VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Zamrzávající prohlížeč, zpomalené PC

https://forum.viry.cz:443/viewtopic.php?t=142833

Stránka 1 z 2

Zamrzávající prohlížeč, zpomalené PC

Napsal: 05 úno 2015 00:37
od blackspectre
Dobrý den,

prosím o pomoc a radu. Po spuštění prohlížeče Firefox, dochází k jeho zpomalování a zasekávání. Po ukončení Firefoxu a opětovné spuštění prohlížeče (Google Chrome, Firefox) nelze načíst žádné stránky. Pokud spustím Chrome ihned po spuštění PC, prohlížeč funguje, ale všiml jsem si, že Adblock je nefunkční ikdyž ho mám aktivní.

Domnívám se tedy, že můj PC je napadený nějakým virem. Používám Eset Smart Security, avšak ten nic nedetekuje. Použil jsem AdwCleaner (jeho spuštění trvalo několik minut), problém bohužel přetrvává. Log z AdwCleaneru jsem si bohužel neuložil. Provedl jsem však ještě jednu kontrolu a AdwCleaner již nic neobjevil (jeho spuštění však trvalo přes 10 minut).

Přikládám log pořízený FRST po použití AdwCleaneru:


Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-02-2015 01
Ran by Michal (administrator) on MICHAL-PC on 05-02-2015 00:10:45
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal (Available profiles: Michal)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
() C:\Program Files (x86)\Garena Plus\ggdllhost.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(VIA Technologies, Inc.) C:\VIA_XHCI\usb3Monitor.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\Core\64bit\RzOvlMon.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
() C:\Users\Michal\Desktop\adwcleaner_4.109.exe
() C:\Program Files (x86)\Garena Plus\UpdateEx.exe
(Farbar) C:\Users\Michal\Desktop\FRST64 (1).exe
() C:\Users\Michal\Desktop\adwcleaner_4.109.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [VIAxHCUtl] => C:\VIA_XHCI\usb3Monitor.exe [331776 2011-07-12] (VIA Technologies, Inc.)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1331288 2014-08-22] (Microsoft Corporation)
HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2352072 2014-05-30] (NVIDIA Corporation)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [10396440 2014-04-15] (Logitech Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5595336 2014-10-01] (ESET)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5028464 2012-01-12] (VIA)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-01-27] (Intel Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [444760 2014-03-07] (Razer Inc.)
HKLM-x32\...\Run: [Razer Naga Driver] => C:\Program Files (x86)\Razer\Naga\RazerNagaSysTray.exe
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [3825176 2012-11-13] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [843480 2014-12-12] (BlueStack Systems, Inc.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-1165194453-1350465406-1964235809-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3672384 2012-04-11] (DT Soft Ltd)
HKU\S-1-5-21-1165194453-1350465406-1964235809-1000\...\Run: [Steam] => E:\Hry\Steam\steam.exe [1942720 2015-01-23] (Valve Corporation)
HKU\S-1-5-21-1165194453-1350465406-1964235809-1000\...\Run: [EA Core] => "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
HKU\S-1-5-21-1165194453-1350465406-1964235809-1000\...\Run: [Spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [3713032 2012-11-13] (Safer-Networking Ltd.)
HKU\S-1-5-21-1165194453-1350465406-1964235809-1000\...\Run: [GarenaPlus] => C:\Program Files (x86)\Garena Plus\GarenaMessenger.exe [9890608 2014-02-06] ()
HKU\S-1-5-21-1165194453-1350465406-1964235809-1000\...\MountPoints2: {d21b7b33-ec51-11e1-bab1-806e6f6e6963} - D:\Run.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Spybot-S&D IE Protection -> {53707962-6F74-2D53-2644-206D7942484F} -> C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll (Safer-Networking Ltd.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/f ... wflash.cab
Handler-x32: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files (x86)\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: Hosts file not detected in the default directory
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\aamz0g9g.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll ()
FF Plugin: @java.com/DTPlugin,version=10.11.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Windows\SysWOW64\npdeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll ( Garena)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1165194453-1350465406-1964235809-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Michal\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Extension: MEGA - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\aamz0g9g.default\Extensions\firefox@mega.co.nz.xpi [2014-08-06]
FF Extension: Personas Plus - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\aamz0g9g.default\Extensions\personas@christopher.beard.xpi [2012-08-22]
FF Extension: Adblock Plus - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\aamz0g9g.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-03-30]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird

Chrome:
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.93\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.93\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.93\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Winamp Application Detector) - C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
CHR Plugin: (Java(TM) Platform SE 7 U15) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll No File
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.150.3) - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Profile: C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-03-17]
CHR Extension: (Google Drive) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-03-17]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-07-14]
CHR Extension: (YouTube) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-03-17]
CHR Extension: (Google Search) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-03-17]
CHR Extension: (AdBlock) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-03-30]
CHR Extension: (Google Wallet) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-02]
CHR Extension: (Gmail) - C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-03-17]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [409304 2014-12-12] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [388824 2014-12-12] (BlueStack Systems, Inc.)
R2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [786136 2014-12-12] (BlueStack Systems, Inc.)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2014-04-22] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2014-04-22] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [423424 2011-10-19] (Creative Technology Ltd) [File not signed]
S3 DAUpdaterSvc; E:\Hry\Steam\steamapps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe [25832 2013-12-06] (BioWare)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1349576 2014-10-01] (ESET)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2011-12-16] (Intel Corporation)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2014-08-22] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [368624 2014-08-22] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1631008 2014-05-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21055432 2014-05-30] (NVIDIA Corporation)
S3 Origin Client Service; E:\Hry\Origin\OriginClientService.exe [1903472 2015-01-21] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2014-03-16] ()
R2 RzOvlMon; C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe [32960 2014-02-21] (Razer, Inc.)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1103392 2012-11-13] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1369624 2012-11-13] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [168384 2012-11-13] (Safer-Networking Ltd.)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2012-01-10] (VIA Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S3 MozillaMaintenance; "C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe" [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21616 2011-11-02] ()
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [122072 2014-12-12] (BlueStack Systems)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-08-22] (DT Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-10-10] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [241368 2014-10-10] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [169280 2014-10-10] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [222280 2014-10-10] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44632 2014-10-10] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [63160 2014-10-10] (ESET)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [269008 2014-07-17] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [125584 2014-07-17] (Microsoft Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [47632 2010-01-27] (CACE Technologies, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-05-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
R3 RzDxgk; C:\Windows\system32\drivers\RzDxgk.sys [129472 2014-02-21] (Razer, Inc.)
R3 rzendpt; C:\Windows\System32\DRIVERS\rzendpt.sys [39080 2013-11-15] (Razer Inc)
R0 RzFilter; C:\Windows\System32\drivers\RzFilter.sys [74432 2014-02-21] (Razer, Inc.)
S3 rzjoystk; C:\Windows\System32\DRIVERS\rzjoystk.sys [19968 2011-03-24] (Razer USA Ltd)
R3 rzjstk; C:\Windows\System32\DRIVERS\rzjstk.sys [27816 2014-01-10] (Razer Inc)
R3 rzkeypadendpt; C:\Windows\System32\DRIVERS\rzkeypadendpt.sys [32936 2013-11-15] (Razer Inc)
R3 rzmpos; C:\Windows\System32\DRIVERS\rzmpos.sys [34984 2013-11-15] (Razer Inc)
S3 RzSynapse; C:\Windows\System32\DRIVERS\RzSynapse.sys [157184 2011-07-14] (Razer USA Ltd) [File not signed]
R3 VUSB3HUB; C:\Windows\System32\DRIVERS\ViaHub3.sys [205312 2012-01-20] (VIA Technologies, Inc.)
R3 XENfiltv; C:\Windows\System32\drivers\XENfiltv.sys [25600 2009-07-31] (Creative Technology Ltd.)
R3 xhcdrv; C:\Windows\System32\DRIVERS\xhcdrv.sys [254464 2012-01-20] (VIA Technologies, Inc.)
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
S3 GGSAFERDriver; \??\C:\Program Files (x86)\Garena Plus\Room\safedrv.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-05 00:11 - 2015-02-05 00:21 - 00022320 _____ () C:\Users\Michal\Desktop\FRST.txt
2015-02-04 23:46 - 2015-02-04 23:47 - 00243440 _____ () C:\Users\Michal\Downloads\Firefox Setup Stub 35.0.1 (1).exe
2015-02-04 22:53 - 2015-02-05 00:21 - 00000000 ____D () C:\AdwCleaner
2015-02-04 22:52 - 2015-02-04 22:52 - 02131968 _____ (Farbar) C:\Users\Michal\Desktop\FRST64 (1).exe
2015-02-04 22:42 - 2015-02-04 22:40 - 02194432 _____ () C:\Users\Michal\Desktop\adwcleaner_4.109.exe
2015-02-04 22:40 - 2015-02-04 22:41 - 00823020 _____ () C:\Users\Michal\Downloads\adwcleaner_4.109.exe
2015-02-04 22:40 - 2015-02-04 22:41 - 00817180 _____ () C:\Users\Michal\Downloads\adwcleaner_4.109 (1).exe
2015-02-04 22:40 - 2015-02-04 22:41 - 00322240 _____ () C:\Users\Michal\Downloads\adwcleaner_4.109 (2).exe
2015-02-04 22:35 - 2015-02-04 23:58 - 00001120 _____ () C:\Windows\setupact.log
2015-02-04 22:23 - 2015-02-05 00:19 - 00000000 ____D () C:\FRST
2015-02-04 22:23 - 2015-02-04 22:32 - 00026721 _____ () C:\Users\Michal\Downloads\Addition.txt
2015-02-04 22:23 - 2015-02-04 22:23 - 00034812 _____ () C:\Users\Michal\Downloads\FRST.txt
2015-02-04 22:22 - 2015-02-04 22:22 - 02131968 _____ (Farbar) C:\Users\Michal\Downloads\FRST64.exe
2015-02-04 20:38 - 2015-02-04 23:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-02-04 20:37 - 2015-02-04 20:37 - 00243440 _____ () C:\Users\Michal\Downloads\Firefox Setup Stub 35.0.1.exe
2015-02-01 15:00 - 2015-02-01 15:13 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\Arc
2015-01-23 18:16 - 2015-01-23 18:05 - 00897960 _____ (Oracle Corporation) C:\Windows\SysWOW64\npdeployJava1.dll
2015-01-23 18:16 - 2015-01-23 18:05 - 00818088 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2015-01-20 23:14 - 2015-01-28 23:48 - 00035328 _____ () C:\Users\Michal\Desktop\HuniePop.xls
2015-01-18 15:56 - 2015-01-18 15:56 - 00000000 ____D () C:\Users\Michal\AppData\Local\Uber Entertainment
2015-01-14 18:31 - 2014-12-19 04:06 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-01-14 18:31 - 2014-12-19 02:46 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-01-14 18:31 - 2014-12-12 06:35 - 05553592 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-14 18:31 - 2014-12-12 06:31 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-01-14 18:31 - 2014-12-12 06:31 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-01-14 18:31 - 2014-12-12 06:31 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-01-14 18:31 - 2014-12-12 06:11 - 03971512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-01-14 18:31 - 2014-12-12 06:11 - 03916728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-01-14 18:31 - 2014-12-12 06:07 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-01-14 18:31 - 2014-12-11 18:47 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-01-14 18:31 - 2014-12-06 05:17 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-14 18:31 - 2014-12-06 04:50 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2015-01-14 18:31 - 2014-12-06 04:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-01-13 20:52 - 2015-01-13 20:52 - 00000233 _____ () C:\Users\Michal\Desktop\Assassin’s Creed Unity.url
2015-01-11 15:53 - 2015-01-11 15:54 - 00000000 ____D () C:\Users\Michal\Documents\Puzzle Quest
2015-01-11 15:53 - 2015-01-11 15:53 - 00000205 _____ () C:\Users\Michal\Desktop\Puzzle Quest.url
2015-01-11 15:21 - 2015-01-11 15:21 - 00007010 _____ () C:\Users\Michal\Desktop\Baen Ebooks Receipt.htm
2015-01-11 15:21 - 2015-01-11 15:21 - 00000000 ____D () C:\Users\Michal\Desktop\Baen Ebooks Receipt_files
2015-01-11 11:33 - 2015-01-11 11:33 - 00000206 _____ () C:\Users\Michal\Desktop\Planetary Annihilation.url
2015-01-08 20:45 - 2015-01-08 20:45 - 00001807 _____ () C:\Users\Public\Desktop\Start BlueStacks.lnk
2015-01-08 20:44 - 2015-01-08 20:44 - 00001819 _____ () C:\Users\Public\Desktop\Apps.lnk
2015-01-08 20:44 - 2015-01-08 20:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
2015-01-08 20:44 - 2015-01-08 20:44 - 00000000 ____D () C:\ProgramData\BlueStacks
2015-01-08 20:44 - 2015-01-08 20:44 - 00000000 ____D () C:\Program Files (x86)\BlueStacks
2015-01-08 20:43 - 2015-01-08 20:50 - 00000000 ____D () C:\ProgramData\BlueStacksSetup
2015-01-08 20:43 - 2015-01-08 20:43 - 00000000 ____D () C:\Users\Michal\AppData\Local\Bluestacks

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-05 00:19 - 2012-08-26 12:40 - 00408696 _____ () C:\Windows\system32\perfh011.dat
2015-02-05 00:19 - 2012-08-26 12:40 - 00122082 _____ () C:\Windows\system32\perfc011.dat
2015-02-05 00:19 - 2012-08-26 12:16 - 00375868 _____ () C:\Windows\system32\prfh0804.dat
2015-02-05 00:19 - 2012-08-26 12:16 - 00119574 _____ () C:\Windows\system32\prfc0804.dat
2015-02-05 00:19 - 2012-08-26 11:44 - 00420342 _____ () C:\Windows\system32\perfh012.dat
2015-02-05 00:19 - 2012-08-26 11:44 - 00120366 _____ () C:\Windows\system32\perfc012.dat
2015-02-05 00:19 - 2009-07-26 19:41 - 00668866 _____ () C:\Windows\system32\perfh005.dat
2015-02-05 00:19 - 2009-07-26 19:41 - 00141526 _____ () C:\Windows\system32\perfc005.dat
2015-02-05 00:19 - 2009-07-14 06:13 - 03151238 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-02-05 00:03 - 2009-07-14 05:45 - 00017264 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-02-05 00:03 - 2009-07-14 05:45 - 00017264 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-02-04 23:58 - 2014-11-13 23:33 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfff91d8ea63ea.job
2015-02-04 23:58 - 2014-10-22 17:27 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfee1524ceec61.job
2015-02-04 23:58 - 2014-06-19 21:22 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8bfc3abd2a84.job
2015-02-04 23:58 - 2013-07-16 17:56 - 00003496 _____ () C:\Windows\System32\Tasks\gg_uac_daemon_Michal
2015-02-04 23:58 - 2012-08-22 14:47 - 00180216 _____ () C:\Windows\PFRO.log
2015-02-04 23:58 - 2012-08-22 13:36 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-02-04 23:58 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-04 23:57 - 2012-08-22 13:09 - 01248069 _____ () C:\Windows\WindowsUpdate.log
2015-02-04 23:47 - 2012-08-22 18:15 - 00001163 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-02-04 23:47 - 2012-08-22 18:15 - 00001151 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-02-04 23:38 - 2014-11-13 23:33 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cfff91d905665f.job
2015-02-04 23:38 - 2014-10-22 17:27 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cfee1524e581f6.job
2015-02-04 23:37 - 2012-08-22 13:32 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-02-04 23:32 - 2013-03-17 11:12 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-04 22:35 - 2012-08-22 13:32 - 00003852 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-02-04 21:37 - 2012-08-22 13:32 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-02-04 21:37 - 2012-08-22 13:32 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-02-04 21:00 - 2012-08-22 20:13 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\Skype
2015-02-04 20:02 - 2014-02-07 18:53 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\Battle.net
2015-02-04 20:02 - 2013-06-02 16:28 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\vlc
2015-02-04 20:02 - 2013-03-20 20:06 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2015-02-04 20:02 - 2013-03-17 11:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-02-04 20:02 - 2012-08-23 21:09 - 00000000 ____D () C:\ProgramData\GarenaMessenger
2015-02-04 20:02 - 2012-08-22 18:21 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\GHISLER
2015-02-04 20:02 - 2012-08-22 13:09 - 00000000 ____D () C:\Users\Michal
2015-02-04 20:02 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2015-02-04 20:01 - 2013-03-20 20:06 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-02-04 18:49 - 2014-02-07 18:53 - 00000000 ____D () C:\Users\Michal\AppData\Local\Battle.net
2015-01-31 11:42 - 2012-08-22 21:42 - 00000000 ____D () C:\Users\Michal\AppData\Local\Skyrim
2015-01-31 11:40 - 2012-08-22 14:48 - 03105908 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2015-01-27 17:33 - 2013-03-17 11:13 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-01-25 20:16 - 2012-09-17 15:13 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\mIRC
2015-01-25 16:35 - 2014-09-01 13:20 - 00000000 ____D () C:\Users\Michal\.android
2015-01-23 18:16 - 2013-10-19 07:50 - 00000000 ____D () C:\ProgramData\Oracle
2015-01-23 18:16 - 2012-08-30 21:25 - 00000000 ____D () C:\Program Files (x86)\Java
2015-01-23 18:06 - 2013-01-23 18:31 - 00319912 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2015-01-23 18:06 - 2013-01-23 18:31 - 00191400 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2015-01-23 18:06 - 2013-01-23 18:31 - 00190888 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2015-01-23 18:06 - 2013-01-23 18:31 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-01-23 18:06 - 2013-01-23 18:31 - 00000000 ____D () C:\Program Files\Java
2015-01-23 18:05 - 2014-10-21 06:33 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-01-23 18:05 - 2013-06-20 05:58 - 00272296 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2015-01-23 18:05 - 2012-08-30 21:25 - 00176552 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2015-01-23 18:05 - 2012-08-30 21:25 - 00176552 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2015-01-21 22:19 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-01-21 22:16 - 2013-09-27 14:01 - 00000000 ____D () C:\ProgramData\Origin
2015-01-18 15:56 - 2013-07-21 13:07 - 00000000 ____D () C:\ProgramData\Package Cache
2015-01-14 22:46 - 2013-07-17 18:04 - 00000000 ____D () C:\Windows\system32\MRT
2015-01-14 22:41 - 2012-08-22 13:42 - 113365784 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-01-10 18:53 - 2015-01-01 12:13 - 00000000 ____D () C:\Users\Michal\AppData\Roaming\Omerta
2015-01-08 20:44 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Public\Libraries
2015-01-08 19:24 - 2014-10-27 22:10 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-01-08 19:24 - 2012-08-22 20:13 - 00000000 ____D () C:\ProgramData\Skype

==================== Files in the root of some directories =======

2014-01-04 12:27 - 2003-09-03 07:46 - 0010960 _____ () C:\Program Files (x86)\EULA.txt
2014-01-04 12:27 - 2014-01-04 12:27 - 0000349 _____ () C:\Program Files (x86)\INSTALL.LOG
2014-01-04 12:27 - 2003-12-18 11:33 - 0020102 _____ () C:\Program Files (x86)\Readme.txt
2013-07-25 05:59 - 2010-01-26 10:11 - 0444283 _____ () C:\Program Files (x86)\Common Files\WinPcapNmap.exe
2012-08-23 21:19 - 2014-01-11 20:16 - 0045270 _____ () C:\Users\Michal\AppData\Roaming\room_v3.dat

Some content of TEMP:
====================
C:\Users\Michal\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-04 18:39

==================== End Of Log ============================

Re: Zamrzávající prohlížeč, zpomalené PC

Napsal: 05 úno 2015 09:49
od Márty84
Zdravim :)

:arrow: Odinstalujte Spybota, program je zastaraly.

:arrow: Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s
Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).

Re: Zamrzávající prohlížeč, zpomalené PC

Napsal: 05 úno 2015 20:37
od blackspectre
Zde výpis z logů. Při prvním použití OTL program vyhodil chybu: Cannot create file C:\Users\Michal\Desktop\cmd.bat. Po druhém spuštění už však sken proběhl.

OTL.txt:

Kód: Vybrat vše

OTL logfile created on: 5.2.2015 19:12:54 - Run 2
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Michal\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17501)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
 
7.96 Gb Total Physical Memory | 4.79 Gb Available Physical Memory | 60.11% Memory free
15.92 Gb Paging File | 13.07 Gb Available in Paging File | 82.12% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 119.14 Gb Total Space | 27.50 Gb Free Space | 23.08% Space Free | Partition Type: NTFS
Drive E: | 931.51 Gb Total Space | 88.94 Gb Free Space | 9.55% Space Free | Partition Type: NTFS
Drive F: | 2794.39 Gb Total Space | 2004.95 Gb Free Space | 71.75% Space Free | Partition Type: NTFS
Drive H: | 15.05 Gb Total Space | 14.50 Gb Free Space | 96.39% Space Free | Partition Type: FAT32
 
Computer Name: MICHAL-PC | User Name: Michal | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2015.02.05 18:24:24 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Michal\Desktop\OTL.exe
PRC - [2015.01.25 07:08:45 | 000,843,592 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2014.12.19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2014.12.12 13:31:34 | 000,786,136 | ---- | M] (BlueStack Systems, Inc.) -- C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
PRC - [2014.12.12 13:30:50 | 000,843,480 | ---- | M] (BlueStack Systems, Inc.) -- C:\Program Files (x86)\BlueStacks\HD-Agent.exe
PRC - [2014.12.12 13:29:42 | 000,388,824 | ---- | M] (BlueStack Systems, Inc.) -- C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
PRC - [2014.10.01 14:40:28 | 001,349,576 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
PRC - [2014.05.30 00:35:33 | 002,352,072 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2014.05.30 00:31:38 | 001,631,008 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2014.05.20 00:10:40 | 000,413,128 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2014.03.16 00:54:18 | 000,075,136 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2014.03.07 13:39:00 | 000,444,760 | ---- | M] (Razer Inc.) -- C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
PRC - [2013.07.10 12:54:32 | 000,049,456 | ---- | M] () -- C:\Program Files (x86)\Garena Plus\ggdllhost.exe
PRC - [2012.01.27 10:40:44 | 000,291,608 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
PRC - [2011.12.16 11:30:40 | 000,363,800 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2011.12.16 11:30:38 | 000,277,784 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2011.12.16 10:02:56 | 000,161,560 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
PRC - [2011.11.29 19:04:56 | 000,013,592 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2011.11.29 19:04:54 | 000,284,440 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
PRC - [2011.10.19 15:30:50 | 000,423,424 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
PRC - [2011.07.12 09:14:26 | 000,331,776 | R--- | M] (VIA Technologies, Inc.) -- C:\VIA_XHCI\usb3Monitor.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2015.01.31 22:13:30 | 010,069,504 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\d18e2115a3270f89663fce831547f534\System.ni.dll
MOD - [2015.01.31 22:12:40 | 000,118,272 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\93a0883923e78cc3e80b7ac4a9768c60\SMDiagnostics.ni.dll
MOD - [2015.01.31 19:34:00 | 000,396,288 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\8092ad8ffb37d779da3984d6e11e7516\System.Xml.Linq.ni.dll
MOD - [2015.01.31 19:33:00 | 000,012,288 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio4b37ff64#\92edcd808511b7f4b642f922f8ebc31c\PresentationFramework-SystemXmlLinq.ni.dll
MOD - [2015.01.31 19:32:59 | 000,016,896 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio49d6fefe#\9e42fe7c83345249b5dde1693d1bf8b5\PresentationFramework-SystemXml.ni.dll
MOD - [2015.01.31 14:17:46 | 000,188,416 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\232495ea0368dada2d208c51f0e5349c\UIAutomationTypes.ni.dll
MOD - [2015.01.31 11:38:55 | 002,855,424 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\187177229c00aec6dec613ea4b9ff209\System.Runtime.Serialization.ni.dll
MOD - [2015.01.31 11:38:54 | 000,790,528 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\14cc73701aac461eb89d6473a88fcd56\System.ServiceModel.Internals.ni.dll
MOD - [2015.01.31 11:38:50 | 000,286,720 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatiod51afaa5#\4edaa939589829c3b21a1295310bf2d1\PresentationFramework.classic.ni.dll
MOD - [2015.01.31 11:38:46 | 018,761,216 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\9f1f464b854d655c74c8cd4ee5b731bd\PresentationFramework.ni.dll
MOD - [2015.01.31 11:38:44 | 012,895,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\d8223c30928e02bc7ed5b8b81effa7b5\System.Windows.Forms.ni.dll
MOD - [2015.01.31 11:38:39 | 001,642,496 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\dd2f9ea99ac0f984b9dc430824638c9f\System.Drawing.ni.dll
MOD - [2015.01.31 11:38:38 | 011,013,632 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\eb3ba0fe2449d7ca96b51f71b2061cf6\PresentationCore.ni.dll
MOD - [2015.01.31 11:38:33 | 003,945,472 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\61c8a838d217ea8b4f68bbf38172114f\WindowsBase.ni.dll
MOD - [2015.01.31 11:38:28 | 001,172,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Management\a48bd2a02ed1ae2fbb79ef8797f0c5f6\System.Management.ni.dll
MOD - [2015.01.31 11:38:17 | 001,873,920 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\1196cc375887ce75f134047505fe19bf\System.Xaml.ni.dll
MOD - [2015.01.31 11:37:50 | 007,793,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\3d6ee4ffbd9a86ac1e7b01800b6fe9c7\System.Xml.ni.dll
MOD - [2015.01.31 11:37:47 | 000,972,288 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\5a977e1f055b4f8f41da5d9142a1913c\System.Configuration.ni.dll
MOD - [2015.01.31 11:37:46 | 007,002,624 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\23d1162d1943c1b1d6c4fd7c6d8512d4\System.Core.ni.dll
MOD - [2015.01.31 11:37:38 | 017,207,296 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\d1265d6159ea876f9d63ea4c1361b587\mscorlib.ni.dll
MOD - [2015.01.25 07:08:41 | 009,170,760 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.93\pdf.dll
MOD - [2015.01.25 07:08:37 | 001,117,512 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.93\libglesv2.dll
MOD - [2015.01.25 07:08:35 | 000,211,272 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.93\libegl.dll
MOD - [2015.01.08 20:45:17 | 001,450,496 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\HD-Agent\80a1f00dd4b374981c57b585813996e1\HD-Agent.ni.exe
MOD - [2015.01.08 20:45:10 | 000,155,136 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\JSON\a1f9fdffe984b90b65bf37ca033d3cd9\JSON.ni.dll
MOD - [2014.11.13 18:26:20 | 000,487,424 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\72371e4161a77e12fbdf954f0c312729\IAStorUtil.ni.dll
MOD - [2014.11.13 18:20:01 | 000,774,144 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\875c35969785fa170d186e7ca546ac9e\System.Runtime.Remoting.ni.dll
MOD - [2014.10.17 17:14:21 | 011,922,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\b4001d722e320fa42cd87b04b5249b2d\System.Web.ni.dll
MOD - [2014.10.17 17:14:00 | 012,435,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\1453d9e9a4989833ef3db4b22549ba1a\System.Windows.Forms.ni.dll
MOD - [2014.10.17 17:13:56 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\836e10dfd0811b303553216f5cb092ef\System.Drawing.ni.dll
MOD - [2014.10.17 17:13:53 | 005,467,648 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d49908aa93a23c84847b1f8b1b667860\System.Xml.ni.dll
MOD - [2014.10.17 17:13:51 | 000,978,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\237d509a79aeef6e4635b09450d98f2a\System.Configuration.ni.dll
MOD - [2014.10.17 17:13:44 | 003,348,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\d97a5aa0eb7697aca7c6e90ae471af2b\WindowsBase.ni.dll
MOD - [2014.10.17 17:13:42 | 007,991,808 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\908ba9e296e92b4e14bdc2437edac603\System.ni.dll
MOD - [2014.09.10 17:58:52 | 000,014,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\b3131ca726aaef63c3306c2a7636449f\IAStorCommon.ni.dll
MOD - [2014.09.10 07:08:26 | 011,497,984 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\38bf604432e1a30c954b2ee40d6a2d1c\mscorlib.ni.dll
MOD - [2013.08.23 10:10:18 | 000,553,776 | ---- | M] () -- C:\Program Files (x86)\Garena Plus\ggspawn.dll
MOD - [2013.07.10 12:54:32 | 000,049,456 | ---- | M] () -- C:\Program Files (x86)\Garena Plus\ggdllhost.exe
MOD - [2013.07.09 07:33:57 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_cs_b77a5c561934e089\System.Runtime.Remoting.resources.dll
MOD - [2010.11.13 03:00:59 | 000,303,104 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_cs_b77a5c561934e089\mscorlib.resources.dll
MOD - [2010.11.05 02:54:38 | 000,204,800 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.resources\2.0.0.0_cs_b77a5c561934e089\System.resources.dll
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV:[b]64bit:[/b] - [2014.11.22 03:35:29 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:[b]64bit:[/b] - [2014.10.01 14:40:28 | 001,349,576 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe -- (ekrn)
SRV:[b]64bit:[/b] - [2014.08.22 14:14:34 | 000,368,624 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:[b]64bit:[/b] - [2014.08.22 14:14:34 | 000,023,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:[b]64bit:[/b] - [2014.05.30 00:28:54 | 021,055,432 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV:[b]64bit:[/b] - [2013.05.27 06:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2012.01.10 15:09:50 | 000,027,760 | ---- | M] (VIA Technologies, Inc.) [Auto | Running] -- C:\Windows\SysNative\ViakaraokeSrv.exe -- (VIAKaraokeService)
SRV:[b]64bit:[/b] - [2011.12.08 15:38:24 | 000,607,456 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV:[b]64bit:[/b] - [2010.04.06 15:30:38 | 000,031,272 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysNative\AppleChargerSrv.exe -- (AppleChargerSrv)
SRV:[b]64bit:[/b] - [2009.07.14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2015.02.04 21:37:14 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2015.01.23 23:33:44 | 000,834,752 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2015.01.21 22:12:06 | 001,903,472 | ---- | M] (Electronic Arts) [On_Demand | Stopped] -- E:\Hry\Origin\OriginClientService.exe -- (Origin Client Service)
SRV - [2014.12.19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2014.12.12 13:31:34 | 000,786,136 | ---- | M] (BlueStack Systems, Inc.) [Auto | Running] -- C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe -- (BstHdUpdaterSvc)
SRV - [2014.12.12 13:29:42 | 000,388,824 | ---- | M] (BlueStack Systems, Inc.) [Auto | Running] -- C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe -- (BstHdLogRotatorSvc)
SRV - [2014.12.12 13:29:12 | 000,409,304 | ---- | M] (BlueStack Systems, Inc.) [Auto | Stopped] -- C:\Program Files (x86)\BlueStacks\HD-Service.exe -- (BstHdAndroidSvc)
SRV - [2014.12.11 10:30:48 | 000,315,496 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2014.05.30 00:31:38 | 001,631,008 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2014.05.20 00:10:40 | 000,413,128 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2014.04.22 21:13:57 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2014.04.22 21:13:45 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe -- (Creative ALchemy AL6 Licensing Service)
SRV - [2014.04.11 23:08:08 | 000,103,608 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2014.03.20 23:49:18 | 000,067,224 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2014.03.16 00:54:18 | 000,075,136 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2014.02.21 07:10:22 | 000,032,960 | ---- | M] (Razer, Inc.) [Auto | Running] -- C:\Program Files (x86)\Razer\Core\64bit\RzOvlMon.exe -- (RzOvlMon)
SRV - [2013.12.06 19:53:10 | 000,025,832 | ---- | M] (BioWare) [On_Demand | Stopped] -- E:\Hry\Steam\SteamApps\common\Dragon Age Ultimate Edition\bin_ship\DAUpdaterSvc.Service.exe -- (DAUpdaterSvc)
SRV - [2011.12.16 11:30:40 | 000,363,800 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2011.12.16 11:30:38 | 000,277,784 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2011.12.16 10:02:56 | 000,161,560 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2011.11.29 19:04:56 | 000,013,592 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2011.10.19 15:30:50 | 000,423,424 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV:[b]64bit:[/b] - [2014.10.10 08:59:12 | 000,243,440 | ---- | M] (ESET) [File_System | System | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:[b]64bit:[/b] - [2014.10.10 08:59:12 | 000,222,280 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfw.sys -- (epfw)
DRV:[b]64bit:[/b] - [2014.10.10 08:59:12 | 000,169,280 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:[b]64bit:[/b] - [2014.10.10 08:59:12 | 000,063,160 | ---- | M] (ESET) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\epfwwfp.sys -- (epfwwfp)
DRV:[b]64bit:[/b] - [2014.10.10 08:59:12 | 000,044,632 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\EpfwLWF.sys -- (EpfwLWF)
DRV:[b]64bit:[/b] - [2014.07.17 17:05:06 | 000,125,584 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:[b]64bit:[/b] - [2014.07.15 15:15:22 | 000,142,528 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV:[b]64bit:[/b] - [2014.05.30 00:28:53 | 000,020,256 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms)
DRV:[b]64bit:[/b] - [2014.03.31 17:42:44 | 000,040,392 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:[b]64bit:[/b] - [2014.02.21 07:04:07 | 000,129,472 | ---- | M] (Razer, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RzDxgk.sys -- (RzDxgk)
DRV:[b]64bit:[/b] - [2014.02.21 07:04:07 | 000,074,432 | ---- | M] (Razer, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\RzFilter.sys -- (RzFilter)
DRV:[b]64bit:[/b] - [2014.01.10 09:11:10 | 000,027,816 | ---- | M] (Razer Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rzjstk.sys -- (rzjstk)
DRV:[b]64bit:[/b] - [2013.11.28 14:38:18 | 000,197,408 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:[b]64bit:[/b] - [2013.11.15 07:37:30 | 000,032,936 | ---- | M] (Razer Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rzkeypadendpt.sys -- (rzkeypadendpt)
DRV:[b]64bit:[/b] - [2013.11.15 07:37:16 | 000,039,080 | ---- | M] (Razer Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rzendpt.sys -- (rzendpt)
DRV:[b]64bit:[/b] - [2013.11.15 07:37:16 | 000,034,984 | ---- | M] (Razer Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rzmpos.sys -- (rzmpos)
DRV:[b]64bit:[/b] - [2013.11.15 07:37:14 | 000,149,160 | ---- | M] (Razer Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rzudd.sys -- (rzudd)
DRV:[b]64bit:[/b] - [2013.09.30 15:26:50 | 000,019,152 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\pwdrvio.sys -- (pwdrvio)
DRV:[b]64bit:[/b] - [2013.09.30 15:26:48 | 000,012,504 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\pwdspio.sys -- (pwdspio)
DRV:[b]64bit:[/b] - [2012.08.22 18:34:34 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:[b]64bit:[/b] - [2012.03.01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2012.01.27 10:39:33 | 000,787,736 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3xhc.sys -- (iusb3xhc)
DRV:[b]64bit:[/b] - [2012.01.27 10:39:33 | 000,356,120 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3hub.sys -- (iusb3hub)
DRV:[b]64bit:[/b] - [2012.01.27 10:39:33 | 000,016,152 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iusb3hcs.sys -- (iusb3hcs)
DRV:[b]64bit:[/b] - [2012.01.20 05:39:16 | 000,205,312 | R--- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ViaHub3.sys -- (VUSB3HUB)
DRV:[b]64bit:[/b] - [2012.01.20 05:39:04 | 000,254,464 | R--- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\xhcdrv.sys -- (xhcdrv)
DRV:[b]64bit:[/b] - [2012.01.10 15:09:44 | 002,184,816 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\viahduaa.sys -- (VIAHdAudAddService)
DRV:[b]64bit:[/b] - [2011.11.29 18:40:32 | 000,568,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:[b]64bit:[/b] - [2011.11.10 00:04:14 | 000,060,184 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:[b]64bit:[/b] - [2011.11.02 09:48:26 | 000,021,616 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\AppleCharger.sys -- (AppleCharger)
DRV:[b]64bit:[/b] - [2011.08.11 23:54:16 | 000,104,560 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
DRV:[b]64bit:[/b] - [2011.08.09 06:42:36 | 000,315,696 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\mvs91xx.sys -- (mvs91xx)
DRV:[b]64bit:[/b] - [2011.07.14 16:18:52 | 000,157,184 | ---- | M] (Razer USA Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RzSynapse.sys -- (RzSynapse)
DRV:[b]64bit:[/b] - [2011.03.24 13:35:36 | 000,019,968 | ---- | M] (Razer USA Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rzjoystk.sys -- (rzjoystk)
DRV:[b]64bit:[/b] - [2011.03.11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2011.03.11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2010.11.20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2010.11.20 12:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2010.11.20 12:03:42 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:[b]64bit:[/b] - [2010.01.27 03:09:02 | 000,047,632 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\npf.sys -- (npf)
DRV:[b]64bit:[/b] - [2009.11.24 01:38:00 | 000,016,008 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LGVirHid.sys -- (LGVirHid)
DRV:[b]64bit:[/b] - [2009.11.24 01:37:50 | 000,022,408 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LGBusEnum.sys -- (LGBusEnum)
DRV:[b]64bit:[/b] - [2009.07.31 10:40:32 | 000,025,600 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\XENfiltv.sys -- (XENfiltv)
DRV:[b]64bit:[/b] - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2014.12.12 13:29:28 | 000,122,072 | ---- | M] (BlueStack Systems) [Kernel | Auto | Running] -- C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys -- (BstHdDrv)
DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
 
