
[2013/10/30 14:39:10 | 000,002,747 | ---- | M] () -- \Users\Slamak\Desktop\wordpress soubory pluginy\wordpress\wp-includes\template-loader.php
[2012/11/30 02:18:08 | 000,003,915 | ---- | M] () -- \Users\Slamak\Desktop\wordpress soubory pluginy\wordpress\wp-includes\images\uploader-icons-2x.png
[2012/11/30 02:18:08 | 000,001,593 | ---- | M] () -- \Users\Slamak\Desktop\wordpress soubory pluginy\wordpress\wp-includes\images\uploader-icons.png
[2013/11/15 04:31:10 | 000,004,281 | ---- | M] () -- \Users\Slamak\Desktop\wordpress soubory pluginy\wordpress\wp-includes\js\customize-loader.js
[2013/11/13 21:45:12 | 000,002,539 | ---- | M] () -- \Users\Slamak\Desktop\wordpress soubory pluginy\wordpress\wp-includes\js\customize-loader.min.js
[2008/06/17 18:39:56 | 000,205,312 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\05835BF8A6427053A8ED000690F3EF6A\9.0.21022\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8
[2013/08/22 05:17:27 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 05:17:25 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 05:17:24 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 05:17:20 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 05:17:34 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 05:17:33 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 04:55:19 | 000,036,352 | ---- | M] () -- \Windows\System32\dmloader.dll
[2008/05/26 10:15:14 | 000,070,936 | ---- | M] () -- \Windows\System32\PhysXLoader.dll
[2013/08/22 14:25:39 | 000,003,584 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 14:25:39 | 000,003,072 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 14:25:38 | 000,002,560 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 05:17:27 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 05:17:25 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 05:17:24 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 05:17:20 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 05:17:34 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 05:17:33 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 04:55:19 | 000,036,352 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2008/05/26 10:15:14 | 000,070,936 | ---- | M] () -- \Windows\SysWOW64\PhysXLoader.dll
[2013/08/22 14:25:39 | 000,003,584 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 14:25:39 | 000,003,072 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 14:25:38 | 000,002,560 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-stringloader-l1-1-1.dll
[2014/03/18 17:19:56 | 000,592,677 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.16384_none_210fb36c397c4e2b\hvloader.efi
[2014/03/18 17:19:55 | 000,536,051 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.16384_none_210fb36c397c4e2b\hvloader.exe
[2014/07/31 12:42:07 | 000,598,463 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17031_none_2142a5b03956989d\hvloader.efi
[2014/07/31 12:42:04 | 000,542,292 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17031_none_2142a5b03956989d\hvloader.exe
[2014/07/31 12:42:16 | 000,598,454 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17039_none_214aa800394f6355\hvloader.efi
[2014/07/31 12:42:14 | 000,542,288 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17039_none_214aa800394f6355\hvloader.exe
[2013/08/22 12:21:30 | 000,046,592 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.3.9600.16384_none_36b27bfc6399d5ce\dmloader.dll
[2013/08/22 14:25:37 | 000,003,584 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 14:25:37 | 000,003,072 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 14:25:36 | 000,002,560 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 12:45:31 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 12:45:33 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 12:45:35 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 12:45:30 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 12:45:40 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 12:45:44 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-stringloader-l1-1-1.dll
[2014/03/18 16:44:52 | 000,000,465 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb.manifest
[2014/03/18 17:22:59 | 000,009,588 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb_winload.efi.mui_35ee487d
[2014/03/18 17:22:59 | 000,009,604 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb_winload.exe.mui_3bc5b827
[2014/03/18 17:22:59 | 000,007,885 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb_winresume.efi.mui_f412814e
[2014/03/18 17:22:59 | 000,007,900 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb_winresume.exe.mui_ff8b5358
[2014/09/15 22:07:15 | 000,000,547 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17238_none_4c1f12534071dcdd.manifest
[2014/09/21 20:46:18 | 000,724,249 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17238_none_4c1f12534071dcdd_winload.efi_75834aa0
[2014/09/21 20:46:20 | 000,660,625 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17238_none_4c1f12534071dcdd_winload.exe_75835076
[2014/09/21 20:46:22 | 000,646,411 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17238_none_4c1f12534071dcdd_winresume.efi_85cd069f
[2014/09/21 20:46:24 | 000,587,303 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17238_none_4c1f12534071dcdd_winresume.exe_85cd1215
[2013/08/22 16:34:52 | 000,000,596 | ---- | M] () -- \Windows\WinSxS\FileMaps\programdata_microsoft_network_downloader_7fafaef6d33e4371.cdf-ms
[2014/03/18 15:52:41 | 000,000,463 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_2400ceb4d1008089.manifest
[2014/03/18 16:39:48 | 000,000,465 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb.manifest
[2013/08/22 16:22:38 | 000,000,542 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16384_none_4be51a3d409de6bc.manifest
[2014/03/18 16:39:49 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e.manifest
[2014/09/15 21:22:13 | 000,000,547 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17238_none_4c1f12534071dcdd.manifest
[2013/08/22 04:55:19 | 000,036,352 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.3.9600.16384_none_da93e078ab3c6498\dmloader.dll
[2013/08/22 14:25:39 | 000,003,584 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 14:25:39 | 000,003,072 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 14:25:38 | 000,002,560 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 05:17:27 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 05:17:25 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 05:17:24 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 05:17:20 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 05:17:34 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 05:17:33 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-stringloader-l1-1-1.dll
[2012/11/30 20:16:34 | 000,003,972 | ---- | M] () -- \xampp\htdocs\sqc\sqc\admin\template\default\images\fm-loader.gif
[2012/11/30 20:16:34 | 000,000,723 | ---- | M] () -- \xampp\htdocs\sqc\sqc\admin\template\default\images\loader-inline.gif
[2012/11/30 20:16:34 | 000,000,847 | ---- | M] () -- \xampp\htdocs\sqc\sqc\admin\template\default\images\loader.gif
[2012/11/30 20:17:38 | 000,003,208 | ---- | M] () -- \xampp\htdocs\sqc\sqc\template\default\images\ajax-loader.gif
[2009/01/14 13:22:40 | 000,068,096 | ---- | M] () -- \xampp\MercuryMail\loader.exe
[2009/12/19 23:00:00 | 000,014,987 | ---- | M] () -- \xampp\perl\lib\AutoLoader.pm
[2009/12/19 23:00:00 | 000,025,806 | ---- | M] () -- \xampp\perl\lib\DynaLoader.pm
[2009/12/19 23:00:00 | 000,017,341 | ---- | M] () -- \xampp\perl\lib\SelfLoader.pm
[2009/12/19 23:00:00 | 000,010,882 | ---- | M] () -- \xampp\perl\lib\XSLoader.pm
[2009/12/19 23:00:00 | 000,001,329 | ---- | M] () -- \xampp\perl\lib\Locale\Maketext\GutsLoader.pm
[2009/12/19 23:00:00 | 000,001,027 | ---- | M] () -- \xampp\perl\site\lib\Apache2\XSLoader.pm
[2009/12/19 23:00:00 | 000,001,031 | ---- | M] () -- \xampp\perl\site\lib\APR\XSLoader.pm
[2009/12/19 23:00:00 | 000,010,700 | ---- | M] () -- \xampp\perl\site\lib\ModPerl\RegistryLoader.pm
[2008/12/22 11:17:00 | 000,006,914 | ---- | M] () -- \xampp\php\PEAR\PEAR\Autoloader.php
[2008/12/22 11:17:00 | 000,070,142 | ---- | M] () -- \xampp\php\PEAR\PEAR\Downloader.php
[2008/12/22 11:52:24 | 000,004,609 | ---- | M] () -- \xampp\php\PEAR\PHPUnit2\Runner\StandardTestSuiteLoader.php
[2008/12/22 11:52:24 | 000,003,186 | ---- | M] () -- \xampp\php\PEAR\PHPUnit2\Runner\TestSuiteLoader.php
[2008/12/22 11:52:24 | 000,003,767 | ---- | M] () -- \xampp\php\PEAR\PHPUnit2\Util\Fileloader.php
[2011/01/03 13:06:58 | 000,001,651 | ---- | M] () -- \xampp\phpMyAdmin\libraries\PHPExcel\PHPExcel\Autoloader.php
[2010/03/09 17:06:22 | 000,014,556 | ---- | M] () -- \xampp\tomcat\webapps\docs\class-loader-howto.html
[2010/03/09 17:06:22 | 000,010,582 | ---- | M] () -- \xampp\tomcat\webapps\docs\config\loader.html

< *minodlogin* /s >

< *tnod* /s >

< *AutoKMS* /s >

< *activator* /s >

< *serial* /s >

[slamax]