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
 
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
 
IE - HKU\S-1-5-21-1165194453-1350465406-1964235809-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-1165194453-1350465406-1964235809-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-1165194453-1350465406-1964235809-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.search.highlightCount: 3
FF - prefs.js..browser.search.isUS: false
FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..browser.search.useDBForOrder: "false"
FF - prefs.js..extensions.enabledAddons: personas%40christopher.beard:1.7.3
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:35.0.1
FF - user.js - File not found
 
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.11.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2: C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.31.2: C:\Windows\SysWOW64\npdeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2: C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@t.garena.com/garenatalk: C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll ( Garena)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.6: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.3: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Michal\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
 
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\PROGRAM FILES\ESET\ESET SMART SECURITY\MOZILLA THUNDERBIRD
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 35.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 35.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
 
[2012.08.22 18:15:11 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Michal\AppData\Roaming\Mozilla\Extensions
[2015.01.23 17:54:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\aamz0g9g.default\extensions
[2013.10.18 20:42:18 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profilesaamz0g9g.default\extensions
[2013.10.18 20:42:18 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profilesaamz0g9g.default\extensions\staged
[2015.01.23 17:54:16 | 004,167,693 | ---- | M] () (No name found) -- C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\aamz0g9g.default\extensions\firefox@mega.co.nz.xpi
[2013.10.26 09:31:40 | 000,348,260 | ---- | M] () (No name found) -- C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\aamz0g9g.default\extensions\personas@christopher.beard.xpi
[2015.01.14 21:54:18 | 000,985,112 | ---- | M] () (No name found) -- C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\aamz0g9g.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2015.02.04 23:47:47 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2015.02.04 23:47:47 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - default_search_provider:  (Enabled)
CHR - default_search_provider: search_url = 
CHR - default_search_provider: suggest_url = 
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.93\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.93\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\40.0.2214.93\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Winamp Application Detector (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
CHR - plugin: Intel® Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
CHR - plugin: Intel® Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
CHR - plugin: Java(TM) Platform SE 7 U15 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll
CHR - plugin: Java Deployment Toolkit 7.0.150.3 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll
CHR - Extension: No name found = C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\
CHR - Extension: No name found = C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn\0.1.1.5023_0\
CHR - Extension: No name found = C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\
CHR - Extension: No name found = C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: No name found = C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.17_0\
CHR - Extension: No name found = C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: No name found = C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
 
Hosts file not found
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
O2:[b]64bit:[/b] - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4:[b]64bit:[/b] - HKLM..\Run: [Launch LCore] C:\Program Files\Logitech Gaming Software\LCore.exe (Logitech Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Nvtmru] "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" File not found
O4:[b]64bit:[/b] - HKLM..\Run: [ShadowPlay] C:\Windows\SysNative\nvspcap64.dll (NVIDIA Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [VIAxHCUtl] C:\VIA_XHCI\usb3Monitor.exe (VIA Technologies, Inc.)
O4 - HKLM..\Run: []  File not found
O4 - HKLM..\Run: [BlueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe (BlueStack Systems, Inc.)
O4 - HKLM..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe (VIA)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [Razer Naga Driver] C:\Program Files (x86)\Razer\Naga\RazerNagaSysTray.exe File not found
O4 - HKLM..\Run: [Razer Synapse] C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe (Razer Inc.)
O4 - HKLM..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1165194453-1350465406-1964235809-1000..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-1165194453-1350465406-1964235809-1000..\Run: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent File not found
O4 - HKU\S-1-5-21-1165194453-1350465406-1964235809-1000..\Run: [GarenaPlus] C:\Program Files (x86)\Garena Plus\GarenaMessenger.exe ()
O4 - HKU\S-1-5-21-1165194453-1350465406-1964235809-1000..\Run: [Steam] E:\Hry\Steam\steam.exe (Valve Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.8.0/jinstall-1_8_0_31-windows-i586.cab (Java Plug-in 11.31.2)
O16 - DPF: {CAFEEFAC-0018-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.8.0/jinstall-1_8_0_31-windows-i586.cab (Java Plug-in 1.8.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.8.0/jinstall-1_8_0_31-windows-i586.cab (Java Plug-in 11.31.2)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B1A729CE-3AB5-4E1D-93DD-A3B2FE37959A}: DhcpNameServer = 192.168.0.1
O18:[b]64bit:[/b] - Protocol\Handler\cdo - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\msdaipp - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\msdaipp\oledb - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\mso-offdap - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{d21b7b33-ec51-11e1-bab1-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{d21b7b33-ec51-11e1-bab1-806e6f6e6963}\Shell\AutoRun\command - "" = D:\Run.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (sdnclean64.exe)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
 
NetSvcs:[b]64bit:[/b] AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
 
Drivers32:[b]64bit:[/b] msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: vidc.VP60 - C:\Windows\SysWOW64\vp6vfw.dll (On2.com)
Drivers32: vidc.VP61 - C:\Windows\SysWOW64\vp6vfw.dll (On2.com)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2015.02.05 18:25:25 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Michal\Desktop\OTL.exe
[2015.02.04 22:53:48 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2015.02.04 22:52:20 | 002,131,968 | ---- | C] (Farbar) -- C:\Users\Michal\Desktop\FRST64 (1).exe
[2015.02.04 22:23:06 | 000,000,000 | ---D | C] -- C:\FRST
[2015.02.04 20:38:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2015.02.01 15:00:55 | 000,000,000 | ---D | C] -- C:\Users\Michal\AppData\Roaming\Arc
[2015.01.23 18:16:19 | 000,897,960 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\npdeployJava1.dll
[2015.01.23 18:16:19 | 000,818,088 | ---- | C] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll
[2015.01.23 18:06:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2015.01.18 15:56:39 | 000,000,000 | ---D | C] -- C:\Users\Michal\AppData\Local\Uber Entertainment
[2015.01.14 18:31:15 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TSWbPrxy.exe
[2015.01.14 18:31:14 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll
[2015.01.14 18:31:13 | 005,553,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2015.01.14 18:31:13 | 003,971,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2015.01.14 18:31:13 | 003,916,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2015.01.14 18:31:13 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2015.01.14 18:31:13 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rstrui.exe
[2015.01.14 18:31:12 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srclient.dll
[2015.01.11 15:53:54 | 000,000,000 | ---D | C] -- C:\Users\Michal\Documents\Puzzle Quest
[2015.01.11 15:21:14 | 000,000,000 | ---D | C] -- C:\Users\Michal\Desktop\Baen Ebooks Receipt_files
[2015.01.08 20:44:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks
[2015.01.08 20:44:31 | 000,000,000 | ---D | C] -- C:\ProgramData\BlueStacks
[2015.01.08 20:44:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BlueStacks
[2015.01.08 20:43:40 | 000,000,000 | ---D | C] -- C:\ProgramData\BlueStacksSetup
[2015.01.08 20:43:40 | 000,000,000 | ---D | C] -- C:\Users\Michal\AppData\Local\Bluestacks
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2015.02.05 19:14:08 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2015.02.05 18:38:00 | 000,000,952 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA1cfff91d905665f.job
[2015.02.05 18:38:00 | 000,000,952 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA1cfee1524e581f6.job
[2015.02.05 18:37:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2015.02.05 18:33:11 | 000,000,952 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015.02.05 18:33:10 | 000,002,183 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2015.02.05 18:33:01 | 003,151,238 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2015.02.05 18:33:01 | 000,668,866 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2015.02.05 18:33:01 | 000,654,254 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2015.02.05 18:33:01 | 000,420,342 | ---- | M] () -- C:\Windows\SysNative\perfh012.dat
[2015.02.05 18:33:01 | 000,408,696 | ---- | M] () -- C:\Windows\SysNative\perfh011.dat
[2015.02.05 18:33:01 | 000,375,868 | ---- | M] () -- C:\Windows\SysNative\prfh0804.dat
[2015.02.05 18:33:01 | 000,141,526 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2015.02.05 18:33:01 | 000,122,126 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2015.02.05 18:33:01 | 000,122,082 | ---- | M] () -- C:\Windows\SysNative\perfc011.dat
[2015.02.05 18:33:01 | 000,120,366 | ---- | M] () -- C:\Windows\SysNative\perfc012.dat
[2015.02.05 18:33:01 | 000,119,574 | ---- | M] () -- C:\Windows\SysNative\prfc0804.dat
[2015.02.05 18:32:11 | 000,017,264 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2015.02.05 18:32:11 | 000,017,264 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2015.02.05 18:32:00 | 000,000,948 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore1cf8bfc3abd2a84.job
[2015.02.05 18:27:08 | 000,000,948 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore1cfff91d8ea63ea.job
[2015.02.05 18:27:08 | 000,000,948 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore1cfee1524ceec61.job
[2015.02.05 18:27:04 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015.02.05 18:26:56 | 2116,161,535 | -HS- | M] () -- C:\hiberfil.sys
[2015.02.05 18:24:24 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Michal\Desktop\OTL.exe
[2015.02.04 23:47:48 | 000,001,151 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2015.02.04 22:52:23 | 002,131,968 | ---- | M] (Farbar) -- C:\Users\Michal\Desktop\FRST64 (1).exe
[2015.02.04 22:40:36 | 002,194,432 | ---- | M] () -- C:\Users\Michal\Desktop\adwcleaner_4.109.exe
[2015.02.04 21:37:13 | 000,701,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2015.02.04 21:37:13 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2015.01.31 11:40:31 | 003,105,908 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2015.01.23 18:06:06 | 000,111,016 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\WindowsAccessBridge-64.dll
[2015.01.23 18:06:05 | 000,319,912 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaws.exe
[2015.01.23 18:06:05 | 000,191,400 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\javaw.exe
[2015.01.23 18:06:04 | 000,190,888 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\java.exe
[2015.01.23 18:05:22 | 000,098,216 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
[2015.01.23 18:05:21 | 000,272,296 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaws.exe
[2015.01.23 18:05:21 | 000,176,552 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\javaw.exe
[2015.01.23 18:05:21 | 000,176,552 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\java.exe
[2015.01.23 18:05:20 | 000,897,960 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\npdeployJava1.dll
[2015.01.23 18:05:20 | 000,818,088 | ---- | M] (Oracle Corporation) -- C:\Windows\SysWow64\deployJava1.dll
[2015.01.13 20:52:33 | 000,000,233 | ---- | M] () -- C:\Users\Michal\Desktop\Assassin’s Creed Unity.url
[2015.01.11 15:53:16 | 000,000,205 | ---- | M] () -- C:\Users\Michal\Desktop\Puzzle Quest.url
[2015.01.11 15:21:14 | 000,007,010 | ---- | M] () -- C:\Users\Michal\Desktop\Baen Ebooks Receipt.htm
[2015.01.11 11:33:58 | 000,000,206 | ---- | M] () -- C:\Users\Michal\Desktop\Planetary Annihilation.url
[2015.01.08 20:45:03 | 000,001,807 | ---- | M] () -- C:\Users\Public\Desktop\Start BlueStacks.lnk
[2015.01.08 20:44:57 | 000,001,819 | ---- | M] () -- C:\Users\Public\Desktop\Apps.lnk
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2015.02.05 18:31:02 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2015.02.04 22:42:50 | 002,194,432 | ---- | C] () -- C:\Users\Michal\Desktop\adwcleaner_4.109.exe
[2015.01.13 20:52:33 | 000,000,233 | ---- | C] () -- C:\Users\Michal\Desktop\Assassin’s Creed Unity.url
[2015.01.11 15:53:16 | 000,000,205 | ---- | C] () -- C:\Users\Michal\Desktop\Puzzle Quest.url
[2015.01.11 15:21:14 | 000,007,010 | ---- | C] () -- C:\Users\Michal\Desktop\Baen Ebooks Receipt.htm
[2015.01.11 11:33:58 | 000,000,206 | ---- | C] () -- C:\Users\Michal\Desktop\Planetary Annihilation.url
[2015.01.08 20:45:03 | 000,001,807 | ---- | C] () -- C:\Users\Public\Desktop\Start BlueStacks.lnk
[2015.01.08 20:44:57 | 000,001,819 | ---- | C] () -- C:\Users\Public\Desktop\Apps.lnk
[2014.04.22 21:14:00 | 000,002,169 | ---- | C] () -- C:\Windows\XENcfg.ini
[2014.04.22 21:14:00 | 000,000,388 | ---- | C] () -- C:\Windows\XENMCcfg.ini
[2014.04.22 21:13:59 | 000,253,440 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
[2014.04.22 21:13:59 | 000,074,240 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
[2014.03.16 00:54:15 | 003,123,272 | ---- | C] () -- C:\Windows\SysWow64\pbsvc.exe
[2013.07.25 05:59:21 | 000,444,283 | ---- | C] () -- C:\Program Files (x86)\Common Files\WinPcapNmap.exe
[2013.02.23 14:08:14 | 000,189,248 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2013.02.23 14:08:13 | 000,075,136 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2012.08.23 21:19:08 | 000,045,270 | ---- | C] () -- C:\Users\Michal\AppData\Roaming\room_v3.dat
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
[2009.07.14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014.06.25 03:05:42 | 014,175,744 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014.06.25 02:41:30 | 012,874,240 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2014.09.16 18:39:15 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\.minecraft
[2013.06.17 22:37:19 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\3909 LLC
[2015.02.01 15:13:04 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Arc
[2015.02.04 20:02:04 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Battle.net
[2013.07.22 22:40:41 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\BoneTown
[2014.07.06 22:20:13 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\calibre
[2012.11.14 22:32:45 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Canon
[2014.07.08 18:06:47 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\com.filament.rfts
[2013.06.12 18:02:20 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\com.radialgames.MonsterLovesYou
[2013.07.13 23:25:54 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Command & Conquer 3 Tiberium Wars
[2012.08.22 20:17:19 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\DAEMON Tools Lite
[2013.12.13 19:17:15 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\DefendersQuest
[2013.10.21 18:19:25 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\ESET
[2014.11.25 20:16:16 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Frontier Developments
[2013.11.15 22:41:38 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Galaxy on Fire 2 Full HD
[2014.11.23 18:06:17 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\GarenaPlus
[2015.02.04 20:02:04 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\GHISLER
[2012.08.22 18:43:40 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\IrfanView
[2013.12.01 10:50:02 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Kalypso Media
[2013.12.02 20:25:50 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Mount&Blade Warband
[2014.10.27 22:11:51 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Mumble
[2014.02.11 18:51:05 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\NCSOFT
[2012.08.22 20:22:53 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Notepad++
[2015.01.10 18:53:44 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Omerta
[2014.08.14 07:15:17 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Oracle
[2013.09.27 15:40:34 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Origin
[2012.08.22 19:40:57 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\PDM
[2013.12.29 17:54:02 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\RenPy
[2013.06.17 20:24:17 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\StarDrive
[2014.09.01 02:00:43 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Sword of the Stars - The Pit
[2013.05.18 12:41:18 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Talisman Prologue
[2013.09.04 18:30:22 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\The Creative Assembly
[2014.05.23 10:17:48 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\TheBannerSaga
[2013.11.24 11:45:40 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Thunder Wolves
[2013.12.29 16:41:29 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Trine2
[2013.12.01 11:13:35 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Tropico 4
[2014.12.08 20:21:52 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\TS3Client
[2013.03.05 19:45:42 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\ts3overlay
[2012.10.24 17:58:33 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\ts3overlay_hook_win64
[2013.07.18 19:03:12 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Unity
[2014.09.08 16:47:16 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\uTorrent
[2013.07.25 05:59:25 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\VDownloader
[2012.08.23 22:36:58 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\VitySoft
[2013.11.14 22:21:26 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\wargaming.net
[2012.10.26 21:41:34 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Zeal Game Studio
 
[color=#E56717]========== Purity Check ==========[/color]

Re: Zamrzávající prohlížeč, zpomalené PC

Napsal: 05 úno 2015 20:38
od blackspectre
pokračování OTL.txt

Kód: Vybrat vše

[color=#E56717]========== Custom Scans ==========[/color]
 
[color=#A23BEC]<  >[/color]
[2009.07.14 06:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 06:08:49 | 000,032,618 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012.08.22 13:32:45 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2013.03.17 11:12:39 | 000,000,952 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2014.06.19 21:22:45 | 000,000,948 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8bfc3abd2a84.job
[2014.10.22 17:27:59 | 000,000,948 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfee1524ceec61.job
[2014.10.22 17:27:59 | 000,000,952 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cfee1524e581f6.job
[2014.11.13 23:33:29 | 000,000,948 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfff91d8ea63ea.job
[2014.11.13 23:33:29 | 000,000,952 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cfff91d905665f.job
 
[color=#A23BEC]<  >[/color]
 
[color=#A23BEC]< MD5 for: AGP440.SYS  >[/color]
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\AGP440.sys
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys
[2009.07.14 02:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\AGP440.sys
 
[color=#A23BEC]< MD5 for: ATAPI.SYS  >[/color]
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_552ea5111ec825a6\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.18231_none_3b457059383c66e6\atapi.sys
[2009.07.14 02:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.22414_none_3be7afc0514717fa\atapi.sys
 
[color=#A23BEC]< MD5 for: AUTOCHK.EXE  >[/color]
[2010.11.20 14:24:26 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\SysNative\autochk.exe
[2010.11.20 14:24:26 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2009.07.14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe
[2009.07.14 02:38:56 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=8B7F8E882A649D81CEA1EDE9BBB68FFF -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_3de8def0db722996\autochk.exe
[2010.11.20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\SysWOW64\autochk.exe
[2010.11.20 13:16:54 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe
 
[color=#A23BEC]< MD5 for: CDROM.SYS  >[/color]
[2009.07.14 00:19:54 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=83D2D75E1EFB81B3450C18131443F7DB -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys
[2010.11.20 10:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010.11.20 10:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010.11.20 10:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys
 
[color=#A23BEC]< MD5 for: CNGAUDIT.DLL  >[/color]
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009.07.14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009.07.14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
[2009.07.14 02:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll
 
[color=#A23BEC]< MD5 for: CRYPTSVC.DLL  >[/color]
[2012.06.02 05:52:32 | 000,142,336 | ---- | M] (Microsoft Corporation) MD5=063DD65889D21035311463337BD268E7 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22010_none_788c7cc71232cc19\cryptsvc.dll
[2012.04.24 05:36:42 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=06E771AA596B8761107AB57E99F128D7 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17827_none_77ff39f3f916c65f\cryptsvc.dll
[2010.11.20 14:25:59 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=15597883FBE9B056F276ADA3AD87D9AF -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_d4259ed3b16ed82a\cryptsvc.dll
[2012.04.24 05:28:22 | 000,142,336 | ---- | M] (Microsoft Corporation) MD5=21993009E0CCB9B4FA195F14D3408626 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.21979_none_7854c7b7125b248c\cryptsvc.dll
[2013.05.10 05:49:59 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=33ADF6E0853AB39EA1723BE82842C1D3 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18150_none_77d7a417f9359661\cryptsvc.dll
[2013.05.13 05:45:55 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=3897DFF247D9ED0006190349DE264E14 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18151_none_77d8a461f934afb8\cryptsvc.dll
[2013.07.09 15:47:30 | 000,186,880 | ---- | M] (Microsoft Corporation) MD5=434CCE8E7150CD1324C5FAA088D1D061 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22380_none_d45f6e88cac8f85b\cryptsvc.dll
[2012.06.02 06:32:25 | 000,183,808 | ---- | M] (Microsoft Corporation) MD5=456107D69D4EE850A559434F19EFEE65 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.21225_none_d2beeccacd6d6c07\cryptsvc.dll
[2012.04.24 06:37:37 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=4F5414602E2544A4554D95517948B705 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17827_none_d41dd577b1743795\cryptsvc.dll
[2013.10.05 03:25:30 | 000,186,880 | ---- | M] (Microsoft Corporation) MD5=509D31797A4B8A3D6ED78A330B19A919 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22473_none_d46d4138cabe2596\cryptsvc.dll
[2012.04.24 05:47:04 | 000,139,264 | ---- | M] (Microsoft Corporation) MD5=520A108A2657F4BCA7FCED9CA7D885DE -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.17008_none_762f534bfbdf7203\cryptsvc.dll
[2013.07.09 06:46:20 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=6B400F211BEE880A37A1ED0368776BF4 -- C:\Windows\SysNative\cryptsvc.dll
[2013.07.09 06:46:20 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=6B400F211BEE880A37A1ED0368776BF4 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18205_none_d431528fb165f7bc\cryptsvc.dll
[2013.07.09 14:57:37 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=6DB499DEFCC827317C5371164A7CDB27 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22380_none_7840d305126b8725\cryptsvc.dll
[2013.07.09 05:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=7CA1BECEA5DE2643ADDAD32670E7A4C9 -- C:\Windows\SysWOW64\cryptsvc.dll
[2013.07.09 05:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=7CA1BECEA5DE2643ADDAD32670E7A4C9 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18205_none_7812b70bf9088686\cryptsvc.dll
[2012.06.04 08:52:35 | 000,186,880 | ---- | M] (Microsoft Corporation) MD5=7E7D2DACF65D750D466F36BD3D09AE20 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22010_none_d4ab184aca903d4f\cryptsvc.dll
[2013.05.10 06:49:28 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=7FDC4626B01106A8EF328C88C7C0DEE3 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18150_none_d3f63f9bb1930797\cryptsvc.dll
[2013.05.11 06:18:23 | 000,186,880 | ---- | M] (Microsoft Corporation) MD5=8122252F0A4ACFA92FA0C1D50D18493B -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22322_none_d4a24ea4ca968363\cryptsvc.dll
[2009.07.14 02:40:24 | 000,175,104 | ---- | M] (Microsoft Corporation) MD5=8C57411B66282C01533CB776F98AD384 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_d1f48b0bb4805490\cryptsvc.dll
[2012.06.02 05:36:29 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=96C0E38905CFD788313BE8E11DAE3F2F -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17856_none_77ddc9e5f93000db\cryptsvc.dll
[2012.06.02 06:41:28 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=9C01375BE382E834CC26D1B7EAF2C4FE -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17856_none_d3fc6569b18d7211\cryptsvc.dll
[2009.07.14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll
[2010.11.20 13:18:24 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_7807034ff91166f4\cryptsvc.dll
[2013.05.11 05:59:05 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=AC04D05309BB2C418D0D80B9FB014642 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22322_none_7883b3211239122d\cryptsvc.dll
[2012.04.24 06:22:32 | 000,186,880 | ---- | M] (Microsoft Corporation) MD5=B7337E9C9E5936355BB700AA33E0936E -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.21979_none_d473633acab895c2\cryptsvc.dll
[2012.06.02 06:25:12 | 000,182,272 | ---- | M] (Microsoft Corporation) MD5=BAF19B633933A9FB4883D27D66C39E9A -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.17035_none_d22a7e2db457eb07\cryptsvc.dll
[2013.05.10 06:18:53 | 000,186,880 | ---- | M] (Microsoft Corporation) MD5=CA13C4F92BEE66DB48E58AB3223DDF6E -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22321_none_d4a14e5aca976a0c\cryptsvc.dll
[2012.04.24 06:36:46 | 000,183,808 | ---- | M] (Microsoft Corporation) MD5=CE8BF1423AEE47DA5275FBC8AD3BD642 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.21199_none_d2773c98cda297d3\cryptsvc.dll
[2013.05.13 06:51:01 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=D8129C49798CBBFB2E4351D4B7B8EF9C -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18151_none_d3f73fe5b19220ee\cryptsvc.dll
[2013.05.10 06:06:21 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=E122AA1C9A3CC46FF9DDDE46E5EB0C58 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22321_none_7882b2d71239f8d6\cryptsvc.dll
[2012.06.02 05:41:59 | 000,141,312 | ---- | M] (Microsoft Corporation) MD5=EA8C26ECF1656D9647EF044F115EC6DA -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.21225_none_76a05147150ffad1\cryptsvc.dll
[2012.04.24 06:59:45 | 000,182,272 | ---- | M] (Microsoft Corporation) MD5=F02786B66375292E58C8777082D4396D -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.17008_none_d24deecfb43ce339\cryptsvc.dll
[2013.10.05 02:52:03 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=F2D9242C3BBD1C36467FCAE1AE01733F -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22473_none_784ea5b51260b460\cryptsvc.dll
[2012.06.02 05:45:21 | 000,139,264 | ---- | M] (Microsoft Corporation) MD5=F2FDE6C8DBAAD44CC58D1E07E4AF4EED -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.17035_none_760be2a9fbfa79d1\cryptsvc.dll
[2012.04.24 05:33:53 | 000,141,312 | ---- | M] (Microsoft Corporation) MD5=F522279B4717E2BFF269C771FAC2B78E -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.21199_none_7658a1151545269d\cryptsvc.dll
 