[2014/10/15 15:08:26 | 000,106,496 | ---- | M] () -- \Program Files (x86)\eM Client\MailClient.XmlSerializers.dll
[2006/01/26 23:44:04 | 000,000,612 | ---- | M] () -- \Program Files (x86)\Microsoft Visual Studio 9.0\VB\Snippets\1033\other\connectivity\EnumerateSerialPorts.snippet
[2006/01/26 23:44:04 | 000,001,198 | ---- | M] () -- \Program Files (x86)\Microsoft Visual Studio 9.0\VB\Snippets\1033\other\connectivity\ReadDatafromaSerialPort.snippet
[2006/01/26 23:44:04 | 000,001,512 | ---- | M] () -- \Program Files (x86)\Microsoft Visual Studio 9.0\VB\Snippets\1033\other\connectivity\UseaSerialPorttoDialaPhoneNumber.snippet
[2013/08/20 13:51:30 | 000,196,432 | ---- | M] () -- \Program Files (x86)\Nero\KM\SerialHelper.exe
[2013/06/11 08:40:28 | 000,248,144 | ---- | M] () -- \Program Files (x86)\Nero\Nero Blu-ray Player\boost_serialization-mt.dll
[2013/06/11 08:40:28 | 000,167,760 | ---- | M] () -- \Program Files (x86)\Nero\Nero Blu-ray Player\boost_wserialization-mt.dll
[2014/07/09 02:45:06 | 000,970,752 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2012/07/13 01:11:58 | 000,048,088 | ---- | M] () -- \Program Files\Corel\CorelDRAW Graphics Suite X6\Connect64\Connect.XmlSerializers.dll
[2012/07/13 01:11:56 | 000,017,880 | ---- | M] () -- \Program Files\Corel\CorelDRAW Graphics Suite X6\Connect64\CrlUtlWPF.XmlSerializers.dll
[2012/07/13 00:52:26 | 000,017,880 | ---- | M] () -- \Program Files\Corel\CorelDRAW Graphics Suite X6\Programs64\CrlUtlWPF.XmlSerializers.dll
[2012/07/30 02:11:06 | 000,017,880 | ---- | M] () -- \Program Files\Corel\CorelDRAW Graphics Suite X6\VideoBrowser64\CrlUtlWPF.XmlSerializers.dll
[2014/07/09 02:45:33 | 000,847,872 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2014/07/15 08:01:42 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2011/01/20 23:09:38 | 000,000,783 | ---- | M] () -- \Users\Slamak\Desktop\wordpress soubory pluginy\wordpress\wp-includes\js\jquery\jquery.serialize-object.js
[2013/08/17 01:06:37 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/06/23 23:12:42 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2014/07/15 08:01:41 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2014/07/09 02:45:06 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014/09/15 22:02:32 | 000,008,704 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt6a32fdc5#\e689a3a0890ef282d7e70d3367726e7b\System.Runtime.Serialization.Xml.ni.dll
[2014/09/15 22:02:32 | 000,000,292 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt6a32fdc5#\e689a3a0890ef282d7e70d3367726e7b\System.Runtime.Serialization.Xml.ni.dll.aux
[2014/09/12 13:34:49 | 000,306,176 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\936b6c5aa7f7dd84cc77bfd146c54720\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014/09/12 13:34:49 | 000,000,440 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\936b6c5aa7f7dd84cc77bfd146c54720\System.Runtime.Serialization.Formatters.Soap.ni.dll.aux
[2014/08/01 13:31:04 | 000,008,192 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtb09a0784#\6f32a8fc9ed432a88405b9adaed59284\System.Runtime.Serialization.Json.ni.dll
[2014/08/01 13:31:04 | 000,000,296 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtb09a0784#\6f32a8fc9ed432a88405b9adaed59284\System.Runtime.Serialization.Json.ni.dll.aux
[2014/08/01 13:31:08 | 000,008,704 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtdf6812ee#\b7c90cd61aa57b4858a896d7e33c30d9\System.Runtime.Serialization.Primitives.ni.dll
[2014/08/01 13:31:08 | 000,000,300 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runtdf6812ee#\b7c90cd61aa57b4858a896d7e33c30d9\System.Runtime.Serialization.Primitives.ni.dll.aux
[2014/10/15 11:21:33 | 002,803,200 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\ab763e7f2c7532e9fe8f587995105156\System.Runtime.Serialization.ni.dll
[2014/10/15 11:21:33 | 000,000,980 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\ab763e7f2c7532e9fe8f587995105156\System.Runtime.Serialization.ni.dll.aux
[2014/10/15 13:27:20 | 003,529,216 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\769339283c5376245c011d81ce725abd\System.Runtime.Serialization.ni.dll
[2014/10/15 13:27:20 | 000,000,980 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\769339283c5376245c011d81ce725abd\System.Runtime.Serialization.ni.dll.aux
[2013/08/22 16:32:39 | 000,001,032 | ---- | M] () -- \Windows\Inf\c_multiportserial.inf
[2014/03/18 15:53:44 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/10 01:55:16 | 000,142,104 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 01:55:16 | 000,029,392 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Json\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Json.dll
[2013/08/10 01:55:16 | 000,029,432 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Primitives\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Primitives.dll
[2014/06/05 04:33:14 | 000,113,952 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2013/08/10 01:55:16 | 000,029,896 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Xml\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Xml.dll
[2014/07/24 04:20:32 | 001,059,536 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013/08/10 01:55:49 | 000,045,720 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2013/08/10 01:55:49 | 000,029,848 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.XmlSerializer\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Xml.XmlSerializer.dll
[2014/06/23 23:12:42 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/17 01:06:37 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/07/09 02:45:07 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2014/07/24 04:20:32 | 001,059,536 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2013/08/10 01:55:16 | 000,142,104 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 01:55:16 | 000,029,392 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Json.dll
[2013/08/10 01:55:16 | 000,029,432 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2013/08/10 01:55:16 | 000,029,896 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2013/08/10 01:55:49 | 000,045,720 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2013/08/10 01:55:49 | 000,029,848 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.XmlSerializer.dll
[2014/03/18 15:53:44 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/06/05 04:33:14 | 000,113,952 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2014/06/23 23:12:50 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/17 01:06:37 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2014/07/09 02:45:34 | 000,847,872 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2014/07/24 04:20:21 | 001,059,536 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.dll
[2013/08/10 01:41:27 | 000,142,104 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 01:41:27 | 000,029,392 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Json.dll
[2013/08/10 01:41:28 | 000,029,432 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2013/08/10 01:41:28 | 000,029,896 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2013/08/10 01:42:08 | 000,045,720 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.Serialization.dll
[2013/08/10 01:42:08 | 000,029,848 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.XmlSerializer.dll
[2014/03/18 15:53:43 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/06/05 04:33:14 | 000,113,952 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2013/08/22 21:12:22 | 000,008,827 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~cs-CZ~6.3.9600.16384.cat
[2013/08/22 20:40:12 | 000,000,781 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~cs-CZ~6.3.9600.16384.mum
[2013/08/22 13:55:01 | 000,008,827 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~~6.3.9600.16384.cat
[2013/08/22 07:47:48 | 000,000,511 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~~6.3.9600.16384.mum
[2013/08/22 04:48:16 | 000,015,872 | ---- | M] () -- \Windows\System32\serialui.dll
[2013/08/22 21:12:22 | 000,008,827 | ---- | M] () -- \Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~cs-CZ~6.3.9600.16384.cat
[2013/08/22 13:55:01 | 000,008,827 | ---- | M] () -- \Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~~6.3.9600.16384.cat
[2014/03/18 15:53:30 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2014/03/18 15:53:20 | 000,000,232 | ---- | M] () -- \Windows\System32\DriverStore\en-US\c_multiportserial.inf_loc
[2013/08/22 07:57:38 | 000,001,032 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\c_multiportserial.inf_amd64_7875073d426d59a6\c_multiportserial.inf
[2014/07/15 07:26:34 | 000,004,224 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\c_multiportserial.inf_amd64_7875073d426d59a6\c_multiportserial.PNF
[2013/08/22 12:40:08 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_amd64_1be60ad3a61e5531\serial.sys
[2013/08/22 04:48:16 | 000,015,872 | ---- | M] () -- \Windows\SysWOW64\serialui.dll
[2014/03/18 15:53:30 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\cs-CZ\serialui.dll.mui
[2014/03/18 15:53:20 | 000,000,232 | ---- | M] () -- \Windows\WinSxS\amd64_c_multiportserial.inf.resources_31bf3856ad364e35_6.3.9600.16384_en-us_35eaebe6834354eb\c_multiportserial.inf_loc
[2013/08/22 07:57:38 | 000,001,032 | ---- | M] () -- \Windows\WinSxS\amd64_c_multiportserial.inf_31bf3856ad364e35_6.3.9600.16384_none_91b10a007e43beff\c_multiportserial.inf
[2014/08/16 11:35:05 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_b0eacafe7f4d1992\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2013/08/17 01:06:37 | 000,011,776 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.17226_cs-cz_b12d926c7f1ac114\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2014/08/16 11:35:19 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.20708_cs-cz_b1ceee03982636a5\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2014/03/18 15:53:30 | 000,005,120 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_3f29419cb7a1caf0\serialui.dll.mui
[2013/08/22 12:13:54 | 000,017,920 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.3.9600.16384_none_e5c00198f2a1c32d\serialui.dll
[2014/08/16 11:43:23 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_4e32729c2675dfcf\System.RunTime.Serialization.Resources.dll
[2014/07/15 08:01:42 | 000,090,112 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.3.9600.17226_cs-cz_4e753a0a26438751\System.RunTime.Serialization.Resources.dll
[2014/08/16 11:43:25 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.3.9600.20708_cs-cz_4f1695a13f4efce2\System.RunTime.Serialization.Resources.dll
[2014/03/18 15:53:20 | 000,009,728 | ---- | M] () -- \Windows\WinSxS\amd64_msports.inf.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_b574829120336a99\serial.sys.mui
[2013/08/22 12:40:08 | 000,083,456 | ---- | M] () -- \Windows\WinSxS\amd64_msports.inf_31bf3856ad364e35_6.3.9600.16384_none_e95610bc8c554aa7\serial.sys
[2014/09/13 22:57:14 | 000,003,691 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..alization.resources_b03f5f7f11d50a3a_4.0.9600.16384_cs-cz_1da5c476c59b0e5b\System.RunTime.Serialization.resources.dll
[2014/06/05 04:33:14 | 000,113,952 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..alization.resources_b03f5f7f11d50a3a_4.0.9600.17238_cs-cz_1da069eec59ff302\System.RunTime.Serialization.resources.dll
[2014/09/13 22:57:15 | 000,003,304 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..alization.resources_b03f5f7f11d50a3a_4.0.9600.20720_cs-cz_06d276aedf4770c6\System.RunTime.Serialization.resources.dll
[2013/08/10 01:41:27 | 000,142,104 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..ion.formatters.soap_b03f5f7f11d50a3a_4.0.9600.16384_none_f73c7de0bb1de286\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 01:41:28 | 000,029,432 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..lization.primitives_b03f5f7f11d50a3a_4.0.9600.16384_none_64635c6af076b012\System.Runtime.Serialization.Primitives.dll
[2014/03/18 15:53:43 | 000,027,920 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..ters.soap.resources_b03f5f7f11d50a3a_4.0.9600.16384_cs-cz_65f374ee29342685\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/10 01:41:27 | 000,029,392 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_031841e9b021a288\System.Runtime.Serialization.Json.dll
[2013/08/10 01:41:28 | 000,029,896 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_ea3019bcd508d7f5\System.Runtime.Serialization.Xml.dll
[2014/09/13 22:57:17 | 000,018,929 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runtime.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_afcfdcce0af8e4ba\System.Runtime.Serialization.dll
[2014/07/24 04:20:21 | 001,059,536 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runtime.serialization_b03f5f7f11d50a3a_4.0.9600.17238_none_afca82460afdc961\System.Runtime.Serialization.dll
[2014/09/13 22:57:19 | 000,004,122 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runtime.serialization_b03f5f7f11d50a3a_4.0.9600.20720_none_98fc8f0624a54725\System.Runtime.Serialization.dll
[2013/08/10 01:42:08 | 000,045,720 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.xml.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_1f92ce7ac9b9f399\System.Xml.Serialization.dll
[2013/08/10 01:42:08 | 000,029,848 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_0b1c65bd7b1ef04c\System.Xml.XmlSerializer.dll
[2014/08/16 11:56:32 | 000,000,531 | ---- | M] () -- \Windows\WinSxS\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.16384_none_f057a9271ce694b1\System.Runtime.Serialization.Formatters.Soap.dll
[2014/06/23 23:12:50 | 000,131,072 | ---- | M] () -- \Windows\WinSxS\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.17226_none_f0517be51cec2cbf\System.Runtime.Serialization.Formatters.Soap.dll
[2014/08/16 11:56:34 | 000,000,491 | ---- | M] () -- \Windows\WinSxS\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.20708_none_d981a48b36959176\System.Runtime.Serialization.Formatters.Soap.dll
[2014/08/16 12:03:51 | 000,000,639 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.16384_none_9fc99c9c7c4c05c7\System.Runtime.Serialization.dll
[2014/09/13 22:59:13 | 000,000,425 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.17226_none_9fc36f5a7c519dd5\System.Runtime.Serialization.dll
[2014/07/09 02:45:34 | 000,847,872 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.17231_none_9fc4e18c7c503707\System.Runtime.Serialization.dll
[2014/08/16 12:03:59 | 000,000,424 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.20708_none_88f3980095fb028c\System.Runtime.Serialization.dll
[2014/09/13 22:59:15 | 000,000,619 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.20717_none_88f4af1295fa0242\System.Runtime.Serialization.dll
[2014/08/16 12:04:04 | 000,000,639 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_daa0a966d0440060\System.Runtime.Serialization.dll
[2014/09/13 22:59:16 | 000,000,425 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17226_none_da9a7c24d049986e\System.Runtime.Serialization.dll
[2014/07/09 02:45:33 | 000,847,872 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17231_none_da9bee56d04831a0\System.Runtime.Serialization.dll
[2014/08/16 12:04:09 | 000,000,424 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20708_none_c3caa4cae9f2fd25\System.Runtime.Serialization.dll
[2014/09/13 22:59:18 | 000,000,619 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20717_none_c3cbbbdce9f1fcdb\System.Runtime.Serialization.dll
[2014/03/18 15:51:46 | 000,000,276 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_c_multiportserial.inf-languagepack_31bf3856ad364e35_6.3.9600.16384_cs-cz_c3036df581d2c4e4.manifest
[2014/03/18 15:52:06 | 000,000,249 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_c_multiportserial.inf.resources_31bf3856ad364e35_6.3.9600.16384_en-us_35eaebe6834354eb.manifest
[2013/08/22 16:20:14 | 000,000,210 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_c_multiportserial.inf_31bf3856ad364e35_6.3.9600.16384_none_91b10a007e43beff.manifest
[2013/08/22 14:25:34 | 000,000,297 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.3.9600.16384_none_0273ed2980a1f589.manifest
[2013/08/22 16:22:11 | 000,001,512 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-serial-classextension_31bf3856ad364e35_6.3.9600.16384_none_26d3123b2d2a9360.manifest
[2013/08/22 16:22:07 | 000,000,110 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.3.9600.16384_none_1d7b32f2da6cfe0c.manifest
[2013/08/22 16:24:27 | 000,000,402 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_031841e9b021a288.manifest
[2013/08/22 16:24:29 | 000,000,401 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_ea3019bcd508d7f5.manifest
[2013/08/22 16:24:24 | 000,000,420 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.runtime.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_afcfdcce0af8e4ba.manifest
[2014/09/10 19:49:50 | 000,000,420 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.runtime.serialization_b03f5f7f11d50a3a_4.0.9600.17238_none_afca82460afdc961.manifest
[2014/09/10 19:49:50 | 000,000,413 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.runtime.serialization_b03f5f7f11d50a3a_4.0.9600.20720_none_98fc8f0624a54725.manifest
[2013/08/22 16:24:28 | 000,000,397 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.xml.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_1f92ce7ac9b9f399.manifest
[2013/08/22 16:24:27 | 000,000,403 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_0b1c65bd7b1ef04c.manifest
[2013/08/22 16:24:13 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.16384_none_9fc99c9c7c4c05c7.manifest
[2014/08/14 06:53:22 | 000,000,404 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.17226_none_9fc36f5a7c519dd5.manifest
[2014/09/10 19:49:19 | 000,000,404 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.17231_none_9fc4e18c7c503707.manifest
[2014/08/14 06:53:22 | 000,000,407 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.20708_none_88f3980095fb028c.manifest
[2014/09/10 19:49:19 | 000,000,406 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.20717_none_88f4af1295fa0242.manifest
[2013/08/22 16:24:13 | 000,000,416 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_daa0a966d0440060.manifest
[2014/08/14 06:53:22 | 000,000,413 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17226_none_da9a7c24d049986e.manifest
[2014/09/10 19:49:19 | 000,000,412 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17231_none_da9bee56d04831a0.manifest
[2014/08/14 06:53:22 | 000,000,415 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20708_none_c3caa4cae9f2fd25.manifest
[2014/09/10 19:49:19 | 000,000,414 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20717_none_c3cbbbdce9f1fcdb.manifest
[2013/08/22 16:24:29 | 000,000,418 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_61eedd30ec040245.manifest
[2013/08/22 16:24:24 | 000,000,430 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.primitives_b03f5f7f11d50a3a_4.0.9600.16384_none_dde82ee214ba2d3d.manifest
[2013/08/22 16:24:13 | 000,000,400 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.16384_none_ed2ffed67c428df1.manifest
[2014/08/14 06:53:22 | 000,000,399 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.17226_none_ed29d1947c4825ff.manifest
[2014/09/10 19:49:19 | 000,000,401 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.17231_none_ed2b43c67c46bf31.manifest
[2014/08/14 06:53:22 | 000,000,399 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.20708_none_d659fa3a95f18ab6.manifest
[2014/09/10 19:49:19 | 000,000,401 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.20717_none_d65b114c95f08a6c.manifest
[2014/03/18 15:52:55 | 000,000,448 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.16384_cs-cz_25789e4d6d93f144.manifest
[2014/09/10 19:49:49 | 000,000,449 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.17238_cs-cz_257343c56d98d5eb.manifest
[2014/09/10 19:49:49 | 000,000,445 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.20720_cs-cz_0ea55085874053af.manifest
[2014/03/18 15:52:53 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.16384_cs-cz_7adb458f8b8eae0b.manifest
[2014/08/14 06:53:20 | 000,000,406 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.17226_cs-cz_7ad5184d8b944619.manifest