[color=#A23BEC]< MD5 for: EXPLORER.EXE  >[/color]
[2011.02.26 07:23:14 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=0862495E0C825893DB75EF44FAEA8E93 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe
[2011.02.26 06:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2009.07.14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[2011.02.26 06:51:13 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_b8ce9756e0b786a4\explorer.exe
[2009.10.31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[2011.02.26 06:33:07 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_b816eb59c7bb4020\explorer.exe
[2011.02.25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011.02.25 07:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011.02.26 07:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010.11.20 13:17:09 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2009.08.03 07:19:07 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=700073016DAC1C3D2E7E2CE4223334B6 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011.02.25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2009.10.31 07:34:59 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=9AAAEC8DAC27AA17B053E6352AD233AE -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[2009.08.03 06:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[2010.11.20 14:24:45 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
[2009.10.31 07:38:38 | 002,870,272 | ---- | M] (Microsoft Corporation) MD5=B8EC4BD49CE8F6FC457721BFC210B67F -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[2009.08.03 06:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[2009.07.14 02:39:10 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=C235A51CB740E45FFA0EBFB9BAFCDA64 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[2009.10.31 07:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[2011.02.26 07:26:45 | 002,870,784 | ---- | M] (Microsoft Corporation) MD5=E38899074D4951D31B4040E994DD7C8D -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_ae79ed04ac56c4a9\explorer.exe
[2009.08.03 07:17:37 | 002,868,224 | ---- | M] (Microsoft Corporation) MD5=F170B4A061C9E026437B193B4D571799 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
 
[color=#A23BEC]< MD5 for: HAL.DLL  >[/color]
[2009.07.14 02:47:48 | 000,263,232 | ---- | M] (Microsoft Corporation) MD5=C0A6F6E05E14FBCAEDE7796C8590B7AC -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_071de44b735b3dfc\hal.dll
[2010.11.20 14:33:34 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\SysNative\hal.dll
[2010.11.20 14:33:34 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll
 
[color=#A23BEC]< MD5 for: IASTOR.SYS  >[/color]
[2011.11.29 18:40:32 | 000,568,600 | ---- | M] (Intel Corporation) MD5=C224331A54571C8C9162F7714400BBBD -- C:\Windows\SysNative\drivers\iaStor.sys
[2011.11.29 18:40:32 | 000,568,600 | ---- | M] (Intel Corporation) MD5=C224331A54571C8C9162F7714400BBBD -- C:\Windows\SysNative\DriverStore\FileRepository\iaahci.inf_amd64_neutral_9c981fcb416c038e\iaStor.sys
 
[color=#A23BEC]< MD5 for: IASTORV.SYS  >[/color]
[2010.11.20 14:33:38 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_668286aa35d55928\iaStorV.sys
[2010.11.20 14:33:38 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_0d3757e79e6784d0\iaStorV.sys
[2011.03.11 07:19:16 | 000,410,496 | ---- | M] (Intel Corporation) MD5=5B3DE7208E5000D5B451B9D290D2579C -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_0d714416b7c182d5\iaStorV.sys
[2011.03.11 07:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\drivers\iaStorV.sys
[2011.03.11 07:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_0bcee2057afcc090\iaStorV.sys
[2011.03.11 07:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_0cf9793d9e95787b\iaStorV.sys
[2011.03.11 07:23:00 | 000,410,496 | ---- | M] (Intel Corporation) MD5=B75E45C564E944A2657167D197AB29DA -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16778_none_0b141c81a16e25e6\iaStorV.sys
[2011.03.11 07:25:49 | 000,410,496 | ---- | M] (Intel Corporation) MD5=BFDC9D75698800CFE4D1698BF2750EA2 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.20921_none_0bccc8c8ba6985c1\iaStorV.sys
[2009.07.14 02:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys
 
[color=#A23BEC]< MD5 for: ISAPNP.SYS  >[/color]
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\drivers\isapnp.sys
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\isapnp.sys
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\isapnp.sys
[2009.07.14 02:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\isapnp.sys
 
[color=#A23BEC]< MD5 for: LSASS.EXE  >[/color]
[2014.05.30 09:00:12 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=04F6C08B30C599D301CE8530A6F6A703 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22705_none_0505e8508c7f766f\lsass.exe
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_023f7c69767c3edd\lsass.exe
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16484_none_023e7e05767d22ad\lsass.exe
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.20594_none_02bd4ae48fa2de68\lsass.exe
[2009.07.14 02:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_04709031736ac277\lsass.exe
[2011.11.17 07:20:34 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0A10B74FBB437FF9A23F1D5DE4446A83 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.21861_none_04c1204e8cb39c3f\lsass.exe
[2011.11.17 08:05:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=156F6159457D0AA7E59B62681B56EB90 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16915_none_028b374176436a30\lsass.exe
[2011.11.17 08:05:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=156F6159457D0AA7E59B62681B56EB90 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.17035_none_02756f8b7653d554\lsass.exe
[2014.04.12 03:19:05 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=204F3F58212B3E422C90BD9691A2DF28 -- C:\Windows\SysNative\lsass.exe
[2014.04.12 03:19:05 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=204F3F58212B3E422C90BD9691A2DF28 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18443_none_044f07757384196d\lsass.exe
[2014.04.12 03:19:05 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=204F3F58212B3E422C90BD9691A2DF28 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18496_none_041bf8b773a9f127\lsass.exe
[2014.04.12 03:19:05 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=204F3F58212B3E422C90BD9691A2DF28 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18526_none_0467aa1173712ab7\lsass.exe
[2014.04.12 03:19:05 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=204F3F58212B3E422C90BD9691A2DF28 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18637_none_045ddc5573785d26\lsass.exe
[2014.09.19 10:42:18 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=341655B216721D89CADE9DEA2F33872F -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18606_none_047d4bcf7360effc\lsass.exe
[2013.09.25 02:03:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=4D71227301DD8D09097B9E4CC6527E5A -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18270_none_042b9307739f26ed\lsass.exe
[2014.04.12 03:31:33 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=6598EBC4D209318EBD81F76833ECBEDB -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22653_none_04cdd63a8ca9d24f\lsass.exe
[2014.04.12 03:31:33 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=6598EBC4D209318EBD81F76833ECBEDB -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22712_none_04f817868c8a465b\lsass.exe
[2014.04.12 03:31:33 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=6598EBC4D209318EBD81F76833ECBEDB -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22736_none_04e678d68c96e399\lsass.exe
[2014.04.12 03:31:33 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=6598EBC4D209318EBD81F76833ECBEDB -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22807_none_0507eaca8c7da644\lsass.exe
[2014.04.12 03:31:33 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=6598EBC4D209318EBD81F76833ECBEDB -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22843_none_04d8a9f28ca1b0ac\lsass.exe
[2012.06.04 08:51:10 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=79C908CAA6F43021EB05F4C733A927D1 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22010_none_04f609a88c8c279c\lsass.exe
[2014.09.19 10:47:37 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=B84317193B6A29F5F5DCF538C34FDCED -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22814_none_04fa1a008c887630\lsass.exe
[2012.06.02 06:30:31 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=BF63CE11A25F3509129888710D5111FC -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.21225_none_0309de288f695654\lsass.exe
[2011.11.17 07:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=C118A82CD78818C29AB228366EBF81C3 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17725_none_0466c45b7371f20d\lsass.exe
[2011.11.17 07:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=C118A82CD78818C29AB228366EBF81C3 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17856_none_044756c773895c5e\lsass.exe
[2011.11.17 07:42:52 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=D21BD47E528CD62E79311FB5DF0150E6 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.21092_none_02bb2a0a8fa4d398\lsass.exe
[2013.09.25 02:08:17 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=F021DAFB1F87616FCEBA159C2ED7042F -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22465_none_04c503168cb026a0\lsass.exe
[2014.05.30 09:07:57 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=F23812F9F7B130854E4BC0389F7C688C -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18489_none_0429c981739f213b\lsass.exe
 
[color=#A23BEC]< MD5 for: NDIS.SYS  >[/color]
[2012.08.22 19:06:07 | 000,950,128 | ---- | M] (Microsoft Corporation) MD5=5E74508FCB5820B29EEAFE24E6035BCF -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.22097_none_06232d534c0a8d67\ndis.sys
[2012.08.22 19:12:40 | 000,950,128 | ---- | M] (Microsoft Corporation) MD5=760E38053BF56E501D562B70AD796B88 -- C:\Windows\SysNative\drivers\ndis.sys
[2012.08.22 19:12:40 | 000,950,128 | ---- | M] (Microsoft Corporation) MD5=760E38053BF56E501D562B70AD796B88 -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17939_none_05dc9a6832ba428a\ndis.sys
[2010.11.20 14:33:45 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=79B47FD40D9A817E932F9D26FAC0A81C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_05ed313632ae9759\ndis.sys
[2009.07.14 02:48:27 | 000,947,776 | ---- | M] (Microsoft Corporation) MD5=CAD515DBD07D082BB317D9928CE8962C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_03bc1d6e35c013bf\ndis.sys
 
[color=#A23BEC]< MD5 for: NETLOGON.DLL  >[/color]
[2009.07.14 02:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2010.11.20 14:27:22 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\SysNative\netlogon.dll
[2010.11.20 14:27:22 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_5bddbcb24e997298\netlogon.dll
[2010.11.20 13:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\SysWOW64\netlogon.dll
[2010.11.20 13:20:28 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_6632670482fa3493\netlogon.dll
[2009.07.14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll
 
[color=#A23BEC]< MD5 for: NVRAID.SYS  >[/color]
[2011.03.11 07:41:34 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\SysNative\drivers\nvraid.sys
[2011.03.11 07:41:34 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvraid.sys
[2011.03.11 07:41:34 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvraid.sys
[2009.07.14 02:48:27 | 000,149,056 | ---- | M] (NVIDIA Corporation) MD5=3E38712941E9BB4DDBEE00AFFE3FED3D -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvraid.sys
[2010.11.20 14:33:48 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvraid.sys
[2010.11.20 14:33:48 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvraid.sys
[2011.03.11 07:19:21 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=666CA16F17914C1CD3616CF16DE0A6EA -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvraid.sys
[2011.03.11 07:23:06 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=A4D9C9A608A97F59307C2F2600EDC6A4 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16778_none_95dd8d30d8a4cfbe\nvraid.sys
[2011.03.11 07:25:53 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=A5C82EB2F72AA004887F90B84A771F73 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.20921_none_96963977f1a02f99\nvraid.sys
 
[color=#A23BEC]< MD5 for: NVSTOR.SYS  >[/color]
[2009.07.14 02:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys
[2011.03.11 07:23:06 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=6C1D5F70E7A6A3FD1C90D840EDC048B9 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16778_none_95dd8d30d8a4cfbe\nvstor.sys
[2011.03.11 07:25:53 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=AE274836BA56518E279087363A781214 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.20921_none_96963977f1a02f99\nvstor.sys
[2011.03.11 07:19:21 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=D23C7E8566DA2B8A7C0DBBB761D54888 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvstor.sys
[2011.03.11 07:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\drivers\nvstor.sys
[2011.03.11 07:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvstor.sys
[2011.03.11 07:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvstor.sys
[2010.11.20 14:33:48 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvstor.sys
[2010.11.20 14:33:48 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvstor.sys
 
[color=#A23BEC]< MD5 for: SCECLI.DLL  >[/color]
[2009.07.14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009.07.14 02:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
[2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010.11.20 13:21:04 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.20 14:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010.11.20 14:27:25 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll
 
[color=#A23BEC]< MD5 for: SMSS.EXE  >[/color]
[2009.07.14 02:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe
[2014.04.12 03:31:44 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=3442A918386D4716D74C661543151746 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22653_none_0abdf375491039d3\smss.exe
[2014.04.12 03:31:44 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=3442A918386D4716D74C661543151746 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22908_none_0af90a3548e32446\smss.exe
[2013.03.19 03:57:17 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=498E2A20E145199709CD100CDBA8603D -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22280_none_0a9a7b3b492b4d05\smss.exe
[2013.03.19 04:20:12 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=7180204786A9DED8723B2D8CF3CDD388 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.21490_none_08a94e494c0cfd0a\smss.exe
[2013.08.29 02:04:30 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=B2B31D4C79EFD883097FA24D02E79C12 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22436_none_0ad6905f48fd53a8\smss.exe
[2013.08.02 06:06:34 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=CB5DA3E44456D1084BCD87F5B1B3152B -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22411_none_0ae72ec548f19d13\smss.exe
[2013.07.08 03:50:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=E65601CF4BC0CF3718AFBE56A9AD846F -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22379_none_0aae4fa7491b124a\smss.exe
[2013.03.19 04:06:33 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=F0371DE302FFFF8F086661611BE60848 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18113_none_0a5f8ec22fd235a9\smss.exe
[2013.08.02 01:59:09 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=F0970A4BC8395659C22BF53D0FADF16F -- C:\Windows\SysNative\smss.exe
[2013.08.02 01:59:09 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=F0970A4BC8395659C22BF53D0FADF16F -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18229_none_0a5ac2782fd4e6cb\smss.exe
[2013.03.19 04:19:03 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=FA64733BD65F52712F0545F56FDB4BE6 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.17273_none_0838504e32dc743c\smss.exe
 
[color=#A23BEC]< MD5 for: SVCHOST.EXE  >[/color]
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 02:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
 
[color=#A23BEC]< MD5 for: TCPIP.SYS  >[/color]
[2014.04.05 03:47:20 | 001,903,552 | ---- | M] (Microsoft Corporation) MD5=04ADD18EE5CC9FBEDAEC1DD1CD0CB45E -- C:\Windows\SysNative\drivers\tcpip.sys
[2014.04.05 03:47:20 | 001,903,552 | ---- | M] (Microsoft Corporation) MD5=04ADD18EE5CC9FBEDAEC1DD1CD0CB45E -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18438_none_113260637d1284ef\tcpip.sys
[2012.10.03 18:56:54 | 001,914,248 | ---- | M] (Microsoft Corporation) MD5=37608401DFDB388CAF66917F6B2D6FB0 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_110e0fbd7d2e4b88\tcpip.sys
[2013.05.08 07:14:42 | 001,900,392 | ---- | M] (Microsoft Corporation) MD5=3E94650745D4DAB67E161F5F32CEA597 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22319_none_11d29984961f0be0\tcpip.sys
[2013.09.08 03:30:37 | 001,903,552 | ---- | M] (Microsoft Corporation) MD5=40AF23633D197905F03AB5628C558C51 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18254_none_1118bb977d265d27\tcpip.sys
[2014.04.05 03:37:43 | 001,897,408 | ---- | M] (Microsoft Corporation) MD5=4F80944B03112F486212DC20BE166079 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22648_none_11b12f2896383dd1\tcpip.sys
[2010.11.20 14:33:57 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2013.01.04 06:41:01 | 001,893,224 | ---- | M] (Microsoft Corporation) MD5=5CFB7AB8F9524D1A1E14369DE63B83CC -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.17206_none_0f6a6af57fd59de6\tcpip.sys
[2012.03.30 11:19:17 | 001,877,872 | ---- | M] (Microsoft Corporation) MD5=5EFD096DEF47F8B88EF591DA92143440 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21178_none_0faa5514992a39a7\tcpip.sys
[2012.03.30 12:09:53 | 001,895,280 | ---- | M] (Microsoft Corporation) MD5=624C5B3AA4C99B3184BB922D9ECE3FF0 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16986_none_0f140fa780164fde\tcpip.sys
[2013.01.03 06:57:12 | 001,876,824 | ---- | M] (Microsoft Corporation) MD5=692969AB90BDA19F56E27BF89A9260E2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21415_none_0fe8397098fc3d71\tcpip.sys
[2013.09.07 03:27:48 | 001,896,896 | ---- | M] (Microsoft Corporation) MD5=75F9106B74585D38C8FF6BB5CAD262D7 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22444_none_11ad2a34963bde27\tcpip.sys
[2012.08.22 19:06:13 | 001,901,936 | ---- | M] (Microsoft Corporation) MD5=7880A26B7D3B96FDA8EFD9F985036B1D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22097_none_117a13de9661c145\tcpip.sys
[2012.03.30 11:26:36 | 001,901,424 | ---- | M] (Microsoft Corporation) MD5=885B202006EE17AE99B9FBCEC9AF88C9 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21954_none_11a27a8e9643d23a\tcpip.sys
[2009.07.14 02:45:55 | 001,898,576 | ---- | M] (Microsoft Corporation) MD5=912107716BAB424C7870E8E6AF5E07E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_0f1303f98017479d\tcpip.sys
[2013.05.08 07:39:01 | 001,910,632 | ---- | M] (Microsoft Corporation) MD5=9849EA3843A2ADBDD1497E97A85D8CAE -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18148_none_11278ac57d1aa96b\tcpip.sys
[2012.03.30 12:35:47 | 001,918,320 | ---- | M] (Microsoft Corporation) MD5=ACB82BDA8F46C84F465C1AFA517DC4B9 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17802_none_114ceccb7cff740d\tcpip.sys
[2013.07.06 06:20:38 | 001,900,992 | ---- | M] (Microsoft Corporation) MD5=B27F13153343BC37A27EAE01634D94E1 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22378_none_1190b9b296509a2f\tcpip.sys
[2013.01.03 07:00:54 | 001,913,192 | ---- | M] (Microsoft Corporation) MD5=B62A953F2BF3922C8764A29C34A22899 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18042_none_112187237d20143a\tcpip.sys
[2013.01.04 06:47:43 | 001,901,416 | ---- | M] (Microsoft Corporation) MD5=B8C1AAC0523E1C33AEB0EF7572144BA2 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22209_none_11dd678a9616f2c8\tcpip.sys
[2012.10.03 18:44:29 | 001,902,472 | ---- | M] (Microsoft Corporation) MD5=D5707FC2300AA5B04B7BFE86D40C0133 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_11c2c45a962baed0\tcpip.sys
[2013.07.06 07:03:53 | 001,910,208 | ---- | M] (Microsoft Corporation) MD5=DB74544B75566C974815E79A62433F29 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18203_none_114dcae97cfeb81b\tcpip.sys
[2013.11.26 12:34:34 | 001,897,408 | ---- | M] (Microsoft Corporation) MD5=F55B41AA6114568AC558ADBABDA85620 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22525_none_11c3cc3c962abcc3\tcpip.sys
[2012.08.22 19:12:50 | 001,913,200 | ---- | M] (Microsoft Corporation) MD5=F782CAD3CEDBB3F9FFE3BF2775D92DDC -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17939_none_113380f37d117668\tcpip.sys
 
[color=#A23BEC]< MD5 for: USERINIT.EXE  >[/color]
[2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010.11.20 13:17:48 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2009.07.14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[2009.07.14 02:39:48 | 000,030,208 | ---- | M] (Microsoft Corporation) MD5=6F8F1376A13114CC10C0E69274F5A4DE -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
[2010.11.20 14:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010.11.20 14:25:24 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe
 
[color=#A23BEC]< MD5 for: WINLOGON.EXE  >[/color]
[2010.11.20 14:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2009.07.14 02:39:52 | 000,389,120 | ---- | M] (Microsoft Corporation) MD5=132328DF455B0028F13BF0ABEE51A63A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[2014.03.04 12:08:14 | 000,455,680 | ---- | M] (Microsoft Corporation) MD5=6CE2AE073BD21C542FC2C707CAE944CC -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.22616_none_ce748d1d04acf24f\winlogon.exe
[2014.03.04 10:43:50 | 000,455,168 | ---- | M] (Microsoft Corporation) MD5=88AB9B72B4BF3963A0DE0820B4B0B06C -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.18409_none_cdf8bf35eb848572\winlogon.exe
[2014.07.17 03:07:24 | 000,455,168 | ---- | M] (Microsoft Corporation) MD5=8CEBD9D0A0A879CDE9F36F4383B7CAEA -- C:\Windows\SysNative\winlogon.exe
[2014.07.17 03:07:24 | 000,455,168 | ---- | M] (Microsoft Corporation) MD5=8CEBD9D0A0A879CDE9F36F4383B7CAEA -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.18540_none_cdc47ed1ebad0e4e\winlogon.exe
[2014.07.16 04:23:23 | 000,455,680 | ---- | M] (Microsoft Corporation) MD5=98AA0BFEE089C7E5DADB94190D93456C -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.22750_none_ce434d9704d2c730\winlogon.exe
[2009.10.28 08:01:57 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=A93D41A4D4B0D91C072D11DD8AF266DE -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[2009.10.28 07:24:40 | 000,389,632 | ---- | M] (Microsoft Corporation) MD5=DA3E2A6FA9660CC75B471530CE88453A -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe
 
[color=#A23BEC]< MD5 for: WS2_32.DLL  >[/color]
[2010.11.20 14:27:29 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\Windows\SysNative\ws2_32.dll
[2010.11.20 14:27:29 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_50ddb631e4f59005\ws2_32.dll
[2009.07.14 02:41:58 | 000,296,448 | ---- | M] (Microsoft Corporation) MD5=7083F463788CB34FCC42F565D56F89E8 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_4eaca269e8070c6b\ws2_32.dll
[2010.11.20 13:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\SysWOW64\ws2_32.dll
[2010.11.20 13:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_f4bf1aae2c981ecf\ws2_32.dll
[2009.07.14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll
 
[color=#A23BEC]<  >[/color]
 
[color=#A23BEC]< %systemroot%*.* /U /s >[/color]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[4 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[9 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[45 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[1114 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
 
[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
 
[color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*. >[/color]
 
[color=#A23BEC]< %ALLUSERSPROFILE%\Application Data\*.exe /s >[/color]
 
[color=#A23BEC]< %APPDATA%\*. >[/color]
[2014.09.16 18:39:15 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\.minecraft
[2013.06.17 22:37:19 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\3909 LLC
[2012.08.22 20:21:12 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Adobe
[2015.02.01 15:13:04 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Arc
[2015.02.04 20:02:04 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Battle.net
[2013.07.22 22:40:41 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\BoneTown
[2014.07.06 22:20:13 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\calibre
[2012.11.14 22:32:45 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Canon
[2014.07.08 18:06:47 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\com.filament.rfts
[2013.06.12 18:02:20 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\com.radialgames.MonsterLovesYou
[2013.07.13 23:25:54 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Command & Conquer 3 Tiberium Wars
[2012.08.22 20:17:19 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\DAEMON Tools Lite
[2013.12.13 19:17:15 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\DefendersQuest
[2013.10.21 18:19:25 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\ESET
[2014.11.25 20:16:16 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Frontier Developments
[2013.11.15 22:41:38 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Galaxy on Fire 2 Full HD
[2014.11.23 18:06:17 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\GarenaPlus
[2015.02.04 20:02:04 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\GHISLER
[2012.08.22 13:14:07 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Identities
[2012.08.22 13:17:48 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\InstallShield
[2012.08.22 13:27:57 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Intel Corporation
[2012.08.22 18:43:40 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\IrfanView
[2013.12.01 10:50:02 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Kalypso Media
[2014.06.22 20:24:46 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Logishrd
[2014.06.22 20:24:46 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Logitech
[2012.08.22 13:32:47 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Macromedia
[2009.07.14 08:45:14 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Media Center Programs
[2013.05.22 19:29:36 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Media Player Classic
[2013.07.11 19:04:48 | 000,000,000 | --SD | M] -- C:\Users\Michal\AppData\Roaming\Microsoft
[2015.01.25 20:16:52 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\mIRC
[2013.12.02 20:25:50 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Mount&Blade Warband
[2012.08.22 18:15:11 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Mozilla
[2014.10.27 22:11:51 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Mumble
[2014.02.11 18:51:05 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\NCSOFT
[2012.08.22 20:08:59 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Nero
[2012.08.22 20:22:53 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Notepad++
[2012.10.07 16:11:25 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\NVIDIA
[2015.01.10 18:53:44 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Omerta
[2014.08.14 07:15:17 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Oracle
[2013.09.27 15:40:34 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Origin
[2012.08.22 19:40:57 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\PDM
[2013.12.29 17:54:02 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\RenPy
[2015.02.04 21:00:28 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Skype
[2013.06.17 20:24:17 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\StarDrive
[2014.09.01 02:00:43 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Sword of the Stars - The Pit
[2013.05.18 12:41:18 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Talisman Prologue
[2013.09.04 18:30:22 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\The Creative Assembly
[2014.05.23 10:17:48 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\TheBannerSaga
[2013.11.24 11:45:40 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Thunder Wolves
[2013.12.29 16:41:29 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Trine2
[2013.12.01 11:13:35 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Tropico 4
[2014.12.08 20:21:52 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\TS3Client
[2013.03.05 19:45:42 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\ts3overlay
[2012.10.24 17:58:33 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\ts3overlay_hook_win64
[2013.07.18 19:03:12 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Unity
[2014.09.08 16:47:16 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\uTorrent
[2013.07.25 05:59:25 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\VDownloader
[2012.08.23 22:36:58 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\VitySoft
[2015.02.04 20:02:05 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\vlc
[2013.11.14 22:21:26 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\wargaming.net
[2012.08.23 07:25:42 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Winamp
[2012.08.22 18:28:45 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\WinRAR
[2012.10.26 21:41:34 | 000,000,000 | ---D | M] -- C:\Users\Michal\AppData\Roaming\Zeal Game Studio
 
[color=#A23BEC]< %APPDATA%\*.exe /s >[/color]
[2012.09.20 14:39:53 | 000,029,926 | R--- | M] () -- C:\Users\Michal\AppData\Roaming\Microsoft\Installer\{394BE3D9-7F57-4638-A8D1-1D88671913B7}\_18be6784.exe
[2012.09.20 14:39:53 | 000,029,422 | R--- | M] () -- C:\Users\Michal\AppData\Roaming\Microsoft\Installer\{394BE3D9-7F57-4638-A8D1-1D88671913B7}\_294823.exe
[2012.12.26 12:43:11 | 000,010,134 | R--- | M] () -- C:\Users\Michal\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
 
[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
 
[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
 
[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
 
[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color]
 
[color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color]
 
[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
 
[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /3 >[/color]
 
[color=#A23BEC]< %systemroot%\system32\*.* /3 >[/color]
[2015.02.04 21:37:13 | 000,701,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\system32\FlashPlayerApp.exe
[2015.02.04 21:37:13 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\system32\FlashPlayerCPLApp.cpl
[2015.02.05 18:29:21 | 000,000,018 | ---- | M] () -- C:\Windows\system32\log.txt
 
[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
 
[color=#A23BEC]<  >[/color]
 
[color=#A23BEC]< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >[/color]
"DAEMON Tools Lite" = "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun -- [2012.04.11 10:54:22 | 003,672,384 | ---- | M] (DT Soft Ltd)
"Steam" = "E:\Hry\Steam\steam.exe" -silent -- [2015.01.23 23:33:44 | 001,942,720 | ---- | M] (Valve Corporation)
"EA Core" = "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
"GarenaPlus" = "C:\Program Files (x86)\Garena Plus\GarenaMessenger.exe" -autolaunch -- [2014.02.06 12:36:13 | 009,890,608 | ---- | M] ()
 
[color=#A23BEC]< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >[/color]
 
[color=#A23BEC]< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >[/color]
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
    IMAGEPATH    REG_EXPAND_SZ    %systemroot%\system32\svchost.exe -k netsvcs
 
[color=#A23BEC]< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >[/color]
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
    IMAGEPATH    REG_EXPAND_SZ    %SystemRoot%\System32\svchost.exe -k netsvcs
 
[color=#A23BEC]<  >[/color]
 
[color=#A23BEC]< type c:\boot.ini >> test.txt /c >[/color]
 
[color=#A23BEC]< %SystemDrive%\PhysicalMBR.bin /md5 >[/color]
[2015.02.05 19:14:08 | 000,000,512 | ---- | M] () MD5=21101D8840A6F1A5159E5098D37FF93E -- C:\PhysicalMBR.bin
 
[color=#A23BEC]<  >[/color]
 