[2014/09/10 19:49:19 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.17231_cs-cz_7ad68a7f8b92df4b.manifest
[2014/08/14 06:53:20 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.20708_cs-cz_640540f3a53daad0.manifest
[2014/09/10 19:49:19 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.20717_cs-cz_64065805a53caa86.manifest
[2013/08/22 16:24:24 | 000,000,419 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_0d0d9cf22bac10f4.manifest
[2013/08/22 16:24:27 | 000,000,471 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.16384_none_c8108d2e85eed25d.manifest
[2014/09/10 19:49:50 | 000,000,471 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.17238_none_c80b32a685f3b704.manifest
[2014/09/10 19:49:50 | 000,000,465 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.20720_none_b13d3f669f9b34c8.manifest
[2013/08/22 16:24:13 | 000,000,422 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.16384_none_1d733470a3e98f24.manifest
[2014/08/14 06:53:22 | 000,000,421 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.17226_none_1d6d072ea3ef2732.manifest
[2014/09/10 19:49:19 | 000,000,422 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.17231_none_1d6e7960a3edc064.manifest
[2014/08/14 06:53:22 | 000,000,421 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.20708_none_069d2fd4bd988be9.manifest
[2014/09/10 19:49:19 | 000,000,423 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.20717_none_069e46e6bd978b9f.manifest
[2013/08/22 16:24:28 | 000,000,447 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.xml.serialization_b77a5c561934e089_4.0.9600.16384_none_5aaf0d34c0033202.manifest
[2013/08/22 16:24:24 | 000,000,420 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_3cc4c9f9340d8755.manifest
[2013/08/22 16:24:56 | 000,000,411 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_224de03de4c02966.manifest
[2014/08/14 06:53:21 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17226_none_2247b2fbe4c5c174.manifest
[2014/09/10 19:49:19 | 000,000,412 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17231_none_2249252de4c45aa6.manifest
[2014/08/14 06:53:21 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20708_none_0b77dba1fe6f262b.manifest
[2014/09/10 19:49:19 | 000,000,411 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20717_none_0b78f2b3fe6e25e1.manifest
[2013/08/10 01:55:16 | 000,142,104 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_4.0.9600.16384_none_0dbd81c1c9e100df\System.Runtime.Serialization.Formatters.Soap.dll
[2014/08/16 12:10:03 | 000,000,531 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.16384_none_63202903e7dbbda6\System.Runtime.Serialization.Formatters.Soap.dll
[2014/06/23 23:12:42 | 000,131,072 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.17226_none_6319fbc1e7e155b4\System.Runtime.Serialization.Formatters.Soap.dll
[2014/08/16 12:10:03 | 000,000,491 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.20708_none_4c4a2468018aba6b\System.Runtime.Serialization.Formatters.Soap.dll
[2014/03/18 15:53:44 | 000,027,920 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_4.0.9600.16384_cs-cz_c6e6982dc37909d8\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/08/16 12:10:04 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.3.9600.16384_cs-cz_1c493f6fe173c69f\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/17 01:06:37 | 000,011,776 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.3.9600.17226_cs-cz_1c43122de1795ead\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/08/16 12:10:04 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.3.9600.20708_cs-cz_05733ad3fb22c364\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/10 01:55:16 | 000,029,392 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_61eedd30ec040245\System.Runtime.Serialization.Json.dll
[2013/08/10 01:55:16 | 000,029,432 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.primitives_b03f5f7f11d50a3a_4.0.9600.16384_none_dde82ee214ba2d3d\System.Runtime.Serialization.Primitives.dll
[2014/08/16 12:10:10 | 000,000,661 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.16384_none_ed2ffed67c428df1\System.Runtime.Serialization.dll
[2014/09/13 23:00:49 | 000,000,436 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.17226_none_ed29d1947c4825ff\System.Runtime.Serialization.dll
[2014/07/09 02:45:07 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.17231_none_ed2b43c67c46bf31\System.Runtime.Serialization.dll
[2014/08/16 12:10:15 | 000,000,433 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.20708_none_d659fa3a95f18ab6\System.Runtime.Serialization.dll
[2014/09/13 23:00:51 | 000,000,632 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.20717_none_d65b114c95f08a6c\System.Runtime.Serialization.dll
[2014/09/13 23:00:52 | 000,003,691 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.16384_cs-cz_25789e4d6d93f144\System.RunTime.Serialization.resources.dll
[2014/06/05 04:33:14 | 000,113,952 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.17238_cs-cz_257343c56d98d5eb\System.RunTime.Serialization.resources.dll
[2014/09/13 23:00:53 | 000,003,304 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.20720_cs-cz_0ea55085874053af\System.RunTime.Serialization.resources.dll
[2014/08/16 12:10:16 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.16384_cs-cz_7adb458f8b8eae0b\System.RunTime.Serialization.Resources.dll
[2014/09/13 23:00:53 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.17226_cs-cz_7ad5184d8b944619\System.RunTime.Serialization.Resources.dll
[2014/07/15 08:01:41 | 000,090,112 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.17231_cs-cz_7ad68a7f8b92df4b\System.RunTime.Serialization.Resources.dll
[2014/08/16 12:10:16 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.20708_cs-cz_640540f3a53daad0\System.RunTime.Serialization.Resources.dll
[2014/09/13 23:00:53 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.20717_cs-cz_64065805a53caa86\System.RunTime.Serialization.Resources.dll
[2013/08/10 01:55:16 | 000,029,896 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_0d0d9cf22bac10f4\System.Runtime.Serialization.Xml.dll
[2014/09/13 23:00:56 | 000,018,929 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.16384_none_c8108d2e85eed25d\System.Runtime.Serialization.dll
[2014/07/24 04:20:32 | 001,059,536 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.17238_none_c80b32a685f3b704\System.Runtime.Serialization.dll
[2014/09/13 23:00:58 | 000,004,122 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.20720_none_b13d3f669f9b34c8\System.Runtime.Serialization.dll
[2014/08/16 12:10:22 | 000,000,661 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.16384_none_1d733470a3e98f24\System.Runtime.Serialization.dll
[2014/09/13 23:01:01 | 000,000,436 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.17226_none_1d6d072ea3ef2732\System.Runtime.Serialization.dll
[2014/07/09 02:45:06 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.17231_none_1d6e7960a3edc064\System.Runtime.Serialization.dll
[2014/08/16 12:10:28 | 000,000,433 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.20708_none_069d2fd4bd988be9\System.Runtime.Serialization.dll
[2014/09/13 23:01:03 | 000,000,632 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.20717_none_069e46e6bd978b9f\System.Runtime.Serialization.dll
[2013/08/10 01:55:49 | 000,045,720 | ---- | M] () -- \Windows\WinSxS\msil_system.xml.serialization_b77a5c561934e089_4.0.9600.16384_none_5aaf0d34c0033202\System.Xml.Serialization.dll
[2013/08/10 01:55:49 | 000,029,848 | ---- | M] () -- \Windows\WinSxS\msil_system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_3cc4c9f9340d8755\System.Xml.XmlSerializer.dll
[2014/08/16 12:46:08 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_54cc2f7ac6efa85c\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/17 01:06:37 | 000,011,776 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.17226_cs-cz_550ef6e8c6bd4fde\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/08/16 12:46:20 | 000,000,012 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.20708_cs-cz_55b0527fdfc8c56f\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/03/18 15:53:30 | 000,005,120 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_e30aa618ff4459ba\serialui.dll.mui
[2013/08/22 04:48:16 | 000,015,872 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.3.9600.16384_none_89a166153a4451f7\serialui.dll
[2014/08/16 12:56:09 | 000,000,661 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_224de03de4c02966\System.Runtime.Serialization.dll
[2014/09/21 12:32:10 | 000,000,436 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17226_none_2247b2fbe4c5c174\System.Runtime.Serialization.dll
[2014/07/09 02:45:06 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.17231_none_2249252de4c45aa6\System.Runtime.Serialization.dll
[2014/08/16 12:56:14 | 000,000,433 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20708_none_0b77dba1fe6f262b\System.Runtime.Serialization.dll
[2014/09/21 12:32:15 | 000,000,632 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.20717_none_0b78f2b3fe6e25e1\System.Runtime.Serialization.dll
[2010/12/03 18:58:24 | 000,000,307 | ---- | M] () -- \xampp\mysql\mysql-test\suite\engines\funcs\r\tc_column_serial.result
[2010/12/03 18:58:24 | 000,000,323 | ---- | M] () -- \xampp\mysql\mysql-test\suite\engines\funcs\t\tc_column_serial.test
[2009/12/19 23:00:00 | 000,002,030 | ---- | M] () -- \xampp\perl\site\lib\SOAP\Deserializer.pod
[2009/12/19 23:00:00 | 000,013,276 | ---- | M] () -- \xampp\perl\site\lib\SOAP\Serializer.pod
[2008/12/22 11:55:36 | 000,060,332 | ---- | M] () -- \xampp\php\PEAR\.registry\xml_serializer.reg
[2008/12/22 11:55:36 | 000,039,996 | ---- | M] () -- \xampp\php\PEAR\XML\Serializer.php
[2008/12/22 11:55:36 | 000,030,074 | ---- | M] () -- \xampp\php\PEAR\XML\Unserializer.php
[2011/01/03 13:06:58 | 000,003,589 | ---- | M] () -- \xampp\phpMyAdmin\libraries\PHPExcel\PHPExcel\CachedObjectStorage\MemorySerialized.php
[2011/01/03 13:06:58 | 000,004,063 | ---- | M] () -- \xampp\phpMyAdmin\libraries\PHPExcel\PHPExcel\Reader\Serialized.php
[2011/01/03 13:06:58 | 000,005,339 | ---- | M] () -- \xampp\phpMyAdmin\libraries\PHPExcel\PHPExcel\Writer\Serialized.php

< *w7lxe* /s >

========== Alternate Data Streams ==========

@Alternate Data Stream - 6144 bytes -> C:\WINDOWS\Cursors\arrow_n.cur:NEDTA.DAT

< End of report >

[slamax]

OTL Extras logfile created on: 20. 11. 2014 6:22:55 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Slamak\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17416)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d. M. yyyy

3,82 Gb Total Physical Memory | 2,52 Gb Available Physical Memory | 66,06% Memory free
4,51 Gb Paging File | 3,16 Gb Available in Paging File | 70,25% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 911,75 Gb Total Space | 683,10 Gb Free Space | 74,92% Space Free | Partition Type: NTFS

Computer Name: SLAMAKACER | User Name: Slamak | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-3621977129-2832859686-462106091-1001\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = AC 1C AE C5 46 9F CE 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0CC946C7-9B2E-40FD-A30F-1D16380B05D3}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{0FD9773E-3777-48AA-B41E-95E8B724A09D}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{1C3FB001-1F4F-40E4-82F2-C4CCC242E7FD}" = rport=10243 | protocol=6 | dir=out | app=system |
"{2A227914-C0C5-4F0A-99F3-A17D39D38D3C}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{2DEB2DAC-3039-4F14-A326-F281632B058B}" = lport=2869 | protocol=6 | dir=in | app=system |
"{3342E054-8E58-44DC-A2B0-E2069E72210D}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{39CDB42F-E5E1-4BCF-8181-B62D75CF9AF3}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{3BF4F543-3878-4C34-96B2-0AF3EEDAA656}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{4E57E1DC-3E3C-4B65-8E0D-5A9DED789F33}" = rport=2869 | protocol=6 | dir=out | app=system |
"{503CA8A8-5102-404C-B7E6-CECCD02D5A1D}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{5CF83310-87D0-47D3-9970-A28BE3BD6DFC}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{8FF4283E-C080-44C1-AC06-34271B9ACF4C}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{99A64133-6695-4BBF-A954-688F437149A1}" = lport=2869 | protocol=6 | dir=in | app=system |
"{B152EB9A-5F4C-43F5-BCC6-FB80BBB8BF5A}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{B6E1D322-E3F3-43E5-A9C8-5186D572CF82}" = lport=10243 | protocol=6 | dir=in | app=system |
"{D5544FF2-1F29-41FA-995B-2F6D1F99C990}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{D57EAB24-C899-4913-B4E3-360D5EDB87D3}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{F38D1173-E4CF-4665-9A82-A605625B7E0C}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03FF7364-84D9-468D-B36B-373A6924E653}" = dir=out | name=acer crystal eye |
"{05AA3411-ECEC-4A6E-9F1F-C1B2EDC556E6}" = dir=out | name=sonicwall mobile connect |
"{060083CE-DA37-41C7-AFDD-1616619600A7}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{064AD829-5C27-47EF-AE3D-2FC9FA0C2312}" = protocol=17 | dir=in | app=e:\xampp\mysql\bin\mysqld.exe |
"{071FEE83-EE2F-45F1-817F-D65AAFB33F1A}" = dir=out | name=cut the rope |
"{0765CE9F-2F1D-46EF-BA2D-8035F6F32525}" = dir=in | app=c:\program files (x86)\nti\acer backup manager\ischedulesvc.exe |
"{09A120BF-7E5E-42B3-A49D-3C57CF3090FA}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{1161BB31-4C84-4E77-9C41-2D3A133FB94E}" = protocol=6 | dir=out | app=system |
"{120566F9-CAFC-4F8C-84D4-C652064F4A2E}" = dir=out | name=skype |
"{1326A183-7055-45FE-9CBB-CEA036A72F6F}" = dir=out | name=@{microsoft.zunemusic_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} |
"{14DC98F1-AE79-4F82-B5FE-F18BCE97DC49}" = dir=out | name=weatherbug |
"{1D07035E-1F40-4020-81C7-1B991D358819}" = dir=out | name=social jogger |
"{1D39FB6F-DEEA-4B17-A2CC-44B85E20B5E7}" = dir=in | name=newsxpresso |
"{1DCA56D4-AD07-48B8-8297-ABD1F86884C0}" = protocol=6 | dir=in | app=c:\program files (x86)\acer\clear.fi media\dmcdaemon.exe |
"{1FA91C1E-07A4-49CE-BEF4-965F134F6A56}" = dir=out | name=@{microsoft.bingmaps_1.2.0.136_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{208D5EF6-FE1C-463D-9D35-06E3D2269DD5}" = dir=out | name=@{microsoft.skypeapp_1.1.0.25_x86__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/manifest_display_name} |
"{20C6FA6E-B63A-4F3C-A7F3-8619750E2C04}" = protocol=17 | dir=in | app=c:\program files (x86)\nero\nero blu-ray player\blu-rayplayer.exe |
"{22E14763-AE0F-446B-B03C-8BCF7FAA8601}" = dir=out | name=the treasures of montezuma 3 |
"{28BA9525-9FF0-4126-952A-4890D684DD25}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe |
"{2ACEA3DC-85DE-4834-A398-9A34E051249D}" = protocol=6 | dir=in | app=c:\program files (x86)\lucasarts\republic heroes\republic heroes.exe |
"{2B6307C6-FF1C-487C-9F42-3D65208E559C}" = dir=out | name=adera |
"{2B84F678-92E3-4646-9F9B-73EE09F2D80E}" = dir=in | name=onenote |
"{2BBE2FA1-7CF2-4E35-9B72-74D2D85A7FD0}" = dir=out | name=newsxpresso |
"{2CE948BB-BFCD-4C07-8101-5265A4E0E3CD}" = dir=out | name=@{microsoft.zunevideo_2.6.408.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{2F0896E0-70B3-4146-AB10-7ADFE27A8B70}" = dir=out | name=fresh paint |
"{33049DF9-DBBD-4769-9505-68649786D112}" = protocol=17 | dir=in | app=c:\program files (x86)\acer\clear.fi media\dmcdaemon.exe |
"{3BCF9347-E346-46E0-B33F-A4BC67D2A2EF}" = protocol=6 | dir=in | app=e:\xampp\mysql\bin\mysqld.exe |
"{3F336B73-1C9D-4540-BCA5-D049E499ED82}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 |
"{4282FE99-8560-4BC7-9576-5F3ED84E263F}" = dir=in | name=checkpoint.vpn |
"{4438A42E-CA01-487A-A81F-96AD350C6535}" = dir=in | app=c:\program files (x86)\acer\clear.fi sdk21\video\videoplayer.exe |
"{45BE1503-C832-4A95-A16B-505BD99FA2CE}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{467DB3D2-7F35-4478-8001-AD28EC02100B}" = dir=in | name=microsoft solitaire collection |
"{490CBA08-E9D9-4A1E-A9A9-81A19EB13FDD}" = dir=out | name=@{microsoft.xboxlivegames_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{49D6C8F0-2D7A-42CB-86BB-547F812FEF5C}" = protocol=6 | dir=in | app=c:\program files (x86)\acer\clear.fi photo\windowsupnp.exe |
"{4D9C7401-A22C-415A-82FD-EA0E1E0E2919}" = dir=out | name=@{microsoft.bingnews_3.0.4.213_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/brandedapptitle} |
"{52AB6F0B-711A-478E-BBD5-462F4DC4CBB8}" = dir=out | name=windows_ie_ac_001 |
"{52BACD3E-4796-4C91-9F06-62DBA4F514FF}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{533FE097-A02B-4B87-955A-E8F0976F1E25}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{537E7E15-3D0F-450A-AE8D-934D1C6BB8DE}" = dir=in | name=sonicwall mobile connect |
"{53BF0DAE-43C5-4B35-B110-4EC875A0DB07}" = dir=out | name=- games app - |
"{548471A5-F82A-4CF5-A441-D28B900815AC}" = dir=out | name=kindle |
"{548DCF8C-BFF2-4BA4-AA88-FBAF9AC8BCC6}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{5490CC73-001A-4117-8293-0CD9E341AE11}" = dir=out | name=skitch touch |
"{55E0FDB3-CB29-47E6-95DE-A1CA78BFE8F2}" = dir=out | name=check point vpn |
"{560448D6-095C-4907-B046-AC7F710701A7}" = dir=in | name=sonicwall.mobileconnect |
"{5F4632C0-D5B1-40C3-B0D9-E3A759C81B9E}" = dir=out | name=sonicwall.mobileconnect |
"{61276294-CC9D-41BE-9866-54EB63478B20}" = dir=in | name=skype |
"{62570AB9-D2F2-45B0-BA21-656719DFD81F}" = dir=out | name=@{microsoft.bingsports_3.0.4.244_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/brandedapptitle} |
"{6592EA20-1DB8-4758-AAFE-346861EE8958}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{67B7947F-8524-4FB0-B4FD-6D57D5680E15}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{698341E3-9671-4156-8D80-8E57DAEF78CF}" = dir=out | name=windows_ie_ac_001 |
"{6E98F3D4-5A99-4A73-B56F-0080932CD31B}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7512DD7D-5833-4C12-BA56-137F1FCAC1BE}" = dir=out | name=wordament |
"{779C1A89-4CE7-45D0-9CCC-75D389690A3D}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{787E5484-3AEB-4774-A241-823C0F3D7FC3}" = dir=in | app=c:\program files (x86)\nti\acer backup manager\backupmanager.exe |
"{7B39F568-61F0-4193-875D-D29EFB358C9F}" = protocol=6 | dir=in | app=e:\xampp\apache\bin\httpd.exe |
"{7C0852DB-1D41-4918-AFCA-448A793918F7}" = protocol=17 | dir=in | app=c:\program files (x86)\acer\acer cloud\ccd.exe |
"{7D2E79D9-8CB0-4A07-AECD-008AA6099262}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{7EB730FD-B205-46C9-8B7B-252002248F45}" = dir=out | name=@{microsoft.bingmaps_2.1.3230.2048_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{819D7C4B-A602-47DC-BCD5-11923532BC14}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{84228EA9-F745-41A2-A459-D767C032D9C6}" = dir=out | name=@{microsoft.bingweather_3.0.4.214_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/brandedapptitle} |
"{84AE8A6A-A621-4188-BB24-5D89792CAA70}" = dir=out | name=@{microsoft.bingfinance_3.0.4.212_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/brandedapptitle} |
"{8514F721-BE2A-4565-BC83-9E6D01CF2A0C}" = dir=in | name=acer explorer |
"{8568254B-A353-4347-9DB9-4BA3126A2C5A}" = dir=out | name=acer explorer |
"{86F46EC4-173E-4166-8FF8-A5A69B49D2F9}" = dir=in | name=check point vpn |
"{87B88BBE-8038-4F7F-A0A2-1FBCCA006EE9}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.4.212_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{8FFB08EE-AB08-4EE6-86B7-E1B9B0031D68}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{92300AD7-378C-4ED3-97A1-465C37AA93B7}" = dir=in | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{94CB8D55-F490-40B8-B9CC-6A50F9C47BBF}" = dir=out | name=@{microsoft.zunevideo_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} |