[color=#A23BEC]< *crack* /s >[/color]
[2012.08.15 10:16:08 | 000,006,966 | ---- | M] () -- \ProgramData\Razer\Synapse\Devices\PictureLibrary\Rift\Warlord\warlord-cracking_skulls_a.bmp
[2012.08.15 10:16:08 | 000,006,966 | ---- | M] () -- \Users\All Users\Razer\Synapse\Devices\PictureLibrary\Rift\Warlord\warlord-cracking_skulls_a.bmp
[2014.10.10 10:55:16 | 000,243,279 | ---- | M] () -- \Users\Michal\AppData\Local\PopCap Games\Bejeweled3\cached\sounds\diamond_mine_bigstone_cracked.wav
[2014.10.10 10:55:16 | 000,122,219 | ---- | M] () -- \Users\Michal\AppData\Local\PopCap Games\Bejeweled3\cached\sounds\diamond_mine_dirt_cracked.wav
[2014.10.10 10:55:16 | 000,247,212 | ---- | M] () -- \Users\Michal\AppData\Local\PopCap Games\Bejeweled3\cached\sounds\diamond_mine_stone_cracked.wav
[2014.10.10 10:55:16 | 000,357,986 | ---- | M] () -- \Users\Michal\AppData\Local\PopCap Games\Bejeweled3\cached\sounds\firework_crackle.wav
[2014.07.03 19:59:25 | 000,026,406 | ---- | M] () -- \Users\Michal\AppData\Roaming\TS3Client\cache\remote\www.justinparks.com\wp-content\uploads\2009\10\facebook-cracked.png
[2014.08.07 21:39:00 | 000,005,592 | ---- | M] () -- \Users\Michal\AppData\Roaming\VitySoft\FRD\plugins\crackle.frp
 
[color=#A23BEC]< *keygen* /s >[/color]
 
[color=#A23BEC]< *AntiWPA* /s >[/color]
 
[color=#A23BEC]< *loader* /s >[/color]
[2014.08.07 21:48:45 | 000,002,100 | ---- | M] () -- \AdwCleaner\Quarantine\C\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader\YTD Video Downloader.lnk.vir
[2014.05.02 04:52:34 | 000,044,032 | R--- | M] () -- \Program Files (x86)\Calibre2\DLLs\PyISAPI_loader.dll
[2012.09.05 19:08:09 | 000,000,194 | ---- | M] () -- \Program Files (x86)\Common Files\Blizzard Entertainment\BlizzardDownloader.ini
[2013.02.07 10:11:17 | 000,051,504 | ---- | M] () -- \Program Files (x86)\Garena Plus\FileLoader.dll
[2013.01.30 09:26:41 | 002,941,232 | ---- | M] () -- \Program Files (x86)\Garena Plus\ggdownloader.dll
[2013.01.30 11:09:14 | 000,082,224 | ---- | M] () -- \Program Files (x86)\Garena Plus\bbtalk\BTalkLoader.exe
[2013.12.19 12:34:02 | 000,255,280 | ---- | M] () -- \Program Files (x86)\Garena Plus\bbtalk\GarenaTalkLoader.exe
[2012.09.05 17:10:13 | 000,081,272 | ---- | M] () -- \Program Files (x86)\Garena Plus\bbtalk\update\temp\restore\10058\BTalkLoader.exe
[2012.09.22 19:19:19 | 000,081,272 | ---- | M] () -- \Program Files (x86)\Garena Plus\bbtalk\update\temp\restore\10060\BTalkLoader.exe
[2012.09.22 19:19:24 | 000,081,272 | ---- | M] () -- \Program Files (x86)\Garena Plus\bbtalk\update\temp\restore\10062\BTalkLoader.exe
[2011.07.18 22:33:32 | 000,008,787 | ---- | M] () -- \Program Files (x86)\Notepad++\user.manual\sites\all\modules\fancy_login\images\ajax-loader.gif
[2014.05.30 00:10:11 | 001,170,208 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\ExtensionLoader.dll
[2013.12.20 01:37:56 | 000,065,344 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2013.12.20 01:37:56 | 000,067,904 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2013.12.20 01:37:44 | 000,073,536 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2013.12.20 01:37:44 | 000,080,704 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader64.dll
[2011.10.08 01:34:22 | 000,008,787 | ---- | M] () -- \Program Files (x86)\Rockstar Games\Social Club\UI\images\loaderLargeBlue.gif
[2011.10.08 01:34:22 | 000,008,787 | ---- | M] () -- \Program Files (x86)\Rockstar Games\Social Club\UI\images\loaderLargeGrey.gif
[2011.10.08 01:34:22 | 000,001,737 | ---- | M] () -- \Program Files (x86)\Rockstar Games\Social Club\UI\images\loaderSmallBlue.gif
[2011.10.08 01:34:22 | 000,001,737 | ---- | M] () -- \Program Files (x86)\Rockstar Games\Social Club\UI\images\loaderSmallGold.gif
[2011.09.27 15:18:22 | 001,614,848 | ---- | M] () -- \Program Files (x86)\VDownloader\VDownloader.exe
[2011.03.06 16:42:30 | 000,015,086 | ---- | M] () -- \Program Files (x86)\VDownloader\VDownloader.ico
[2011.09.27 15:14:10 | 000,284,160 | ---- | M] () -- \Program Files (x86)\VDownloader\VDownloaderUI.dll
[2011.08.18 17:14:40 | 004,348,416 | ---- | M] () -- \Program Files (x86)\VDownloader\Addons\npVDownloader.dll
[2011.08.18 17:14:18 | 000,000,247 | ---- | M] () -- \Program Files (x86)\VDownloader\Addons\FireFox\chrome\content\vdownloader.xul
[2011.09.27 15:14:12 | 000,049,152 | ---- | M] () -- \Program Files (x86)\VDownloader\ar\VDownloader.resources.dll
[2011.09.27 15:14:12 | 000,053,248 | ---- | M] () -- \Program Files (x86)\VDownloader\de\VDownloader.resources.dll
[2011.09.27 15:14:12 | 000,049,152 | ---- | M] () -- \Program Files (x86)\VDownloader\es\VDownloader.resources.dll
[2011.09.27 15:14:12 | 000,053,248 | ---- | M] () -- \Program Files (x86)\VDownloader\fr\VDownloader.resources.dll
[2011.09.27 15:14:14 | 000,036,864 | ---- | M] () -- \Program Files (x86)\VDownloader\hu\VDownloader.resources.dll
[2011.09.27 15:14:14 | 000,049,152 | ---- | M] () -- \Program Files (x86)\VDownloader\it\VDownloader.resources.dll
[2011.09.27 15:14:14 | 000,049,152 | ---- | M] () -- \Program Files (x86)\VDownloader\ja\VDownloader.resources.dll
[2011.09.27 15:14:14 | 000,032,768 | ---- | M] () -- \Program Files (x86)\VDownloader\ko\VDownloader.resources.dll
[2011.09.27 15:14:14 | 000,049,152 | ---- | M] () -- \Program Files (x86)\VDownloader\nl\VDownloader.resources.dll
[2011.09.27 15:14:14 | 000,032,768 | ---- | M] () -- \Program Files (x86)\VDownloader\pl\VDownloader.resources.dll
[2011.09.27 15:14:14 | 000,036,864 | ---- | M] () -- \Program Files (x86)\VDownloader\pt-BR\VDownloader.resources.dll
[2011.09.27 15:14:14 | 000,053,248 | ---- | M] () -- \Program Files (x86)\VDownloader\ru\VDownloader.resources.dll
[2011.09.27 15:14:14 | 000,028,672 | ---- | M] () -- \Program Files (x86)\VDownloader\sr\VDownloader.resources.dll
[2011.09.27 15:14:14 | 000,045,056 | ---- | M] () -- \Program Files (x86)\VDownloader\tr\VDownloader.resources.dll
[2011.09.27 15:14:14 | 000,045,056 | ---- | M] () -- \Program Files (x86)\VDownloader\zh-CHS\VDownloader.resources.dll
[2012.06.09 18:19:38 | 000,055,296 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2012.09.05 17:09:40 | 000,967,461 | ---- | M] () -- \ProgramData\GarenaMessenger\update\12127\ggdownloader.dll
[2013.07.16 17:54:41 | 000,020,929 | ---- | M] () -- \ProgramData\GarenaMessenger\update\12153\FileLoader.dll
[2013.12.19 18:49:55 | 000,084,642 | ---- | M] () -- \ProgramData\GarenaMessenger\update\12334\bbtalk\GarenaTalkLoader.exe
[2013.07.16 17:54:03 | 000,020,929 | ---- | M] () -- \ProgramData\GarenaMessenger\UpdateManager\12153\FileLoader.dll
[2013.07.16 17:54:48 | 000,945,655 | ---- | M] () -- \ProgramData\GarenaMessenger\UpdateManager\12153\ggdownloader.dll
[2013.07.16 17:54:27 | 000,027,494 | ---- | M] () -- \ProgramData\GarenaMessenger\UpdateManager\12153\bbtalk\BTalkLoader.exe
[2013.07.16 17:56:08 | 000,080,425 | ---- | M] () -- \ProgramData\GarenaMessenger\UpdateManager\12226\bbtalk\GarenaTalkLoader.exe
[2014.03.31 17:30:22 | 000,000,649 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com\GOG.com Downloader.lnk
[2013.07.25 05:59:21 | 000,001,885 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\VDownloader\VDownloader.lnk
[2010.03.15 11:33:54 | 000,000,232 | ---- | M] () -- \ProgramData\Nero\Nero 10\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2012.09.05 17:09:40 | 000,967,461 | ---- | M] () -- \Users\All Users\GarenaMessenger\update\12127\ggdownloader.dll
[2013.07.16 17:54:41 | 000,020,929 | ---- | M] () -- \Users\All Users\GarenaMessenger\update\12153\FileLoader.dll
[2013.12.19 18:49:55 | 000,084,642 | ---- | M] () -- \Users\All Users\GarenaMessenger\update\12334\bbtalk\GarenaTalkLoader.exe
[2013.07.16 17:54:03 | 000,020,929 | ---- | M] () -- \Users\All Users\GarenaMessenger\UpdateManager\12153\FileLoader.dll
[2013.07.16 17:54:48 | 000,945,655 | ---- | M] () -- \Users\All Users\GarenaMessenger\UpdateManager\12153\ggdownloader.dll
[2013.07.16 17:54:27 | 000,027,494 | ---- | M] () -- \Users\All Users\GarenaMessenger\UpdateManager\12153\bbtalk\BTalkLoader.exe
[2013.07.16 17:56:08 | 000,080,425 | ---- | M] () -- \Users\All Users\GarenaMessenger\UpdateManager\12226\bbtalk\GarenaTalkLoader.exe
[2014.03.31 17:30:22 | 000,000,649 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\GOG.com\GOG.com Downloader.lnk
[2013.07.25 05:59:21 | 000,001,885 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\VDownloader\VDownloader.lnk
[2010.03.15 11:33:54 | 000,000,232 | ---- | M] () -- \Users\All Users\Nero\Nero 10\OnlineServices\NOSWebConfig\MySpace\uploadError.xml
[2014.08.13 13:14:30 | 000,009,418 | ---- | M] () -- \Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.17_0\img\gifloader.gif
[2012.08.22 20:16:48 | 000,003,784 | ---- | M] () -- \Users\Michal\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\06ZPGQRW\bundleloader[1].js
[2012.08.22 19:55:24 | 000,000,723 | ---- | M] () -- \Users\Michal\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\06ZPGQRW\downloaderror[1].js
[2012.08.22 19:55:24 | 000,001,174 | ---- | M] () -- \Users\Michal\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\06ZPGQRW\downloader[1].js
[2013.04.03 21:26:35 | 000,003,784 | ---- | M] () -- \Users\Michal\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AXC7IRRM\bundleloader[1].js
[2013.10.18 20:38:29 | 000,046,728 | ---- | M] () -- \Users\Michal\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ONFHVMHH\universaldownloader-prefetch[1].htm
[2013.04.03 23:00:21 | 000,003,784 | ---- | M] () -- \Users\Michal\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T8N1RNS7\bundleloader[1].js
[2013.04.03 21:26:35 | 000,000,723 | ---- | M] () -- \Users\Michal\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T8N1RNS7\downloaderror[1].js
[2013.04.03 23:00:21 | 000,000,723 | ---- | M] () -- \Users\Michal\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T8N1RNS7\downloaderror[2].js
[2013.04.03 21:26:35 | 000,001,174 | ---- | M] () -- \Users\Michal\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T8N1RNS7\downloader[1].js
[2013.04.03 23:00:21 | 000,001,174 | ---- | M] () -- \Users\Michal\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\T8N1RNS7\downloader[2].js
[2014.05.07 18:38:05 | 000,012,811 | ---- | M] () -- \Users\Michal\AppData\Local\Overwolf\InstallerCache\preloader_3337.gif
[2014.10.24 08:42:10 | 000,072,638 | ---- | M] () -- \Users\Michal\AppData\Local\Skype\Apps\login\images\loader.gif
[2014.10.24 08:42:10 | 000,003,032 | ---- | M] () -- \Users\Michal\AppData\Local\Skype\Apps\login\images\loader.png
[2014.10.24 08:42:10 | 000,006,012 | ---- | M] () -- \Users\Michal\AppData\Local\Skype\Apps\login\images\normal\loader_15fps.gif
[2014.10.24 08:42:10 | 000,021,956 | ---- | M] () -- \Users\Michal\AppData\Local\Skype\Apps\login\images\normal\loader_30fps.gif
[2014.10.24 08:42:10 | 000,009,772 | ---- | M] () -- \Users\Michal\AppData\Local\Skype\Apps\login\images\retina\loader@2x.png
[2013.07.25 05:59:21 | 000,001,867 | ---- | M] () -- \Users\Michal\Desktop\Nepouzivane\VDownloader.lnk
[2012.08.23 22:58:06 | 000,001,162 | ---- | M] () -- \Users\Michal\Desktop\Nepouzivane\YTD Video Downloader.lnk
[2015.01.31 15:40:43 | 000,000,905 | ---- | M] () -- \Users\Michal\Documents\My Games\Skyrim\SKSE\skse_loader.log
[2015.01.31 15:56:17 | 000,000,936 | ---- | M] () -- \Users\Michal\Documents\My Games\Skyrim\SKSE\skse_steam_loader.log
[2014.07.20 22:43:06 | 000,000,963 | ---- | M] () -- \Users\Michal\Documents\My Games\Skyrim\SKSE\skse_steam_loader.log0
[2014.08.07 21:48:45 | 000,001,162 | ---- | M] () -- \Users\Public\Desktop\YTD Video Downloader.lnk
[2013.08.02 02:48:15 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2013.08.02 02:48:15 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2009.07.14 02:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 02:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:04:54 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16850_none_66c2596d956d1920\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.18 16:22:27 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17107_none_66ff46fd953e6c5c\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:28:57 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17135_none_66dcd6a595588d81\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:41:11 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17179_none_66b5981d957562a1\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 06:26:58 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17206_none_66fe4899953f502c\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:06:43 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21010_none_67770e0aae6a7c68\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 19:46:36 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21306_none_6787e564ae5ceff6\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:26:17 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21335_none_67667556ae762a72\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:36:06 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21386_none_67316604ae9dcf7e\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 15:12:39 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21416_none_677d175eae65090e\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:21:03 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_68a9b6bd92929e63\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 19:38:32 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_68c05c919281774d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:38:48 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_68a2edab92971725\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:38:44 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_68d8d569926ebeb2\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 03:12:19 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_68d20a7192733a4d\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 06:12:44 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_691eb3faabbf8f66\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 19:09:47 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_6907efc6abd0db81\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:35:00 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_6957a248ab947a6d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:39:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_69239340abbb38d0\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 06:32:07 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22209_none_6971452eab80a50e\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.07.08 06:11:20 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22379_none_692597a0abb965cc\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 07:20:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22411_none_695e76beab8ff095\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.29 03:18:31 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22436_none_694dd858ab9ba72a\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.04 12:03:17 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22616_none_69637bfcab8b6996\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.04.12 03:28:21 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22653_none_69353b6eabae8d55\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.26 19:40:31 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.26 19:40:31 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.efi.mui_35ee487d
[2009.07.26 19:40:31 | 000,034,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winload.exe.mui_3bc5b827
[2009.07.26 19:40:31 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.efi.mui_f412814e
[2009.07.26 19:40:31 | 000,030,288 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc_winresume.exe.mui_ff8b5358
[2009.07.14 06:37:37 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a.manifest
[2009.07.14 06:37:37 | 000,033,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winload.efi.mui_35ee487d
[2009.07.14 06:37:37 | 000,033,344 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winload.exe.mui_3bc5b827
[2009.07.14 06:37:37 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winresume.efi.mui_f412814e
[2009.07.14 06:37:37 | 000,029,760 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a_winresume.exe.mui_ff8b5358
[2012.08.26 12:40:14 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_015df3e3bafadc7a.manifest
[2012.08.26 12:40:14 | 000,029,264 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_015df3e3bafadc7a_winload.efi.mui_35ee487d
[2012.08.26 12:40:14 | 000,029,264 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_015df3e3bafadc7a_winload.exe.mui_3bc5b827
[2012.08.26 12:40:14 | 000,026,688 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_015df3e3bafadc7a_winresume.efi.mui_f412814e
[2012.08.26 12:40:14 | 000,026,688 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_015df3e3bafadc7a_winresume.exe.mui_ff8b5358
[2012.08.26 11:44:00 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_ko-kr_a4c7d098ad6ba390.manifest
[2012.08.26 11:44:00 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_ko-kr_a4c7d098ad6ba390_winload.efi.mui_35ee487d
[2012.08.26 11:44:00 | 000,029,776 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_ko-kr_a4c7d098ad6ba390_winload.exe.mui_3bc5b827
[2012.08.26 11:44:00 | 000,027,200 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_ko-kr_a4c7d098ad6ba390_winresume.efi.mui_f412814e
[2012.08.26 11:44:00 | 000,027,200 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_ko-kr_a4c7d098ad6ba390_winresume.exe.mui_ff8b5358
[2012.08.26 12:15:55 | 000,004,338 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_zh-cn_344529e2e1c53ac6.manifest
[2012.08.26 12:15:55 | 000,028,224 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_zh-cn_344529e2e1c53ac6_winload.efi.mui_35ee487d
[2012.08.26 12:15:55 | 000,028,224 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_zh-cn_344529e2e1c53ac6_winload.exe.mui_3bc5b827
[2012.08.26 12:15:55 | 000,026,496 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_zh-cn_344529e2e1c53ac6_winresume.efi.mui_f412814e
[2012.08.26 12:15:55 | 000,026,496 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_zh-cn_344529e2e1c53ac6_winresume.exe.mui_ff8b5358
[2012.08.22 14:44:57 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2012.08.22 14:44:57 | 000,642,944 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.efi_75834aa0
[2012.08.22 14:44:57 | 000,605,552 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winload.exe_75835076
[2012.08.22 14:44:57 | 000,566,208 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.efi_85cd069f
[2012.08.22 14:44:57 | 000,518,672 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb_winresume.exe_85cd1215
[2009.07.14 03:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 03:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2009.07.26 19:38:16 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2009.07.14 03:44:20 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a.manifest
[2009.07.13 18:30:28 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_015df3e3bafadc7a.manifest
[2009.07.13 19:29:00 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_ko-kr_a4c7d098ad6ba390.manifest
[2009.07.13 19:28:54 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_zh-cn_3214161ae4d6b72c.manifest
[2010.11.20 13:33:18 | 000,004,338 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.17514_zh-cn_344529e2e1c53ac6.manifest
[2014.12.13 02:57:48 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22908_cs-cz_9200d0e22cbafea1.manifest
[2014.12.13 02:58:08 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22908_en-us_d5571c3e13b55aff.manifest
[2014.12.13 02:58:01 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22908_ja-jp_04276474d0fb5a5f.manifest
[2014.12.13 02:58:03 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22908_ko-kr_a7914129c36c2175.manifest
[2014.12.13 02:57:54 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22908_zh-cn_34dd86abfad73511.manifest
[2009.07.14 03:13:42 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_b71babd98657e6ef.manifest
[2011.02.05 14:09:31 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16757_none_b73e23c9863dba66.manifest
[2011.02.05 14:04:44 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20897_none_b79c80e49f7bc9f4.manifest
[2010.11.20 05:12:44 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2011.02.05 18:34:23 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2011.02.05 14:09:57 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2014.12.12 07:29:00 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22908_none_b9e51c6a9c5864d4.manifest
[2009.07.14 03:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 02:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:19:58 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16850_none_0aa3bde9dd0fa7ea\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.18 12:09:17 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17107_none_0ae0ab79dce0fb26\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:45:38 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17135_none_0abe3b21dcfb1c4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:56:23 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17179_none_0a96fc99dd17f16b\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 05:43:53 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.17206_none_0adfad15dce1def6\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:12:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21010_none_0b587286f60d0b32\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 18:42:56 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21306_none_0b6949e0f5ff7ec0\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:48:05 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21335_none_0b47d9d2f618b93c\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:44:10 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21386_none_0b12ca80f6405e48\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 05:39:49 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.21416_none_0b5e7bdaf60797d8\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:15:45 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_0c8b1b39da352d2d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 18:32:13 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_0ca1c10dda240617\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:40:37 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:45:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 02:48:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_0cb36eedda15c917\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.16 05:36:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_0d001876f3621e30\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.08.20 18:23:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_0ce95442f3736a4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 17:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 05:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.01.04 05:43:16 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22209_none_0d52a9aaf32333d8\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.07.08 05:59:24 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22379_none_0d06fc1cf35bf496\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 06:53:29 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22411_none_0d3fdb3af3327f5f\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.29 02:54:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22436_none_0d2f3cd4f33e35f4\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.04 11:35:49 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22616_none_0d44e078f32df860\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.04.12 03:03:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22653_none_0d169feaf3511c1f\api-ms-win-core-libraryloader-l1-1-0.dll

Re: Zamrzávající prohlížeč, zpomalené PC

Napsal: 05 úno 2015 20:39
od blackspectre
poslední část OTL.txt:

Kód: Vybrat vše

[color=#A23BEC]< *minodlogin* /s >[/color]
 
[color=#A23BEC]< *tnod* /s >[/color]
 
[color=#A23BEC]< *AutoKMS* /s >[/color]
 
[color=#A23BEC]< *activator* /s >[/color]
 