"{9648771E-3333-4970-AAC1-4FE5D09A9020}" = dir=out | name=@{microsoft.zunemusic_2.6.343.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{9842AC32-6485-453D-8FFC-A38E68AE5A84}" = protocol=17 | dir=in | app=c:\program files (x86)\acer\clear.fi photo\windowsupnp.exe |
"{9946C210-3EEA-4C51-8C9E-AFB2E46252D3}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{9A6784F4-BB91-4920-BE9F-75DA860ACF46}" = protocol=6 | dir=in | app=c:\program files (x86)\nero\km\nmdllhost.exe |
"{9B2F7CFB-57B0-4437-8662-85A66473FD48}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{9E3D57FC-7C37-4424-9352-4831E97D029D}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{A24A4B48-A1F4-4705-B77C-B864931787F6}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{A85D8387-645E-44E9-94E1-34AA456EB606}" = protocol=17 | dir=in | app=c:\program files (x86)\acer\clear.fi media\windowsupnpmv.exe |
"{A99C6BCB-A2DF-4D54-8B84-E0D2E8439AE7}" = protocol=17 | dir=in | app=c:\program files (x86)\nero\km\nmdllhost.exe |
"{AAA1B0F4-DD4B-4B0D-A3EC-9B5F7704697C}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{AAC04F32-EEE2-477F-B38F-8A962E31A967}" = dir=out | name=microsoft mahjong |
"{AAD1E350-B88B-44AD-8383-FB14C143D103}" = dir=out | name=pinball fx2 |
"{B98B703E-E1A4-4826-A256-1E06246CFF86}" = protocol=6 | dir=in | app=c:\program files (x86)\acer\clear.fi photo\dmcdaemon.exe |
"{B99F062C-1471-448B-A7F8-494B65DD5D4E}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{BF492BD3-FF8B-4D4F-8507-198F3FA69FE1}" = dir=out | name=onenote |
"{BFCFDD45-68EB-4105-8726-73306E3B622A}" = protocol=6 | dir=in | app=c:\program files (x86)\acer\clear.fi media\windowsupnpmv.exe |
"{C04F10F5-600F-4F65-A079-AEB58BFB279C}" = dir=in | name=microsoft mahjong |
"{C86F5D6C-F840-4C85-AD66-D8AFE20A3142}" = dir=out | name=windows_ie_ac_001 |
"{C9890A13-70B0-4B48-88FA-CF7EE0718982}" = dir=out | name=@{microsoft.bingnews_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{CA0A553F-09A3-4FE9-9A6C-D4F699A98F77}" = dir=in | name=pinball fx2 |
"{CA46717E-CBFA-4DC2-9838-2160A62A7B34}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{CB871346-663D-499B-990F-95BDAD55C01B}" = dir=out | name=shark dash |
"{CC5CF981-F1B3-4E74-A4A9-6D9A8B1C7C5C}" = dir=out | name=microsoft solitaire collection |
"{CD940879-0ABE-4176-AA4B-71731A49D9D6}" = protocol=6 | dir=in | app=c:\program files (x86)\nero\nero blu-ray player\blu-rayplayer.exe |
"{CE6F0825-F38E-42FF-9654-9F6DC69067AC}" = dir=in | name=f5 vpn |
"{D0CF1759-BA08-4769-A318-B15884B0A76A}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{D0D0787A-D406-4AB3-ADA6-7334CC291AA5}" = dir=in | app=%systemroot%\system32\alg.exe |
"{D1B1D317-AECE-4878-8B52-87C7B2BF20DA}" = dir=out | name=7digital music store |
"{D3B3EBD9-8136-45B2-B88A-3D4E3067891F}" = dir=in | app=c:\program files (x86)\leapfrog\leapfrog connect\leapfrogconnect.exe |
"{D6980480-941A-4DF6-AB81-3734ECD3D779}" = dir=out | name=junipernetworks.junospulsevpn |
"{D999088A-704B-4E0A-B92D-7F72ED34C92D}" = dir=in | name=juniper networks junos pulse |
"{DB59588E-ED90-4C47-A7B5-7929DD0C0BD2}" = dir=out | name=checkpoint.vpn |
"{DDADA066-3AC1-4EED-81BE-FEC0F11FB36A}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{DDC7E40F-1333-444F-B1B6-E83D9E46BDD7}" = dir=in | app=c:\program files (x86)\nti\acer backup manager\fileexplorer.exe |
"{DFFDA9B8-2E07-43D5-B4CA-59DB6ADEB643}" = dir=in | name=evernote touch |
"{E05D8363-E172-48AD-845C-1C39B427B9D2}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{E2701AA8-6E7E-4EEE-B760-B17716D452F2}" = dir=out | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{E2CD2A1C-03FB-455B-9231-AC5C53314E76}" = protocol=6 | dir=in | app=c:\program files (x86)\acer\acer cloud\ccd.exe |
"{E6553953-9CA6-43C9-B196-AD3C792A319D}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{E8C9F16C-DD0C-45EC-B7CE-D1FA42A123A6}" = protocol=17 | dir=in | app=c:\program files (x86)\acer\clear.fi photo\dmcdaemon.exe |
"{E9425036-74BB-4BF5-8FD8-63549925E564}" = dir=out | name=tunein radio |
"{E9AC9214-1F3B-45D6-BD42-9A21A78089D8}" = protocol=17 | dir=in | app=c:\program files (x86)\lucasarts\republic heroes\republic heroes.exe |
"{EBC2B882-2494-44D4-AA74-621DF3523F3C}" = dir=out | name=f5 vpn |
"{EC799E33-72BA-42D7-9127-DEFE68F9799D}" = dir=in | name=junipernetworks.junospulsevpn |
"{ECD13729-98B2-4A94-9AD9-C2DB74329B42}" = dir=out | name=juniper networks junos pulse |
"{EFACD9AA-017F-4411-92E4-3281B0E204FE}" = dir=out | name=@{microsoft.xboxlivegames_2.0.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{F2ACAED0-D62D-4CD4-A7B8-078D8BD23BDD}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{F310FFFD-F63B-4AED-A3A2-189644A80DDE}" = dir=out | name=@{microsoft.bingweather_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{F3F24914-3E0B-41B0-A090-99182D01EEFD}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.4.240_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{F64300AD-D559-4000-BD45-0997BCC8E70A}" = dir=out | name=f5.vpn.client |
"{F77E5446-4378-4E99-8B7A-7061AAAEA193}" = dir=in | name=f5.vpn.client |
"{FAC59AEF-4984-4067-9F8B-E66B1E5C7F74}" = dir=out | name=evernote touch |
"{FC00E801-1E34-42CB-9F0A-AA413A922F4F}" = dir=in | name=@{microsoft.skypeapp_1.1.0.25_x86__kzf8qxf38zg5c?ms-resource://microsoft.skypeapp/resources/manifest_display_name} |
"{FD8E0156-513C-4964-91EE-5A9032BB4071}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{FEB34178-FD58-43A1-8DB9-B733ECC27B5A}" = dir=out | name=@{microsoft.bingtravel_3.0.4.212_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/brandedapptitle} |
"TCP Query User{0790EAAD-60D8-4CD1-8A67-A9D0154936E0}C:\xampp\mercurymail\mercury.exe" = protocol=6 | dir=in | app=c:\xampp\mercurymail\mercury.exe |
"TCP Query User{1BC99A88-B053-4451-9514-1C37901FA8D4}C:\xampp\apache\bin\httpd.exe" = protocol=6 | dir=in | app=c:\xampp\apache\bin\httpd.exe |
"TCP Query User{4CD18BA7-7FEA-4FC5-9849-F5C422EECF5C}E:\xampp\apache\bin\httpd.exe" = protocol=6 | dir=in | app=e:\xampp\apache\bin\httpd.exe |
"TCP Query User{54138E86-28AE-4ED8-8835-64438D0A2B9D}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"TCP Query User{54DC1741-7570-4420-B713-C0B174C039A9}C:\program files (x86)\java\jre7\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |
"TCP Query User{5DDB6755-2DC5-46B5-A863-84FDD9D20C00}C:\xampp\filezillaftp\filezillaserver.exe" = protocol=6 | dir=in | app=c:\xampp\filezillaftp\filezillaserver.exe |
"TCP Query User{96C0909B-6B8B-41D4-AB11-10675B7FD466}C:\xampp\filezillaftp\filezillaserver.exe" = protocol=6 | dir=in | app=c:\xampp\filezillaftp\filezillaserver.exe |
"TCP Query User{A9789E06-29D9-4BCA-AC6E-1484948C3FFD}E:\xampp\mysql\bin\mysqld.exe" = protocol=6 | dir=in | app=e:\xampp\mysql\bin\mysqld.exe |
"TCP Query User{BE1DCC74-2862-4763-B8E4-73A2264E94C1}C:\program files (x86)\java\jre7\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |
"TCP Query User{C1F58A37-8535-40D3-96EB-666C8C2CF939}C:\xampp\apache\bin\httpd.exe" = protocol=6 | dir=in | app=c:\xampp\apache\bin\httpd.exe |
"TCP Query User{DFEB1F90-F6C8-4679-912B-499CC7C6CD06}C:\xampp\mysql\bin\mysqld.exe" = protocol=6 | dir=in | app=c:\xampp\mysql\bin\mysqld.exe |
"UDP Query User{1EF1063B-344D-4257-81B2-F94ECA4C15BB}C:\program files (x86)\java\jre7\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |
"UDP Query User{209C1F0F-6329-458A-B4A6-7DD85D1F1A77}E:\xampp\mysql\bin\mysqld.exe" = protocol=17 | dir=in | app=e:\xampp\mysql\bin\mysqld.exe |
"UDP Query User{35EF09DA-F2DA-4727-83E1-A2F31D6C74BA}C:\xampp\mercurymail\mercury.exe" = protocol=17 | dir=in | app=c:\xampp\mercurymail\mercury.exe |
"UDP Query User{4BB4B963-8E2B-4D29-950D-E61B27281D02}C:\xampp\filezillaftp\filezillaserver.exe" = protocol=17 | dir=in | app=c:\xampp\filezillaftp\filezillaserver.exe |
"UDP Query User{519AF3E5-E972-4999-837A-A89B916AD9B7}C:\xampp\mysql\bin\mysqld.exe" = protocol=17 | dir=in | app=c:\xampp\mysql\bin\mysqld.exe |
"UDP Query User{5CEF367C-579E-4CA3-8269-AA0A5F195804}C:\program files (x86)\java\jre7\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\java.exe |
"UDP Query User{76C5B11D-E3B1-4EA6-9084-3A45E83D0B0E}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"UDP Query User{99F5D564-1C52-4ED1-90FF-F546A28BC91E}E:\xampp\apache\bin\httpd.exe" = protocol=17 | dir=in | app=e:\xampp\apache\bin\httpd.exe |
"UDP Query User{B57B9956-425F-42F3-B760-CA6C62F349CC}C:\xampp\apache\bin\httpd.exe" = protocol=17 | dir=in | app=c:\xampp\apache\bin\httpd.exe |
"UDP Query User{B8C1AC05-FBFA-4D1A-A6AA-72D3D62FB5B2}C:\xampp\apache\bin\httpd.exe" = protocol=17 | dir=in | app=c:\xampp\apache\bin\httpd.exe |
"UDP Query User{D35784D6-6663-4582-A274-F69133B81F93}C:\xampp\filezillaftp\filezillaserver.exe" = protocol=17 | dir=in | app=c:\xampp\filezillaftp\filezillaserver.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_{B16BB34E-B7BF-47DF-8658-BEABCF40CD6A}" = Corel Graphics - Windows Shell Extension
"_{BDBFAC49-8877-472F-876B-75ADB7DBC955}" = CorelDRAW Graphics Suite X6 (64-Bit)
"{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}" = Acer Recovery Management
"{0CEA94E0-E6F4-4F2D-AA98-D0EFD6833754}" = Corel Graphics - Windows Shell Extension 32 Bit
"{10762393-1B90-4AC2-AF1A-4C0C04AE303F}" = CorelDRAW Graphics Suite X6 - VBA (x64)
"{1967EF95-E00B-4669-8B1C-A589BE8BF24F}" = CorelDRAW Graphics Suite X6 - Capture (x64)
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{1E3A578C-0A7D-4820-990F-B7545C0B2303}" = CorelDRAW Graphics Suite X6 - VSTA (x64)
"{27AE72A4-B217-4CDC-B82B-3311E9D7460E}" = CorelDRAW Graphics Suite X6 - Draw (x64)
"{35869A6C-BA31-4F23-B52D-BC1B1E41EC1B}" = CorelDRAW Graphics Suite X6 - Common (x64)
"{3933C06C-8239-432B-87FC-F2BDC5B49A10}" = CorelDRAW Graphics Suite X6 - FontNav (x64)
"{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}" = Acer Device Fast-lane
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6099F026-0A98-4D40-9B3D-ED2123A8CBD0}" = CorelDRAW Graphics Suite X6 - Redist (x64)
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{7386B5FA-8715-481D-821F-7785110506DF}" = CorelDRAW Graphics Suite X6 - Custom Data (x64)
"{7B79AE44-9B76-4815-84E5-ACAC3F0F0278}" = CorelDRAW Graphics Suite X6 - VideoBrowser (x64)
"{90120064-0070-0000-0000-4000000FF1CE}" = Microsoft Visual Basic for Applications 7.1 (x64)
"{90F60409-7000-11D3-8CFE-0150048383C9}" = Microsoft Visual Basic for Applications 7.1 (x64) English
"{91F52DE4-B789-42B0-9311-A349F10E5479}" = Acer Power Management
"{96AAAB95-AEBE-437A-B7CA-37C7BE13FFE9}" = CorelDRAW Graphics Suite X6 - Connect (x64)
"{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}" = MSVC90_x64
"{B16BB34E-B7BF-47DF-8658-BEABCF40CD6A}" = Corel Graphics - Windows Shell Extension
"{B6294D78-AFAA-48DF-8243-B41902D7F236}" = CorelDRAW Graphics Suite X6 - CZ (x64)
"{B6DF7031-2843-44FD-9CAB-DECAB4257456}" = CorelDRAW Graphics Suite X6 - IPM
"{BDBFAC49-8877-472F-876B-75ADB7DBC955}" = CorelDRAW Graphics Suite X6 - Setup Files (x64)
"{CCE7423E-1D84-4CD3-9E32-220EC9358D97}" = CorelDRAW Graphics Suite X6 (x64)
"{D7C2687D-924E-4485-B367-C7D95CBF8DDD}" = CorelDRAW Graphics Suite X6 - PHOTO-PAINT (x64)
"{DDE82E3D-20C4-48E1-AE1D-B1F10E42CA44}" = CorelDRAW Graphics Suite X6 - Writing Tools (x64)
"{E699230D-4B5E-411E-9F45-FF50789B18DD}" = CorelDRAW Graphics Suite X6 - Filters (x64)
"{E9F0BCD8-6BD5-1ED7-EDA3-9FCF2A478AA1}" = Microsoft App Update for microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe (x64)
"{EF79C448-6946-4D71-8134-03407888C054}" = Shared C Run-time for x64
"{F0A7DF2F-0BE0-470F-B137-D7A19F977189}" = Broadcom Card Reader Driver Installer
"{F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}" = Intel® Trusted Connect Service Client
"62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F" = Balíček ovladače systému Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0)
"8F14F2ECEDE68D26EA515B48DC25B39103C4FE8D" = Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net (09/10/2009 02.03.05.012)
"AC3ACM" = AC-3 ACM Codec x64 2.2
"Broadcom 802.11 Network Adapter" = Broadcom 802.11 Network Adapter
"CCleaner" = CCleaner
"Elantech" = ETDWare PS/2-X64 11.6.16.003_WHQL
"WinRAR archiver" = WinRAR 5.11 (64-bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0CF7D22B-977C-43B2-9219-E03017FBAC6D}" = Nero Recode Help (CHM)
"{11AE6807-50D2-4F59-82B3-2C3E695E94C2}" = NVIDIA PhysX v8.05.26
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{1B6F5E51-575E-4693-BCA2-7543570D076D}" = Nero Kwik Themes Basic
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FCC073B-CC01-4443-AD20-E559F66E6E83}" = Office Addin 2003
"{220C463A-2890-4C7F-B97C-C49FE175B849}" = OpenOffice 4.0.1
"{2432E589-6256-4513-B0BF-EFA8E325D5F0}" = Nero SharedVideoCodecs
"{26A24AE4-039D-4CA4-87B4-2F03217060FF}" = Java 7 Update 60
"{27132A1F-9174-4C9E-B0F7-2C5584E4CF9F}" = LeapFrog Leapster Explorer Plugin
"{299C0434-4F4E-341F-A916-4E07AEB35E79}" = Microsoft Visual Studio Tools for Applications 2.0 Runtime
"{29F67D84-3A70-456E-806A-52301B02070B}" = Nero Effects Basic
"{35DA427D-BB23-49B8-9AFD-CFFCFE3B708D}" = clear.fi SDK- Movie 2
"{36DA8969-4DCD-48FF-894A-6BD3936050C3}" = Nero Blu-ray Player Help (CHM)
"{388E4B09-3E71-4649-8921-F44A3A2954A7}" = Microsoft Visual Studio 2005 Tools for Office Runtime
"{3D9CB654-99AD-4301-89C6-0D12A790767C}" = Identity Card
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{40E51513-D917-4563-84F6-4EF6ADD46E2F}" = Nero Recode
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CA46F9F-174C-4766-9EA2-2325DF414B9E}" = Nero Express Help (CHM)
"{4DB136AF-389B-4A34-AE34-50123559D08E}" = Nero MediaHome
"{511B5F54-CB1D-4F5B-BE0E-09B1D86BE586}" = Nero Video
"{5446D3AF-B060-49B6-9535-F300E1532022}" = Nero Video Help (CHM)
"{5612C844-55BC-4B77-82C2-A2E28962418E}" = Republic Heroes
"{581DCE84-1948-4891-A4A7-A1222CC137C5}" = Nero RescueAgent
"{5909A89E-C97F-407C-AE2B-47BDED86BF5D}" = Prerequisite installer
"{5F8D931D-B230-47F3-A9C0-0C8CA459A332}" = Microsoft Expression Web 4
"{644F4910-E812-49AD-93EC-86828CB81A0D}" = PC Connectivity Solution
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{670A9A20-E29D-40C3-9937-2AFF89C3AC82}_is1" = PROFIT 2014.04
"{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}" = Microsoft Games for Windows Marketplace
"{6D2BBE1D-E600-4695-BA37-0B0E605542CC}" = Office Addin
"{75CA8AAE-5346-4312-A9A8-5CF89955930F}" = Nero MediaHome Help (CHM)
"{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}" = Skype™ 6.16
"{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8FB53850-246A-3507-8ADE-0060093FFEA6}" = Visual Studio Tools for the Office system 3.0 Runtime
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office
"{9642EA87-3714-49A6-9E70-325CB18E6DE5}" = Nero 2014
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B4D16A7-393F-470C-8B9F-74AE1EA6C105}" = LeapFrog Connect
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9DDDF20E-9FD1-4434-A43E-E7889DBC9420}" = Backup Manager v4
"{A2FE691E-3F8E-4E30-AA7D-FF17AC77EA87}" = Nero Blu-ray Player
"{A57025CC-5F2E-4D01-B387-06DB10500D43}" = Nokia Connectivity Cable Driver
"{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}" = AcerCloud
"{A7A0BF2E-31CC-49E3-9913-52C503EB969D}" = Nero Audio Pack 1
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}" = Microsoft Visual Studio Tools for Applications 2.0 - ENU
"{ABC88553-8770-4B97-B43E-5A90647A5B63}" = Nero ControlCenter
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.09) - Czech
"{ACE49D50-19CD-44A6-B192-46F985283B26}" = Nero PiP Effects Basic
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{B166374C-105E-445E-8E5D-A86CA5742645}" = Nero Burning Core
"{B5AD89F2-03D3-4206-8487-018298007DD0}" = clear.fi Photo
"{B791E0AB-87A9-41A4-8D98-D13C2E37D928}" = Nero Info
"{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}" = Nero Core Components
"{C03E2FB3-250B-44A1-8B9E-61DFCD544133}" = Nero Disc to Device
"{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}" = AcerCloud Docs
"{CDFE8F95-F80F-4115-9C3F-0E1FD8F9F58C}" = Nero ControlCenter Help (CHM)
"{D2437C5C-2D8C-40D2-8059-689AD7239FA3}" = Intel(R) C++ Redistributables for Windows* on Intel(R) 64
"{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}" = NTI Media Maker 9
"{D5115C78-2D22-4668-A5E2-6C87DED3ED1B}" = Nero Launcher
"{DA30623F-085D-41E5-BF7A-E2107AA0F185}" = eM Client
"{E17BCB76-9924-4BD5-B6D6-50D3407B4E74}" = Nero Disc Menus Basic
"{E3739848-5329-48E3-8D28-5BBD6E8BE384}" = CyberLink MediaEspresso 6.5
"{E9AF1707-3F3A-49E2-8345-4F2D629D0876}" = clear.fi Media
"{EBA33CAD-E071-48d5-A168-FBA4EEB42E93}" = clear.fi SDK - Video 2
"{EBE030DD-D404-4D92-85E9-8C3624820808}_is1" = Light Image Resizer 4.0.4.3
"{EC8642E4-7CE3-4379-9114-6E34DEF98D58}_is1" = PlayDance verze 1.0.979
"{ED7943A4-2FF0-4096-BBEA-DE3CC206E3D4}" = Nero Express
"{EE26E302-876A-48D9-9058-3129E5B99999}" = Live Updater
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2B9C8D6-C69C-4BA7-95D2-66F1C68D15DA}" = Nero Burning ROM
"{F69D4104-5394-4F7C-801C-D96DC92E7F69}" = Nero RescueAgent Help (CHM)
"{F82C6574-AD88-4B40-A432-970BC77F1BD2}" = DesignPro 5
"{FA78CC15-9F90-443B-BA61-A66595F06432}" = Nero Burning ROM Help (CHM)
"{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel(R) SDK for OpenCL - CPU Only Runtime Package
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"AC3ACM" = AC-3 ACM Codec 2.2
"Adobe Flash Player Plugin" = Adobe Flash Player 15 Plugin
"AZ FOTO AlbumMaker_AZ FOTO AlbumMaker" = AZ FOTO AlbumMaker
"DAEMON Tools Lite" = DAEMON Tools Lite
"FileZilla Client" = FileZilla Client 3.9.0.5
"FOTOKNIHY ONLINE_FOTOKNIHY ONLINE" = FOTOKNIHY ONLINE
"Freemake Video Converter_is1" = Freemake Video Converter verze 4.1.4
"GOM Player" = GOM Player
"Google Chrome" = Google Chrome
"InstallShield_{9DDDF20E-9FD1-4434-A43E-E7889DBC9420}" = Acer Backup Manager
"InstallShield_{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}" = NTI Media Maker 9
"InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}" = CyberLink MediaEspresso 6.5
"InstallShield_{F82C6574-AD88-4B40-A432-970BC77F1BD2}" = DesignPro 5
"LeapsterExplorerPlugin" = Use the entry named LeapFrog Connect to uninstall (LeapFrog Leapster Explorer Plugin)
"LManager" = Launch Manager
"Microsoft Visual Studio 2005 Tools for Office Runtime" = Visual Studio 2005 Tools for Office Second Edition Runtime
"Mozilla Firefox 33.1 (x86 cs)" = Mozilla Firefox 33.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"StepMania" = StepMania (remove only)
"U25pcGVyRWxpdGUz_is1" = Sniper Elite 3
"UPCShell" = LeapFrog Connect
"Visual Studio Tools for the Office system 3.0 Runtime" = Visual Studio Tools for the Office system 3.0 Runtime
"VLC - Codec Pack" = VLC Codec Pack 2.0.5
"Web_4.0.1460.0" = Microsoft Expression Web 4
"xampp" = XAMPP 1.7.4