[color=#A23BEC]< *serial* /s >[/color]
[2014.05.13 22:17:02 | 000,434,368 | ---- | M] () -- \Program Files (x86)\Microsoft Silverlight\5.1.30514.0\System.Runtime.Serialization.dll
[2014.07.25 00:15:31 | 001,164,288 | ---- | M] () -- \Program Files (x86)\Microsoft Silverlight\5.1.30514.0\System.Runtime.Serialization.ni.dll
[2010.04.19 20:32:50 | 000,000,060 | ---- | M] () -- \Program Files (x86)\Nero\Nero 10\Serial.txt
[2012.06.05 11:12:44 | 000,036,864 | ---- | M] () -- \Program Files (x86)\OCCTPT\OCCT.XmlSerializers.dll
[2014.07.10 23:24:10 | 000,970,752 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2010.11.05 02:53:39 | 000,090,112 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2010.11.04 17:00:20 | 000,110,592 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\ja\System.RunTime.Serialization.Resources.dll
[2010.11.04 17:00:10 | 000,102,400 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\ko\System.RunTime.Serialization.Resources.dll
[2010.11.04 17:00:10 | 000,086,016 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\zh-CHS\System.RunTime.Serialization.Resources.dll
[2011.09.27 15:14:06 | 000,065,536 | ---- | M] () -- \Program Files (x86)\VDownloader\Core.XmlSerializers.dll
[2014.05.13 22:48:16 | 000,434,368 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30514.0\System.Runtime.Serialization.dll
[2014.07.25 00:15:48 | 001,546,240 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.30514.0\System.Runtime.Serialization.ni.dll
[2014.07.10 23:24:01 | 000,847,872 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2010.11.05 02:54:42 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2010.11.04 17:00:16 | 000,110,592 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\ja\System.RunTime.Serialization.Resources.dll
[2010.11.04 16:55:52 | 000,102,400 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\ko\System.RunTime.Serialization.Resources.dll
[2010.11.04 16:55:38 | 000,086,016 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\zh-CHS\System.RunTime.Serialization.Resources.dll
[2013.10.18 08:52:56 | 000,501,648 | ---- | M] () -- \ProgramData\Razer\Synapse\Devices\skins\RAZER13_WARRANTY_SerialNumber.bmp
[2014.03.11 11:43:16 | 000,264,556 | ---- | M] () -- \ProgramData\Razer\Synapse\Devices\skins\RAZER13_WARRANTY_SerialNumber.png
[2014.03.11 11:43:30 | 000,002,220 | ---- | M] () -- \ProgramData\Razer\Synapse\Devices\UIXML\Popups\NoSerialCodePopup.xml
[2013.10.18 08:52:56 | 000,501,648 | ---- | M] () -- \Users\All Users\Razer\Synapse\Devices\skins\RAZER13_WARRANTY_SerialNumber.bmp
[2014.03.11 11:43:16 | 000,264,556 | ---- | M] () -- \Users\All Users\Razer\Synapse\Devices\skins\RAZER13_WARRANTY_SerialNumber.png
[2014.03.11 11:43:30 | 000,002,220 | ---- | M] () -- \Users\All Users\Razer\Synapse\Devices\UIXML\Popups\NoSerialCodePopup.xml
[2012.08.22 20:05:41 | 000,002,025 | ---- | M] () -- \Users\Michal\Desktop\Nepouzivane\Nero Serial Installation.lnk
[2013.07.08 13:43:52 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.07.08 13:50:07 | 000,012,800 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_ja_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2013.07.08 13:42:16 | 000,012,288 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_ko_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2013.07.08 13:43:39 | 000,011,264 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_zh-CHS_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2014.06.24 00:43:20 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.13 03:37:37 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2010.11.13 01:00:28 | 000,110,592 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_ja_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2010.11.13 02:06:02 | 000,102,400 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_ko_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2010.11.04 16:55:38 | 000,086,016 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_zh-CHS_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2014.07.10 23:24:10 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014.10.17 17:14:01 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\91eb4f41130c65ef17f0fee1d3ab48fb\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.10.19 16:34:56 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\b1e0939384cc320d6ac7b8921ccc2877\System.Runtime.Serialization.ni.dll
[2014.10.17 17:12:04 | 000,396,288 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\2a07bf9a29a64827bf06e7853214fc0f\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.10.19 18:11:01 | 003,073,536 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\5015b90fbd31c9ba4fff989b2c79711b\System.Runtime.Serialization.ni.dll
[2015.01.31 11:37:39 | 000,306,176 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\a94049de665f1854ea5df1a857b2c68f\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2015.01.31 11:37:39 | 000,000,440 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\a94049de665f1854ea5df1a857b2c68f\System.Runtime.Serialization.Formatters.Soap.ni.dll.aux
[2015.01.31 11:38:55 | 002,855,424 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\187177229c00aec6dec613ea4b9ff209\System.Runtime.Serialization.ni.dll
[2015.01.31 11:38:55 | 000,000,996 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\187177229c00aec6dec613ea4b9ff209\System.Runtime.Serialization.ni.dll.aux
[2015.01.31 22:13:00 | 000,025,600 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\ad0261438ff8f46e093faa717226ebef\System.Xml.Serialization.ni.dll
[2015.01.31 22:13:00 | 000,000,284 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\ad0261438ff8f46e093faa717226ebef\System.Xml.Serialization.ni.dll.aux
[2015.01.31 22:18:14 | 000,366,080 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runt9064068c#\769e80c5193dedd5ef90a962c002d15a\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2015.01.31 22:18:14 | 000,000,440 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runt9064068c#\769e80c5193dedd5ef90a962c002d15a\System.Runtime.Serialization.Formatters.Soap.ni.dll.aux
[2015.02.04 21:41:41 | 003,597,312 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\cdca00d5c58d31de2503310a31ca096f\System.Runtime.Serialization.ni.dll
[2015.02.04 21:41:41 | 000,000,996 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\cdca00d5c58d31de2503310a31ca096f\System.Runtime.Serialization.ni.dll.aux
[2015.02.04 21:42:43 | 000,027,648 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.84e525b7#\85b2d15d965e64489744325c53d91db0\System.Xml.Serialization.ni.dll
[2015.02.04 21:42:43 | 000,000,284 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.84e525b7#\85b2d15d965e64489744325c53d91db0\System.Xml.Serialization.ni.dll.aux
[2014.10.16 22:13:43 | 002,822,144 | ---- | M] () -- \Windows\assembly\temp\HETWSVKQNM\System.Runtime.Serialization.ni.dll
[2014.10.16 22:13:43 | 000,001,308 | ---- | M] () -- \Windows\assembly\temp\HETWSVKQNM\System.Runtime.Serialization.ni.dll.aux
[2014.04.12 00:48:40 | 001,051,888 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\6414876250E69FF3395387C6C7F05BEB\4.5.51209\System.Runtime.Serialization.dll.amd64
[2014.04.12 00:48:40 | 001,051,888 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\6414876250E69FF3395387C6C7F05BEB\4.5.51209\System.Runtime.Serialization.dll.x86
[2014.04.12 00:48:40 | 001,051,888 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\6414876250E69FF3395387C6C7F05BEB\4.5.51209\System.Runtime.Serialization.dll_gac_x86
[2014.04.12 00:48:40 | 000,028,000 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.04.12 00:48:40 | 000,133,432 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2014.04.11 23:08:06 | 000,029,472 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Json\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Json.dll
[2014.04.11 23:08:06 | 000,029,512 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Primitives\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Primitives.dll
[2014.04.12 00:48:40 | 000,113,952 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2014.04.11 23:08:06 | 000,029,976 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Xml\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Xml.dll
[2014.07.23 00:17:44 | 001,050,840 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014.04.11 23:08:06 | 000,045,800 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2014.04.11 23:08:06 | 000,029,928 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.XmlSerializer\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Xml.XmlSerializer.dll
[2014.06.24 00:43:20 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.05 02:53:33 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.04 16:59:44 | 000,012,800 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\JA\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.04 17:00:06 | 000,012,288 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\ko\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.04 17:00:06 | 000,011,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\zh-CHS\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2014.07.10 23:24:11 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2014.07.23 00:17:44 | 001,050,840 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2014.04.12 00:48:40 | 000,133,432 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2014.04.11 23:08:06 | 000,029,472 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Json.dll
[2014.04.11 23:08:06 | 000,029,512 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2014.04.11 23:08:06 | 000,029,976 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2014.04.11 23:08:06 | 000,045,800 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2014.04.11 23:08:06 | 000,029,928 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.XmlSerializer.dll
[2014.04.12 00:48:40 | 000,028,000 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.04.12 00:48:40 | 000,113,952 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2014.06.24 00:43:09 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.05 02:54:38 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.04 16:59:32 | 000,012,800 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\JA\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.04 16:55:20 | 000,012,288 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\ko\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.04 16:55:02 | 000,011,264 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\zh-CHS\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2014.07.10 23:24:02 | 000,847,872 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2014.07.23 00:17:44 | 001,050,840 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.dll
[2014.04.12 00:48:40 | 000,133,432 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2014.04.11 23:08:06 | 000,029,472 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Json.dll
[2014.04.11 23:08:06 | 000,029,512 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2014.04.11 23:08:06 | 000,029,976 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2014.04.11 23:08:06 | 000,045,800 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.Serialization.dll
[2014.04.11 23:08:06 | 000,029,928 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.XmlSerializer.dll
[2014.04.11 23:40:46 | 000,028,000 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.04.11 23:40:46 | 000,113,952 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2009.07.14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2009.07.26 19:39:19 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009.07.14 01:00:40 | 000,094,208 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_amd64_neutral_fdcfb86ce78678d1\serial.sys
[2009.06.10 21:37:50 | 000,038,400 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_amd64_neutral_6fb75ea318f84fe5\grserial.sys
[2009.07.14 03:10:04 | 000,005,120 | ---- | M] () -- \Windows\System32\en-US\serialui.dll.mui
[2009.07.13 19:31:02 | 000,004,608 | ---- | M] () -- \Windows\System32\ja-JP\serialui.dll.mui
[2009.07.13 18:52:36 | 000,004,608 | ---- | M] () -- \Windows\System32\ko-KR\serialui.dll.mui
[2009.07.26 19:36:24 | 000,005,120 | ---- | M] () -- \Windows\System32\sk-SK\serialui.dll.mui
[2009.07.13 17:33:32 | 000,005,120 | ---- | M] () -- \Windows\System32\th-TH\serialui.dll.mui
[2009.07.13 17:59:32 | 000,004,608 | ---- | M] () -- \Windows\System32\zh-CN\serialui.dll.mui
[2009.07.14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\SysWOW64\serialui.dll
[2009.07.26 19:39:19 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\cs-CZ\serialui.dll.mui
[2009.07.14 03:10:04 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\en-US\serialui.dll.mui
[2009.07.13 19:31:02 | 000,004,608 | ---- | M] () -- \Windows\SysWOW64\ja-JP\serialui.dll.mui
[2009.07.13 18:52:36 | 000,004,608 | ---- | M] () -- \Windows\SysWOW64\ko-KR\serialui.dll.mui
[2009.07.26 19:36:24 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\sk-SK\serialui.dll.mui
[2009.07.13 17:33:32 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\th-TH\serialui.dll.mui
[2009.07.13 17:59:32 | 000,004,608 | ---- | M] () -- \Windows\SysWOW64\zh-CN\serialui.dll.mui
[2009.07.26 19:39:27 | 000,011,776 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_1c215c9ac50719c5\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2009.06.10 13:11:14 | 000,012,800 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_8e47f02d69477583\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2009.06.10 13:10:18 | 000,012,288 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_ko-kr_31b1cce25bb83c99\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2009.06.10 13:10:16 | 000,011,264 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_zh-cn_befe126493235035\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.05 02:54:38 | 000,011,776 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_1e527062c1f59d5f\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.04 16:59:32 | 000,012,800 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_ja-jp_907903f56635f91d\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.04 16:55:20 | 000,012,288 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_ko-kr_33e2e0aa58a6c033\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.04 16:55:02 | 000,011,264 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_zh-cn_c12f262c9011d3cf\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.05 02:54:38 | 000,011,776 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_cs-cz_1e468964c1feb99a\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.04 16:59:32 | 000,012,800 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_ja-jp_906d1cf7663f1558\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.04 16:55:20 | 000,012,288 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_ko-kr_33d6f9ac58afdc6e\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.04 16:55:02 | 000,011,264 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_zh-cn_c1233f2e901af00a\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.05 02:54:38 | 000,011,776 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.22731_cs-cz_1ec35795db263fce\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.04 16:59:32 | 000,012,800 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.22731_ja-jp_90e9eb287f669b8c\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.04 16:55:20 | 000,012,288 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.22731_ko-kr_3453c7dd71d762a2\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.04 16:55:02 | 000,011,264 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.22731_zh-cn_c1a00d5fa942763e\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2009.07.26 19:39:30 | 000,005,120 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23\serialui.dll.mui
[2009.07.14 03:26:50 | 000,005,120 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_edb61e94e4562781\serialui.dll.mui
[2009.07.13 18:19:42 | 000,004,608 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_1c8666cba19c26e1\serialui.dll.mui
[2009.07.13 19:07:46 | 000,004,608 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_ko-kr_bff04380940cedf7\serialui.dll.mui
[2009.07.26 19:36:23 | 000,005,120 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_sk-sk_d5f23af62a751552\serialui.dll.mui
[2009.07.13 17:59:32 | 000,005,120 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_th-th_77dc42711dc8eac4\serialui.dll.mui
[2009.07.13 19:07:48 | 000,004,608 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_zh-cn_4d3c8902cb780193\serialui.dll.mui
[2009.07.13 18:07:48 | 000,004,608 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7601.17514_zh-cn_4f6d9ccac866852d\serialui.dll.mui
[2009.07.14 02:41:54 | 000,017,920 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360\serialui.dll
[2009.07.26 19:39:39 | 000,090,112 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_b96904386c2fe002\System.RunTime.Serialization.Resources.dll
[2009.06.08 09:39:42 | 000,110,592 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_2b8f97cb10703bc0\System.RunTime.Serialization.Resources.dll
[2009.06.08 09:41:14 | 000,102,400 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_ko-kr_cef9748002e102d6\System.RunTime.Serialization.Resources.dll
[2009.06.08 09:41:14 | 000,086,016 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_zh-cn_5c45ba023a4c1672\System.RunTime.Serialization.Resources.dll
[2010.11.05 02:54:42 | 000,090,112 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_bb9a1800691e639c\System.RunTime.Serialization.Resources.dll
[2010.11.04 17:00:16 | 000,110,592 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_ja-jp_2dc0ab930d5ebf5a\System.RunTime.Serialization.Resources.dll
[2010.11.04 16:55:52 | 000,102,400 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_ko-kr_d12a8847ffcf8670\System.RunTime.Serialization.Resources.dll
[2010.11.04 16:55:38 | 000,086,016 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_zh-cn_5e76cdca373a9a0c\System.RunTime.Serialization.Resources.dll
[2010.11.05 02:54:42 | 000,090,112 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_cs-cz_bb8e310269277fd7\System.RunTime.Serialization.Resources.dll
[2010.11.04 17:00:16 | 000,110,592 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_ja-jp_2db4c4950d67db95\System.RunTime.Serialization.Resources.dll
[2010.11.04 16:55:52 | 000,102,400 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_ko-kr_d11ea149ffd8a2ab\System.RunTime.Serialization.Resources.dll
[2010.11.04 16:55:38 | 000,086,016 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_zh-cn_5e6ae6cc3743b647\System.RunTime.Serialization.Resources.dll
[2010.11.05 02:54:42 | 000,090,112 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.22733_cs-cz_bc0cffc7824d38b9\System.RunTime.Serialization.Resources.dll
[2010.11.04 17:00:16 | 000,110,592 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.22733_ja-jp_2e33935a268d9477\System.RunTime.Serialization.Resources.dll
[2010.11.04 16:55:52 | 000,102,400 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.22733_ko-kr_d19d700f18fe5b8d\System.RunTime.Serialization.Resources.dll
[2010.11.04 16:55:38 | 000,086,016 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.22733_zh-cn_5ee9b59150696f29\System.RunTime.Serialization.Resources.dll
[2009.07.26 19:39:32 | 000,009,728 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_20ab142d65ed6acc\serial.sys.mui
[2009.07.14 03:30:28 | 000,010,240 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_en-us_64015f894ce7c72a\serial.sys.mui
[2009.07.13 18:20:34 | 000,006,656 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_92d1a7c00a2dc68a\serial.sys.mui
[2009.07.13 19:09:06 | 000,006,656 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_ko-kr_363b8474fc9e8da0\serial.sys.mui
[2009.07.13 19:15:24 | 000,005,120 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_zh-cn_c387c9f73409a13c\serial.sys.mui
[2009.07.14 01:00:40 | 000,094,208 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_548ca258d20f4ada\serial.sys
[2009.06.10 21:40:06 | 000,131,072 | ---- | M] () -- \Windows\winsxs\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_a9d1bee515273f56\System.Runtime.Serialization.Formatters.Soap.dll
[2014.06.24 00:43:09 | 000,131,072 | ---- | M] () -- \Windows\winsxs\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7601.18523_none_a9a7e561157d82e9\System.Runtime.Serialization.Formatters.Soap.dll
[2014.06.24 00:43:05 | 000,131,072 | ---- | M] () -- \Windows\winsxs\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7601.22733_none_92db3ec72f23fc97\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.10 21:37:50 | 000,038,400 | ---- | M] () -- \Windows\winsxs\amd64_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_ce9ed3064deed3aa\grserial.sys
[2009.06.10 21:30:46 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.16385_none_5943b25a748cb06c\System.Runtime.Serialization.dll
[2010.11.05 02:52:16 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17514_none_5918bfde74e3f722\System.Runtime.Serialization.dll
[2012.10.05 11:52:38 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17966_none_591d933074dfaa5b\System.Runtime.Serialization.dll
[2014.03.09 22:48:51 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.18523_none_5919d8d674e2f3ff\System.Runtime.Serialization.dll
[2014.07.10 23:24:02 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.18532_none_591aefe874e1f3b5\System.Runtime.Serialization.dll
[2012.10.05 11:56:11 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.22126_none_424bee728e8a9f53\System.Runtime.Serialization.dll
[2014.03.17 15:38:51 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.22733_none_424d323c8e896dad\System.Runtime.Serialization.dll
[2014.07.08 00:36:29 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.22743_none_424e32868e888704\System.Runtime.Serialization.dll
[2009.06.10 21:30:43 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_941abf24c884ab05\System.Runtime.Serialization.dll
[2010.11.05 02:52:08 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_93efcca8c8dbf1bb\System.Runtime.Serialization.dll
[2012.10.05 11:52:37 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_93f49ffac8d7a4f4\System.Runtime.Serialization.dll
[2014.03.09 22:48:50 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18523_none_93f0e5a0c8daee98\System.Runtime.Serialization.dll
[2014.07.10 23:24:01 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18532_none_93f1fcb2c8d9ee4e\System.Runtime.Serialization.dll
[2012.10.05 11:56:11 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_7d22fb3ce28299ec\System.Runtime.Serialization.dll
[2014.03.17 15:38:51 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22733_none_7d243f06e2816846\System.Runtime.Serialization.dll
[2014.07.08 00:36:29 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22743_none_7d253f50e280819d\System.Runtime.Serialization.dll
[2012.08.22 14:44:55 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8.manifest
[2012.08.22 14:44:55 | 000,017,792 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8_kdcom.dll_db5e7744
[2009.07.26 19:40:31 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23_serialui.dll.mui_7d29d2a3
[2009.07.14 06:37:34 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_edb61e94e4562781_serialui.dll.mui_7d29d2a3
[2012.08.26 12:40:14 | 000,004,608 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_1c8666cba19c26e1_serialui.dll.mui_7d29d2a3
[2012.08.26 11:44:00 | 000,004,608 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_ko-kr_bff04380940cedf7_serialui.dll.mui_7d29d2a3
[2009.07.26 19:36:50 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_sk-sk_d5f23af62a751552_serialui.dll.mui_7d29d2a3
[2012.08.26 11:40:23 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_th-th_77dc42711dc8eac4_serialui.dll.mui_7d29d2a3
[2012.08.26 12:15:55 | 000,004,608 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7601.17514_zh-cn_4f6d9ccac866852d_serialui.dll.mui_7d29d2a3
[2009.07.14 03:57:29 | 000,017,920 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360_serialui.dll_bea29328
[2009.07.26 19:40:36 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2009.07.14 06:37:35 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_919783112bf8b64b_serialui.dll.mui_7d29d2a3
[2012.08.26 12:40:15 | 000,004,608 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_c067cb47e93eb5ab_serialui.dll.mui_7d29d2a3
[2012.08.26 11:44:01 | 000,004,608 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_ko-kr_63d1a7fcdbaf7cc1_serialui.dll.mui_7d29d2a3
[2009.07.26 19:36:48 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_sk-sk_79d39f727217a41c_serialui.dll.mui_7d29d2a3
[2012.08.26 11:40:23 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_th-th_1bbda6ed656b798e_serialui.dll.mui_7d29d2a3
[2012.08.26 12:15:56 | 000,004,608 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7601.17514_zh-cn_f34f0147100913f7_serialui.dll.mui_7d29d2a3
[2009.07.14 03:58:37 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2009.07.14 03:15:17 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc.manifest
[2011.02.05 14:10:43 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16757_none_6dccf6b5c641c933.manifest
[2011.02.05 14:05:47 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.20897_none_6e2b53d0df7fd8c1.manifest
[2011.02.05 18:35:45 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8.manifest
[2011.02.05 14:11:05 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.21655_none_703aeff2dc87a23b.manifest
[2009.07.14 03:11:30 | 000,000,868 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_88b1c48f2026fe3f.manifest
[2009.07.14 03:26:23 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7600.16385_none_5943b25a748cb06c.manifest
[2010.11.20 05:21:24 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17514_none_5918bfde74e3f722.manifest
[2012.10.05 19:18:30 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17966_none_591d933074dfaa5b.manifest
[2014.07.02 07:30:52 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.18523_none_5919d8d674e2f3ff.manifest
[2014.07.14 03:24:48 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.18532_none_591aefe874e1f3b5.manifest
[2012.10.05 19:10:31 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.22126_none_424bee728e8a9f53.manifest
[2014.07.02 07:30:44 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.22733_none_424d323c8e896dad.manifest
[2014.07.14 03:13:57 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.22743_none_424e32868e888704.manifest
[2009.07.14 03:27:09 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_941abf24c884ab05.manifest
[2010.11.20 05:22:10 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_93efcca8c8dbf1bb.manifest
[2012.10.05 19:19:07 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_93f49ffac8d7a4f4.manifest
[2014.07.02 07:31:00 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18523_none_93f0e5a0c8daee98.manifest
[2014.07.14 03:24:58 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18532_none_93f1fcb2c8d9ee4e.manifest
[2012.10.05 19:11:10 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_7d22fb3ce28299ec.manifest
[2014.07.02 07:30:53 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22733_none_7d243f06e2816846.manifest
[2014.07.14 03:14:06 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22743_none_7d253f50e280819d.manifest
[2009.07.14 02:52:33 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896.manifest
[2010.11.20 04:06:16 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c.manifest
[2012.10.05 18:15:39 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285.manifest
[2014.07.02 06:57:49 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.18523_none_a6803b1074d97c29.manifest
[2014.07.14 03:04:09 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.18532_none_a681522274d87bdf.manifest
[2012.10.05 18:17:50 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d.manifest
[2014.07.02 07:07:46 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22733_none_8fb394768e7ff5d7.manifest
[2014.07.14 03:04:27 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22743_none_8fb494c08e7f0f2e.manifest
[2009.07.26 19:38:37 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2009.07.14 03:42:40 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_en-us_8f71d563bf7aa3c2.manifest
[2009.07.13 18:30:08 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_ja-jp_729b5548551d8762.manifest
[2009.07.13 19:28:02 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_ko-kr_9ffe90567310ff7c.manifest
[2009.07.13 19:28:02 | 000,001,638 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_zh-cn_4965391e340519c0.manifest
[2010.11.20 05:45:14 | 000,001,638 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17514_zh-cn_493a46a2345c6076.manifest
[2012.10.05 21:12:17 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f.manifest
[2012.10.05 19:09:41 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_en-us_8f4bb639bfcd9db1.manifest
[2012.10.05 20:11:25 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_ja-jp_7275361e55708151.manifest
[2012.10.05 20:10:37 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_ko-kr_9fd8712c7363f96b.manifest
[2012.10.05 20:15:11 | 000,001,638 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_zh-cn_493f19f4345813af.manifest
[2014.07.02 08:46:46 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18523_cs-cz_342b81c984259c43.manifest
[2014.07.02 07:12:55 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18523_en-us_8f47fbdfbfd0e755.manifest
[2014.07.02 08:53:11 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18523_ja-jp_72717bc45573caf5.manifest
[2014.07.02 08:51:27 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18523_ko-kr_9fd4b6d27367430f.manifest
[2014.07.02 08:52:03 | 000,001,638 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18523_zh-cn_493b5f9a345b5d53.manifest
[2014.07.14 05:02:27 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18532_cs-cz_342c98db84249bf9.manifest
[2014.07.14 03:07:18 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18532_en-us_8f4912f1bfcfe70b.manifest
[2014.07.14 05:01:05 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18532_ja-jp_727292d65572caab.manifest
[2014.07.14 05:06:49 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18532_ko-kr_9fd5cde4736642c5.manifest
[2014.07.14 05:03:57 | 000,001,638 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18532_zh-cn_493c76ac345a5d09.manifest
[2012.10.05 20:59:28 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797.manifest
[2012.10.05 18:57:17 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_en-us_787a117bd97892a9.manifest
[2012.10.05 20:01:19 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_ja-jp_5ba391606f1b7649.manifest
[2012.10.05 20:03:36 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_ko-kr_8906cc6e8d0eee63.manifest
[2012.10.05 20:03:52 | 000,001,638 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_zh-cn_326d75364e0308a7.manifest
[2014.07.02 09:08:13 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22733_cs-cz_1d5edb2f9dcc15f1.manifest
[2014.07.02 07:12:12 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22733_en-us_787b5545d9776103.manifest
[2014.07.02 09:02:57 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22733_ja-jp_5ba4d52a6f1a44a3.manifest
[2014.07.02 09:17:13 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22733_ko-kr_890810388d0dbcbd.manifest
[2014.07.02 09:09:46 | 000,001,638 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22733_zh-cn_326eb9004e01d701.manifest
[2014.07.14 05:06:58 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22743_cs-cz_1d5fdb799dcb2f48.manifest
[2014.07.14 02:56:59 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22743_en-us_787c558fd9767a5a.manifest
[2014.07.14 05:13:29 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22743_ja-jp_5ba5d5746f195dfa.manifest
[2014.07.14 05:13:12 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22743_ko-kr_890910828d0cd614.manifest
[2014.07.14 05:05:37 | 000,001,638 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22743_zh-cn_326fb94a4e00f058.manifest
[2009.07.14 02:51:52 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9.manifest
[2010.11.20 04:05:38 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f.manifest
[2012.10.05 18:15:03 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8.manifest
[2014.07.02 07:00:03 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.18523_none_d6c370aa9c807d5c.manifest
[2014.07.14 03:06:40 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.18532_none_d6c487bc9c7f7d12.manifest
[2012.10.05 18:17:15 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0.manifest
[2014.07.02 07:10:04 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22733_none_bff6ca10b626f70a.manifest
[2014.07.14 03:06:53 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22743_none_bff7ca5ab6261061.manifest
[2009.07.14 02:57:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b.manifest
[2010.11.20 04:10:46 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1.manifest
[2012.10.05 18:19:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa.manifest
[2014.07.02 06:58:58 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18523_none_db9e1c77dd57179e.manifest
[2014.07.14 03:05:25 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18532_none_db9f3389dd561754.manifest
[2012.10.05 18:22:10 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2.manifest
[2014.07.02 07:08:55 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22733_none_c4d175ddf6fd914c.manifest
[2014.07.14 03:05:41 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22743_none_c4d27627f6fcaaa3.manifest
[2009.06.10 22:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2014.06.24 00:43:20 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7601.18523_none_1c70653de072abde\System.Runtime.Serialization.Formatters.Soap.dll
[2014.06.24 00:43:36 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7601.22733_none_05a3bea3fa19258c\System.Runtime.Serialization.Formatters.Soap.dll
[2009.07.26 19:39:28 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 13:11:14 | 000,012,800 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_ja-jp_14094f28ab029ff6\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2009.06.10 13:10:18 | 000,012,288 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_ko-kr_416c8a36c8f61810\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2009.06.10 13:10:16 | 000,011,264 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_zh-cn_ead332fe89ea3254\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2013.07.08 13:43:52 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7601.18523_cs-cz_d5997ba9da0ab4d7\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.07.08 13:50:07 | 000,012,800 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7601.18523_ja-jp_13df75a4ab58e389\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2013.07.08 13:42:16 | 000,012,288 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7601.18523_ko-kr_4142b0b2c94c5ba3\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2013.07.08 13:43:39 | 000,011,264 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7601.18523_zh-cn_eaa9597a8a4075e7\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2009.06.10 22:14:06 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7600.16385_none_a6aa149474833896\System.Runtime.Serialization.dll
[2010.11.05 02:52:39 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c\System.Runtime.Serialization.dll
[2012.10.05 11:53:24 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285\System.Runtime.Serialization.dll
[2014.03.09 22:47:42 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.18523_none_a6803b1074d97c29\System.Runtime.Serialization.dll
[2014.07.10 23:24:11 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.18532_none_a681522274d87bdf\System.Runtime.Serialization.dll
[2012.10.05 11:56:07 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d\System.Runtime.Serialization.dll
[2014.03.17 15:38:28 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22733_none_8fb394768e7ff5d7\System.Runtime.Serialization.dll
[2014.07.08 00:27:52 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22743_none_8fb494c08e7f0f2e\System.Runtime.Serialization.dll
[2009.07.26 19:39:39 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2009.06.08 09:39:42 | 000,110,592 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_ja-jp_729b5548551d8762\System.RunTime.Serialization.Resources.dll
[2009.06.08 09:41:14 | 000,102,400 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_ko-kr_9ffe90567310ff7c\System.RunTime.Serialization.Resources.dll
[2009.06.08 09:41:14 | 000,086,016 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_zh-cn_4965391e340519c0\System.RunTime.Serialization.Resources.dll
[2010.11.04 16:55:38 | 000,086,016 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17514_zh-cn_493a46a2345c6076\System.RunTime.Serialization.Resources.dll
[2010.11.13 03:02:06 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f\System.RunTime.Serialization.Resources.dll
[2010.11.13 00:18:29 | 000,110,592 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_ja-jp_7275361e55708151\System.RunTime.Serialization.Resources.dll
[2010.11.13 01:32:40 | 000,102,400 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_ko-kr_9fd8712c7363f96b\System.RunTime.Serialization.Resources.dll
[2010.11.04 16:55:38 | 000,086,016 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_zh-cn_493f19f4345813af\System.RunTime.Serialization.Resources.dll
[2010.11.13 03:37:37 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18523_cs-cz_342b81c984259c43\System.RunTime.Serialization.Resources.dll
[2010.11.13 01:00:28 | 000,110,592 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18523_ja-jp_72717bc45573caf5\System.RunTime.Serialization.Resources.dll
[2010.11.13 02:06:02 | 000,102,400 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18523_ko-kr_9fd4b6d27367430f\System.RunTime.Serialization.Resources.dll
[2010.11.04 16:55:38 | 000,086,016 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18523_zh-cn_493b5f9a345b5d53\System.RunTime.Serialization.Resources.dll
[2010.11.13 03:37:37 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18532_cs-cz_342c98db84249bf9\System.RunTime.Serialization.Resources.dll
[2010.11.13 01:00:28 | 000,110,592 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18532_ja-jp_727292d65572caab\System.RunTime.Serialization.Resources.dll
[2010.11.13 02:06:02 | 000,102,400 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18532_ko-kr_9fd5cde4736642c5\System.RunTime.Serialization.Resources.dll
[2010.11.04 16:55:38 | 000,086,016 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18532_zh-cn_493c76ac345a5d09\System.RunTime.Serialization.Resources.dll
[2010.11.13 03:37:37 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797\System.RunTime.Serialization.Resources.dll
[2010.11.13 01:00:28 | 000,110,592 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_ja-jp_5ba391606f1b7649\System.RunTime.Serialization.Resources.dll
[2010.11.13 02:06:02 | 000,102,400 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_ko-kr_8906cc6e8d0eee63\System.RunTime.Serialization.Resources.dll
[2010.11.04 16:55:38 | 000,086,016 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_zh-cn_326d75364e0308a7\System.RunTime.Serialization.Resources.dll
[2010.11.13 03:37:37 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22733_cs-cz_1d5edb2f9dcc15f1\System.RunTime.Serialization.Resources.dll
[2010.11.13 01:00:28 | 000,110,592 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22733_ja-jp_5ba4d52a6f1a44a3\System.RunTime.Serialization.Resources.dll
[2010.11.13 02:06:02 | 000,102,400 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22733_ko-kr_890810388d0dbcbd\System.RunTime.Serialization.Resources.dll
[2010.11.04 16:55:38 | 000,086,016 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22733_zh-cn_326eb9004e01d701\System.RunTime.Serialization.Resources.dll
[2010.11.13 03:37:37 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22743_cs-cz_1d5fdb799dcb2f48\System.RunTime.Serialization.Resources.dll
[2010.11.13 01:00:28 | 000,110,592 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22743_ja-jp_5ba5d5746f195dfa\System.RunTime.Serialization.Resources.dll
[2010.11.13 02:06:02 | 000,102,400 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22743_ko-kr_890910828d0cd614\System.RunTime.Serialization.Resources.dll
[2010.11.04 16:55:38 | 000,086,016 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22743_zh-cn_326fb94a4e00f058\System.RunTime.Serialization.Resources.dll
[2009.06.10 22:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7600.16385_none_d6ed4a2e9c2a39c9\System.Runtime.Serialization.dll
[2010.11.05 02:52:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f\System.Runtime.Serialization.dll
[2012.10.05 11:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8\System.Runtime.Serialization.dll
[2014.03.09 22:47:42 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.18523_none_d6c370aa9c807d5c\System.Runtime.Serialization.dll
[2014.07.10 23:24:10 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.18532_none_d6c487bc9c7f7d12\System.Runtime.Serialization.dll
[2012.10.05 11:56:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0\System.Runtime.Serialization.dll
[2014.03.17 15:38:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22733_none_bff6ca10b626f70a\System.Runtime.Serialization.dll
[2014.07.08 00:27:52 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22743_none_bff7ca5ab6261061\System.Runtime.Serialization.dll
[2009.07.26 19:39:30 | 000,011,776 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_267606ecf967dbc0\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.06.10 13:14:58 | 000,012,800 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_989c9a7f9da8377e\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2009.06.10 13:14:12 | 000,012,288 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_ko-kr_3c0677349018fe94\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2009.06.10 13:14:12 | 000,011,264 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_zh-cn_c952bcb6c7841230\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.05 02:53:33 | 000,011,776 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_28a71ab4f6565f5a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.04 16:59:44 | 000,012,800 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_ja-jp_9acdae479a96bb18\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.04 17:00:06 | 000,012,288 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_ko-kr_3e378afc8d07822e\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.04 17:00:06 | 000,011,264 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_zh-cn_cb83d07ec47295ca\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.05 02:53:33 | 000,011,776 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_cs-cz_289b33b6f65f7b95\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.04 16:59:44 | 000,012,800 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_ja-jp_9ac1c7499a9fd753\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.04 17:00:06 | 000,012,288 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_ko-kr_3e2ba3fe8d109e69\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.04 17:00:06 | 000,011,264 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_zh-cn_cb77e980c47bb205\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.05 02:53:33 | 000,011,776 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.22731_cs-cz_291801e80f8701c9\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.04 16:59:44 | 000,012,800 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.22731_ja-jp_9b3e957ab3c75d87\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.04 17:00:06 | 000,012,288 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.22731_ko-kr_3ea8722fa638249d\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.04 17:00:06 | 000,011,264 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.22731_zh-cn_cbf4b7b1dda33839\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2009.07.26 19:39:19 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2009.07.14 03:10:04 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_919783112bf8b64b\serialui.dll.mui
[2009.07.13 19:31:02 | 000,004,608 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_c067cb47e93eb5ab\serialui.dll.mui
[2009.07.13 18:52:36 | 000,004,608 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_ko-kr_63d1a7fcdbaf7cc1\serialui.dll.mui
[2009.07.26 19:36:24 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_sk-sk_79d39f727217a41c\serialui.dll.mui
[2009.07.13 17:33:32 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_th-th_1bbda6ed656b798e\serialui.dll.mui
[2009.07.13 18:59:32 | 000,004,608 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_zh-cn_f11ded7f131a905d\serialui.dll.mui
[2009.07.13 17:59:32 | 000,004,608 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7601.17514_zh-cn_f34f0147100913f7\serialui.dll.mui
[2009.07.14 02:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2009.07.26 19:39:39 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_5d4a68b4b3d26ecc\System.RunTime.Serialization.Resources.dll
[2009.06.08 09:48:36 | 000,110,592 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_ja-jp_cf70fc475812ca8a\System.RunTime.Serialization.Resources.dll
[2009.06.08 09:36:52 | 000,102,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_ko-kr_72dad8fc4a8391a0\System.RunTime.Serialization.Resources.dll
[2009.06.08 09:37:06 | 000,086,016 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7600.16385_zh-cn_00271e7e81eea53c\System.RunTime.Serialization.Resources.dll
[2010.11.05 02:53:39 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_5f7b7c7cb0c0f266\System.RunTime.Serialization.Resources.dll
[2010.11.04 17:00:20 | 000,110,592 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_ja-jp_d1a2100f55014e24\System.RunTime.Serialization.Resources.dll
[2010.11.04 17:00:10 | 000,102,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_ko-kr_750becc44772153a\System.RunTime.Serialization.Resources.dll
[2010.11.04 17:00:10 | 000,086,016 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_zh-cn_025832467edd28d6\System.RunTime.Serialization.Resources.dll
[2010.11.05 02:53:39 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_cs-cz_5f6f957eb0ca0ea1\System.RunTime.Serialization.Resources.dll
[2010.11.04 17:00:20 | 000,110,592 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_ja-jp_d1962911550a6a5f\System.RunTime.Serialization.Resources.dll
[2010.11.04 17:00:10 | 000,102,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_ko-kr_750005c6477b3175\System.RunTime.Serialization.Resources.dll
[2010.11.04 17:00:10 | 000,086,016 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_zh-cn_024c4b487ee64511\System.RunTime.Serialization.Resources.dll
[2010.11.05 02:53:39 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.22733_cs-cz_5fee6443c9efc783\System.RunTime.Serialization.Resources.dll
[2010.11.04 17:00:20 | 000,110,592 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.22733_ja-jp_d214f7d66e302341\System.RunTime.Serialization.Resources.dll
[2010.11.04 17:00:10 | 000,102,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.22733_ko-kr_757ed48b60a0ea57\System.RunTime.Serialization.Resources.dll
[2010.11.04 17:00:10 | 000,086,016 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.22733_zh-cn_02cb1a0d980bfdf3\System.RunTime.Serialization.Resources.dll
[2009.06.10 22:13:54 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7600.16385_none_dbc7f5fbdd00d40b\System.Runtime.Serialization.dll
[2010.11.05 02:52:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1\System.Runtime.Serialization.dll
[2012.10.05 11:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa\System.Runtime.Serialization.dll
[2014.03.09 22:47:42 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18523_none_db9e1c77dd57179e\System.Runtime.Serialization.dll
[2014.07.10 23:24:10 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18532_none_db9f3389dd561754\System.Runtime.Serialization.dll
[2012.10.05 11:56:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2\System.Runtime.Serialization.dll
[2014.03.17 15:38:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22733_none_c4d175ddf6fd914c\System.Runtime.Serialization.dll
[2014.07.08 00:27:52 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22743_none_c4d27627f6fcaaa3\System.Runtime.Serialization.dll
 