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 3. 10. 2014 17:10:07 | Computer Name = SlamakAcer | Source = MySQL | ID = 100
Description = Aborting For more information, see Help and Support Center at http://www.mysql.com.



Error - 3. 10. 2014 17:10:33 | Computer Name = SlamakAcer | Source = MySQL | ID = 100
Description = Can't start server: Bind on TCP/IP port: No such file or directory

For
more information, see Help and Support Center at http://www.mysql.com.

Error - 3. 10. 2014 17:10:33 | Computer Name = SlamakAcer | Source = MySQL | ID = 100
Description = Do you already have another mysqld server running on port: 3306 ? For
more information, see Help and Support Center at http://www.mysql.com.

Error - 3. 10. 2014 17:10:33 | Computer Name = SlamakAcer | Source = MySQL | ID = 100
Description = Aborting For more information, see Help and Support Center at http://www.mysql.com.



Error - 4. 10. 2014 2:04:20 | Computer Name = SlamakAcer | Source = Customer Experience Improvement Program | ID = 1008
Description =

Error - 4. 10. 2014 8:38:26 | Computer Name = SlamakAcer | Source = SideBySide | ID = 16842824
Description = Generování kontextu aktivace pro C:\Program Files (x86)\Acer\Office
Addin 2003\ExcelAddIn2003.dll.Manifest se nezdařilo. Chyba v souboru manifestu
nebo zásady C:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.Manifest
na řádku 4. Prvek asmv2:clrClassInvocation je zřejmě podřízeným prvku urn:schemas-microsoft-com:asm.v1^entryPoint,
což tato verze systému Windows nepodporuje.

Error - 4. 10. 2014 8:38:26 | Computer Name = SlamakAcer | Source = SideBySide | ID = 16842824
Description = Generování kontextu aktivace pro C:\Program Files (x86)\Acer\Office
Addin 2003\PowerPointAddIn2003.dll.Manifest se nezdařilo. Chyba v souboru manifestu
nebo zásady C:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.Manifest
na řádku 4. Prvek asmv2:clrClassInvocation je zřejmě podřízeným prvku urn:schemas-microsoft-com:asm.v1^entryPoint,
což tato verze systému Windows nepodporuje.

Error - 4. 10. 2014 8:38:26 | Computer Name = SlamakAcer | Source = SideBySide | ID = 16842824
Description = Generování kontextu aktivace pro C:\Program Files (x86)\Acer\Office
Addin 2003\WordAddIn2003.dll.Manifest se nezdařilo. Chyba v souboru manifestu nebo
zásady C:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.Manifest
na řádku 4. Prvek asmv2:clrClassInvocation je zřejmě podřízeným prvku urn:schemas-microsoft-com:asm.v1^entryPoint,
což tato verze systému Windows nepodporuje.

Error - 4. 10. 2014 10:12:30 | Computer Name = SlamakAcer | Source = Freemake Improver | ID = 0
Description = Službu nelze spustit. System.PlatformNotSupportedException: Operace
není na této platformě podporována. v System.Net.HttpListener..ctor() v System.ServiceModel.Channels.SharedHttpTransportManager.OnOpen()

v System.ServiceModel.Channels.TransportManager.Open(TransportChannelListener
channelListener) v System.ServiceModel.Channels.TransportManagerContainer.Open(SelectTransportManagersCallback
selectTransportManagerCallback) v System.ServiceModel.Channels.TransportChannelListener.OnOpen(TimeSpan
timeout) v System.ServiceModel.Channels.HttpChannelListener`1.OnOpen(TimeSpan
timeout) v System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)

v System.ServiceModel.Dispatcher.ChannelDispatcher.OnOpen(TimeSpan timeout)
v System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout) v System.ServiceModel.ServiceHostBase.OnOpen(TimeSpan
timeout) v System.ServiceModel.Channels.CommunicationObject.Open(TimeSpan timeout)

v FreemakeUtilsService.Common.ProcessObserver.Run...

Error - 5. 10. 2014 1:07:35 | Computer Name = SlamakAcer | Source = Application Hang | ID = 1002
Description = Program Explorer.EXE verze 6.3.9600.17284 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID
procesu: bcc Čas spuštění: 01cfe059a2602357 Čas ukončení: 4294967295 Cesta k aplikaci:
C:\WINDOWS\Explorer.EXE ID hlášení: ec52f90e-4c4c-11e4-bedd-20898455de28 Úplný název
chybujícího balíčku: ID aplikace související s chybujícím balíčkem:

[ System Events ]
Error - 11. 7. 2014 8:44:39 | Computer Name = SlamakAcer | Source = Service Control Manager | ID = 7001
Description = Služba Hostitel poskytovatele rozpoznávání funkce závisí na službě
Služba protokolu HTTP, která neuspěla při spuštění v důsledku následující chyby:
%%1058

Error - 11. 7. 2014 8:44:39 | Computer Name = SlamakAcer | Source = DCOM | ID = 10005
Description =

Error - 11. 7. 2014 8:48:51 | Computer Name = SlamakAcer | Source = Service Control Manager | ID = 7001
Description = Služba Hostitel poskytovatele rozpoznávání funkce závisí na službě
Služba protokolu HTTP, která neuspěla při spuštění v důsledku následující chyby:
%%1058

Error - 11. 7. 2014 8:48:51 | Computer Name = SlamakAcer | Source = DCOM | ID = 10005
Description =

Error - 11. 7. 2014 8:48:51 | Computer Name = SlamakAcer | Source = Service Control Manager | ID = 7001
Description = Služba Hostitel poskytovatele rozpoznávání funkce závisí na službě
Služba protokolu HTTP, která neuspěla při spuštění v důsledku následující chyby:
%%1058

Error - 11. 7. 2014 8:48:51 | Computer Name = SlamakAcer | Source = DCOM | ID = 10005
Description =

Error - 11. 7. 2014 12:37:26 | Computer Name = SlamakAcer | Source = Service Control Manager | ID = 7001
Description = Služba Hostitel poskytovatele rozpoznávání funkce závisí na službě
Služba protokolu HTTP, která neuspěla při spuštění v důsledku následující chyby:
%%1058

Error - 11. 7. 2014 12:37:26 | Computer Name = SlamakAcer | Source = Service Control Manager | ID = 7001
Description = Služba Publikování prostředků rozpoznávání funkcí závisí na službě
Služba protokolu HTTP, která neuspěla při spuštění v důsledku následující chyby:
%%1058

Error - 11. 7. 2014 12:37:26 | Computer Name = SlamakAcer | Source = Service Control Manager | ID = 7001
Description = Služba Zprostředkovatel domácích skupin závisí na službě Hostitel
poskytovatele rozpoznávání funkce, která neuspěla při spuštění v důsledku následující
chyby: %%1068

Error - 11. 7. 2014 12:37:26 | Computer Name = SlamakAcer | Source = Service Control Manager | ID = 7001
Description = Služba SSDP Discovery závisí na službě Služba protokolu HTTP, která
neuspěla při spuštění v důsledku následující chyby: %%1058


< End of report >

[Márty84]

Napiste mi velikost adresare plochy (C:\Users\Slamak\Desktop)




Vypnete antivir, at nebrani programu v praci.
Znovu spustte OTL jako spravce
Do spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)

Kód: Vybrat vše

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[Purity]
[ClearAllRestorePoints]

:services
MBAMSwissArmy
AdobeARMservice
NAUpdate
gupdate
SkypeUpdate
AdobeFlashPlayerUpdateSvc
gupdatem

:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\Windows\Inf\mswinsb\mswinsb.exe
C:\Windows\Inf\ntvdm.vbe
C:\Windows\Inf\ntvdm.inf
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\ProgramData\Malwarebytes
C:\Users\Slamak\AppData\Local\Pokki

:otl
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6A9BB02B-2030-4929-AE57-F965133B84E3}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A9BB02B-2030-4929-AE57-F965133B84E3}: "URL" = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
IE - HKU\S-1-5-21-3621977129-2832859686-462106091-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
FF - HKLM\Software\MozillaPlugins\@Nero.com/KM: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
O4 - HKU\S-1-5-21-3621977129-2832859686-462106091-1001..\RunOnce: [Application Restart #0] C:\Users\Slamak\AppData\Local\Pokki\Engine\pokki.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resources --disable-client-side-phishing-detection --enable-file-cookies --disable-sync --disable-breakpad --disable-bundled-ppapi-flash --disable-sync-tabs --disable-speech-input --disable-custom-jumplist --process-per-tab --debug-devtools-frontend="C:\Users\Slamak\AppData\Local\Pokki\Engine\inspector" --no-first-run --lang=en-US --disable-component-update --disable-prompt-on-repost --no-startup-window --disable-translate --disable-logging --disable-desktop-notifications --disable-gpu-process-prelaunch --flag-switches-begin --flag-switches-end --restore-last-session File not found
O15:64bit: - ..Trusted Domains: localhost ([]http in Internet)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
[2013/12/27 07:49:07 | 000,000,000 | ---D | M] -- C:\Users\Slamak\AppData\Roaming\AVG
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[4 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[2 C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\WINDOWS\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[2 C:\WINDOWS\Inf\Page Analysis\*.tmp files -> C:\WINDOWS\Inf\Page Analysis\*.tmp -> ]
[1 C:\WINDOWS\Inf\Page Analysis\0000\*.tmp files -> C:\WINDOWS\Inf\Page Analysis\0000\*.tmp -> ]
[1 C:\WINDOWS\Inf\Page Analysis\0005\*.tmp files -> C:\WINDOWS\Inf\Page Analysis\0005\*.tmp -> ]
[1 C:\WINDOWS\Inf\Page Analysis\0009\*.tmp files -> C:\WINDOWS\Inf\Page Analysis\0009\*.tmp -> ]
[9 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[2 C:\WINDOWS\Temp\*.tmp files -> C:\WINDOWS\Temp\*.tmp -> ]
@Alternate Data Stream - 6144 bytes -> C:\WINDOWS\Cursors\arrow_n.cur:NEDTA.DAT

:reg
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=-
"CCleaner Monitoring"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Application Restart #0"=-
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=-
"Printsrv"=-
"SunJavaUpdateSched"=-

Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu se objevi novy log, ten sem dejte.