[color=#A23BEC]< *w7lxe* /s >[/color]
 
[color=#E56717]========== Files - Unicode (All) ==========[/color]
(C:\ProgramData\Microsoft\Windows\Start Menu\Programs\??????) -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\アリスソフト

< End of report >

Re: Zamrzávající prohlížeč, zpomalené PC

Napsal: 05 úno 2015 20:40
od blackspectre
Extras.txt

Kód: Vybrat vše

OTL Extras logfile created on: 5.2.2015 19:06:33 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\Michal\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17501)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
 
7.96 Gb Total Physical Memory | 4.82 Gb Available Physical Memory | 60.59% Memory free
15.92 Gb Paging File | 13.09 Gb Available in Paging File | 82.25% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 119.14 Gb Total Space | 27.50 Gb Free Space | 23.09% Space Free | Partition Type: NTFS
Drive E: | 931.51 Gb Total Space | 88.94 Gb Free Space | 9.55% Space Free | Partition Type: NTFS
Drive F: | 2794.39 Gb Total Space | 2004.95 Gb Free Space | 71.75% Space Free | Partition Type: NTFS
Drive H: | 15.05 Gb Total Space | 14.50 Gb Free Space | 96.39% Space Free | Partition Type: FAT32
 
Computer Name: MICHAL-PC | User Name: Michal | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== File Associations ==========[/color]
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
 
[HKEY_USERS\S-1-5-21-1165194453-1350465406-1964235809-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
[color=#E56717]========== Shell Spawning ==========[/color]
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
 
[color=#E56717]========== Security Center Settings ==========[/color]
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01  [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
[color=#E56717]========== Firewall Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[color=#E56717]========== Authorized Applications List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
 
 
[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{022FD222-4D5B-4523-8A83-FE73CE91D6E0}" = rport=137 | protocol=17 | dir=out | app=system | 
"{06BC3848-0429-42CA-98A2-5457EA9EBE37}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{081C0B79-0470-4A5D-A5F5-44892E00706F}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe | 
"{16B71C1D-AAB6-4170-B129-5C4CE138248E}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{1932E0F5-DA1A-4B0A-AE74-7B28DF271D3E}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{1B0DEA74-A556-4E2F-9D0F-8E3F8A8E1B8B}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{256B3E80-C99E-47D9-8F86-7E696E46F14D}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{26433FFA-AA0A-4532-A13D-8E23A4560DB5}" = rport=139 | protocol=6 | dir=out | app=system | 
"{28620BC7-B0BB-42C2-A776-8CF2F8DCE8ED}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{2D6DBD81-01BF-474A-82AB-87DB0DB9E4F6}" = rport=138 | protocol=17 | dir=out | app=system | 
"{2FF8F6DA-6454-4A91-A9EC-E4677A55A03A}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{31264E5F-6DAB-4723-9F4B-5B16E0FD704D}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{375AB0D3-1723-4B26-8620-417557124F10}" = lport=138 | protocol=17 | dir=in | app=system | 
"{401053DE-CE7E-444F-952D-17422466F264}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{4300BFF1-EE94-4C71-A5CD-2E2518F26B68}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{45064863-6447-4075-820E-FFF119D6FC9D}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{4B9DF917-D24C-4052-B9F9-2486E626CB59}" = lport=2869 | protocol=6 | dir=in | app=system | 
"{4D17BA73-28F5-4B23-9A86-20810A3C49E8}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{4F509E5B-04CD-46AA-A51A-31E448B88021}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{539BB1E3-5B3F-46A0-90FA-8FBE32C0B054}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{5C93B734-0A75-416D-8F53-CC6B85A1EAEE}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe | 
"{606A206D-3409-4366-9BCF-187885A89E33}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{67472C4F-D852-4E87-BCCC-AD47C5EAD198}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{680A2462-0C1E-4597-AE8F-76AE236F0979}" = lport=139 | protocol=6 | dir=in | app=system | 
"{68869851-9103-4EEA-B4D8-D17DD3FD2411}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{6CBCED3C-B06E-4AA1-83A8-A257B21BFE45}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{77FD3A17-4AD1-46D7-8724-6B5DB54D33EE}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{7D9DA8FF-1D61-4FA8-A221-B4B64FCAD3FD}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{7DE6C16E-F4D2-467B-8BBD-99847B313B1A}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{7FCAD04F-271A-44BB-85C7-7D2D8B45778E}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{804D70F4-F689-4656-8159-E320C0B9E78B}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{8974537D-5E2A-4D0C-97B2-D259E1A43060}" = lport=47984 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{8BF17AAD-245C-4BDB-AE73-08697A32ADF6}" = lport=137 | protocol=17 | dir=in | app=system | 
"{8C531B4F-1CDA-4A38-9DA6-58A451EA2469}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe | 
"{8C87CBAA-CAFC-4400-AA73-F11A6592F933}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{8CF3BAE8-8BB4-4E59-95B9-72BC0EB6EA35}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{9CA40F6E-DB33-4D39-B439-AB7787A13191}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | 
"{A5252177-B0FA-41BB-B5C5-4BBC53E113A1}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{A6963ABF-6CB5-48BD-A8C3-EF76368E2C51}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | 
"{AF213992-EEE5-415C-ACDF-D67D1BA0E845}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe | 
"{BA711BB0-2C0A-4042-8A4E-DA8B0018482D}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe | 
"{BC8843C7-CA8B-40CD-B1AF-B5DEECCCD4A4}" = lport=445 | protocol=6 | dir=in | app=system | 
"{BCB6979F-DEEC-4774-B8F1-A8996C43427F}" = lport=10243 | protocol=6 | dir=in | app=system | 
"{BFB1B30D-2E06-46B2-81B3-8D6766494960}" = rport=445 | protocol=6 | dir=out | app=system | 
"{C1DF5FBF-12CA-4672-A7D1-CCC4A47ED52A}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{CC9BA6A2-4D97-47DF-B1B2-6D394B55E804}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{D044F2A4-539D-49B1-B4F7-DC7C9CEABABD}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{DCE77E46-32A3-4FFD-A131-F02F9052FFE1}" = rport=10243 | protocol=6 | dir=out | app=system | 
"{E87A136A-60E9-4B08-93F9-6FE6221802CB}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{E9780241-3620-43BD-9EF5-9A07437ACBBE}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{EDACCCF9-ACAC-40EE-87E2-B39370D26524}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | 
"{FA6AE09B-D608-4C01-9A45-E95E4DEF624F}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe | 
"{FB4A6B95-1D0A-4ED6-8949-BC0975352120}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | 
"{FE856F59-F9F0-4AA9-B66E-FF72E716FA4A}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe | 
 
[color=#E56717]========== Vista Active Application Exception List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{000F6B63-37F5-4901-BC15-66EB0706A782}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\reachforthesun\reachforthesun.exe | 
"{001FCBF0-7256-4006-9F5D-7CFE24673C2D}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3478\agent.exe | 
"{00FDA6F6-BCBC-492B-AD17-E46F0EC89032}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\age of empires 3\bin\age3x.exe | 
"{02F9363A-1BCB-4D4F-B0B7-14F09983D1C2}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3235\agent.exe | 
"{0303169E-375E-43E6-BDEC-A9E821380806}" = protocol=17 | dir=in | app=e:\hry\farcry 3\bin\fc3editor.exe | 
"{0423CCAC-F533-46F4-9D6C-A38F27AF5536}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2880\agent.exe | 
"{06DB8615-1BDB-47D7-9CDD-AF7786993318}" = protocol=17 | dir=in | app=e:\hry\the witcher 2\bin\witcher2.exe | 
"{082E3A16-BE19-4FC3-A9D1-BFC21D0259DC}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_current_settings.bat | 
"{086AC4F2-F353-456B-A5BA-BD9584E2BBC9}" = protocol=6 | dir=in | app=e:\hry\battle.net\battle.net.exe | 
"{08A62C8E-F814-4F21-A30D-170026FF1315}" = protocol=17 | dir=in | app=c:\program files (x86)\pandora.tv\panservice\pandoraservice.exe | 
"{09B98EBA-9A5C-4C34-B286-6138B5973013}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\bioshock infinite\binaries\win32\bioshockinfinite.exe | 
"{0A604B18-F19D-42B5-BFF1-7E3722289C60}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\total war rome ii\launcher\launcher.exe | 
"{0A95F4EE-8F1A-4085-BFDA-1997CCAEA8C6}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\fallout new vegas enplczru\falloutnvlauncher.exe | 
"{0C2D37CB-F532-4796-82E4-687AB030FB91}" = dir=in | app=c:\program files (x86)\garena plus\ggdllhost.exe | 
"{0D6126A2-6F77-4F44-B863-659351CD914F}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\planetary annihilation\pa.exe | 
"{0E7AA781-9E5A-4DDE-94D4-F7287B3458E3}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\kerbal space program\ksp.exe | 
"{0E9D5BA4-F233-47B4-9517-4ACDEE319BD2}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\expeditions conquistador\expeditions conquistador.exe | 
"{0EAA074A-EECE-4552-8BD1-3B980CF4DE6B}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\dungeon of the endless\dungeonoftheendless.exe | 
"{0F78649D-A931-45E4-A5D0-820835D6D85F}" = protocol=6 | dir=in | app=e:\hry\mass effect trilogy\mass effect 2\binaries\masseffect2.exe | 
"{0FEC3FCE-7EC8-4E9B-9DBC-7F7E85FBA2E1}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\puzzle quest\puzzle quest.exe | 
"{10BFF7FB-96B9-4079-A054-59668E66F4BA}" = protocol=6 | dir=in | app=c:\program files (x86)\pandora.tv\panservice\panprocess.exe | 
"{1186591B-121A-46F0-A9C1-568DF57ED4A5}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1363\agent.exe | 
"{11DB9FDD-2983-46BC-85D0-D5D8E924F1F1}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1225\agent.exe | 
"{11E01496-67E0-421F-8D9F-94CB7E32E81A}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\dungeon of the endless\dungeonoftheendless.exe | 
"{13358A23-BBFF-489E-8835-F5523E66B3B6}" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe | 
"{13CF798C-CB1B-4E58-B477-5C2A2B3BBBC5}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\data\encyclopedia\how_to_play.html | 
"{146AFE01-AF31-4FE1-8378-7AD669AD9EB7}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\skyrim\skyrimlauncher.exe | 
"{14DE9604-314C-4721-B4F6-16F5A05436CB}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3526\agent.exe | 
"{14E1B4FE-B529-493B-9935-A46A797C909F}" = protocol=17 | dir=in | app=e:\hry\farcry 3\bin\fc3updater.exe | 
"{14EAF262-B848-44C7-8873-BE01FD0A5C1C}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1675\agent.exe | 
"{152C24E6-DC1A-4762-81C5-78425E11DEFE}" = protocol=17 | dir=in | app=e:\hry\steam\bin\steamwebhelper.exe | 
"{15A0919F-E929-4C24-A96E-DDEF90F54E9A}" = protocol=17 | dir=in | app=e:\hry\far cry 3 blood dragon\bin\fc3_blooddragon_d3d11.exe | 
"{18C9B590-BC41-40E7-B1E1-E84D4D85543E}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\monster loves you!\monsterlovesyou.exe | 
"{1D892B56-9C51-4986-8A99-30B5EB4DCB7C}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\puzzle quest\puzzle quest.exe | 
"{1E50B058-5B8E-4215-B638-F749C36EB70E}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3427\agent.exe | 
"{1EBD277C-763B-46BA-9E84-6837B7F1F45F}" = protocol=17 | dir=in | app=e:\hry\battle.net\battle.net.exe | 
"{228DC62F-7F06-4170-BF39-AFD22372B1D8}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\dragon age ultimate edition\bin_ship\daupdatersvc.service.exe | 
"{2310C073-7D68-48B0-AAA0-27117A60CB02}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\monster loves you!\monsterlovesyou.exe | 
"{235EA271-B1DD-45CF-A95E-4B8763F8CD40}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | 
"{23AF85C2-D525-4249-8FC8-5646CF2533F8}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3346\agent.exe | 
"{23BDB1CD-E551-4EC7-BBB5-6C28E7433AE0}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\dragon age ultimate edition\bin_ship\daupdatersvc.service.exe | 
"{254D2B7A-FAC9-4F63-BA14-2A67B39F9508}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\command and conquer 3 - kane's wrath\support\ea help\electronic_arts_technical_support.htm | 
"{26714F4C-050B-4D88-82D9-61C32EB2926B}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\alpha protocol\aplauncher.exe | 
"{26876526-5D66-4FBA-B246-968BA87CFAE2}" = dir=in | app=c:\windows\syswow64\rundll32.exe | 
"{26ADE218-DF73-49DF-8333-741DAF9CD799}" = protocol=17 | dir=in | app=e:\hry\the sims 4\game\bin\ts4.exe | 
"{27479BE9-8A86-472F-8315-A93114A71386}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat | 
"{28B0043B-F54F-42D9-B215-49A6FA693D1E}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_current_settings.bat | 
"{292B038F-D147-4E65-A687-88455B79C331}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\state of decay\stateofdecay.exe | 
"{29325B86-B46C-40F8-88D4-AA4FFCD399A3}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2816\agent.exe | 
"{29816CCA-38B3-4993-BBD8-36A364FED88A}" = protocol=17 | dir=in | app=c:\hry\star wars-the old republic\swtor\retailclient\swtor.exe | 
"{2B72242B-0986-4BD9-B347-4CA902A0FF92}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3109\agent.exe | 
"{2BD4EA45-7FAF-478A-AF14-2107EB0FF414}" = protocol=17 | dir=in | app=c:\hry\star wars-the old republic\launcher.exe | 
"{2E30C3D1-ED8A-4A2F-B9AC-C6B18AB583CA}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3023\agent.exe | 
"{2EF47632-25AC-480E-9BFA-1BFD60AEF572}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3715\agent.exe | 
"{2F20958A-44BF-4A49-8389-716DE43129F1}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1637\agent.exe | 
"{304CAE52-F58A-434C-9D21-A9E997E816E8}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2717\agent.exe | 
"{30544F19-8881-46AE-AF69-8559F43F6EA7}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3323\agent.exe | 
"{30C448BC-6009-4C32-89B0-54F0938EBF33}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{30FC3235-A593-447F-8A7E-597F3247298A}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\bioshock infinite\binaries\win32\benchmark.bat | 
"{3128763A-7DD5-4779-A0AF-B91070333290}" = protocol=17 | dir=in | app=e:\hry\diablo iii\diablo iii.exe | 
"{31709659-8878-4623-9B6F-254A8C3B86DF}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\ironclad tactics\game.exe | 
"{3322D15B-9A0C-4123-A60E-DBD6AC3AE2D7}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3454\agent.exe | 
"{33737D58-C9FF-431C-B46D-FA3FDB5F4177}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2717\agent.exe | 
"{3380A999-6594-4C66-8294-67A2BA60019E}" = protocol=6 | dir=in | app=e:\hry\assassin's creed iv black flag\ac4bfmp.exe | 
"{33A7C1A0-299A-4407-9EC0-D4112A907D33}" = protocol=6 | dir=in | app=c:\program files (x86)\pandora.tv\panservice\pandoraservice.exe | 
"{33DAFBDC-7F46-4816-A993-D4712FC05803}" = protocol=6 | dir=in | app=c:\hry\star wars-the old republic\swtor\retailclient\swtor.exe | 
"{341EAFBE-E5D7-467B-B40A-CEB6BFED26F8}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\ironclad tactics\game.exe | 
"{34D1DFEC-386D-4035-8C77-D71AAA56BFCE}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\xcom-enemy-unknown\binaries\win32\xcomgame.exe | 
"{353984A4-AE9B-4905-B02B-DF06D307EF57}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe | 
"{36C1884B-7E03-4A3F-9F1F-3F696D60DD47}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\company of heroes 2\reliccoh2.exe | 
"{37E86EB5-2DCD-4409-8133-5459D22DC618}" = protocol=6 | dir=in | app=e:\hry\age of wonders iii\aow3.exe | 
"{3AA55055-E862-42D3-9126-9C1F24334E25}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\darkside\kbdarkside.exe | 
"{3B884058-ED1A-4F20-9434-D2211764EBB2}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2816\agent.exe | 
"{3B92FA3E-F606-4955-8B1E-1D8A689B5D64}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2787\agent.exe | 
"{3CB83854-90E7-43B0-8A8C-7EBE95327BE5}" = protocol=6 | dir=in | app=e:\hry\age of wonders iii\aow3.exe | 
"{3E3FB804-8468-4618-9F92-321C84A91DD0}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat | 
"{3E865C47-8C36-47AB-8AE2-B29F25EC9878}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2753\agent.exe | 
"{3E8F8A5E-2483-4542-96DB-4C5B970CCB83}" = protocol=6 | dir=in | app=e:\hry\diablo iii\diablo iii.exe | 
"{3EE682AB-83CC-43E3-86CF-2B46C06DBAAD}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3372\agent.exe | 
"{3F68ED46-D8F4-4B5B-86D4-BEEF0109233F}" = protocol=17 | dir=in | app=e:\hry\starcraft ii\starcraft ii.exe | 
"{3FB31A0B-311D-4FDA-8605-D815B4C043BA}" = protocol=6 | dir=in | app=c:\hry\star wars-the old republic\launcher.exe | 
"{40F8E41F-280A-45E7-AE6B-189DC40C90FA}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\reachforthesun\reachforthesun.exe | 
"{429965BF-CBCF-47FC-9E6E-835EE2173D70}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\data\encyclopedia\how_to_play.html | 
"{42D0E0D4-7CA0-4A04-BF14-564EAB81F470}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\longlivethequeen\longlivethequeen.exe | 
"{4332EFAC-594F-4794-AD0E-30C4DCF7680B}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | 
"{4390E73C-FA22-42ED-AE33-ECA25C6F09B1}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\xcom-enemy-unknown\binaries\win32\xcomgame.exe | 
"{43E6AFA7-4E17-4D03-B44A-6EBB4F009988}" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe | 
"{4418A2D1-F11C-4D22-806A-D9366A378E01}" = protocol=17 | dir=in | app=e:\hry\far cry 3 blood dragon\bin\fc3_blooddragon.exe | 
"{444A0535-4226-4663-932A-8556D4015D26}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\endless space\endlessspace.exe | 
"{44B95D98-4C00-4128-A646-39D2E1059524}" = protocol=17 | dir=in | app=e:\hry\assassin's creed iv black flag\ac4bfmp.exe | 
"{464002B9-1DCE-434F-BAA6-27AEA2A7DCB0}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3346\agent.exe | 
"{467EC524-E801-4176-93D1-13A0A5F1635C}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3182\agent.exe | 
"{46E68B90-7806-419D-A7B3-4BE2BFE20D48}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\magical diary\magicaldiary.exe | 
"{47D1828A-D6A4-4E22-81F0-F5653B941E9D}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\ironclad tactics\game.exe | 
"{49F08D19-295E-44E4-911F-63251654209E}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\planetary annihilation\bin_x64\pa.exe | 
"{4BE7DD24-9A13-4DF0-A04D-2256401A597F}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3235\agent.exe | 
"{4C7F17D3-1D07-4C59-837D-21119CAE2F2E}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\l.a.noire\lanlauncher.exe | 
"{4E52261A-CEA1-4D84-A7F1-9E02BCAD2DCE}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3147\agent.exe | 
"{4EE97DF6-9EEC-4F8D-B459-4D0E950086AE}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3372\agent.exe | 
"{5145AE2C-042C-4411-AFF8-6968831DB360}" = dir=in | app=e:\hry\stardrive\stardrive.exe | 
"{51598F09-D6EF-47B9-8B9B-45D27FE8C098}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat | 
"{5228C764-ACEC-4165-A002-90D7D3D08912}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\dungeon of the endless\dungeonoftheendless.exe | 
"{532BA20F-2947-4289-ADD7-E395469EF48C}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\ace combat assault horizon\ace combat_ah.exe | 
"{533178DC-DD4A-4F2C-8B04-6F71EC516FFF}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3334\agent.exe | 
"{53521E7C-9205-40AF-91A4-8257B23E1557}" = protocol=17 | dir=in | app=c:\program files (x86)\pandora.tv\panservice\panprocess.exe | 
"{5440B429-3DDC-4C89-A934-6574434B14B6}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\papersplease\papersplease.exe | 
"{546F7252-953D-4845-8DCF-54FBE768452C}" = protocol=17 | dir=in | app=c:\program files (x86)\pandora.tv\panservice\panprocess.exe | 
"{54D98F19-4CD8-4A34-AF6F-13E9DB698B0D}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3634\agent.exe | 
"{564AD2B2-39FB-485B-B21D-5BFCC5E3D303}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3688\agent.exe | 
"{567F0CD2-8D0F-421D-AA8C-85F436BFA478}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\reus\reus.exe | 
"{572EC875-A4A3-4647-A51F-4D3F2D676FB5}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3427\agent.exe | 
"{5955F16E-02B3-41BF-8E58-E6BAE199C994}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3634\agent.exe | 
"{595DD27F-A6EC-4D05-B9A7-2FED0DA94094}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\broken age\brokenage.exe | 
"{5A2132F1-F438-4D35-AC04-4C1B7124D097}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | 
"{5AA788CE-5B2E-485B-8E2A-48692A20244B}" = protocol=17 | dir=in | app=c:\hry\star wars-the old republic\launcher.exe | 
"{5C2EBB14-D8D0-4FC7-9C78-9BB79ACD32A4}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | 
"{5E1E260A-A901-4A15-986F-62595CCC0B29}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat | 
"{5E21F22B-EBDB-4F77-93B5-9D7513D395CA}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat | 
"{5E9C9CAE-A345-454E-A934-E043C6A098D0}" = protocol=6 | dir=in | app=e:\hry\age of wonders iii\aow3launcher.exe | 
"{60D7E7F5-5CA1-474C-BE00-8B4A484E23F5}" = protocol=6 | dir=in | app=e:\hry\age of wonders iii\aow3_debug.exe | 
"{61AE8F16-3251-4C85-B7B9-842FBBBCED29}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\endless legend\endlesslegend.exe | 
"{62235CB3-CEAF-4410-BD7F-C709B94AF354}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\the pit\thepit.exe | 
"{627FD2BE-45FD-49A0-AF3B-5E7A788BAD12}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\bioshock infinite\binaries\win32\bioshockinfinite.exe | 
"{64288E6D-7A85-4A23-B72D-764908E44C69}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\data\encyclopedia\how_to_play.html | 
"{651DAC13-CFAA-403E-A407-EDEFBE0B44AA}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat | 
"{65846B46-443D-4C03-B825-CDDAC6946D54}" = protocol=6 | dir=in | app=e:\hry\cryptic studios\star trek online\live\gameclient.exe | 
"{669AEB80-BA23-46E9-AB88-968C27535801}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\king's bounty - warriors of the north\kbwotn.exe | 
"{672C0569-C12A-4AB8-9CC1-0B9764E2478F}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\launcher\launcher.exe | 
"{676A8FAC-8C6A-40CB-B27B-345C81BAEEE3}" = protocol=6 | dir=in | app=e:\hry\farcry 3\bin\fc3updater.exe | 
"{67D6ED57-37E5-4BC5-890F-1441CD2CC597}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2638\agent.exe | 
"{680292F4-7594-42A4-8168-E445E59BF170}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\age of empires 3\bin\age3y.exe | 
"{68DB9716-4B31-4800-BD54-D7726E3B0BC6}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3323\agent.exe | 
"{6B14B64D-752A-458B-B086-CA0AEB36ED59}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | 
"{6B3F2621-847E-4089-90FA-24392DDE3728}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\the wolf among us\thewolfamongus.exe | 
"{6C3A81AB-024D-46F2-B9D8-7EE63964D5DC}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe | 
"{6D03A3A1-EA03-4D3A-995A-B531EF6C5C42}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\war thunder\launcher.exe | 
"{6DB55AD1-DC33-490D-A73F-CB260468F838}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\wargame european escalation\wargame.exe | 
"{6E479C9B-07D6-44AE-A180-629457628F06}" = protocol=6 | dir=in | app=e:\hry\far cry 3 blood dragon\bin\fc3bdupdater.exe | 
"{6EB2EAE3-CBF7-4EE3-93B8-D9D30E830F33}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\ironclad tactics\game.exe | 
"{6F8B376C-0E82-4B40-9052-5A5F7E46120E}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\omerta\omertasteam.exe | 
"{7023910C-1ADD-4D8C-B32B-DF3E66E28C1B}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3182\agent.exe | 
"{716FF3E7-F482-4B6E-AE8A-C2861A3A4AAE}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2680\agent.exe | 
"{71871A96-7D85-4A50-8460-316F263F6B21}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\age of empires 3\bin\age3y.exe | 
"{71ADA128-9B52-4ADC-B17E-56CD36C2203E}" = protocol=6 | dir=in | app=e:\hry\farcry 3\bin\farcry3.exe | 
"{730C0455-3589-4B94-8C09-512D2475B939}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3632\agent.exe | 
"{744582B1-6EED-4102-AF8A-633BF0ABFCA5}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.954\agent.exe | 
"{74511D0D-778C-4E07-BDAA-218D956B96E2}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{75DA53FF-6F52-4614-960F-813893007807}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3668\agent.exe | 
"{7643A55A-75D6-4AEE-BE1F-ECE21383683F}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3147\agent.exe | 
"{7792E01D-664C-4655-88D6-4F4559954D25}" = protocol=17 | dir=in | app=e:\hry\cryptic studios\star trek online\live\gameclient.exe | 
"{7797B12D-6A09-44BA-9322-6D4834C1C7BF}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2880\agent.exe | 
"{78A53F3F-DFB1-407A-8A68-CEBAEF68227B}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\papersplease\papersplease.exe | 
"{78AC198C-6BED-4B3D-AD28-58C912E60895}" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe | 
"{78BB75CB-13D0-4C33-971A-7985F1FE7C44}" = dir=out | app=e:\hry\borderlands 2\binaries\win32\borderlands2.exe | 
"{795CE022-FD5A-4119-BAF8-BC01FD251475}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\age of empires 3\bin\age3.exe | 
"{7B03ECFF-A08C-4431-A84F-B76E75D0AEE1}" = protocol=6 | dir=in | app=e:\hry\mass effect trilogy\bejeweled 3\bejeweled3.exe | 
"{7B7C898F-0FE3-4280-B8F9-CB25D48F1A2C}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1267\agent.exe | 
"{7C2B7234-A502-4E69-B70A-3A2EE3C95C1A}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\planetary annihilation\bin_x64\pa.exe | 
"{7DB1D5B4-EE36-4971-8D4A-46D2ECE35A32}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | 
"{7DB5B363-A3CC-4396-B7DA-D0417194BB64}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\warface\live\nw.exe | 
"{7DF65D05-A45B-4273-ABE8-C4C295413EAE}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\planetary annihilation\pa.exe | 
"{7E62D917-8238-46FA-A8B9-6B0641AE1033}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2753\agent.exe | 
"{7F25EF2F-B845-4F1C-9BB6-E784B19ABC85}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1737\agent.exe | 
"{7FA7F9CB-1331-4045-BE9F-2EC4980D8FE6}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat | 
"{825C8DD5-A044-47D4-9FC1-63E7B5C3DBEF}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\company of heroes 2\reliccoh2.exe | 
"{83E27F3D-BB32-4278-87C7-80A8577F9B13}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3689\agent.exe | 
"{83FFD869-45D2-4989-AB34-DF6A7A722B1B}" = protocol=6 | dir=in | app=c:\hry\star wars-the old republic\swtor\retailclient\swtor.exe | 
"{846E1979-A057-4469-B15F-423A1A8880C3}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_current_settings.bat | 
"{851E6A7F-8F5D-4F3A-BD0D-8921C3838EC1}" = dir=in | app=e:\hry\borderlands 2\binaries\win32\borderlands2.exe | 
"{85E1158D-90AA-4AE7-B773-13D0A7F5DA77}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3669\agent.exe | 
"{86D29B70-A9D7-4023-A64F-2A7C502C722F}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | 
"{879599A7-99D9-45D6-90E6-9564AB0012DE}" = protocol=17 | dir=in | app=e:\hry\hearthstone\hearthstone.exe | 
"{87D3E9B8-9BF4-4DDE-BF1C-55E1BDE8213E}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{881F48F2-3AD8-4C6F-BBA7-1A1C56A81472}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\command and conquer 3 tiberium wars\support\ea help\electronic_arts_technical_support.htm | 
"{88738B76-61E4-46C2-9152-81E52F501262}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\the last federation\lastfederation.exe | 
"{88B1CFBA-2210-4E04-8452-27CFE588464B}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\total war rome ii\launcher\launcher.exe | 
"{89CCB1D6-C1F8-412C-A211-4323494CDF43}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\dragon age ultimate edition\daoriginslauncher.exe | 
"{8A361F1B-8D4B-40F3-974A-C75298667FB6}" = protocol=6 | dir=in | app=c:\program files (x86)\pandora.tv\panservice\panprocess.exe | 
"{8B22869E-5F61-4B8F-917A-0A4A7BEDD89D}" = protocol=17 | dir=in | app=e:\hry\assassin's creed iv black flag\ac4bfsp.exe | 
"{8C82F171-C3C4-4B6A-94C2-24660CA3F047}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\ironclad tactics\game.exe | 
"{8D52BE5A-3A95-47C2-AB3C-EABD9858539B}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\magical diary\magicaldiary.exe | 
"{8E2C9565-B7D6-4EDF-9DAF-00282D90B416}" = protocol=17 | dir=in | app=e:\hry\mass effect trilogy\bejeweled 3\bejeweled3.exe | 
"{8ECBBA7B-1728-455F-AEED-4913D6025F12}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3286\agent.exe | 
"{8EEE67E3-FBD5-48AA-B04C-54358C0A09DA}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3454\agent.exe | 
"{8F6171A4-2147-42F2-BA99-A78A94A4812E}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3507\agent.exe | 
"{8F9F2AE1-05AB-46C1-A481-EFADC1DCE745}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\the last federation\lastfederation.exe | 
"{920C9576-26D2-4969-916B-35851E0B89BB}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe | 
"{921B59DF-E30E-42AA-8037-09D350E2D8BC}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat | 
"{9273C8BF-4644-42E2-A905-B0C2D1DF664D}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\dragon age ultimate edition\daoriginslauncher.exe | 
"{943A3E9A-CEDF-4C11-9A2A-0B0D90D4B207}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3526\agent.exe | 
"{946DE562-5EED-4205-979E-E3201D12D6C4}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\sequence\sequence.exe | 
"{9568D859-E40D-4E10-BCFB-AE4A9FE02581}" = protocol=6 | dir=in | app=e:\hry\mass effect trilogy\mass effect 3\binaries\win32\masseffect3.exe | 
"{95A00F6F-4761-414A-B3BC-5221953972E5}" = protocol=6 | dir=in | app=e:\hry\steam\bin\steamwebhelper.exe | 
"{95D3D0CD-1B7B-4269-8D35-7964D4304D92}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\reus\reus.exe | 
"{9653B411-A51D-4F2F-9DB6-CB50271C44A3}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\l.a.noire\lanlauncher.exe | 
"{96F2E5DC-BCC4-4597-84A5-0CEC07977C29}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | 
"{9715315B-5CF7-4CCC-AE8F-723B941B36FC}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{97E0FD64-C6E7-4458-94FB-27BDA368A6F3}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{9A0061A5-AF35-45AF-996B-A6689BBF30D1}" = protocol=17 | dir=in | app=e:\hry\mass effect trilogy\mass effect 3\binaries\win32\masseffect3.exe | 
"{9C7919F8-5B1B-494A-98AA-2C70DAE5F3B0}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\bioshock infinite\binaries\win32\benchmark.bat | 
"{9E3B1F40-0655-4996-AA4B-9DFF4D073E14}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.954\agent.exe | 
"{9EB931BC-7F1E-4AF6-ADFB-499C89D2EB95}" = protocol=17 | dir=in | app=e:\hry\farcry 3\bin\farcry3_d3d11.exe | 
"{9EFC3688-C3B8-4758-8198-5D8D3953EDAD}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\bastion\bastion.exe | 
"{9F907359-08B1-4881-B665-07552B46888B}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1637\agent.exe | 
"{A200FD57-CC39-4776-AFF4-0DECCF64A016}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{A2C80829-8BED-4553-8E90-D1CDD3EA3BFB}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\omerta\omertasteam.exe | 
"{A3D301F2-8A90-496E-99DF-AE2F126690DF}" = protocol=6 | dir=in | app=e:\hry\the witcher 2\bin\witcher2.exe | 
"{A4537777-119E-4D3D-9C96-5BBF2E6D9BB6}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe | 
"{A4CE6EA8-133A-440B-AF10-2D79A3C9C54A}" = protocol=6 | dir=in | app=e:\hry\age of wonders iii\aow3launcher.exe | 
"{A500F8EF-063F-4326-9E16-491CC3265B40}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3286\agent.exe | 
"{A5C0E0DC-7925-4307-937F-B59004B651BA}" = dir=out | app=e:\hry\stardrive\stardrive.exe | 
"{A6277975-AA4D-48A7-A54B-BF47126A7298}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\age of empires 3\bin\age3x.exe | 
"{A6628C11-F35B-4C08-B382-280B75C2063F}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\endless space\endlessspace.exe | 
"{A84CF92C-9B34-43C0-AE0F-E7B8E11D98FF}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | 
"{A8A2BBF2-C6CB-4476-9C33-A3D88F4D1C4D}" = protocol=6 | dir=in | app=c:\program files (x86)\pandora.tv\panservice\pandoraservice.exe | 
"{A8BAF5EF-2013-470E-976B-171C5788AD33}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\left 4 dead 2\left4dead2.exe | 
"{A96259C3-2021-4924-BB8D-4A2F1D5F868A}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_current_settings.bat | 
"{A97B79B8-18C2-4176-8C67-7FC6241C68C7}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\endless legend\endlesslegend.exe | 
"{A9DD9222-3F77-40E1-AFA2-9C582FC0D6ED}" = dir=in | app=e:\hry\electronic arts\the sims 3\game\bin\ts3w.exe | 
"{AC3098D9-9F03-42E0-A22D-02492E940124}" = protocol=6 | dir=in | app=e:\hry\far cry 3 blood dragon\bin\fc3_blooddragon_d3d11.exe | 
"{ADB6BC2E-7A86-4415-8898-FF2541496F2F}" = protocol=6 | dir=in | app=c:\hry\star wars-the old republic\launcher.exe | 
"{AE473DE4-1690-441F-8F93-BB30CCD8D0AC}" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe | 
"{B057EBDA-11E3-4BC7-865B-D32DBAD186B5}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat | 
"{B0A48734-79E3-4AE7-9771-0CDB21C2D8DD}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\divinity dragon commander\shipping\dcapp.exe | 
"{B1F46C63-1AB2-4FDE-A632-3DB1FF21F92B}" = dir=out | app=e:\hry\electronic arts\the sims 3\game\bin\ts3w.exe | 
"{B35F9239-4E17-480B-965E-28C231C1518D}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2880\agent.exe | 
"{B36BF74E-E137-4C61-A242-9356F8BF7964}" = protocol=6 | dir=in | app=e:\hry\the sims 4\game\bin\ts4.exe | 
"{B45D7A4F-B838-49A4-876E-DED7C4DCC7CB}" = protocol=17 | dir=in | app=e:\hry\mass effect trilogy\mass effect 2\binaries\masseffect2.exe | 
"{B4644136-9465-462C-A825-0C310641EEDE}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat | 
"{B465ABC5-B381-4918-B689-55ACDD40BB1D}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\alpha protocol\aplauncher.exe | 
"{B4AD57F3-0DBE-4D83-903B-830EAD3CF44F}" = protocol=6 | dir=in | app=e:\hry\assassin's creed iv black flag\ac4bfsp.exe | 
"{B8BCD079-B5C1-46E6-878D-9BE73FD3CBD8}" = protocol=6 | dir=out | app=system | 
"{B947B134-82C0-4F65-A040-008DE52EB60A}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\broken age\brokenage.exe | 
"{B9CE966B-1123-4C4E-8483-ED33B6BE20E8}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2880\agent.exe | 
"{BAD0B1AA-0CD6-47B4-A55E-3F97F774EDD5}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1737\agent.exe | 
"{BBACBB61-1DFB-4FBE-BC1B-B8236149E9F2}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{BC38F598-B7D1-426E-8AD1-72E6F09D778F}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\data\encyclopedia\how_to_play.html | 
"{BCB7BF1E-AC74-49FF-AFF5-3DD100AC38C3}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3688\agent.exe | 
"{BCC8939A-9F35-4DE7-AE2C-BA1098DD539B}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\dungeon of the endless\dungeonoftheendless.exe | 
"{BD618589-2CEF-4C17-A9A1-35791F6107E8}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\dungeon of the endless\dungeonoftheendless.exe | 
"{BDC61FE8-AB09-47FC-9F1C-0496AB60C757}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat | 
"{BDE1B3C3-0E10-4893-9AE5-1EFC09E5D1DE}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\left 4 dead 2\left4dead2.exe | 
"{BEC2B5ED-1400-49A3-8BF7-FA49E8C8BBA8}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\warface\live\nw.exe | 
"{BF397463-75CA-4E9B-BD20-CF5C0152A91D}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\dungeon of the endless\dungeonoftheendless.exe | 
"{BFBE1D74-5F90-416F-9725-2215BA23D836}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat | 
"{C00B51C4-6FB8-4F07-ADA0-6172908BAC46}" = protocol=17 | dir=in | app=c:\hry\star wars-the old republic\swtor\retailclient\swtor.exe | 
"{C01957C4-38E8-4689-9C05-AC01338D8D02}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3669\agent.exe | 
"{C05F6702-9BA6-4DEF-A751-244DD395A189}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\ironclad tactics\game.exe | 
"{C118792A-7996-4170-BEAC-2634FB3E0657}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat | 
"{C121F435-407F-41AE-9E04-919FB81BA44B}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\command and conquer 3 tiberium wars\support\ea help\electronic_arts_technical_support.htm | 
"{C1B1D67C-FB7D-472D-930E-69AF29DF4265}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1267\agent.exe | 
"{C1B9FC18-432D-42DD-A3D0-319D4B8EB39F}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\war thunder\launcher.exe | 
"{C3758BE6-AE7E-4325-9199-9E298D56CF39}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{C48E783E-A690-4777-9431-64A61821230F}" = protocol=17 | dir=in | app=e:\hry\farcry 3\bin\farcry3.exe | 
"{C5187315-8B35-4E93-86A4-23C02B6BC728}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\kingdom rush\kingdom rush.exe | 
"{C5A257C6-7735-4899-82B5-EE28C5D5B242}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3507\agent.exe | 
"{C6E64037-AC7D-487A-AF28-DF323EA42AF6}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3109\agent.exe | 
"{C7CBCAAB-D322-48B4-9DF8-359547CE9720}" = dir=in | app=c:\program files (x86)\garena plus\room\garena_room.exe | 
"{C80C0073-84CF-4226-8183-BBEF69FBE777}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\sid meier's civilization v\launcher.exe | 
"{C919542C-44F5-43AB-9F1E-15E7A1A611FE}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\kerbal space program\launcher.exe | 
"{C9E7C043-322D-44CA-9CCC-FFB7673C6EC9}" = protocol=17 | dir=in | app=e:\hry\far cry 3 blood dragon\bin\fc3bdupdater.exe | 
"{CA0FD974-DFB0-4FB7-A367-BD29E6AAE12D}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\ironclad tactics\game.exe | 
"{CD524086-D3BC-4DBA-8E08-4D4FC2ECD37A}" = protocol=6 | dir=in | app=e:\hry\age of wonders iii\aow3_debug.exe | 
"{CD928553-D3B8-4C6F-B89C-4E8B586F856F}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1225\agent.exe | 
"{CDCF0E4A-FB25-4D32-9214-0069B8C843EC}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2638\agent.exe | 
"{D121ADB7-070F-41EE-A7AE-4A5A8529AB52}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3478\agent.exe | 
"{D1AAC3BF-77AE-4719-8AA4-594152D464E9}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\ironclad tactics\game.exe | 
"{D21719C9-2FDE-44EF-8F2C-A1DF1A118B07}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\ace combat assault horizon\ace combat_ah.exe | 
"{D3BB0882-DF2C-48C5-A887-7242FBFBC57F}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\the pit\thepit.exe | 
"{D40490B4-25E4-487E-BD85-7EE56E0C410B}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1675\agent.exe | 
"{D5B38D2E-2A1A-42BC-A473-98ECEF502D84}" = protocol=17 | dir=in | app=e:\hry\starcraft ii\starcraft ii public test.exe | 
"{D5FE158E-CEBD-4E94-AD36-E51F24DDF16D}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | 
"{D651716A-0FFF-4B68-B9A6-9CBF3B33D71C}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\kingdom rush\kingdom rush.exe | 
"{D748DA00-2F88-4CD0-AB1F-40D30677633F}" = protocol=6 | dir=in | app=e:\hry\starcraft ii\starcraft ii.exe | 
"{D7B3606A-3692-4D33-8EF3-2082BAFABD0C}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\bastion\bastion.exe | 
"{D8B92B85-6B38-4E8E-A8CA-41B58BB8D26B}" = protocol=17 | dir=in | app=c:\program files (x86)\pandora.tv\panservice\pandoraservice.exe | 
"{D9523C9F-2E38-4BED-A446-D508F3DC5816}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2680\agent.exe | 
"{D9B38A99-1F1C-4343-92CF-715F9CE4AF9C}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\fallout new vegas enplczru\falloutnvlauncher.exe | 
"{DA94AEBD-F03B-4D94-B3FC-E4814D93CAB2}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\king's bounty - warriors of the north\kbwotn.exe | 
"{DB5AE9D9-FA62-467D-842B-3415C4C37A95}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\state of decay\stateofdecay.exe | 
"{DC473D7F-EDDC-4EC1-B857-0F73BE3A8C98}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\sequence\sequence.exe | 
"{DCEA3928-F2CD-48CC-AAEC-424E62604F66}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\longlivethequeen\longlivethequeen.exe | 
"{DD7BB513-AE9E-4C6D-9A8A-42CC1E47B823}" = protocol=6 | dir=in | app=e:\hry\farcry 3\bin\farcry3_d3d11.exe | 
"{DDF5934F-B567-465F-9F84-920BC7FC1256}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat | 
"{DE8EE459-1176-4141-B7E3-61B8C9943142}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\super amazing wagon adventure\wagonadventure.exe | 
"{DFC680C7-7E08-437B-A829-4B9C7721121F}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | 
"{E1ED0FA5-7D09-452A-90CD-AEFF7A3B34C7}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3632\agent.exe | 
"{E49D95A5-353E-4EA1-AD89-F01B70C9ED71}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\shadowrun returns\shadowrun.exe | 
"{E4FCDAB6-2C2A-466D-9577-89F661163C12}" = protocol=6 | dir=in | app=e:\hry\hearthstone\hearthstone.exe | 
"{E589D6D4-4EF3-4870-8F5B-6993ED263BE3}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3023\agent.exe | 
"{E5E33BB3-6B59-4880-BB22-7D45D0F37FDB}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat | 
"{E7D9E848-F777-43BD-B262-A48353B7DF65}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe | 
"{E9169935-CED9-493E-B7F8-4888760103D7}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | 
"{E9284AF0-F8DC-4717-A9B7-9C6FFE24A32F}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | 
"{EAFAF19C-81B2-4668-AF1C-FAE0784CA198}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\age of empires 3\bin\age3.exe | 
"{EC08B501-F933-445A-A015-4C5D01B55757}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\tbs\win32\the banner saga.exe | 
"{EE59251A-E98A-42C1-85D1-B45A422B2C38}" = protocol=6 | dir=in | app=e:\hry\farcry 3\bin\fc3editor.exe | 
"{EF7C7E2E-1973-4968-9B74-08B2D5F4F0A9}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | 
"{EFB738D0-DA29-4779-AD71-62A2EE5DBD86}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3715\agent.exe | 
"{F0E2046C-0D16-4212-A454-6AB7A7600F4D}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\wargame european escalation\wargame.exe | 
"{F21E01B2-23C8-46D4-8535-B7CB5863DB92}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\launcher\launcher.exe | 
"{F2F54C11-E786-4E1B-A961-0C3B1AF50FC2}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\the wolf among us\thewolfamongus.exe | 
"{F39334C1-4488-4BC2-B6D3-368E2EFE7688}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\tbs\win32\the banner saga.exe | 
"{F421848E-496C-4696-BE5C-6D309FDA9270}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\sid meier's civilization v\launcher.exe | 
"{F50B05E2-685D-43AF-9952-E21D905114C2}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\kerbal space program\launcher.exe | 
"{F602389D-7F08-4DCD-992A-A08B9884CB45}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3689\agent.exe | 
"{F803F126-F58C-47D2-9F59-26F2524F4E7E}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\divinity dragon commander\shipping\dcapp.exe | 
"{F8268BAF-56D7-41C7-A6E4-CDB80C9066EE}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\expeditions conquistador\expeditions conquistador.exe | 
"{F93E7472-0126-4A17-A34F-871D42D0850F}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\total war shogun 2\benchmarks\benchmark_specify_properties.bat | 
"{FA243583-DA1B-4A08-9EC1-B781A04ACFCA}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\kerbal space program\ksp.exe | 
"{FA2C032D-5FE7-456D-8057-3323FB5D9541}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3668\agent.exe | 
"{FAA9F4F1-4E80-4F1C-AF08-9328ADCC6B29}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\skyrim\skyrimlauncher.exe | 
"{FAC4B363-B165-4B01-9B8B-5BB2F6942990}" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\darkside\kbdarkside.exe | 
"{FB5E7B5C-7711-4DA9-866F-E08A0245758F}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1363\agent.exe | 
"{FB743809-4D0A-4EF9-B0DF-BEDC0A49D33A}" = protocol=6 | dir=in | app=e:\hry\far cry 3 blood dragon\bin\fc3_blooddragon.exe | 
"{FC87E8CE-5DE7-4851-9D48-576BC54AC17C}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3334\agent.exe | 
"{FCF59149-2284-4025-ACAE-FB1284E0BDC0}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\super amazing wagon adventure\wagonadventure.exe | 
"{FDC25517-7241-4FED-8A6C-64ADC01AF3DF}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\shadowrun returns\shadowrun.exe | 
"{FE14D1F9-A99F-4E04-9BEE-C3606D587411}" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\command and conquer 3 - kane's wrath\support\ea help\electronic_arts_technical_support.htm | 
"{FE7E7881-2CE7-449A-AD33-B2D42A7EB206}" = protocol=6 | dir=in | app=e:\hry\starcraft ii\starcraft ii public test.exe | 
"{FF258875-3FC9-470B-BCC4-D64DE1E10650}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2787\agent.exe | 
"TCP Query User{080984B3-D036-4F15-8596-5EDD243B837C}E:\hry\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=e:\hry\world_of_tanks\wotlauncher.exe | 
"TCP Query User{13544AA4-5397-4F44-901A-B715A78294C7}E:\hry\a game of dwarves\a game of dwarves.exe" = protocol=6 | dir=in | app=e:\hry\a game of dwarves\a game of dwarves.exe | 
"TCP Query User{1B429BC0-42A8-419E-B378-90A55C848928}E:\hry\steam\steam.exe" = protocol=6 | dir=in | app=e:\hry\steam\steam.exe | 
"TCP Query User{278E72EE-DAC0-404E-A55A-F622737FD8FD}E:\hry\steam\steamapps\common\consortium\consortium.exe" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\consortium\consortium.exe | 
"TCP Query User{32DEC842-AF3C-41B5-950B-1777E74D35A5}E:\hry\ghost recon online\pdc-live\ghostrecononline.exe" = protocol=6 | dir=in | app=e:\hry\ghost recon online\pdc-live\ghostrecononline.exe | 
"TCP Query User{341507A7-06D9-4C19-A201-A77FDE11B6E3}E:\hry\steam\steamapps\common\age of empires online\spartan.exe" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\age of empires online\spartan.exe | 
"TCP Query User{3B2C0F8F-3507-4599-B949-38386A9AE123}E:\hry\mass effect trilogy\mass effect 2\binaries\me2game.exe" = protocol=6 | dir=in | app=e:\hry\mass effect trilogy\mass effect 2\binaries\me2game.exe | 
"TCP Query User{467436B6-E09F-405A-9377-048DEB6D0B09}C:\users\michal\appdata\local\apps\2.0\n7wdkqvg.2gd\3negd9vc.471\laun...app_59711684aa47878d_0001.001e_0f529f5f0ebfb750\launcher.exe" = protocol=6 | dir=in | app=c:\users\michal\appdata\local\apps\2.0\n7wdkqvg.2gd\3negd9vc.471\laun...app_59711684aa47878d_0001.001e_0f529f5f0ebfb750\launcher.exe | 
"TCP Query User{53019F54-616D-4BD8-B8CF-470AC82328F2}E:\hry\steam\steam.exe" = protocol=6 | dir=in | app=e:\hry\steam\steam.exe | 
"TCP Query User{66EE68E4-D158-40DE-95F1-DDADC11D85FA}E:\hry\starcraft ii\versions\base28667\sc2.exe" = protocol=6 | dir=in | app=e:\hry\starcraft ii\versions\base28667\sc2.exe | 
"TCP Query User{67FB6707-BE98-4E3C-8B9E-15DF2C52548D}E:\hry\steam\steamapps\common\giana sisters twisted dreams\gsgameexe.exe" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\giana sisters twisted dreams\gsgameexe.exe | 
"TCP Query User{6DA1E4AF-2EA2-4A16-982D-8AA308EDB09E}E:\hry\starcraft ii\versions\base24944\sc2.exe" = protocol=6 | dir=in | app=e:\hry\starcraft ii\versions\base24944\sc2.exe | 
"TCP Query User{72A0BB51-21BB-4B41-B32D-87E41086DDEA}E:\hry\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=e:\hry\world_of_tanks\worldoftanks.exe | 
"TCP Query User{773F6CC1-0D00-4AD2-AD36-5C0959E5EADF}C:\program files\java\jre7\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\java.exe | 
"TCP Query User{77852487-A8A3-43D8-8112-6E6CD21C3925}C:\program files (x86)\winamp\winamp.exe" = protocol=6 | dir=in | app=c:\program files (x86)\winamp\winamp.exe | 
"TCP Query User{8D1D1DFB-94CA-440D-92C1-18F85814304B}E:\hry\starcraft ii\versions\base23260\sc2.exe" = protocol=6 | dir=in | app=e:\hry\starcraft ii\versions\base23260\sc2.exe | 
"TCP Query User{901E0DD1-59F4-4B43-8471-0E1266032AD0}E:\hry\steam\steamapps\common\total war rome ii\rome2.exe" = protocol=6 | dir=in | app=e:\hry\steam\steamapps\common\total war rome ii\rome2.exe | 
"TCP Query User{9068A260-4B74-4E88-AFA0-96BF32AF774B}C:\program files (x86)\mirc\mirc.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mirc\mirc.exe | 
"TCP Query User{92DB7A63-7E85-4D9A-9C21-1A3FBCA011A6}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe | 
"TCP Query User{9ABEAD16-F315-4534-B3EC-2F12E4BC6719}E:\hry\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe" = protocol=6 | dir=in | app=e:\hry\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe | 
"TCP Query User{A6D3C0F0-FAD6-47DA-8BD8-08BD77DE5251}E:\hry\starcraft ii\versions\base22612\sc2.exe" = protocol=6 | dir=in | app=e:\hry\starcraft ii\versions\base22612\sc2.exe | 
"TCP Query User{AD059C6C-1442-407D-90AA-102A1B0083EA}E:\hry\starcitizen\citizenclient\bin64\starcitizen.exe" = protocol=6 | dir=in | app=e:\hry\starcitizen\citizenclient\bin64\starcitizen.exe | 
"TCP Query User{B53CFCC4-A8C3-40A0-8168-57A5D31AA250}E:\hry\call of duty black ops ii\t6sp.exe" = protocol=6 | dir=in | app=e:\hry\call of duty black ops ii\t6sp.exe | 
"TCP Query User{BDE4A00C-FD5D-4012-8DCE-E47EA9254455}C:\users\michal\appdata\local\apps\2.0\n7wdkqvg.2gd\3negd9vc.471\laun...app_59711684aa47878d_0001.0022_b730792b8eef7c50\launcher.exe" = protocol=6 | dir=in | app=c:\users\michal\appdata\local\apps\2.0\n7wdkqvg.2gd\3negd9vc.471\laun...app_59711684aa47878d_0001.0022_b730792b8eef7c50\launcher.exe | 
"TCP Query User{C019BCEA-76BD-4136-89EA-98A70F176A32}E:\hry\warcraft iii\war3.exe" = protocol=6 | dir=in | app=e:\hry\warcraft iii\war3.exe | 
"TCP Query User{C4674227-11CA-4C99-A7D8-071E6A1FF3E6}C:\windows\system32\javaw.exe" = protocol=6 | dir=in | app=c:\windows\system32\javaw.exe | 
"TCP Query User{CA1FEFBA-4589-4901-83FD-1AE8E6094980}E:\hry\xcom enemy unknown\binaries\win32\xcomgame.exe" = protocol=6 | dir=in | app=e:\hry\xcom enemy unknown\binaries\win32\xcomgame.exe | 
"TCP Query User{CB7044B2-6FFE-465C-BB3B-77E801246EFD}E:\hry\borderlands 2\binaries\win32\borderlands2.exe" = protocol=6 | dir=in | app=e:\hry\borderlands 2\binaries\win32\borderlands2.exe | 
"TCP Query User{D6B10F95-B0CE-4F4C-91AF-E3F8B5649142}C:\program files (x86)\garena plus\room\garena_room.exe" = protocol=6 | dir=in | app=c:\program files (x86)\garena plus\room\garena_room.exe | 
"TCP Query User{F57F68D7-FCFF-4665-8FC0-D08D2E2927C7}C:\program files (x86)\electronic arts\eadm\core.exe" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\eadm\core.exe | 
"UDP Query User{0364969F-DB2B-429A-AA9D-CDF2B42CC4D7}C:\program files (x86)\electronic arts\eadm\core.exe" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\eadm\core.exe | 
"UDP Query User{0B4BC4D1-6C33-4524-BDC0-EF17234588A3}E:\hry\steam\steamapps\common\consortium\consortium.exe" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\consortium\consortium.exe | 
"UDP Query User{0FD45EA9-CE4D-4F63-87DD-8709CBBD1FED}E:\hry\steam\steam.exe" = protocol=17 | dir=in | app=e:\hry\steam\steam.exe | 
"UDP Query User{10AF6CC0-EE96-4CC0-8A93-6461D6A84749}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe | 
"UDP Query User{12E8CF36-C84E-4E6F-AECB-82144D302635}E:\hry\ghost recon online\pdc-live\ghostrecononline.exe" = protocol=17 | dir=in | app=e:\hry\ghost recon online\pdc-live\ghostrecononline.exe | 
"UDP Query User{1AFF0AE2-2CE2-4310-B14F-E9970F345C24}C:\users\michal\appdata\local\apps\2.0\n7wdkqvg.2gd\3negd9vc.471\laun...app_59711684aa47878d_0001.0022_b730792b8eef7c50\launcher.exe" = protocol=17 | dir=in | app=c:\users\michal\appdata\local\apps\2.0\n7wdkqvg.2gd\3negd9vc.471\laun...app_59711684aa47878d_0001.0022_b730792b8eef7c50\launcher.exe | 
"UDP Query User{327CC9E9-3BB4-4931-B1AD-A21D2A700BDB}E:\hry\starcraft ii\versions\base23260\sc2.exe" = protocol=17 | dir=in | app=e:\hry\starcraft ii\versions\base23260\sc2.exe | 
"UDP Query User{3A158D5D-FC0E-43F4-AB04-051DD5E64914}E:\hry\xcom enemy unknown\binaries\win32\xcomgame.exe" = protocol=17 | dir=in | app=e:\hry\xcom enemy unknown\binaries\win32\xcomgame.exe | 
"UDP Query User{542A1F66-1E9F-4A83-8C60-EE05FF063EBA}E:\hry\a game of dwarves\a game of dwarves.exe" = protocol=17 | dir=in | app=e:\hry\a game of dwarves\a game of dwarves.exe | 
"UDP Query User{55482E68-BE63-4DB9-9B84-1EC7BFF5480E}E:\hry\starcraft ii\versions\base28667\sc2.exe" = protocol=17 | dir=in | app=e:\hry\starcraft ii\versions\base28667\sc2.exe | 
"UDP Query User{72ECCF97-E8CC-4068-BED7-E4B0A3EAD894}C:\windows\system32\javaw.exe" = protocol=17 | dir=in | app=c:\windows\system32\javaw.exe | 
"UDP Query User{7379D422-51E8-4B76-8BB8-1810552DF6B9}C:\program files (x86)\mirc\mirc.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mirc\mirc.exe | 
"UDP Query User{89625889-6B70-43FA-A776-0CB67DEBC727}E:\hry\starcitizen\citizenclient\bin64\starcitizen.exe" = protocol=17 | dir=in | app=e:\hry\starcitizen\citizenclient\bin64\starcitizen.exe | 
"UDP Query User{96A8A78C-6671-43AA-B50C-74BD3272E59F}E:\hry\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe" = protocol=17 | dir=in | app=e:\hry\starcraft ii\sc2-x.x.x.x-1.5.0.22342-enus-downloader.exe | 
"UDP Query User{9ADC3043-91BC-4D62-ACF8-A3B51CE5619D}E:\hry\borderlands 2\binaries\win32\borderlands2.exe" = protocol=17 | dir=in | app=e:\hry\borderlands 2\binaries\win32\borderlands2.exe | 
"UDP Query User{9CDCA05D-E5BD-4662-B5F6-CBA542D6D4C2}E:\hry\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=e:\hry\world_of_tanks\worldoftanks.exe | 
"UDP Query User{9FC7D62E-B36C-4317-ABCF-8D3AAC881D92}E:\hry\warcraft iii\war3.exe" = protocol=17 | dir=in | app=e:\hry\warcraft iii\war3.exe | 
"UDP Query User{A2837899-D0E7-4323-88FB-E308B1917DF9}E:\hry\mass effect trilogy\mass effect 2\binaries\me2game.exe" = protocol=17 | dir=in | app=e:\hry\mass effect trilogy\mass effect 2\binaries\me2game.exe | 
"UDP Query User{A6E9ED6F-D43F-4CEB-80BB-B932EEAE72E3}E:\hry\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=e:\hry\world_of_tanks\wotlauncher.exe | 
"UDP Query User{B548A2C6-AF71-4967-87AA-DA8FA5AC0BFF}C:\program files\java\jre7\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\java.exe | 
"UDP Query User{C03A2E1D-8503-4E49-A995-00E322B60E05}E:\hry\steam\steamapps\common\total war rome ii\rome2.exe" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\total war rome ii\rome2.exe | 
"UDP Query User{D26A72F4-BAA4-498D-AD06-DE38A36E2D79}E:\hry\call of duty black ops ii\t6sp.exe" = protocol=17 | dir=in | app=e:\hry\call of duty black ops ii\t6sp.exe | 
"UDP Query User{D8A3ACB8-C5D2-4FA1-B48E-C68C34AC13D5}E:\hry\steam\steamapps\common\giana sisters twisted dreams\gsgameexe.exe" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\giana sisters twisted dreams\gsgameexe.exe | 
"UDP Query User{E30A4E8B-BC4C-47BE-B7C7-57ADBB6BC229}E:\hry\steam\steamapps\common\age of empires online\spartan.exe" = protocol=17 | dir=in | app=e:\hry\steam\steamapps\common\age of empires online\spartan.exe | 
"UDP Query User{E3AB5A9F-663F-4B99-88A2-6F8BEE2A888E}E:\hry\starcraft ii\versions\base22612\sc2.exe" = protocol=17 | dir=in | app=e:\hry\starcraft ii\versions\base22612\sc2.exe | 
"UDP Query User{E5EAD1C9-F19B-464E-8B8B-2507072F46BA}E:\hry\steam\steam.exe" = protocol=17 | dir=in | app=e:\hry\steam\steam.exe | 
"UDP Query User{EE4FABD0-460E-416A-A6F0-3184C3D73506}E:\hry\starcraft ii\versions\base24944\sc2.exe" = protocol=17 | dir=in | app=e:\hry\starcraft ii\versions\base24944\sc2.exe | 
"UDP Query User{F5B09EF5-F460-4890-9B8F-F77641018680}C:\program files (x86)\garena plus\room\garena_room.exe" = protocol=17 | dir=in | app=c:\program files (x86)\garena plus\room\garena_room.exe | 
"UDP Query User{F610F342-ABEF-4BB0-A9ED-C5637041E4C5}C:\program files (x86)\winamp\winamp.exe" = protocol=17 | dir=in | app=c:\program files (x86)\winamp\winamp.exe | 
"UDP Query User{FD36294C-4A52-4406-B630-353E582551F1}C:\users\michal\appdata\local\apps\2.0\n7wdkqvg.2gd\3negd9vc.471\laun...app_59711684aa47878d_0001.001e_0f529f5f0ebfb750\launcher.exe" = protocol=17 | dir=in | app=c:\users\michal\appdata\local\apps\2.0\n7wdkqvg.2gd\3negd9vc.471\laun...app_59711684aa47878d_0001.001e_0f529f5f0ebfb750\launcher.exe | 
 
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP510" = Canon MP510
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{23F2C78C-E131-4CA0-8F84-3473FB7728BA}" = Microsoft Security Client
"{26784146-6E05-3FF9-9335-786C7C0FB5BE}" = Microsoft .NET Framework 4.5.2
"{26A24AE4-039D-4CA4-87B4-2F86418031F0}" = Java 8 Update 31 (64-bit)
"{37B8F9C7-03FB-3253-8781-2517C99D7C00}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
"{443D1D0A-17E5-4F61-8074-8801BDB430CC}" = ESET Smart Security
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6199B534-A1B6-46ED-873B-97B0ECF8F81E}" = Intel® Trusted Connect Service Client
"{690285C2-2481-44FB-8402-162EA970A6DD}" = Logitech Gaming Software
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029" = Microsoft .NET Framework 4.5.2 (čeština)
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{9B48B0AC-C813-4174-9042-476A887592C7}" = Windows Live ID Sign-in Assistant
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Ovladač 3D Vision 337.88
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 337.88
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 337.88
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 2.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Ovladač řídící jednotky 3D Vision 337.88
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus Update 14.6.22
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.13.1220
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizace NVIDIA 14.6.22
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamC" = GeForce Experience NvStream Client Components
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Ovladač HD audia 1.3.30.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 14.6.22
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.23
"{C48AF3CF-C632-3C19-838E-7DAB7283D46A}" = Microsoft .NET Framework 4.5.2 (CSY)
"{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
"{deb7008b-681e-4a4a-8aae-cc833e8216ce}.sdb" = Microsoft Windows Application Compatibility Database
"6af12c54-643b-4752-87d0-8335503010de_is1" = Nexus Mod Manager
"CrystalDiskMark_is1" = CrystalDiskMark 3.0.3b Shizuku Edition
"Logitech Gaming Software" = Logitech Gaming Software 8.53
"Microsoft Security Client" = Microsoft Security Essentials
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"Totalcmd64" = Total Commander 64-bit (Remove or Repair)
"WinRAR archiver" = WinRAR 4.20 (64-bit)
"xy-VSFilter (64-bit)_is1" = xy-VSFilter 3.0.0.211 (64-bit)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_inmm" = _inmm.dll 2.38
"{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1" = MiniTool Partition Wizard Home Edition 8.1.1
"{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}" = Razer Synapse 2.0
"{0E784CFD-CEB1-42E1-9C42-FC2497DD653E}" = Mumble 1.2.8
"{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}" = Microsoft XNA Framework Redistributable 3.1
"{1EAC1D02-C6AC-4FA6-9A44-96258C37C812}_is1" = World of Tanks
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{2226247D-9846-4370-A1EF-FAA6958F7632}" = Sound Blaster Tactic(3D) Alpha
"{240C3DDD-C5E9-4029-9DF7-95650D040CF2}" = Intel(R) USB 3.0 eXtensible Host Controller Driver
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype™ 7.0
"{26A24AE4-039D-4CA4-87B4-2F83218031F0}" = Java 8 Update 31
"{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}" = Microsoft XNA Framework Redistributable 4.0
"{2FFBF70A-9D40-4C3C-8F6C-6C3237B419BA}" = Scrolls
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{394BE3D9-7F57-4638-A8D1-1D88671913B7}" = Microsoft AppLocale
"{3B11D799-48E0-48ED-BFD7-EA655676D8BB}" = Star Wars: The Old Republic
"{3DECD372-76A1-4483-BF10-B547790A3261}" = ON_OFF Charge B11.1102.1
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{456A5815-604D-4D72-94DF-346D2B978A59}_is1" = GOG.com Downloader version 3.6.0
"{48EBEBBF-B9F8-4520-A3CF-89A730721917}" = The Sims™ 4
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{534A31BD-20F4-46b0-85CE-09778379663C}" = Mass Effect™ 3
"{54ED2E2F-68EE-461C-888C-DB7EBE85C340}" = calibre
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{696F8871-C91D-4CB1-825D-36BE18065575}_is1" = Elite Dangerous Launcher version 0.4.1765.0
"{70550193-1C22-445C-8FA4-564E155DB1A7}" = Nero Express 10
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{80407BA7-7763-4395-AB98-5233F1B34E65}" = NVIDIA PhysX
"{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{90280405-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional s aplikací FrontPage
"{90893FB5-38AE-4164-B689-3214719D0D4A}_is1" = Aurora
"{95716cce-fc71-413f-8ad5-56c2892d4b3a}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A071F478-73E0-4143-AE55-4DD6BABD74F5}" = Far Cry 3 Blood Dragon
"{a1909659-0a08-4554-8af1-2175904903a1}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A7E19604-93AF-4611-8C9F-CE509C2B286E}_is1" = VDownloader 3.6.943
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-0804-1033-1959-001802114130}" = Adobe Refresh Manager
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.10) - Czech
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{B5FDA445-CAC4-4BA6-A8FB-A7212BD439DE}" = Microsoft XML Parser
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{CA328CDF-A284-445E-AAE7-B24A11E97201}" = MechWarrior Online
"{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
"{ce085a78-074e-4823-8dc1-8a721b94b76d}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
"{CE7CB214-DB11-4B5D-A6AF-3B4ED47C68B7}" = Microsoft Game Studios Common Redistributables Pack 1
"{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}" = Microsoft XNA Framework Redistributable 4.0 Refresh
"{E19B628D-A9BC-4519-B1D4-4C8C09074F7F}" = Mass Effect™ 2
"{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}" = Far Cry 3
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E99C27B2-EB2E-4244-9F5C-A96F55100F0C}" = Bejeweled® 3
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
"{F4DEB22F-AC61-4111-89B2-CF434A2BABFB}_is1" = Star Realms version 1.04
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{FDB8F715-FC8D-4C20-B614-E0361BB69A17}" = BlueStacks Notification Center
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"1207660893_is1" = Age of Wonders III
"1207665783_is1" = Wasteland 2
"4F6D5E84-5826-4394-9F40-3A9A19165651_is1" = Pandora Service
"Adobe Flash Player ActiveX" = Adobe Flash Player 16 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 16 NPAPI
"Age of Wonders III: Dragon's Throne Scenario_is1" = Age of Wonders III - Dragon's Throne Scenario
"Age of Wonders III: Elven Resurgence Scenario_is1" = Age of Wonders III - Elven Resurgence Scenario
"Age of Wonders III: Golden Realms_is1" = Age of Wonders III - Golden Realms
"AlicesoftGame_Daiteikoku" = 大帝国
"Battle.net" = Battle.net
"BlueStacks App Player" = BlueStacks App Player
"CDisplay_is1" = CDisplay 1.8
"Combined Community Codec Pack_is1" = Combined Community Codec Pack 2013-05-30
"DAEMON Tools Lite" = DAEMON Tools Lite
"Diablo III" = Diablo III
"Floris Mod Pack_is1" = Floris Mod Pack 2.54
"GOGPACKDEFENDERSQUEST_is1" = Defender's Quest
"GOGPACKFTL_is1" = FTL -  Advanced Edition
"GOGPACKREDSHIRT_is1" = Redshirt
"GOGPACKTYRIAN2000_is1" = Tyrian 2000
"GOGPACKWARLORDSBATTLECRY3_is1" = Warlords Battlecry 3
"Google Chrome" = Google Chrome
"Hearthstone" = Hearthstone
"Homeworld2" = Homeworld2
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platforma Ovladače zařízení
"IrfanView" = IrfanView (remove only)
"MagniDriver" = marvell 91xx driver
"mIRC" = mIRC
"Mozilla Firefox 35.0.1 (x86 en-US)" = Mozilla Firefox 35.0.1 (x86 en-US)
"Notepad++" = Notepad++
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OCCT" = OCCT 4.3.1
"OpenAL" = OpenAL
"OpenTTD" = OpenTTD 1.4.3
"Origin" = Origin
"PunkBusterSvc" = PunkBuster Services
"Razer Core" = Razer Core
"Recettear: An Item Shop's Tale_is1" = Recettear: An Item Shop's Tale
"Revenge of the Titans" = Revenge of the Titans
"Rockstar Games Social Club" = Rockstar Games Social Club
"RPG Maker VX RTP_is1" = RPG Maker VX RTP
"RPGVXAce_RTP_is1" = RPG MAKER VX Ace RTP
"Scrolls 1.0.0" = Scrolls
"Sengoku Rance English_is1" = Sengoku Rance English v1.01
"Star Trek Online" = Star Trek Online
"StarCitizen" = StarCitizen
"StarCraft II" = StarCraft II
"Steam App 105450" = Age of Empires® III: Complete Collection
"Steam App 107100" = Bastion
"Steam App 110800" = L.A. Noire
"Steam App 12500" = Puzzle Quest
"Steam App 200510" = XCOM: Enemy Unknown
"Steam App 200910" = Sequence
"Steam App 203350" = King's Bounty: Warriors of the North
"Steam App 208140" = Endless Space
"Steam App 208520" = Omerta - City of Gangsters
"Steam App 211340" = Magical Diary
"Steam App 214950" = Total War: ROME II
"Steam App 220200" = Kerbal Space Program
"Steam App 222730" = Reus
"Steam App 22490" = Fallout: New Vegas
"Steam App 226740" = Monster Loves You!
"Steam App 226960" = Ironclad Tactics
"Steam App 228400" = ACE COMBAT™ ASSAULT HORIZON Enhanced Edition
"Steam App 231430" = Company of Heroes 2
"Steam App 232790" = Broken Age
"Steam App 233250" = Planetary Annihilation
"Steam App 233700" = Sword of the Stars: The Pit
"Steam App 234650" = Shadowrun Returns
"Steam App 236390" = War Thunder
"Steam App 237430" = Expeditions: Conquistador
"Steam App 237990" = The Banner Saga
"Steam App 239030" = Papers, Please
"Steam App 241540" = State of Decay
"Steam App 243950" = Divinity: Dragon Commander
"Steam App 246420" = Kingdom Rush
"Steam App 248290" = Reach for the Sun
"Steam App 249050" = Dungeon of the Endless
"Steam App 250320" = The Wolf Among Us
"Steam App 250500" = Super Amazing Wagon Adventure
"Steam App 251990" = Long Live The Queen
"Steam App 264240" = CONSORTIUM
"Steam App 273070" = The Last Federation
"Steam App 289130" = Endless Legend
"Steam App 289520" = King's Bounty: Dark Side
"Steam App 34010" = Alpha Protocol
"Steam App 47810" = Dragon Age: Origins - Ultimate Edition
"Steam App 550" = Left 4 Dead 2
"Steam App 58610" = Wargame: European Escalation
"Steam App 72850" = The Elder Scrolls V: Skyrim
"Steam App 8870" = BioShock Infinite
"Steam App 8930" = Sid Meier's Civilization V
"Swiff Player_is1" = Swiff Player 1.6
"SysInfo" = Creative System Information
"The Witcher 2 Enhanced Edition_is1" = The Witcher 2 Enhanced Edition verze 3.0
"Uplay" = Uplay
"Uplay Install 273" = Assassins Creed IV Black Flag
"Uplay Install 720" = Assassin's Creed Unity
"VGhlU2ltczQ=_is1" = The Sims 4 Update v1.2.16.10
"VLC media player" = VLC media player 2.1.3
"War in the Pacific Admiral's Edition1.00.79" = War in the Pacific Admiral's Edition
"War of the Human Tanks" = War of the Human Tanks
"Winamp" = Winamp
"WinPcapInst" = WinPcap 4.1.1
 
[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]
 
[HKEY_USERS\S-1-5-21-1165194453-1350465406-1964235809-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{4f004f4a-1930-4b55-83e6-61660211787f}" = MechWarrior Online
"a53dc3b81e52c50e" = Parsec
"UnityWebPlayer" = Unity Web Player
"Winamp Detect" = Winamp Detector Plug-in
 
[color=#E56717]========== Last 20 Event Log Errors ==========[/color]
 
[ Application Events ]
Error - 4.2.2015 18:36:32 | Computer Name = Michal-PC | Source = Application Error | ID = 1000
Description = Název chybující aplikace: adwcleaner_4.109.exe, verze: 4.1.0.9, časové
 razítko: 0x54c366b9  Název chybujícího modulu: adwcleaner_4.109.exe, verze: 4.1.0.9,
 časové razítko: 0x54c366b9  Kód výjimky: 0xc0000005  Posun chyby: 0x00020ce1  ID chybujícího
 procesu: 0x1924  Čas spuštění chybující aplikace: 0x01d040c65b01c8f3  Cesta k chybující
 aplikaci: C:\Users\Michal\Desktop\adwcleaner_4.109.exe  Cesta k chybujícímu modulu:
 C:\Users\Michal\Desktop\adwcleaner_4.109.exe  ID zprávy: 445e4897-acbe-11e4-a7ea-902b3434b058
 
Error - 4.2.2015 18:58:21 | Computer Name = Michal-PC | Source = BstHdAndroidSvc | ID = 0
Description = Službu nelze spustit. System.ApplicationException: Cannot start service.
  Service did not stop gracefully the last time it was run.     v BlueStacks.hyperDroid.Service.Service.OnStart(String[]
 args)     v System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
 
Error - 4.2.2015 19:35:44 | Computer Name = Michal-PC | Source = BstHdAndroidSvc | ID = 0
Description = Službu nelze spustit. System.ApplicationException: Cannot start service.
  Service did not stop gracefully the last time it was run.     v BlueStacks.hyperDroid.Service.Service.OnStart(String[]
 args)     v System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
 
Error - 4.2.2015 19:46:07 | Computer Name = Michal-PC | Source = Microsoft-Windows-LoadPerf | ID = 3007
Description = Nelze číst řetězce vysvětlujících textů čítačů výkonu definované pro
 ID jazyka 0804. První hodnota DWORD v datové oblasti obsahuje kód chyby Win32.
 
Error - 4.2.2015 19:46:07 | Computer Name = Michal-PC | Source = Microsoft-Windows-LoadPerf | ID = 3011
Description = Uvolnění řetězců čítačů výkonu pro službu WmiApRpl (WmiApRpl) se nezdařilo.
 První hodnota DWORD v datové oblasti obsahuje kód chyby.
 
Error - 5.2.2015 13:22:55 | Computer Name = Michal-PC | Source = BstHdAndroidSvc | ID = 0
Description = Službu nelze spustit. System.ApplicationException: Cannot start service.
  Service did not stop gracefully the last time it was run.     v BlueStacks.hyperDroid.Service.Service.OnStart(String[]
 args)     v System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
 
Error - 5.2.2015 13:27:09 | Computer Name = Michal-PC | Source = NvStreamSvc | ID = 131073
Description = 
 
Error - 5.2.2015 13:27:09 | Computer Name = Michal-PC | Source = NvStreamSvc | ID = 131073
Description = 
 
Error - 5.2.2015 13:27:09 | Computer Name = Michal-PC | Source = NvStreamSvc | ID = 131073
Description = 
 
Error - 5.2.2015 13:27:20 | Computer Name = Michal-PC | Source = BstHdAndroidSvc | ID = 0
Description = Službu nelze spustit. System.ApplicationException: Cannot start service.
  Service did not stop gracefully the last time it was run.     v BlueStacks.hyperDroid.Service.Service.OnStart(String[]
 args)     v System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
 
[ System Events ]
Error - 5.2.2015 13:22:35 | Computer Name = Michal-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Při pokusu o načtení souboru místních hostitelů došlo k chybě.
 
Error - 5.2.2015 13:22:37 | Computer Name = Michal-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Při pokusu o načtení souboru místních hostitelů došlo k chybě.
 
Error - 5.2.2015 13:22:55 | Computer Name = Michal-PC | Source = Service Control Manager | ID = 7023
Description = Služba BlueStacks Android Service byla ukončena s následující chybou:
   %%1064
 
Error - 5.2.2015 13:22:59 | Computer Name = Michal-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Při pokusu o načtení souboru místních hostitelů došlo k chybě.
 
Error - 5.2.2015 13:22:59 | Computer Name = Michal-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Při pokusu o načtení souboru místních hostitelů došlo k chybě.
 
Error - 5.2.2015 13:27:05 | Computer Name = Michal-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Při pokusu o načtení souboru místních hostitelů došlo k chybě.
 
Error - 5.2.2015 13:27:08 | Computer Name = Michal-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Při pokusu o načtení souboru místních hostitelů došlo k chybě.
 
Error - 5.2.2015 13:27:20 | Computer Name = Michal-PC | Source = Service Control Manager | ID = 7023
Description = Služba BlueStacks Android Service byla ukončena s následující chybou:
   %%1064
 
Error - 5.2.2015 13:27:24 | Computer Name = Michal-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Při pokusu o načtení souboru místních hostitelů došlo k chybě.
 
Error - 5.2.2015 13:27:24 | Computer Name = Michal-PC | Source = Microsoft-Windows-DNS-Client | ID = 1012
Description = Při pokusu o načtení souboru místních hostitelů došlo k chybě.
 
 
< End of report >

Re: Zamrzávající prohlížeč, zpomalené PC

Napsal: 06 úno 2015 10:02
od Márty84
:arrow: Nedavejte logy do Code, spatne se to cte.

:???: Jak je to s legalitou systemu? Ultimate neni zrovna bezna domaci verze :?:

:arrow: Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=29&t=137928 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

Re: Zamrzávající prohlížeč, zpomalené PC

Napsal: 07 úno 2015 00:11
od blackspectre
Systém je legální - pozůstatek po zaniklé firmě.

Zde log z MBAM:

Malwarebytes Anti-Malware
http://www.malwarebytes.org

Datum skenování: 6.2.2015
Čas skenování: 18:45:28
Protokol: log.txt
Správce: Ano

Verze: 2.00.4.1028
Databáze malwaru: v2015.02.06.06
Databáze rootkitů: v2015.02.03.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Sebeobrany: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Michal

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 1211166
Uplynulý čas: 5 hod, 21 min, 43 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Žádné zákerné zjištěny položek)

Moduly: 0
(Žádné zákerné zjištěny položek)

Klíče registru: 0
(Žádné zákerné zjištěny položek)

Hodnoty registru: 0
(Žádné zákerné zjištěny položek)

Data registru: 0
(Žádné zákerné zjištěny položek)

Složky: 0
(Žádné zákerné zjištěny položek)

Soubory: 7
Trojan.Agent, C:\Users\Michal\AppData\Local\Temp\aut2503.tmp, , [310d46d53c4e241233400e0e6c96f709],
Trojan.Agent, C:\Users\Michal\AppData\Local\Temp\aut3CB7.tmp, , [083692897713c274bbb813096c962cd4],
Trojan.Agent, C:\Users\Michal\AppData\Local\Temp\autDB56.tmp, , [af8fec2f7b0f1a1ccaa98f8d4eb4fb05],
Malware.Packer.Krunchy, E:\Hry\Family Restaurant\Uninstall.exe, , [c6785dbe98f247ef855391e1fb0526da],
PUP.Optional.Spigot.A, F:\RUZNE\OstatnA­\Programy\YTDSetup.exe, , [e25c001b2c5eab8bd822fc2a857b57a9],
PUP.Optional.OpenCandy, F:\RUZNE\OstatnA­\Programy\nechat\winamp5581_full_emusic-7plus_all.exe, , [0d31ef2cf199ed495bae4497050026da],
RiskWare.Tool.CK, F:\RUZNE\OstatnA­\Programy\nechat\ultraiso\keygen.exe, , [69d5ff1cc3c76ec80d158852d0313fc1],

Fyzické sektory: 0
(Žádné zákerné zjištěny položek)


(end)

Re: Zamrzávající prohlížeč, zpomalené PC

Napsal: 07 úno 2015 08:48
od Márty84
Nalezy hodte do karanteny. Po restartu pc test zopakujte, at vime, jestli se to nevraci. Napiste vysledek testu a podle nej zvolim dalsi postup.

Re: Zamrzávající prohlížeč, zpomalené PC

Napsal: 07 úno 2015 09:31
od blackspectre
Test běží znovu, ale obávám se, že problémy stále přetrvávají.

Re: Zamrzávající prohlížeč, zpomalené PC

Napsal: 07 úno 2015 09:55
od Márty84
MBAM neni posledni krok. Cistime to postupne, nejde to najednou. Takze uvidime az po uplnem docisteni :)

Re: Zamrzávající prohlížeč, zpomalené PC

Napsal: 07 úno 2015 14:49
od blackspectre
Nový log:

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 7.2.2015
Čas skenování: 9:30:28
Protokol: log.txt
Správce: Ano

Verze: 2.00.4.1028
Databáze malwaru: v2015.02.07.03
Databáze rootkitů: v2015.02.03.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Sebeobrany: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Michal

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 1211494
Uplynulý čas: 5 hod, 3 min, 47 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Žádné zákerné zjištěny položek)

Moduly: 0
(Žádné zákerné zjištěny položek)

Klíče registru: 0
(Žádné zákerné zjištěny položek)

Hodnoty registru: 0
(Žádné zákerné zjištěny položek)

Data registru: 0
(Žádné zákerné zjištěny položek)

Složky: 0
(Žádné zákerné zjištěny položek)

Soubory: 0
(Žádné zákerné zjištěny položek)

Fyzické sektory: 0
(Žádné zákerné zjištěny položek)


(end)

Re: Zamrzávající prohlížeč, zpomalené PC

Napsal: 08 úno 2015 13:02
od Márty84
:arrow: MBAM muzete odinstalovat.


:arrow: Postupujte podle navodu kolegy
vyosek píše: :arrow: Stahnete Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
  • Ulozte nejlepe na plochu
  • Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
  • Probehne vytvoreni zalohy a nasledne prohledavani
  • Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte

:arrow: Postupujte podle navodu kolegy
vyosek píše: :arrow: Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu
  • Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
  • Do okna vlozte skript nize

  • Kód: Vybrat vše

    autoclean;
autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;
  • Nasledne kliknete na Run Script
  • PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

Re: Zamrzávající prohlížeč, zpomalené PC

Napsal: 08 úno 2015 13:55
od blackspectre
Zde log z JRT:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.2 (02.02.2015:1)
OS: Windows 7 Ultimate x64
Ran by Michal on ne 08.02.2015 at 13:32:06.18
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"



~~~ FireFox

Emptied folder: C:\Users\Michal\AppData\Roaming\mozilla\firefox\profiles\aamz0g9g.default\minidumps [100 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 08.02.2015 at 13:49:37.88
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Re: Zamrzávající prohlížeč, zpomalené PC

Napsal: 08 úno 2015 15:12
od blackspectre
Zoek se mi v normálním režimu spustit nepovedlo. Každý pokus skončil zamrznutím systému, aniž by se Zoek spustil.

Spustil jsem tedy Zoek v nouzovém režimu, log zde:


Zoek.exe v5.0.0.0 Updated 07-February-2015
Tool run by Michal on ne 08.02.2015 at 14:50:01.49.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64
Running in: Safe Mode NETWORK Internet Access Detected
Launched: C:\Users\Michal\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\AGEIA Technologies deleted successfully
C:\PROGRA~2\MSXML 4.0 deleted successfully
C:\PROGRA~2\Origin Games deleted successfully
C:\PROGRA~2\uTorrent deleted successfully
C:\PROGRA~3\BlueStacks deleted successfully
C:\PROGRA~3\dbg deleted successfully
C:\Users\Michal\AppData\Local\calibre-cache deleted successfully
C:\Users\Michal\AppData\Local\GHISLER deleted successfully
C:\Users\Michal\AppData\Local\WarThunder deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\Michal\AppData\Local\Mozilla\Firefox\Profiles\5ps8juq5.default\prefs.js:
user_pref("browser.search.selectedEngine", "DAEMON Search");
user_pref("browser.search.suggest.enabled", false);
user_pref("browser.search.useDBForOrder", true);

Added to C:\Users\Michal\AppData\Local\Mozilla\Firefox\Profiles\5ps8juq5.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Deleted from C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\aamz0g9g.default\prefs.js:
user_pref("browser.search.suggest.enabled", false);
user_pref("browser.search.useDBForOrder", "false");

Added to C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\aamz0g9g.default\prefs.js:

ProfilePath: C:\Users\Michal\AppData\Local\Mozilla\Firefox\Profiles\5ps8juq5.default

user.js not found
---- Lines browser.startup.page removed from prefs.js ----
user_pref("browser.startup.page", 3);
---- FireFox user.js and prefs.js backups ----

prefs_08.02.2015_1455_.backup

ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\aamz0g9g.default

user.js not found
---- FireFox user.js and prefs.js backups ----

prefs_08.02.2015_1455_.backup

==== Deleting Files \ Folders ======================

C:\Users\Michal\.android deleted
C:\PROGRA~2\VDownloader deleted
C:\PROGRA~3\Package Cache deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\aamz0g9g.default\extensions\firefox@mega.co.nz.xpi deleted
C:\Users\Public\Desktop\YTD Video Downloader.lnk deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Michal\AppData\Local\Mozilla\Firefox\Profiles\5ps8juq5.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================

ProfilePath: C:\Users\Michal\AppData\Local\Mozilla\Firefox\Profiles\5ps8juq5.default
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\aamz0g9g.default
- Undetermined - personas@christopher.beard
- Personas Plus - %ProfilePath%\extensions\personas@christopher.beard.xpi
- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\aamz0g9g.default
C62322C77D1AAB77B1CF1130FCC3673A - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll - Shockwave Flash
B66B4D28D7D0C6322FF235C782CD6B76 - C:\Windows\SysWOW64\npdeployJava1.dll - Java Deployment Toolkit 8.0.310.13
65C1D9F74004E775F9A8598476ABE5EE - C:\Users\Michal\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player
15E298B5EC5B89C5994A59863969D9FF - C:\Windows\SysWOW64\npmproxy.dll - Microsoft® Windows® Operating System


==== Chromium Look ======================

AdBlock - Michal\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTer ... ORM=IE8SRC"

==== Reset Google Chrome ======================

C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Michal\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Michal\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Michal\AppData\Local\Mozilla\Firefox\Profiles\aamz0g9g.default\cache2 emptied successfully
C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\aamz0g9g.default\personas\cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Michal\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=117 folders=49 64375273 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Michal\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Michal\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on ne 08.02.2015 at 14:56:41.93 ======================
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz