VIRY.CZ

Ahoj, moc prosím o kontrolu logu a případnou radu co dál, děkuju

ComboFix 15-06-18.01 - maty 20.06.2015 1:13.1.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1033.18.8189.5757 [GMT 2:00]
Spuštěný z: c:\users\maty\Downloads\ComboFix.exe
AV: ESET NOD32 Antivirus 5.0 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 5.0 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-05-19 do 2015-06-19 )))))))))))))))))))))))))))))))
.
.
2015-06-19 23:21 . 2015-06-19 23:21 -------- d-----w- c:\users\Guest\AppData\Local\temp
2015-06-19 23:21 . 2015-06-19 23:21 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-06-19 23:20 . 2015-06-19 23:20 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0263EE7E-5387-416B-8DBE-A2B46675FA6E}\offreg.2804.dll
2015-06-17 05:20 . 2015-05-03 03:16 12214312 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0263EE7E-5387-416B-8DBE-A2B46675FA6E}\mpengine.dll
2015-06-16 19:22 . 2015-06-16 19:22 -------- d-----w- c:\program files\CCleaner
2015-06-16 18:34 . 2015-05-28 03:52 571024 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2015-06-16 18:31 . 2015-05-28 07:04 42719888 ----a-w- c:\windows\system32\nvcompiler.dll
2015-06-16 18:31 . 2015-05-28 07:04 37741712 ----a-w- c:\windows\SysWow64\nvcompiler.dll
2015-06-16 18:31 . 2015-05-28 07:04 3379680 ----a-w- c:\windows\system32\nvapi64.dll
2015-06-16 18:31 . 2015-05-28 07:04 2986392 ----a-w- c:\windows\SysWow64\nvapi.dll
2015-06-16 18:26 . 2015-06-16 18:27 -------- d-----w- c:\users\maty\AppData\Local\NVIDIA
2015-06-16 18:26 . 2015-06-03 21:04 1320304 ----a-w- c:\windows\SysWow64\nvspcap.dll
2015-06-16 18:26 . 2015-06-03 21:04 1316000 ----a-w- c:\windows\SysWow64\nvspbridge.dll
2015-06-16 18:26 . 2015-06-03 21:04 1756424 ----a-w- c:\windows\system32\nvspbridge64.dll
2015-06-16 18:26 . 2015-06-03 21:04 1571696 ----a-w- c:\windows\system32\nvspcap64.dll
2015-06-16 18:26 . 2015-05-19 03:29 46768 ----a-w- c:\windows\system32\drivers\nvvad64v.sys
2015-06-16 18:26 . 2015-05-19 03:14 61616 ----a-w- c:\windows\system32\nvaudcap64v.dll
2015-06-16 18:26 . 2015-05-19 03:14 57520 ----a-w- c:\windows\SysWow64\nvaudcap32v.dll
2015-06-16 18:21 . 2015-05-28 04:15 937288 ----a-w- c:\windows\system32\nvvsvc.exe
2015-06-16 18:21 . 2015-05-28 04:15 62608 ----a-w- c:\windows\system32\nvshext.dll
2015-06-16 18:21 . 2015-05-28 04:15 385168 ----a-w- c:\windows\system32\nvmctray.dll
2015-06-16 18:21 . 2015-05-28 04:15 3491984 ----a-w- c:\windows\system32\nvsvc64.dll
2015-06-16 18:21 . 2015-05-28 04:15 2558608 ----a-w- c:\windows\system32\nvsvcr.dll
2015-06-16 18:21 . 2015-05-28 04:15 6872904 ----a-w- c:\windows\system32\nvcpl.dll
2015-06-16 18:21 . 2015-05-27 10:48 4408727 ----a-w- c:\windows\system32\nvcoproc.bin
2015-06-16 18:20 . 2015-05-28 07:04 112968 ----a-w- c:\windows\system32\OpenCL.dll
2015-06-16 18:20 . 2015-05-28 07:04 105288 ----a-w- c:\windows\SysWow64\OpenCL.dll
2015-06-16 17:57 . 2015-06-16 17:57 -------- d-----w- c:\windows\system32\appmgmt
2015-06-11 07:05 . 2015-04-11 03:19 69888 ----a-w- c:\windows\system32\drivers\stream.sys
2015-06-10 05:48 . 2015-05-25 18:19 1255424 ----a-w- c:\windows\system32\diagtrack.dll
2015-06-08 14:10 . 2015-06-08 14:10 -------- d-----w- c:\users\Guest\AppData\Roaming\Elex-tech
2015-06-07 10:14 . 2015-06-19 21:04 -------- d-----w- c:\program files (x86)\Heroes of the Storm
2015-06-01 21:54 . 2015-06-01 21:54 -------- d-----w- c:\users\maty\AppData\Local\GWX
2015-05-29 15:00 . 2015-05-29 15:00 -------- d-----w- c:\program files (x86)\ForexTime MT4
2015-05-27 12:45 . 2015-05-27 12:45 -------- d-----w- c:\program files (x86)\BOSSAFX
2015-05-22 17:23 . 2015-05-22 17:23 24325312 ----a-w- c:\program files\Common Files\Microsoft Shared\OFFICE14\MSO.DLL
2015-05-22 17:16 . 2015-05-22 17:16 18652352 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\OFFICE14\MSO.DLL
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-06-19 20:56 . 2014-06-28 07:55 78848 ----a-w- c:\windows\KMSEmulator.exe
2015-06-19 20:56 . 2014-06-27 17:48 25640 ----a-w- c:\windows\gdrv.sys
2015-06-12 04:41 . 2014-06-27 09:15 778416 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2015-06-12 04:41 . 2014-06-27 09:15 142512 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-06-11 06:57 . 2014-06-27 11:41 140135120 ----a-w- c:\windows\system32\MRT.exe
2015-05-29 15:00 . 2015-03-05 00:34 4475936 ----a-w- c:\windows\system32\MetaViewer64.dll
2015-05-28 07:04 . 2015-02-20 00:18 1558848 ----a-w- c:\windows\system32\nvhdagenco6420103.dll
2015-05-25 18:19 . 2015-06-10 05:48 113664 ----a-w- c:\windows\system32\sechost.dll
2015-05-25 18:19 . 2015-06-10 05:48 342016 ----a-w- c:\windows\system32\schannel.dll
2015-05-25 18:01 . 2015-06-10 05:48 248832 ----a-w- c:\windows\SysWow64\schannel.dll
2015-05-25 18:01 . 2015-06-10 05:48 92160 ----a-w- c:\windows\SysWow64\sechost.dll
2015-05-25 18:01 . 2015-06-10 05:48 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2015-05-01 13:17 . 2015-05-13 22:05 124112 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-01 13:16 . 2015-05-13 22:05 102608 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-04-20 03:17 . 2015-05-13 05:32 1647104 ----a-w- c:\windows\system32\DWrite.dll
2015-04-20 03:17 . 2015-05-13 05:32 1179136 ----a-w- c:\windows\system32\FntCache.dll
2015-04-20 02:56 . 2015-05-13 05:32 1250816 ----a-w- c:\windows\SysWow64\DWrite.dll
2015-04-18 03:10 . 2015-05-13 05:36 460800 ----a-w- c:\windows\system32\certcli.dll
2015-04-18 02:56 . 2015-05-13 05:36 342016 ----a-w- c:\windows\SysWow64\certcli.dll
2015-04-17 02:43 . 2015-05-06 14:09 52392 ----a-w- c:\windows\system32\drivers\iSafeNetFilter.sys
2015-04-13 03:28 . 2015-05-13 05:35 328704 ----a-w- c:\windows\system32\services.exe
2015-04-08 03:29 . 2015-05-13 05:32 275456 ----a-w- c:\windows\system32\InkEd.dll
2015-04-08 03:29 . 2015-05-13 05:32 24576 ----a-w- c:\windows\system32\jnwmon.dll
2015-04-08 03:14 . 2015-05-13 05:32 216064 ----a-w- c:\windows\SysWow64\InkEd.dll
2015-03-25 03:24 . 2015-04-15 07:02 98304 ----a-w- c:\windows\system32\wudriver.dll
2015-03-25 03:24 . 2015-04-15 07:02 37376 ----a-w- c:\windows\system32\wups2.dll
2015-03-25 03:24 . 2015-04-15 07:02 35328 ----a-w- c:\windows\system32\wups.dll
2015-03-25 03:24 . 2015-04-15 07:02 3298816 ----a-w- c:\windows\system32\wucltux.dll
2015-03-25 03:24 . 2015-04-15 07:02 2553856 ----a-w- c:\windows\system32\wuaueng.dll
2015-03-25 03:24 . 2015-04-15 07:02 191488 ----a-w- c:\windows\system32\wuwebv.dll
2015-03-25 03:24 . 2015-04-15 07:02 696320 ----a-w- c:\windows\system32\wuapi.dll
2015-03-25 03:24 . 2015-04-15 07:02 60416 ----a-w- c:\windows\system32\WinSetupUI.dll
2015-03-25 03:23 . 2015-04-15 07:02 12288 ----a-w- c:\windows\system32\wu.upgrade.ps.dll
2015-03-25 03:23 . 2015-04-15 07:02 36864 ----a-w- c:\windows\system32\wuapp.exe
2015-03-25 03:23 . 2015-04-15 07:02 135168 ----a-w- c:\windows\system32\wuauclt.exe
2015-03-25 03:00 . 2015-04-15 07:02 92672 ----a-w- c:\windows\SysWow64\wudriver.dll
2015-03-25 03:00 . 2015-04-15 07:02 566784 ----a-w- c:\windows\SysWow64\wuapi.dll
2015-03-25 03:00 . 2015-04-15 07:02 29696 ----a-w- c:\windows\SysWow64\wups.dll
2015-03-25 03:00 . 2015-04-15 07:02 173056 ----a-w- c:\windows\SysWow64\wuwebv.dll
2015-03-25 03:00 . 2015-04-15 07:02 33792 ----a-w- c:\windows\SysWow64\wuapp.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ISUSPM Startup"="c:\progra~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2005-02-17 221184]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2015-06-02 28785792]
"CCleaner Monitoring"="c:\program files\CCleaner\CCleaner64.exe" [2015-05-08 8322328]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2014-12-19 1022152]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"GBTUpd"="c:\program files (x86)\Gigabyte\UpdManager\PreRun.exe" [2008-04-03 297480]
.
c:\users\maty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
EasySaver.lnk - c:\program files (x86)\GIGABYTE\EasySaver\eslite.exe [2014-6-27 272936]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe;c:\windows\SYSNATIVE\AppleChargerSrv.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S1 {2b929fe1-284b-4766-afb9-19b0915b99b0}Gw64;{2b929fe1-284b-4766-afb9-19b0915b99b0}Gw64;c:\windows\system32\drivers\{2b929fe1-284b-4766-afb9-19b0915b99b0}Gw64.sys;c:\windows\SYSNATIVE\drivers\{2b929fe1-284b-4766-afb9-19b0915b99b0}Gw64.sys [x]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys;c:\windows\SYSNATIVE\DRIVERS\AppleCharger.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [x]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys;c:\windows\SYSNATIVE\DRIVERS\epfwwfpr.sys [x]
S2 ES lite Service;ES lite Service for program management.;c:\program files (x86)\Gigabyte\EasySaver\ESSVR.EXE;c:\program files (x86)\Gigabyte\EasySaver\ESSVR.EXE [x]
S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 athur;Wireless Network Adapter Service;c:\windows\system32\DRIVERS\athurx.sys;c:\windows\SYSNATIVE\DRIVERS\athurx.sys [x]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\system32\Drivers\EtronHub3.sys;c:\windows\SYSNATIVE\Drivers\EtronHub3.sys [x]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\system32\Drivers\EtronXHCI.sys;c:\windows\SYSNATIVE\Drivers\EtronXHCI.sys [x]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - NVSTREAMKMS
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-06-09 16:38 986440 ----a-w- c:\program files (x86)\Google\Chrome\Application\43.0.2357.124\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2015-06-19 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-27 04:41]
.
2015-06-19 c:\windows\Tasks\AutoKMS.job
- c:\windows\AutoKMS.exe [2014-06-28 08:18]
.
2015-06-19 c:\windows\Tasks\AutoKMSDaily.job
- c:\windows\AutoKMS.exe [2014-06-28 08:18]
.
2015-06-19 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-06-27 09:39]
.
2015-06-19 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-06-27 09:39]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-02-24 11780712]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2011-09-08 4030008]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2012-11-05 108144]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2015-06-03 2754704]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2015-06-03 1571696]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://istart.webssearches.com/?type=hp&ts=1418412423&from=cvs&uid=WDCXWD10EURS-730AB1_WD-WCAV5V81946719467
uDefault_Search_URL = hxxp://search.delta-homes.com/web/?type=ds&ts=1430822286&from=wpm05053&uid=WDCXWD10EURS-730AB1_WD-WCAV5V81946719467&q={searchTerms}
mDefault_Page_URL = hxxp://istart.webssearches.com/?type=hp&ts=1418412423&from=cvs&uid=WDCXWD10EURS-730AB1_WD-WCAV5V81946719467
mStart Page = hxxp://istart.webssearches.com/?type=hp&ts=1418412423&from=cvs&uid=WDCXWD10EURS-730AB1_WD-WCAV5V81946719467
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office15\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: Se&nd to OneNote - c:\progra~1\MICROS~2\Office15\ONBttnIE.dll/105
IE: Stáhnout pomocí &BitSpiritu - c:\program files (x86)\BitSpirit\bsurl.htm
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\maty\AppData\Roaming\Mozilla\Firefox\Profiles\4vxtyn36.default\
FF - prefs.js: browser.search.selectedEngine - delta-homes
FF - prefs.js: browser.startup.homepage - hxxp://www.delta-homes.com/?type=hp&ts=1430822 ... 1946719467
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - (no file)
Wow6432Node-HKCU-Run-RESTART_STICKY_NOTES - c:\windows\System32\StikyNot.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_17_0_0_188_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_17_0_0_188_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_17_0_0_188_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_17_0_0_188_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_188.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.17"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_188.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_188.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_188.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2015-06-20 01:33:40
ComboFix-quarantined-files.txt 2015-06-19 23:33
.
Před spuštěním: 865 393 647 616 bytes free
Po spuštění: 865 102 684 160 bytes free
.
- - End Of File - - 4ECAB1A184E3216C5E7CD67A6FF79A6D
A36C5E4F47E84449FF07ED3517B43A31

Zdravim

Prispevek jsem oddelil, do cizich temat se neleze

Proc byl spusten ComboFix?

Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Oznacte polozky (dejte tam zatrzitka) Pro všechny uživatele, Kontrola na havěť "LOP" a Kontrola na havěť "Purity"
Do spodniho okna vlozte nasledujici text

Kód: Vybrat vše

CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
adp3132.sys
AGP440.sys
ahcix86.sys
ahcix86s.sys
atapi.sys
autochk.exe
cdrom.sys
cngaudit.dll
cryptsvc.dll
eNetHook.dll
eventlog.dll
explorer.exe
hal.dll
Changer.sys
iaStor.sys
iastorv.sys
IdeChnDr.sys
isapnp.sys
JakNDis.sys
KR10N.sys
logevent.dll
lsass.exe
mv61xx.sys
ndis.sys
netlogon.dll
ntelogon.dll
nvata.sys
nvatabus.sys
nvgts.sys
nvraid.sys
nvrd32.sys
nvstor.sys
nvstor32.sys
scecli.dll
sceclt.dll
smss.exe
svchost.exe
symmpi.sys
tcpip.sys
userinit.exe
vaxscsi.sys
viamraid.sys
viasraid.sys
ViPrt.sys
winlogon.exe
ws2_32.dll
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c

type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

*crack* /s
*keygen* /s
*AntiWPA* /s
*loader* /s
*minodlogin* /s
*tnod* /s
*AutoKMS* /s
*activator* /s
*serial* /s
*w7lxe* /s

Kliknete na Prohledat
Po skenu se vytvori dva logy (OTL.Txt a Extras.txt), oba sem vlozte (kdyz budou dlouhe, rozdelte je do vice prispevku).

Děkuju za radu, níže posílám výpis:

Extras.txt:
OTL Extras logfile created on: 20.6.2015 9:14:21 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\maty\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17843)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

8,00 Gb Total Physical Memory | 5,90 Gb Available Physical Memory | 73,82% Memory free
15,99 Gb Paging File | 12,97 Gb Available in Paging File | 81,11% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931,41 Gb Total Space | 804,97 Gb Free Space | 86,42% Space Free | Partition Type: NTFS

Computer Name: MATY-PC | User Name: maty | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-2848582999-1133703708-1847906036-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{001BEB95-E268-4AD0-B6BC-133D2A5C1196}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{1BB31237-A563-4EA2-AD9B-30DD7187F00A}" = lport=10243 | protocol=6 | dir=in | app=system |
"{2A656957-41AD-4345-B15B-A98A8985A3E2}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{2E5A3DC2-BA5C-4DC9-AE09-6410C94C6CCB}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{3FC15E37-DFAD-4E27-AF7D-0CF9668442EC}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{4E3BD9F1-864B-466E-A49B-41EE16A0ED50}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe |
"{4EDA4973-4300-4B0B-B800-B9AF12F87F57}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{4F973A55-3A2E-45AA-B12B-9847E194F054}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{624532FF-030A-462D-81DB-9C27AD3E6FA9}" = rport=139 | protocol=6 | dir=out | app=system |
"{6298EBA4-614A-49CB-ACD9-C62A4266AFE6}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8152BC40-6DB2-4AEA-8C5B-541826C9F728}" = rport=137 | protocol=17 | dir=out | app=system |
"{8844DE03-6869-4137-9EF5-71E627F0C4E5}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8BE1FD84-060F-4FAA-B962-4118A053E9FC}" = lport=139 | protocol=6 | dir=in | app=system |
"{989EEB56-224E-48D8-8FF1-ACEAB76B18F8}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{9A4A555C-8022-447F-8171-EFAC4F3D5F28}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe |
"{9A64D901-55E2-4A36-8B85-5343DA760951}" = rport=138 | protocol=17 | dir=out | app=system |
"{A0EFA362-7357-4F79-95AD-67DEC81D1746}" = lport=445 | protocol=6 | dir=in | app=system |
"{A398E73E-3370-4D12-B914-1EAC4ECBB51D}" = lport=47995 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{AC94990B-693B-46D3-A1EF-60480B27CFA9}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{B43D04CF-BDA3-480A-B43D-E1EACFC9BBBD}" = lport=47984 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe |
"{BDE85504-26A8-4BC8-9865-8E871EE0280B}" = lport=138 | protocol=17 | dir=in | app=system |
"{CE8D8CFC-C8B1-4E7B-AED6-E57428C7601D}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D3A44543-0066-4985-9C42-27674BD1CF44}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{DB0C4685-3F0E-4C7D-8E5B-449EB6E2F8BA}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{DC774938-9B1C-4B29-B4E0-B14D18BF7B28}" = rport=445 | protocol=6 | dir=out | app=system |
"{DD960864-0A29-406F-8C8F-4B2C1AF54E58}" = lport=2869 | protocol=6 | dir=in | app=system |
"{E3033A6D-4A0E-4175-B27C-CE56E94CF34B}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{E9585B15-C56D-4E15-A314-CAD5A1170901}" = lport=137 | protocol=17 | dir=in | app=system |
"{EC480424-7810-48BB-9FBA-5682BE7AC820}" = rport=10243 | protocol=6 | dir=out | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{023F40E0-3979-47B9-873D-EFAD5298EDC2}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{0F9D407E-CC27-49E6-9E25-EB5BFD6148EA}" = protocol=6 | dir=in | app=c:\program files (x86)\bitspirit\bitspirit.exe |
"{10E8C780-7085-4694-AFC5-87F625911D3E}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{17F1BFB5-8ED1-4F90-AC51-07387954EB96}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{1A44E3A7-677A-453C-8309-9E6AE41B93A9}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{1C8869A9-D238-4933-B162-50E344E333D9}" = protocol=17 | dir=in | app=c:\program files (x86)\starcraft ii\starcraft ii public test.exe |
"{31654A92-E0BF-45AF-931C-05403C0C30DF}" = protocol=6 | dir=in | app=c:\program files (x86)\diablo iii\diablo iii.exe |
"{34A92824-5395-48C6-B7C2-8594D21BFA18}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{3B4A44F7-BD83-435B-AFCE-3D74D7B8AA2A}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{3C79A23C-C594-4072-9968-437753ACDA9E}" = protocol=6 | dir=in | app=c:\program files (x86)\starcraft ii\starcraft ii.exe |
"{440F1454-D0E6-45D1-AA9A-18ED97E9D523}" = protocol=6 | dir=in | app=c:\program files (x86)\battle.net\battle.net.exe |
"{4AF4B7DC-9B12-4F1E-9000-99F62D5F3F50}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{4E1C0F43-D833-45C3-B73F-CEC7F6615D7C}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{4F02A3EA-E609-467D-AE9B-23E1F9CA7B1A}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{50CAC736-4CF5-4CC9-861B-36DB67DF63E0}" = protocol=6 | dir=in | app=c:\program files (x86)\starcraft ii\starcraft ii public test.exe |
"{5931342A-0C1B-4500-AB83-39FF1A664808}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{647747D4-4794-4553-8057-AD6F0E44644B}" = protocol=17 | dir=in | app=c:\program files (x86)\diablo iii\diablo iii.exe |
"{69FF45B1-9F34-4F2B-A3D5-D9BB96ACFD8B}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{871F5F87-5F03-4B7A-BD15-23392E3EB804}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8CAA5C47-68E9-4BB4-9F24-734F4EE358E2}" = protocol=17 | dir=in | app=c:\program files (x86)\starcraft ii\starcraft ii.exe |
"{A07BBFAD-9B0A-480B-8520-91E0BA4DF4A4}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{AFFF0269-60CE-409F-9D79-578694720AD5}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{B11BF8D2-141F-4813-93B9-E36FCA658DDA}" = protocol=17 | dir=in | app=c:\program files (x86)\battle.net\battle.net.exe |
"{B3A07B80-DAAF-4E88-8D84-294BD40926FF}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{B90F2F67-84E0-46F0-A4DF-F8DC3DB34D47}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{BA3B99AC-51D6-4010-9A53-A53519D44C2A}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{CC38F328-8480-4D1A-A2FB-2909E6B16243}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{CF748484-4EB1-4BC9-877E-C74C086FCD8A}" = protocol=6 | dir=out | app=system |
"{E942E05F-0B4F-4230-8A67-52473147D50A}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe |
"{EA761BCC-7A9D-421A-9A36-4F881EAC8F48}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{EB741125-6B96-41D4-8DA9-967738271AF3}" = protocol=17 | dir=in | app=c:\program files (x86)\bitspirit\bitspirit.exe |
"{F7B4C930-B39F-4E84-9E13-E85F626F6B59}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{FA73EEF1-2664-4C51-94F9-A412A74FFB81}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{FDB9E43B-F1C3-460A-9EB2-AFC50B9BFA4A}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"TCP Query User{11DC1F47-21D3-4152-842A-60DDBE264C28}C:\program files (x86)\gigabyte\updmanager\runupd.exe" = protocol=6 | dir=in | app=c:\program files (x86)\gigabyte\updmanager\runupd.exe |
"TCP Query User{14993B07-03C5-4F79-B3B1-4489601E6E2F}C:\program files (x86)\gigabyte\easysaver\gbtupd.exe" = protocol=6 | dir=in | app=c:\program files (x86)\gigabyte\easysaver\gbtupd.exe |
"TCP Query User{39A7A639-319E-49CA-A248-9BAC7C5CBA2A}C:\program files (x86)\gigabyte\updmanager\gbtupd.exe" = protocol=6 | dir=in | app=c:\program files (x86)\gigabyte\updmanager\gbtupd.exe |
"TCP Query User{5B37D0AF-7781-497D-A528-6B0B3FCAFB40}C:\windows\syswow64\javaw.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\javaw.exe |
"TCP Query User{74E64BBE-AD4B-4B82-BFA9-FE65F973ACB4}C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe" = protocol=6 | dir=in | app=c:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe |
"TCP Query User{99177DAD-2203-4AAC-A8C0-7BCD580810F1}C:\windows\kmsemulator.exe" = protocol=6 | dir=in | app=c:\windows\kmsemulator.exe |
"TCP Query User{A99405C3-A466-4F7B-BBC6-969B81DFEF22}C:\program files (x86)\starcraft ii\versions\base32283\sc2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base32283\sc2.exe |
"TCP Query User{C4E2C38D-2721-4C77-990A-68B5659300EB}C:\program files (x86)\gigabyte\@bios\gwflash.exe" = protocol=6 | dir=in | app=c:\program files (x86)\gigabyte\@bios\gwflash.exe |
"TCP Query User{D47E0396-B8EF-4B87-ACDC-74038727D721}C:\program files (x86)\gigabyte\easysaver\updexe.exe" = protocol=6 | dir=in | app=c:\program files (x86)\gigabyte\easysaver\updexe.exe |
"UDP Query User{3B1E27F7-D06E-4F31-B1CD-9C5D228A9B48}C:\program files (x86)\gigabyte\easysaver\gbtupd.exe" = protocol=17 | dir=in | app=c:\program files (x86)\gigabyte\easysaver\gbtupd.exe |
"UDP Query User{44D3A689-E67B-4B7B-86BD-4A4790B5161A}C:\windows\kmsemulator.exe" = protocol=17 | dir=in | app=c:\windows\kmsemulator.exe |
"UDP Query User{65E27BF9-4F35-47CB-B73D-6F86D88F007A}C:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe" = protocol=17 | dir=in | app=c:\program files (x86)\heroes of the storm\versions\base35702\heroesofthestorm_x64.exe |
"UDP Query User{6C4FB709-E34C-4977-B621-107D448B2725}C:\program files (x86)\starcraft ii\versions\base32283\sc2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base32283\sc2.exe |
"UDP Query User{AC61B3FE-D462-4E03-A507-03B8179D4E84}C:\program files (x86)\gigabyte\easysaver\updexe.exe" = protocol=17 | dir=in | app=c:\program files (x86)\gigabyte\easysaver\updexe.exe |
"UDP Query User{BEBC2504-CBEE-48C1-BB9D-2B9C5DFB3350}C:\program files (x86)\gigabyte\updmanager\gbtupd.exe" = protocol=17 | dir=in | app=c:\program files (x86)\gigabyte\updmanager\gbtupd.exe |
"UDP Query User{DE6D295C-E15E-48FC-A89A-16F03876C77E}C:\program files (x86)\gigabyte\@bios\gwflash.exe" = protocol=17 | dir=in | app=c:\program files (x86)\gigabyte\@bios\gwflash.exe |
"UDP Query User{FBF82168-2E05-4AE2-BABE-546522F243CC}C:\program files (x86)\gigabyte\updmanager\runupd.exe" = protocol=17 | dir=in | app=c:\program files (x86)\gigabyte\updmanager\runupd.exe |
"UDP Query User{FFFA9F26-4946-48C0-ADA0-E664C21C028C}C:\windows\syswow64\javaw.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\javaw.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{14297226-E0A0-3781-8911-E9D529552663}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{26784146-6E05-3FF9-9335-786C7C0FB5BE}" = Microsoft .NET Framework 4.5.2
"{50813B8C-FCBB-3C61-8039-EAAA93029066}" = Microsoft .NET Framework 4.5.1 (CSY)
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90140000-0015-0405-1000-0000000FF1CE}" = Microsoft Office Access MUI (Czech) 2010
"{90140000-0016-0405-1000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2010
"{90140000-0018-0405-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2010
"{90140000-0019-0405-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (Czech) 2010
"{90140000-001A-0405-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (Czech) 2010
"{90140000-001B-0405-1000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2010
"{90140000-001F-0405-1000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-041B-1000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-002C-0405-1000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2010
"{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
"{90140000-0043-0405-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (Czech) 2010
"{90140000-0044-0405-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Czech) 2010
"{90140000-006E-0405-1000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2010
"{90140000-00A1-0405-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2010
"{90140000-00BA-0405-1000-0000000FF1CE}" = Microsoft Office Groove MUI (Czech) 2010
"{91140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029" = Microsoft .NET Framework 4.5.1 (čeština)
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.2
"{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"{A10E16AC-34A3-4BB9-83A3-408372AE557A}" = ESET NOD32 Antivirus
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Driver 353.06
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 353.06
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 353.06
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 2.4.5.44
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller Driver 352.65
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX System Software 9.15.0428
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 2.4.5.44
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GfExperienceService" = NVIDIA GeForce Experience Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD Audio Driver 1.3.34.3
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 2.4.5.44
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController" = SHIELD Wireless Controller Driver
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.28
"CCleaner" = CCleaner
"GIMP-2_is1" = GIMP 2.8.14
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"WinRAR archiver" = WinRAR 5.10 beta 4 (64-bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{07300F01-89CA-4CF8-92BD-2A605EB83C95}" = EasySaver B9.1214.1
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype™ 7.5
"{26A24AE4-039D-4CA4-87B4-2F83218031F0}" = Java 8 Update 31
"{2913C8E7-612B-47DA-B18D-A23E1A1B16E3}" = Update Manager B10.0728.1
"{319D91C6-3D44-436C-9F79-36C0D22372DC}" = TP-LINK Wireless Configuration Utility
"{38A1E3ED-D913-41D2-9953-A93D5ACE3ADF}" = TL-WN721N/TL-WN722N Driver
"{3DECD372-76A1-4483-BF10-B547790A3261}" = ON_OFF Charge B11.0110.1
"{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}" = Microsoft ASP.NET MVC 4 Runtime
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-0804-1033-1959-001802114130}" = Adobe Refresh Manager
"{AC76BA86-7AD7-1029-7B44-AB0000000001}" = Adobe Reader XI (11.0.11) - Czech
"{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}" = @BIOS
"{D8EEDC94-EE82-46A0-A7DB-812E3C6A0A6E}_is1" = PSD Viewer
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"Adobe Flash Player ActiveX" = Adobe Flash Player 17 ActiveX
"Battle.net" = Battle.net
"BitSpirit_is1" = BitSpirit v3.6.0.550 Stable
"BOSSAFX" = BOSSAFX
"Diablo III" = Diablo III
"ForexTime MT4" = ForexTime MT4
"Google Chrome" = Google Chrome
"Guild Wars 2" = Guild Wars 2
"Heroes of the Storm" = Heroes of the Storm
"Mozilla Firefox 32.0.2 (x86 cs)" = Mozilla Firefox 32.0.2 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"StarCraft II" = StarCraft II

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 19.6.2015 1:43:36 | Computer Name = maty-PC | Source = WinMgmt | ID = 10
Description =

Error - 19.6.2015 16:57:48 | Computer Name = maty-PC | Source = WinMgmt | ID = 10
Description =

Error - 19.6.2015 19:10:57 | Computer Name = maty-PC | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Cryptographic Services failed while processing the OnIdentity() call
in the System Writer Object. Details: AddCoreCsiFiles : GetNextFileMapContent() failed.

System
Error: The parameter is incorrect. .

Error - 19.6.2015 19:51:54 | Computer Name = maty-PC | Source = MsiInstaller | ID = 1013
Description =

Error - 19.6.2015 19:52:23 | Computer Name = maty-PC | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Cryptographic Services failed while processing the OnIdentity() call
in the System Writer Object. Details: AddCoreCsiFiles : GetNextFileMapContent() failed.

System
Error: The parameter is incorrect. .

Error - 19.6.2015 20:05:34 | Computer Name = maty-PC | Source = WinMgmt | ID = 10
Description =

Error - 20.6.2015 2:03:32 | Computer Name = maty-PC | Source = WinMgmt | ID = 10
Description =

Error - 20.6.2015 2:12:01 | Computer Name = maty-PC | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Cryptographic Services failed while processing the OnIdentity() call
in the System Writer Object. Details: AddCoreCsiFiles : GetNextFileMapContent() failed.

System
Error: The parameter is incorrect. .

Error - 20.6.2015 2:58:34 | Computer Name = maty-PC | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Cryptographic Services failed while processing the OnIdentity() call
in the System Writer Object. Details: AddCoreCsiFiles : GetNextFileMapContent() failed.

System
Error: The parameter is incorrect. .

Error - 20.6.2015 3:15:04 | Computer Name = maty-PC | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Cryptographic Services failed while processing the OnIdentity() call
in the System Writer Object. Details: AddCoreCsiFiles : GetNextFileMapContent() failed.

System
Error: The parameter is incorrect. .

[ System Events ]
Error - 2.4.2015 5:37:00 | Computer Name = maty-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 11:29:42 on ?2.?4.?2015 was unexpected.

Error - 2.4.2015 12:26:35 | Computer Name = maty-PC | Source = bowser | ID = 8003
Description =

Error - 3.4.2015 9:50:08 | Computer Name = maty-PC | Source = NetBT | ID = 4319
Description = A duplicate name has been detected on the TCP network. The IP address
of the computer that sent the message is in the data. Use nbtstat -n in a command
window to see which name is in the Conflict state.

Error - 3.4.2015 9:50:08 | Computer Name = maty-PC | Source = NetBT | ID = 4319
Description = A duplicate name has been detected on the TCP network. The IP address
of the computer that sent the message is in the data. Use nbtstat -n in a command
window to see which name is in the Conflict state.

Error - 3.4.2015 9:50:10 | Computer Name = maty-PC | Source = NetBT | ID = 4319
Description = A duplicate name has been detected on the TCP network. The IP address
of the computer that sent the message is in the data. Use nbtstat -n in a command
window to see which name is in the Conflict state.

Error - 3.4.2015 9:50:15 | Computer Name = maty-PC | Source = bowser | ID = 8003
Description =

Error - 6.4.2015 19:09:28 | Computer Name = maty-PC | Source = DCOM | ID = 10010
Description =

Error - 7.4.2015 5:28:15 | Computer Name = maty-PC | Source = DCOM | ID = 10010
Description =

Error - 14.4.2015 19:04:01 | Computer Name = maty-PC | Source = DCOM | ID = 10010
Description =

Error - 16.4.2015 18:35:04 | Computer Name = maty-PC | Source = DCOM | ID = 10010
Description =

< End of report >

OTL.txt:
OTL logfile created on: 20.6.2015 9:14:21 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\maty\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17843)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

8,00 Gb Total Physical Memory | 5,90 Gb Available Physical Memory | 73,82% Memory free
15,99 Gb Paging File | 12,97 Gb Available in Paging File | 81,11% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931,41 Gb Total Space | 804,97 Gb Free Space | 86,42% Space Free | Partition Type: NTFS

Computer Name: MATY-PC | User Name: maty | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - File not found --
PRC - [2015.06.20 08:09:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\maty\Desktop\OTL.exe
PRC - [2015.06.05 20:22:15 | 000,813,896 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2015.06.03 23:06:12 | 002,754,704 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2015.06.03 23:06:06 | 001,893,008 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2015.05.28 05:52:26 | 000,410,768 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2014.12.19 09:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011.09.08 07:34:42 | 000,974,944 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
PRC - [2009.08.24 14:38:06 | 000,068,136 | ---- | M] () -- C:\Program Files (x86)\Gigabyte\EasySaver\essvr.exe

========== Modules (No Company Name) ==========

MOD - [2015.06.05 20:22:14 | 015,003,464 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.124\PepperFlash\pepflashplayer.dll
MOD - [2015.06.05 20:22:13 | 001,281,864 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.124\libglesv2.dll
MOD - [2015.06.05 20:22:12 | 000,080,712 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.124\libegl.dll
MOD - [2015.06.03 23:06:11 | 000,011,920 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
MOD - [2013.09.05 00:14:10 | 004,300,456 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF

========== Services (SafeList) ==========

SRV:64bit: - [2015.06.03 23:06:06 | 001,152,656 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe -- (GfExperienceService)
SRV:64bit: - [2015.06.03 23:06:03 | 023,007,376 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV:64bit: - [2015.05.25 20:19:13 | 001,255,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack)
SRV:64bit: - [2015.05.22 20:47:34 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2013.05.27 07:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2011.09.08 07:34:42 | 000,974,944 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe -- (ekrn)
SRV:64bit: - [2010.04.06 16:30:38 | 000,031,272 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysNative\AppleChargerSrv.exe -- (AppleChargerSrv)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2008.05.08 01:29:38 | 000,122,880 | ---- | M] (CrypKey (Canada) Ltd.) [Auto | Running] -- C:\Windows\SysNative\Crypserv.exe -- (Crypkey License)
SRV - [2015.06.12 06:41:15 | 000,268,464 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2015.06.03 23:06:06 | 001,893,008 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2015.05.28 05:52:26 | 000,410,768 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2015.02.18 19:11:32 | 000,315,488 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2014.12.19 09:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2014.09.18 22:27:06 | 000,114,288 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014.04.12 00:08:08 | 000,103,608 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2014.03.21 00:49:18 | 000,067,224 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009.08.24 14:38:06 | 000,068,136 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Gigabyte\EasySaver\essvr.exe -- (ES lite Service)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2015.06.03 23:06:03 | 000,019,600 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms)
DRV:64bit: - [2015.05.28 09:04:11 | 000,195,912 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2015.05.19 05:29:01 | 000,046,768 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:64bit: - [2014.08.16 21:58:08 | 000,061,120 | ---- | M] (StdLib) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\{2b929fe1-284b-4766-afb9-19b0915b99b0}Gw64.sys -- ({2b929fe1-284b-4766-afb9-19b0915b99b0}Gw64)
DRV:64bit: - [2013.10.02 04:22:20 | 000,056,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2013.08.05 17:37:00 | 000,094,208 | ---- | M] (Etron Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\EtronXHCI.sys -- (EtronXHCI)
DRV:64bit: - [2013.08.05 17:37:00 | 000,065,408 | ---- | M] (Etron Technology Inc) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\EtronHub3.sys -- (EtronHub3)
DRV:64bit: - [2012.08.23 16:12:16 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2012.08.23 16:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012.08.23 16:08:26 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2012.03.01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011.08.09 13:57:12 | 000,202,576 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:64bit: - [2011.08.04 09:20:38 | 000,146,432 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:64bit: - [2011.08.04 09:20:38 | 000,137,144 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV:64bit: - [2011.04.20 03:07:48 | 001,930,240 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athurx.sys -- (athur)
DRV:64bit: - [2011.03.11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.03.11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011.01.13 13:58:30 | 000,413,800 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011.01.10 18:16:08 | 000,021,104 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\drivers\AppleCharger.sys -- (AppleCharger)
DRV:64bit: - [2010.11.21 05:23:48 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub)
DRV:64bit: - [2010.11.21 05:23:48 | 000,088,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:64bit: - [2010.11.21 05:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2010.11.21 05:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2008.03.17 19:12:26 | 000,028,664 | ---- | M] () [Kernel | System | Running] -- C:\Windows\SysNative\Ckldrv.sys -- (NetworkX)
DRV - [2015.06.20 08:01:52 | 000,025,640 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\gdrv.sys -- (gdrv)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com/?type=hp ... 1946719467
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://istart.webssearches.com/web/?typ ... earchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://istart.webssearches.com/?type=hp ... 1946719467
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com/?type=hp ... 1946719467
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://istart.webssearches.com/web/?typ ... earchTerms}

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-2848582999-1133703708-1847906036-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.delta-homes.com/web/?type ... earchTerms}
IE - HKU\S-1-5-21-2848582999-1133703708-1847906036-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://istart.webssearches.com/?type=hp ... 1946719467
IE - HKU\S-1-5-21-2848582999-1133703708-1847906036-1000\..\SearchScopes,DefaultScope = {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}
IE - HKU\S-1-5-21-2848582999-1133703708-1847906036-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://do-search.com/web/?utm_source=b& ... earchTerms}
IE - HKU\S-1-5-21-2848582999-1133703708-1847906036-1000\..\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}: "URL" = http://do-search.com/web/?utm_source=b& ... earchTerms}
IE - HKU\S-1-5-21-2848582999-1133703708-1847906036-1000\..\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}: "URL" = http://do-search.com/web/?utm_source=b& ... earchTerms}
IE - HKU\S-1-5-21-2848582999-1133703708-1847906036-1000\..\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}: "URL" = http://do-search.com/web/?utm_source=b& ... earchTerms}
IE - HKU\S-1-5-21-2848582999-1133703708-1847906036-1000\..\SearchScopes\{E9DB9E7B-A275-41D1-8158-D0423FBEBDEB}: "URL" = http://do-search.com/web/?utm_source=b& ... earchTerms}
IE - HKU\S-1-5-21-2848582999-1133703708-1847906036-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "delta-homes"
FF - prefs.js..browser.search.selectedEngine: "delta-homes"
FF - prefs.js..browser.startup.homepage: "http://www.delta-homes.com/?type=hp&ts= ... 1946719467"
FF - prefs.js..extensions.enabledAddons: quick_searchff%40gmail.com:5.4.10
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:32.0.2
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.31.2: C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2: C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\faststartff@gmail.com: C:\Users\maty\AppData\Roaming\Mozilla\Firefox\Profiles\4vxtyn36.default\extensions\faststartff@gmail.com [2014.12.12 21:27:07 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\quick_searchff@gmail.com: C:\Users\maty\AppData\Roaming\Mozilla\Firefox\Profiles\4vxtyn36.default\extensions\quick_searchff@gmail.com [2015.05.05 12:38:07 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 32.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 32.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2014.06.27 11:23:15 | 000,000,000 | ---D | M]

[2014.09.16 23:03:49 | 000,000,000 | ---D | M] (No name found) -- C:\Users\maty\AppData\Roaming\Mozilla\Extensions
[2015.05.20 17:35:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\maty\AppData\Roaming\Mozilla\Firefox\Profiles\4vxtyn36.default\extensions
[2014.12.12 21:27:07 | 000,000,000 | ---D | M] ("Fast Start") -- C:\Users\maty\AppData\Roaming\Mozilla\Firefox\Profiles\4vxtyn36.default\extensions\faststartff@gmail.com
[2015.05.05 12:38:07 | 000,000,000 | ---D | M] ("Fast Start") -- C:\Users\maty\AppData\Roaming\Mozilla\Firefox\Profiles\4vxtyn36.default\extensions\quick_searchff@gmail.com
[2014.09.18 22:27:00 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2014.09.18 22:27:08 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

========== Chrome ==========

CHR - Extension: No name found = C:\Users\maty\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0\
CHR - Extension: No name found = C:\Users\maty\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0\
CHR - Extension: No name found = C:\Users\maty\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0\
CHR - Extension: No name found = C:\Users\maty\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0\
CHR - Extension: No name found = C:\Users\maty\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh\3.2_0\
CHR - Extension: No name found = C:\Users\maty\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.1.0_0\
CHR - Extension: No name found = C:\Users\maty\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0\

O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (no name) - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4:64bit: - HKLM..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [ShadowPlay] C:\Windows\SysNative\nvspcap64.dll (NVIDIA Corporation)
O4 - HKU\S-1-5-21-2848582999-1133703708-1847906036-1000..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O4 - HKLM..\RunOnce: [GBTUpd] C:\Program Files (x86)\Gigabyte\UpdManager\PreRun.exe (PreRun)
O4 - Startup: C:\Users\maty\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EasySaver.lnk = C:\Program Files (x86)\Gigabyte\EasySaver\eslite.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2848582999-1133703708-1847906036-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2848582999-1133703708-1847906036-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8:64bit: - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000 File not found
O8:64bit: - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105 File not found
O8:64bit: - Extra context menu item: Stáhnout pomocí &BitSpiritu - C:\Program Files (x86)\BitSpirit\bsurl.htm ()
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105 File not found
O8 - Extra context menu item: Stáhnout pomocí &BitSpiritu - C:\Program Files (x86)\BitSpirit\bsurl.htm ()
O13 - gopher Prefix: missing
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4DD5D3BF-1D07-4BCD-A37C-3A7D89AB8C85}: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\ms-help - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)

Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 30 Days ==========

[2015.06.20 08:09:59 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\maty\Desktop\OTL.exe
[2015.06.20 01:51:21 | 000,094,208 | ---- | C] (Etron Technology Inc) -- C:\Windows\SysNative\drivers\EtronXHCI.sys
[2015.06.20 01:51:21 | 000,065,408 | ---- | C] (Etron Technology Inc) -- C:\Windows\SysNative\drivers\EtronHub3.sys
[2015.06.20 01:34:29 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2015.06.20 01:34:09 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2015.06.20 01:10:49 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2015.06.20 01:10:49 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2015.06.20 01:10:49 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2015.06.20 01:09:21 | 000,000,000 | ---D | C] -- C:\Qoobox
[2015.06.20 01:09:03 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2015.06.16 21:27:33 | 000,000,000 | ---D | C] -- C:\Users\maty\Documents\Užitečné dokumenty
[2015.06.16 21:22:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2015.06.16 21:22:35 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2015.06.16 21:17:45 | 000,000,000 | ---D | C] -- C:\Users\maty\Desktop\FOTKY MONITOR
[2015.06.16 21:16:25 | 000,000,000 | ---D | C] -- C:\Users\maty\Documents\Fotky
[2015.06.16 21:12:58 | 000,000,000 | ---D | C] -- C:\Users\maty\Documents\Martinka_promena
[2015.06.16 21:10:41 | 000,000,000 | ---D | C] -- C:\Users\maty\Desktop\Fleknet+gliss
[2015.06.16 21:10:26 | 000,000,000 | ---D | C] -- C:\Users\maty\Desktop\Články-záloha
[2015.06.16 20:34:56 | 000,571,024 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvStreaming.exe
[2015.06.16 20:32:00 | 030,480,528 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2015.06.16 20:32:00 | 022,946,960 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2015.06.16 20:32:00 | 017,486,856 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2015.06.16 20:32:00 | 016,185,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2015.06.16 20:32:00 | 015,864,064 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2015.06.16 20:32:00 | 014,987,528 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2015.06.16 20:32:00 | 014,495,448 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2015.06.16 20:32:00 | 013,304,280 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2015.06.16 20:32:00 | 012,852,152 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2015.06.16 20:32:00 | 011,830,512 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2015.06.16 20:32:00 | 002,932,368 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2015.06.16 20:32:00 | 002,599,056 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2015.06.16 20:32:00 | 001,898,312 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6435306.dll
[2015.06.16 20:32:00 | 001,557,832 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6435306.dll
[2015.06.16 20:32:00 | 001,099,808 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll
[2015.06.16 20:32:00 | 001,059,984 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFR64.dll
[2015.06.16 20:32:00 | 001,050,440 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\NvFBC64.dll
[2015.06.16 20:32:00 | 000,982,856 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFR.dll
[2015.06.16 20:32:00 | 000,974,480 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvFBC.dll
[2015.06.16 20:32:00 | 000,939,080 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2015.06.16 20:32:00 | 000,195,912 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda64v.sys
[2015.06.16 20:32:00 | 000,175,880 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2015.06.16 20:32:00 | 000,154,256 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2015.06.16 20:32:00 | 000,150,648 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglshim64.dll
[2015.06.16 20:32:00 | 000,128,512 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglshim32.dll
[2015.06.16 20:32:00 | 000,031,552 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdap64.dll
[2015.06.16 20:31:59 | 003,379,680 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2015.06.16 20:31:59 | 002,986,392 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2015.06.16 20:26:57 | 000,000,000 | ---D | C] -- C:\Users\maty\AppData\Local\NVIDIA
[2015.06.16 20:26:48 | 001,756,424 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvspbridge64.dll
[2015.06.16 20:26:48 | 001,571,696 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvspcap64.dll
[2015.06.16 20:26:48 | 001,320,304 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvspcap.dll
[2015.06.16 20:26:48 | 001,316,000 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvspbridge.dll
[2015.06.16 20:26:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
[2015.06.16 20:26:15 | 000,061,616 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvaudcap64v.dll
[2015.06.16 20:26:15 | 000,057,520 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvaudcap32v.dll
[2015.06.16 20:26:15 | 000,046,768 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvvad64v.sys
[2015.06.16 20:21:06 | 006,872,904 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2015.06.16 20:21:06 | 003,491,984 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2015.06.16 20:21:06 | 002,558,608 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll
[2015.06.16 20:21:06 | 000,385,168 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2015.06.16 20:21:06 | 000,062,608 | ---- | C] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2015.06.16 20:20:42 | 000,112,968 | ---- | C] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2015.06.16 20:20:42 | 000,105,288 | ---- | C] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2015.06.16 19:57:06 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appmgmt
[2015.06.14 19:57:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Heroes of the Storm
[2015.06.11 09:05:53 | 000,069,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\stream.sys
[2015.06.10 07:49:52 | 014,635,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2015.06.10 07:49:51 | 011,411,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2015.06.10 07:49:50 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2015.06.10 07:49:50 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwmp.dll
[2015.06.10 07:49:50 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwmp.dll
[2015.06.10 07:49:50 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdxm.ocx
[2015.06.10 07:49:50 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxmasf.dll
[2015.06.10 07:49:50 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdxm.ocx
[2015.06.10 07:49:50 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxmasf.dll
[2015.06.10 07:49:49 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2015.06.10 07:49:45 | 001,119,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aeinv.dll
[2015.06.10 07:49:45 | 001,021,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appraiser.dll
[2015.06.10 07:49:45 | 000,757,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\invagent.dll
[2015.06.10 07:49:45 | 000,700,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\generaltel.dll
[2015.06.10 07:49:45 | 000,423,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\devinv.dll
[2015.06.10 07:49:45 | 000,227,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aepdu.dll
[2015.06.10 07:49:45 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aepic.dll
[2015.06.10 07:49:45 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\acmigration.dll
[2015.06.10 07:48:58 | 001,255,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diagtrack.dll
[2015.06.10 07:48:57 | 001,162,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2015.06.10 07:48:57 | 000,424,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2015.06.10 07:48:56 | 005,569,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2015.06.10 07:48:56 | 003,989,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2015.06.10 07:48:56 | 001,461,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2015.06.10 07:48:56 | 000,879,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\advapi32.dll
[2015.06.10 07:48:55 | 003,934,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2015.06.10 07:48:55 | 001,728,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2015.06.10 07:48:55 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2015.06.10 07:48:55 | 000,404,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tracerpt.exe
[2015.06.10 07:48:55 | 000,364,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tracerpt.exe
[2015.06.10 07:48:55 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2015.06.10 07:48:55 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rstrui.exe
[2015.06.10 07:48:55 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2015.06.10 07:48:55 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2015.06.10 07:48:54 | 000,879,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tdh.dll
[2015.06.10 07:48:54 | 000,635,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tdh.dll
[2015.06.10 07:48:54 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2015.06.10 07:48:54 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2015.06.10 07:48:54 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sechost.dll
[2015.06.10 07:48:54 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\smss.exe
[2015.06.10 07:48:54 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\logman.exe
[2015.06.10 07:48:54 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\logman.exe
[2015.06.10 07:48:54 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2015.06.10 07:48:53 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\auditpol.exe
[2015.06.10 07:48:53 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\typeperf.exe
[2015.06.10 07:48:53 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\relog.exe
[2015.06.10 07:48:52 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2015.06.10 07:48:52 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srclient.dll
[2015.06.10 07:48:52 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\auditpol.exe
[2015.06.10 07:48:52 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2015.06.10 07:48:52 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\typeperf.exe
[2015.06.10 07:48:52 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\relog.exe
[2015.06.10 07:48:52 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2015.06.10 07:48:52 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2015.06.10 07:48:52 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diskperf.exe
[2015.06.10 07:48:52 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\diskperf.exe
[2015.06.10 07:48:52 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2015.06.10 07:48:52 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2015.06.10 07:48:52 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2015.06.10 07:48:52 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2015.06.10 07:48:51 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2015.06.10 07:48:51 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2015.06.10 07:48:51 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2015.06.10 07:48:51 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2015.06.10 07:48:51 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2015.06.10 07:48:51 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2015.06.10 07:48:51 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2015.06.10 07:48:51 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2015.06.10 07:48:51 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2015.06.10 07:48:51 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2015.06.10 07:48:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2015.06.10 07:48:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2015.06.10 07:48:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2015.06.10 07:48:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2015.06.10 07:48:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2015.06.10 07:48:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2015.06.10 07:48:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2015.06.10 07:48:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.06.10 07:48:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.06.10 07:48:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2015.06.10 07:48:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2015.06.10 07:48:51 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2015.06.10 07:48:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2015.06.10 07:48:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2015.06.10 07:48:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2015.06.10 07:48:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2015.06.10 07:48:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2015.06.10 07:48:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2015.06.10 07:48:51 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2015.06.10 07:48:50 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2015.06.10 07:48:50 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\apisetschema.dll
[2015.06.10 07:48:50 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apisetschema.dll
[2015.06.10 07:48:50 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2015.06.10 07:48:50 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2015.06.10 07:48:50 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2015.06.10 07:48:50 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2015.06.10 07:48:50 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2015.06.10 07:48:50 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2015.06.10 07:48:50 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2015.06.10 07:48:50 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2015.06.10 07:48:50 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2015.06.10 07:48:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2015.06.10 07:48:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2015.06.10 07:48:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2015.06.10 07:48:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2015.06.10 07:48:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2015.06.10 07:48:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2015.06.10 07:48:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2015.06.10 07:48:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2015.06.10 07:48:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2015.06.10 07:48:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2015.06.10 07:48:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2015.06.10 07:48:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2015.06.10 07:48:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2015.06.10 07:48:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2015.06.10 07:48:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2015.06.10 07:48:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2015.06.10 07:48:50 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2015.06.10 07:48:49 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2015.06.10 07:48:49 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2015.06.10 07:48:46 | 000,686,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adtschema.dll
[2015.06.10 07:48:46 | 000,686,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adtschema.dll
[2015.06.10 07:48:45 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msaudite.dll
[2015.06.10 07:48:45 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msaudite.dll
[2015.06.10 07:48:45 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UtcResources.dll
[2015.06.10 07:48:44 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msobjs.dll
[2015.06.10 07:48:44 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msobjs.dll
[2015.06.10 07:48:15 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll
[2015.06.10 07:47:40 | 000,720,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2015.06.10 07:47:40 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
[2015.06.10 07:47:40 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2015.06.10 07:47:40 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
[2015.06.10 07:47:40 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll
[2015.06.10 07:47:40 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
[2015.06.10 07:47:40 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2015.06.10 07:47:40 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2015.06.10 07:47:39 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\JavaScriptCollectionAgent.dll
[2015.06.10 07:47:39 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
[2015.06.10 07:47:37 | 002,052,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2015.06.10 07:47:37 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2015.06.10 07:47:37 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2015.06.10 07:47:36 | 000,968,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2015.06.10 07:47:36 | 000,664,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2015.06.10 07:47:36 | 000,620,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2015.06.10 07:47:36 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2015.06.10 07:47:36 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll
[2015.06.10 07:47:35 | 000,801,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2015.06.10 07:47:35 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2015.06.10 07:47:35 | 000,316,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2015.06.10 07:47:34 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2015.06.10 07:47:34 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2015.06.10 07:47:33 | 002,125,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2015.06.10 07:47:33 | 001,155,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2015.06.10 07:47:32 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2015.06.10 07:47:31 | 000,341,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2015.06.10 07:47:31 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2015.06.10 07:47:31 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2015.06.10 07:47:30 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2015.06.10 07:47:30 | 000,490,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2015.06.10 07:47:29 | 001,359,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2015.06.10 07:47:29 | 000,816,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2015.06.10 07:47:29 | 000,814,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2015.06.10 07:47:29 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2015.06.10 07:47:28 | 006,026,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2015.06.10 07:47:28 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2015.06.10 07:47:27 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2015.06.10 07:47:27 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
[2015.06.07 17:17:54 | 000,000,000 | ---D | C] -- C:\Users\maty\Documents\Heroes of the Storm
[2015.06.07 12:14:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Heroes of the Storm
[2015.06.01 23:54:07 | 000,000,000 | ---D | C] -- C:\Users\maty\AppData\Local\GWX
[2015.05.29 17:00:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ForexTime MT4
[2015.05.29 17:00:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ForexTime MT4
[2015.05.27 14:45:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BOSSAFX
[2015.05.27 14:45:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BOSSAFX
[2015.05.24 16:34:53 | 000,000,000 | ---D | C] -- C:\Users\maty\Documents\Práce životopisy

========== Files - Modified Within 30 Days ==========

[2015.06.20 09:15:12 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2015.06.20 08:48:02 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015.06.20 08:41:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2015.06.20 08:38:13 | 000,000,952 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015.06.20 08:17:01 | 000,026,576 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2015.06.20 08:17:01 | 000,026,576 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2015.06.20 08:09:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\maty\Desktop\OTL.exe
[2015.06.20 08:03:03 | 000,000,948 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015.06.20 08:02:14 | 000,000,198 | ---- | M] () -- C:\Windows\tasks\AutoKMS.job
[2015.06.20 08:02:13 | 000,000,202 | ---- | M] () -- C:\Windows\tasks\AutoKMSDaily.job
[2015.06.20 08:02:07 | 000,078,848 | ---- | M] () -- C:\Windows\KMSEmulator.exe
[2015.06.20 08:01:52 | 000,025,640 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\Windows\gdrv.sys
[2015.06.20 08:01:42 | 2145,312,767 | -HS- | M] () -- C:\hiberfil.sys
[2015.06.16 21:22:36 | 000,000,822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2015.06.16 20:01:59 | 000,001,151 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2015.06.16 20:01:55 | 000,002,283 | ---- | M] () -- C:\Users\maty\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2015.06.16 20:01:55 | 000,001,441 | ---- | M] () -- C:\Users\maty\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2015.06.14 19:57:10 | 000,001,193 | ---- | M] () -- C:\Users\Public\Desktop\Heroes of the Storm.lnk
[2015.06.12 06:41:14 | 000,778,416 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2015.06.12 06:41:14 | 000,142,512 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2015.06.12 06:36:17 | 001,583,226 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2015.06.12 06:36:17 | 000,668,564 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2015.06.12 06:36:17 | 000,653,930 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2015.06.12 06:36:17 | 000,141,210 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2015.06.12 06:36:17 | 000,121,802 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2015.06.12 06:29:52 | 000,433,040 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2015.06.03 23:04:55 | 001,320,304 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvspcap.dll
[2015.06.03 23:04:55 | 001,316,000 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvspbridge.dll
[2015.06.03 23:04:45 | 001,756,424 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvspbridge64.dll
[2015.06.03 23:04:45 | 001,571,696 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvspcap64.dll
[2015.05.29 17:00:52 | 004,475,936 | ---- | M] (MetaQuotes Software Corp.) -- C:\Windows\SysNative\MetaViewer64.dll
[2015.05.29 17:00:52 | 000,001,934 | ---- | M] () -- C:\Users\Public\Desktop\ForexTime MT4.lnk
[2015.05.28 09:04:11 | 042,719,888 | ---- | M] () -- C:\Windows\SysNative\nvcompiler.dll
[2015.05.28 09:04:11 | 037,741,712 | ---- | M] () -- C:\Windows\SysWow64\nvcompiler.dll
[2015.05.28 09:04:11 | 030,480,528 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglv64.dll
[2015.05.28 09:04:11 | 022,946,960 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglv32.dll
[2015.05.28 09:04:11 | 017,486,856 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvwgf2umx.dll
[2015.05.28 09:04:11 | 016,185,352 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvopencl.dll
[2015.05.28 09:04:11 | 015,864,064 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvd3dumx.dll
[2015.05.28 09:04:11 | 014,987,528 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvwgf2um.dll
[2015.05.28 09:04:11 | 014,495,448 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuda.dll
[2015.05.28 09:04:11 | 013,304,280 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvopencl.dll
[2015.05.28 09:04:11 | 012,852,152 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvd3dum.dll
[2015.05.28 09:04:11 | 011,830,512 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuda.dll
[2015.05.28 09:04:11 | 003,379,680 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvapi64.dll
[2015.05.28 09:04:11 | 002,986,392 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvapi.dll
[2015.05.28 09:04:11 | 002,932,368 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcuvid.dll
[2015.05.28 09:04:11 | 002,599,056 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvcuvid.dll
[2015.05.28 09:04:11 | 001,898,312 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispco6435306.dll
[2015.05.28 09:04:11 | 001,558,848 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdagenco6420103.dll
[2015.05.28 09:04:11 | 001,557,832 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvdispgenco6435306.dll
[2015.05.28 09:04:11 | 001,099,808 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvumdshimx.dll
[2015.05.28 09:04:11 | 001,059,984 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvIFR64.dll
[2015.05.28 09:04:11 | 001,050,440 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\NvFBC64.dll
[2015.05.28 09:04:11 | 000,982,856 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvIFR.dll
[2015.05.28 09:04:11 | 000,974,480 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\NvFBC.dll
[2015.05.28 09:04:11 | 000,939,080 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvumdshim.dll
[2015.05.28 09:04:11 | 000,195,912 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvhda64v.sys
[2015.05.28 09:04:11 | 000,175,880 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvinitx.dll
[2015.05.28 09:04:11 | 000,154,256 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvinit.dll
[2015.05.28 09:04:11 | 000,150,648 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvoglshim64.dll
[2015.05.28 09:04:11 | 000,128,512 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvoglshim32.dll
[2015.05.28 09:04:11 | 000,112,968 | ---- | M] (Khronos Group) -- C:\Windows\SysNative\OpenCL.dll
[2015.05.28 09:04:11 | 000,105,288 | ---- | M] (Khronos Group) -- C:\Windows\SysWow64\OpenCL.dll
[2015.05.28 09:04:11 | 000,031,552 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvhdap64.dll
[2015.05.28 09:04:11 | 000,030,966 | ---- | M] () -- C:\Windows\SysNative\nvinfo.pb
[2015.05.28 06:15:29 | 003,491,984 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvc64.dll
[2015.05.28 06:15:29 | 002,558,608 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvsvcr.dll
[2015.05.28 06:15:29 | 000,385,168 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvmctray.dll
[2015.05.28 06:15:29 | 000,062,608 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvshext.dll
[2015.05.28 06:15:28 | 006,872,904 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\nvcpl.dll
[2015.05.28 05:52:27 | 000,571,024 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWow64\nvStreaming.exe
[2015.05.27 14:45:47 | 000,001,878 | ---- | M] () -- C:\Users\Public\Desktop\BOSSAFX.lnk
[2015.05.27 12:48:20 | 004,408,727 | ---- | M] () -- C:\Windows\SysNative\nvcoproc.bin
[2015.05.25 20:24:00 | 005,569,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2015.05.25 20:21:21 | 001,728,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2015.05.25 20:19:27 | 000,362,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2015.05.25 20:19:27 | 000,243,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2015.05.25 20:19:27 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2015.05.25 20:19:26 | 000,215,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2015.05.25 20:19:13 | 001,255,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\diagtrack.dll
[2015.05.25 20:19:10 | 000,879,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tdh.dll
[2015.05.25 20:19:10 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2015.05.25 20:19:10 | 000,029,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2015.05.25 20:19:09 | 000,503,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2015.05.25 20:19:09 | 000,113,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\sechost.dll
[2015.05.25 20:19:09 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\srclient.dll
[2015.05.25 20:19:09 | 000,028,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2015.05.25 20:19:04 | 000,309,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2015.05.25 20:19:04 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2015.05.25 20:19:02 | 001,461,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2015.05.25 20:19:02 | 001,162,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2015.05.25 20:19:02 | 000,424,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2015.05.25 20:18:56 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2015.05.25 20:18:54 | 000,879,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\advapi32.dll
[2015.05.25 20:18:45 | 000,404,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tracerpt.exe
[2015.05.25 20:18:45 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\typeperf.exe
[2015.05.25 20:18:39 | 000,112,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\smss.exe
[2015.05.25 20:18:32 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rstrui.exe
[2015.05.25 20:18:30 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\relog.exe
[2015.05.25 20:18:19 | 000,104,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\logman.exe
[2015.05.25 20:18:11 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\diskperf.exe
[2015.05.25 20:18:08 | 000,338,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2015.05.25 20:18:04 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\auditpol.exe
[2015.05.25 20:14:26 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msobjs.dll
[2015.05.25 20:14:04 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msaudite.dll
[2015.05.25 20:11:40 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\apisetschema.dll
[2015.05.25 20:11:40 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2015.05.25 20:11:40 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2015.05.25 20:11:40 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2015.05.25 20:11:40 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2015.05.25 20:11:40 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2015.05.25 20:11:40 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2015.05.25 20:11:40 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2015.05.25 20:11:40 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2015.05.25 20:11:40 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2015.05.25 20:11:40 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2015.05.25 20:11:40 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2015.05.25 20:11:40 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2015.05.25 20:11:40 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.05.25 20:11:40 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2015.05.25 20:11:40 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2015.05.25 20:11:40 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2015.05.25 20:11:40 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2015.05.25 20:11:40 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2015.05.25 20:11:39 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2015.05.25 20:11:39 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2015.05.25 20:11:39 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2015.05.25 20:11:39 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2015.05.25 20:11:39 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2015.05.25 20:11:39 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2015.05.25 20:11:39 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2015.05.25 20:11:39 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2015.05.25 20:11:39 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2015.05.25 20:11:39 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2015.05.25 20:11:38 | 000,686,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\adtschema.dll
[2015.05.25 20:07:34 | 003,989,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2015.05.25 20:07:34 | 003,934,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2015.05.25 20:01:42 | 000,635,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tdh.dll
[2015.05.25 20:01:35 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2015.05.25 20:00:44 | 000,040,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\typeperf.exe
[2015.05.25 20:00:40 | 000,364,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tracerpt.exe
[2015.05.25 20:00:28 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2015.05.25 20:00:25 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\relog.exe
[2015.05.25 20:00:17 | 000,082,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\logman.exe
[2015.05.25 20:00:09 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\diskperf.exe
[2015.05.25 20:00:04 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\auditpol.exe
[2015.05.25 19:59:52 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2015.05.25 19:57:31 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msobjs.dll
[2015.05.25 19:57:15 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msaudite.dll
[2015.05.25 19:55:18 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\apisetschema.dll
[2015.05.25 19:55:18 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2015.05.25 19:55:18 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2015.05.25 19:55:18 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2015.05.25 19:55:18 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2015.05.25 19:55:18 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2015.05.25 19:55:18 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2015.05.25 19:55:18 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2015.05.25 19:55:18 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2015.05.25 19:55:18 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2015.05.25 19:55:18 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2015.05.25 19:55:18 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.05.25 19:55:18 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2015.05.25 19:55:18 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2015.05.25 19:55:18 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2015.05.25 19:55:18 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2015.05.25 19:55:18 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2015.05.25 19:55:18 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2015.05.25 19:55:18 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2015.05.25 19:55:18 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2015.05.25 19:55:18 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2015.05.25 19:55:18 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2015.05.25 19:55:18 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2015.05.25 19:55:18 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2015.05.25 19:55:18 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2015.05.25 19:55:17 | 000,686,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\adtschema.dll
[2015.05.25 19:00:56 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\UtcResources.dll
[2015.05.25 18:50:38 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2015.05.25 18:50:36 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2015.05.25 18:48:25 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2015.05.25 18:48:25 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2015.05.25 18:48:25 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2015.05.25 18:48:25 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2015.05.23 05:15:40 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2015.05.23 05:15:02 | 000,047,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
[2015.05.23 05:14:51 | 000,341,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2015.05.23 05:13:48 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
[2015.05.23 05:08:33 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2015.05.23 05:06:27 | 000,478,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2015.05.23 05:05:21 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2015.05.23 05:05:06 | 000,664,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2015.05.23 05:04:50 | 000,620,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2015.05.23 04:52:43 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
[2015.05.23 04:49:54 | 000,168,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2015.05.23 04:48:21 | 000,076,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2015.05.23 04:37:45 | 002,052,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2015.05.23 04:37:25 | 001,155,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2015.05.23 04:14:55 | 000,710,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2015.05.22 21:16:44 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll
[2015.05.22 21:01:42 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2015.05.22 21:00:54 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll
[2015.05.22 21:00:47 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2015.05.22 21:00:25 | 000,584,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2015.05.22 20:59:27 | 000,088,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
[2015.05.22 20:52:27 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2015.05.22 20:52:21 | 006,026,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2015.05.22 20:48:50 | 000,633,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2015.05.22 20:47:49 | 000,144,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2015.05.22 20:47:34 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
[2015.05.22 20:47:12 | 000,816,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2015.05.22 20:47:03 | 000,814,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2015.05.22 20:40:17 | 000,968,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2015.05.22 20:36:15 | 000,490,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2015.05.22 20:29:31 | 000,077,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\JavaScriptCollectionAgent.dll
[2015.05.22 20:25:02 | 000,199,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2015.05.22 20:24:10 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2015.05.22 20:21:18 | 000,316,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2015.05.22 20:18:41 | 000,700,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\generaltel.dll
[2015.05.22 20:18:29 | 000,757,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\invagent.dll
[2015.05.22 20:18:24 | 000,423,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\devinv.dll
[2015.05.22 20:18:22 | 001,021,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\appraiser.dll
[2015.05.22 20:18:21 | 000,227,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aepdu.dll
[2015.05.22 20:18:21 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\acmigration.dll
[2015.05.22 20:13:03 | 001,119,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aeinv.dll
[2015.05.22 20:07:35 | 000,720,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2015.05.22 20:06:53 | 000,801,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2015.05.22 20:05:28 | 001,359,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2015.05.22 20:05:06 | 002,125,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2015.05.22 19:26:39 | 000,800,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2015.05.21 15:19:52 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aepic.dll

========== Files Created - No Company Name ==========

[2015.06.20 08:12:12 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2015.06.20 01:10:49 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2015.06.20 01:10:49 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2015.06.20 01:10:49 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2015.06.20 01:10:49 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2015.06.20 01:10:49 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2015.06.16 21:22:36 | 000,000,822 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2015.06.16 20:31:59 | 042,719,888 | ---- | C] () -- C:\Windows\SysNative\nvcompiler.dll
[2015.06.16 20:31:59 | 037,741,712 | ---- | C] () -- C:\Windows\SysWow64\nvcompiler.dll
[2015.06.16 20:21:06 | 004,408,727 | ---- | C] () -- C:\Windows\SysNative\nvcoproc.bin
[2015.06.07 12:30:52 | 000,001,193 | ---- | C] () -- C:\Users\Public\Desktop\Heroes of the Storm.lnk
[2015.05.29 17:00:46 | 000,001,934 | ---- | C] () -- C:\Users\Public\Desktop\ForexTime MT4.lnk
[2015.05.27 14:45:47 | 000,001,878 | ---- | C] () -- C:\Users\Public\Desktop\BOSSAFX.lnk
[2014.06.28 15:09:43 | 000,000,004 | ---- | C] () -- C:\Windows\vx86036.dat
[2014.06.28 15:09:07 | 000,000,127 | ---- | C] () -- C:\Windows\Crypkey.ini
[2014.06.28 15:09:03 | 000,027,648 | R--- | C] () -- C:\Windows\Setup_ck.exe
[2014.06.28 15:09:03 | 000,018,432 | ---- | C] () -- C:\Windows\Setup_ck.dll
[2014.06.28 15:09:03 | 000,011,776 | ---- | C] () -- C:\Windows\Ckrfresh.exe
[2014.06.28 10:18:13 | 000,647,168 | ---- | C] () -- C:\Windows\AutoKMS.exe
[2014.06.28 10:18:13 | 000,000,184 | ---- | C] () -- C:\Windows\AutoKMS.ini
[2014.06.28 09:55:45 | 000,078,848 | ---- | C] () -- C:\Windows\KMSEmulator.exe
[2014.06.27 12:01:08 | 000,026,624 | ---- | C] () -- C:\Windows\GetIe.dll
[2014.06.27 11:46:36 | 000,000,008 | RH-- | C] () -- C:\Users\maty\hwid
[2014.06.27 11:07:03 | 001,557,970 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2014.06.27 10:53:31 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini

========== ZeroAccess Check ==========

[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2015.02.13 07:22:33 | 014,177,280 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2015.02.13 07:26:18 | 012,875,264 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.21 05:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2015.06.08 16:10:01 | 000,000,000 | ---D | M] -- C:\Users\Guest\AppData\Roaming\Elex-tech
[2014.07.15 11:40:59 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\Battle.net
[2014.08.05 19:36:55 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\BitSpirit
[2014.08.18 09:17:47 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\Free Picture Solutions
[2015.01.02 20:57:53 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\Guild Wars 2
[2015.05.26 18:43:26 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\MetaQuotes
[2014.10.19 17:19:10 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\Opera Software
[2014.06.27 11:00:38 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\Oracle
[2014.06.27 10:52:37 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\TP-LINK

========== Custom Scans ==========

< >
[2009.07.14 07:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 07:08:49 | 000,032,586 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2014.06.27 11:15:59 | 000,000,830 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2014.06.27 11:39:21 | 000,000,948 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2014.06.27 11:39:23 | 000,000,952 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2014.06.28 10:18:13 | 000,000,202 | ---- | C] () -- C:\Windows\Tasks\AutoKMSDaily.job
[2014.06.28 10:18:14 | 000,000,198 | ---- | C] () -- C:\Windows\Tasks\AutoKMS.job

< >

< MD5 for: AGP440.SYS >
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\AGP440.sys
[2009.07.14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\erdnt\cache64\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_552ea5111ec825a6\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.18231_none_3b457059383c66e6\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.22414_none_3be7afc0514717fa\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2010.11.21 05:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\SysNative\autochk.exe
[2010.11.21 05:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2010.11.21 05:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\SysWOW64\autochk.exe
[2010.11.21 05:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe

< MD5 for: CDROM.SYS >
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys

< MD5 for: CNGAUDIT.DLL >
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\erdnt\cache86\cngaudit.dll
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009.07.14 03:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009.07.14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\erdnt\cache64\cngaudit.dll
[2009.07.14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\SysNative\cngaudit.dll
[2009.07.14 03:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll

< MD5 for: CRYPTSVC.DLL >
[2015.02.03 05:50:56 | 000,190,976 | ---- | M] (Microsoft Corporation) MD5=00D0F7BA3B27126A3E25B540979A9F39 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22948_none_d492bbeccaa14239\cryptsvc.dll
[2010.11.21 05:24:16 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=15597883FBE9B056F276ADA3AD87D9AF -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_d4259ed3b16ed82a\cryptsvc.dll
[2014.07.07 04:06:31 | 000,187,904 | ---- | M] (Microsoft Corporation) MD5=19D511CC455C19DE1ADF60E6C39C85B6 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18526_none_d41cb8b3b175406a\cryptsvc.dll
[2015.02.03 05:30:56 | 000,187,904 | ---- | M] (Microsoft Corporation) MD5=1CD76A83B9E8E9A5A3519B39E28354D9 -- C:\Windows\erdnt\cache64\cryptsvc.dll
[2015.02.03 05:30:56 | 000,187,904 | ---- | M] (Microsoft Corporation) MD5=1CD76A83B9E8E9A5A3519B39E28354D9 -- C:\Windows\SysNative\cryptsvc.dll
[2015.02.03 05:30:56 | 000,187,904 | ---- | M] (Microsoft Corporation) MD5=1CD76A83B9E8E9A5A3519B39E28354D9 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18741_none_d4021b35b189f3e7\cryptsvc.dll
[2014.10.30 04:14:18 | 000,145,920 | ---- | M] (Microsoft Corporation) MD5=3031B5DC2A58A7BCE6651EA9B7DD6390 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22908_none_789f60191223613f\cryptsvc.dll
[2013.05.10 06:49:59 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=33ADF6E0853AB39EA1723BE82842C1D3 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18150_none_77d7a417f9359661\cryptsvc.dll
[2013.05.13 06:45:55 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=3897DFF247D9ED0006190349DE264E14 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18151_none_77d8a461f934afb8\cryptsvc.dll
[2013.07.09 16:47:30 | 000,186,880 | ---- | M] (Microsoft Corporation) MD5=434CCE8E7150CD1324C5FAA088D1D061 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22380_none_d45f6e88cac8f85b\cryptsvc.dll
[2015.02.03 05:12:14 | 000,143,872 | ---- | M] (Microsoft Corporation) MD5=49474B3E37969AF4B5C076F42B623AFF -- C:\Windows\erdnt\cache86\cryptsvc.dll
[2015.02.03 05:12:14 | 000,143,872 | ---- | M] (Microsoft Corporation) MD5=49474B3E37969AF4B5C076F42B623AFF -- C:\Windows\SysWOW64\cryptsvc.dll
[2015.02.03 05:12:14 | 000,143,872 | ---- | M] (Microsoft Corporation) MD5=49474B3E37969AF4B5C076F42B623AFF -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18741_none_77e37fb1f92c82b1\cryptsvc.dll
[2013.10.05 04:25:30 | 000,186,880 | ---- | M] (Microsoft Corporation) MD5=509D31797A4B8A3D6ED78A330B19A919 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22473_none_d46d4138cabe2596\cryptsvc.dll
[2014.07.07 03:40:07 | 000,143,872 | ---- | M] (Microsoft Corporation) MD5=623E143F2DF17C0106A9988F5D7DC878 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18526_none_77fe1d2ff917cf34\cryptsvc.dll
[2014.07.07 04:06:07 | 000,190,976 | ---- | M] (Microsoft Corporation) MD5=63A15BA9875364C4147B226CB70468B3 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22736_none_d49b8778ca9af94c\cryptsvc.dll
[2014.07.07 04:06:07 | 000,190,976 | ---- | M] (Microsoft Corporation) MD5=63A15BA9875364C4147B226CB70468B3 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22908_none_d4bdfb9cca80d275\cryptsvc.dll
[2013.07.09 07:46:20 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=6B400F211BEE880A37A1ED0368776BF4 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18205_none_d431528fb165f7bc\cryptsvc.dll
[2013.07.09 15:57:37 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=6DB499DEFCC827317C5371164A7CDB27 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22380_none_7840d305126b8725\cryptsvc.dll
[2013.07.09 06:46:31 | 000,140,288 | ---- | M] (Microsoft Corporation) MD5=7CA1BECEA5DE2643ADDAD32670E7A4C9 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18205_none_7812b70bf9088686\cryptsvc.dll
[2013.05.10 07:49:28 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=7FDC4626B01106A8EF328C88C7C0DEE3 -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18150_none_d3f63f9bb1930797\cryptsvc.dll
[2013.05.11 07:18:23 | 000,186,880 | ---- | M] (Microsoft Corporation) MD5=8122252F0A4ACFA92FA0C1D50D18493B -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22322_none_d4a24ea4ca968363\cryptsvc.dll
[2014.07.07 03:40:42 | 000,145,920 | ---- | M] (Microsoft Corporation) MD5=90BFC30E730A6760F1FEE2A55F8AB029 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22736_none_787cebf5123d8816\cryptsvc.dll
[2010.11.21 05:24:32 | 000,136,192 | ---- | M] (Microsoft Corporation) MD5=A585BEBF7D054BD9618EDA0922D5484A -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.17514_none_7807034ff91166f4\cryptsvc.dll
[2013.05.11 06:59:05 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=AC04D05309BB2C418D0D80B9FB014642 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22322_none_7883b3211239122d\cryptsvc.dll
[2015.02.03 05:31:49 | 000,145,920 | ---- | M] (Microsoft Corporation) MD5=B97E16D36DB7B7DD22C97857506FA58A -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22948_none_787420691243d103\cryptsvc.dll
[2013.05.10 07:18:53 | 000,186,880 | ---- | M] (Microsoft Corporation) MD5=CA13C4F92BEE66DB48E58AB3223DDF6E -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22321_none_d4a14e5aca976a0c\cryptsvc.dll
[2013.05.13 07:51:01 | 000,184,320 | ---- | M] (Microsoft Corporation) MD5=D8129C49798CBBFB2E4351D4B7B8EF9C -- C:\Windows\winsxs\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.18151_none_d3f73fe5b19220ee\cryptsvc.dll
[2013.05.10 07:06:21 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=E122AA1C9A3CC46FF9DDDE46E5EB0C58 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22321_none_7882b2d71239f8d6\cryptsvc.dll
[2013.10.05 03:52:03 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=F2D9242C3BBD1C36467FCAE1AE01733F -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7601.22473_none_784ea5b51260b460\cryptsvc.dll

< MD5 for: EXPLORER.EXE >
[2011.02.26 07:19:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2011.02.25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\erdnt\cache86\explorer.exe
[2011.02.25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\explorer.exe
[2011.02.25 08:19:30 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2011.02.26 08:14:34 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010.11.21 05:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\SysWOW64\explorer.exe
[2011.02.25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010.11.21 05:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe

< MD5 for: HAL.DLL >
[2010.11.21 05:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\SysNative\hal.dll
[2010.11.21 05:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll

< MD5 for: IASTORV.SYS >
[2010.11.21 05:23:47 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_668286aa35d55928\iaStorV.sys
[2010.11.21 05:23:47 | 000,410,496 | ---- | M] (Intel Corporation) MD5=3DF4395A7CF8B7A72A5F4606366B8C2D -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17514_none_0d3757e79e6784d0\iaStorV.sys
[2011.03.11 08:19:16 | 000,410,496 | ---- | M] (Intel Corporation) MD5=5B3DE7208E5000D5B451B9D290D2579C -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.21680_none_0d714416b7c182d5\iaStorV.sys
[2011.03.11 08:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\drivers\iaStorV.sys
[2011.03.11 08:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_neutral_0bcee2057afcc090\iaStorV.sys
[2011.03.11 08:41:26 | 000,410,496 | ---- | M] (Intel Corporation) MD5=AAAF44DB3BD0B9D1FB6969B23ECC8366 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7601.17577_none_0cf9793d9e95787b\iaStorV.sys

< MD5 for: ISAPNP.SYS >
[2009.07.14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\drivers\isapnp.sys
[2009.07.14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\isapnp.sys
[2009.07.14 03:48:04 | 000,020,544 | ---- | M] (Microsoft Corporation) MD5=2F7B28DC3E1183E5EB418DF55C204F38 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\isapnp.sys

< MD5 for: LSASS.EXE >
[2014.05.30 10:00:12 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=04F6C08B30C599D301CE8530A6F6A703 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22705_none_0505e8508c7f766f\lsass.exe
[2009.07.14 03:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0793F40B9B8A1BDD266296409DBD91EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17514_none_04709031736ac277\lsass.exe
[2011.11.17 08:20:34 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=0A10B74FBB437FF9A23F1D5DE4446A83 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.21861_none_04c1204e8cb39c3f\lsass.exe
[2015.05.25 20:18:19 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=17A6A9AAD04CCC6EE53290585BFC43AF -- C:\Windows\erdnt\cache64\lsass.exe
[2015.05.25 20:18:19 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=17A6A9AAD04CCC6EE53290585BFC43AF -- C:\Windows\SysNative\lsass.exe
[2015.05.25 20:18:19 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=17A6A9AAD04CCC6EE53290585BFC43AF -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18869_none_043f70f1738eddf5\lsass.exe
[2015.01.14 08:04:46 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=1E31700D9C9E0FB79999D02A8437482C -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18717_none_04737e137368226b\lsass.exe
[2014.04.12 04:19:05 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=204F3F58212B3E422C90BD9691A2DF28 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18443_none_044f07757384196d\lsass.exe
[2014.04.12 04:19:05 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=204F3F58212B3E422C90BD9691A2DF28 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18496_none_041bf8b773a9f127\lsass.exe
[2014.04.12 04:19:05 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=204F3F58212B3E422C90BD9691A2DF28 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18526_none_0467aa1173712ab7\lsass.exe
[2014.04.12 04:19:05 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=204F3F58212B3E422C90BD9691A2DF28 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18637_none_045ddc5573785d26\lsass.exe
[2015.05.25 20:21:24 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=2A953A1104439BA166FD63A5806A16DF -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.23072_none_04b713ec8cbb1b91\lsass.exe
[2014.09.19 11:42:18 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=341655B216721D89CADE9DEA2F33872F -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18606_none_047d4bcf7360effc\lsass.exe
[2015.03.06 07:32:14 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=395CAE11172BEBB0253895E8B5F82BFA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22983_none_04ad6c288cc21d97\lsass.exe
[2015.01.29 05:18:39 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=43FE6F74D2D43443CF2279613FA0A516 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18738_none_045ede85737773a4\lsass.exe
[2015.04.04 05:20:52 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=4C3FAC816925F73A34AD52F1F7C0A7EA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18812_none_046e7e87736ca0df\lsass.exe
[2015.01.10 09:09:08 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=55C62F66528A7BF58EA964B70BCB3D96 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22920_none_04eb4ad28c9429ec\lsass.exe
[2015.01.27 05:56:02 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=5B63917A1BE4728D8111850CDEF252F1 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22943_none_04d8abd88ca1add3\lsass.exe
[2014.04.12 04:31:33 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=6598EBC4D209318EBD81F76833ECBEDB -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22653_none_04cdd63a8ca9d24f\lsass.exe
[2014.04.12 04:31:33 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=6598EBC4D209318EBD81F76833ECBEDB -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22712_none_04f817868c8a465b\lsass.exe
[2014.04.12 04:31:33 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=6598EBC4D209318EBD81F76833ECBEDB -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22736_none_04e678d68c96e399\lsass.exe
[2014.04.12 04:31:33 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=6598EBC4D209318EBD81F76833ECBEDB -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22807_none_0507eaca8c7da644\lsass.exe
[2014.04.12 04:31:33 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=6598EBC4D209318EBD81F76833ECBEDB -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22843_none_04d8a9f28ca1b0ac\lsass.exe
[2014.04.12 04:31:33 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=6598EBC4D209318EBD81F76833ECBEDB -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22923_none_04ee4bb08c9175f1\lsass.exe
[2014.04.12 04:31:33 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=6598EBC4D209318EBD81F76833ECBEDB -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22925_none_04f04c448c8fa89f\lsass.exe
[2015.02.03 05:30:31 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=7554A1B82B4A222FD4CC292ABD38A558 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18741_none_044d0c937385de34\lsass.exe
[2012.08.24 19:43:36 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=77119F1F9B492B260030C34F9BE327FA -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22099_none_04a88ce28cc4eb33\lsass.exe
[2012.06.04 09:51:10 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=79C908CAA6F43021EB05F4C733A927D1 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22010_none_04f609a88c8c279c\lsass.exe
[2015.04.27 21:22:35 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=9262D6E2C239EDD6D87B080F2BCCEC9F -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18839_none_045fe0b573768a22\lsass.exe
[2015.03.06 07:41:46 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=B6C7729936AAF8E0697F0A7DCA82CED8 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18779_none_04349f1f7396fcbf\lsass.exe
[2014.09.19 11:47:37 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=B84317193B6A29F5F5DCF538C34FDCED -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22814_none_04fa1a008c887630\lsass.exe
[2015.04.04 05:25:34 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=BB9C1B746086558899935E3333CD4580 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.23017_none_04fcf4e68c85f29e\lsass.exe
[2011.11.17 08:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=C118A82CD78818C29AB228366EBF81C3 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17725_none_0466c45b7371f20d\lsass.exe
[2011.11.17 08:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=C118A82CD78818C29AB228366EBF81C3 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17856_none_044756c773895c5e\lsass.exe
[2011.11.17 08:33:55 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=C118A82CD78818C29AB228366EBF81C3 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.17940_none_044c26dd7386a58a\lsass.exe
[2015.01.10 08:47:33 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=C8152B86C0F12E61B0AD5C95751547D3 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18714_none_04707d35736ad666\lsass.exe
[2015.03.17 07:15:55 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=CA4FC33FB22D92368A0B221092B46374 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18798_none_041dfefd73a81b4a\lsass.exe
[2015.02.03 05:50:23 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=CBB80CC43E683F929F8D5E50330F7BA6 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.22948_none_04ddad4a8c9d2c86\lsass.exe
[2015.04.27 21:16:19 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=D52C700254E7FBD9BF6D817BA7BA5309 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.23040_none_04d5831c8ca49510\lsass.exe
[2015.03.17 07:11:03 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=DCCDD65A4E68360E5CF57AFC864C64E0 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.23002_none_0502c3608c8257fa\lsass.exe
[2015.01.15 10:09:15 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=E0105F3B5B1C4B0F5B3D788A13504EC6 -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18719_none_04757ea773665519\lsass.exe
[2014.05.30 10:07:57 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=F23812F9F7B130854E4BC0389F7C688C -- C:\Windows\winsxs\amd64_microsoft-windows-lsa_31bf3856ad364e35_6.1.7601.18489_none_0429c981739f213b\lsass.exe

< MD5 for: NDIS.SYS >
[2012.08.22 20:06:07 | 000,950,128 | ---- | M] (Microsoft Corporation) MD5=5E74508FCB5820B29EEAFE24E6035BCF -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.22097_none_06232d534c0a8d67\ndis.sys
[2012.08.22 20:12:40 | 000,950,128 | ---- | M] (Microsoft Corporation) MD5=760E38053BF56E501D562B70AD796B88 -- C:\Windows\erdnt\cache64\ndis.sys
[2012.08.22 20:12:40 | 000,950,128 | ---- | M] (Microsoft Corporation) MD5=760E38053BF56E501D562B70AD796B88 -- C:\Windows\SysNative\drivers\ndis.sys
[2012.08.22 20:12:40 | 000,950,128 | ---- | M] (Microsoft Corporation) MD5=760E38053BF56E501D562B70AD796B88 -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17939_none_05dc9a6832ba428a\ndis.sys
[2010.11.21 05:23:55 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=79B47FD40D9A817E932F9D26FAC0A81C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_05ed313632ae9759\ndis.sys

< MD5 for: NETLOGON.DLL >
[2010.11.21 05:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\erdnt\cache64\netlogon.dll
[2010.11.21 05:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\SysNative\netlogon.dll
[2010.11.21 05:24:01 | 000,695,808 | ---- | M] (Microsoft Corporation) MD5=AA339DD8BB128EF66660DFBBB59043D3 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_5bddbcb24e997298\netlogon.dll
[2010.11.21 05:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\erdnt\cache86\netlogon.dll
[2010.11.21 05:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\SysWOW64\netlogon.dll
[2010.11.21 05:24:09 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=C1809B9907ADEDAF16F50C894100883B -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7601.17514_none_6632670482fa3493\netlogon.dll

< MD5 for: NVRAID.SYS >
[2011.03.11 08:41:34 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\SysNative\drivers\nvraid.sys
[2011.03.11 08:41:34 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvraid.sys
[2011.03.11 08:41:34 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=0A92CB65770442ED0DC44834632F66AD -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvraid.sys
[2010.11.21 05:23:47 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvraid.sys
[2010.11.21 05:23:47 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=5D9FD91F3D38DC9DA01E3CB5FA89CD48 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvraid.sys
[2011.03.11 08:19:21 | 000,148,352 | ---- | M] (NVIDIA Corporation) MD5=666CA16F17914C1CD3616CF16DE0A6EA -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvraid.sys

< MD5 for: NVSTOR.SYS >
[2011.03.11 08:19:21 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=D23C7E8566DA2B8A7C0DBBB761D54888 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.21680_none_983ab4c5eef82cad\nvstor.sys
[2011.03.11 08:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\drivers\nvstor.sys
[2011.03.11 08:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_0276fc3b3ea60d41\nvstor.sys
[2011.03.11 08:41:34 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=DAB0E87525C10052BF65F06152F37E4A -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17577_none_97c2e9ecd5cc2253\nvstor.sys
[2010.11.21 05:23:47 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_neutral_dd659ed032d28a14\nvstor.sys
[2010.11.21 05:23:47 | 000,166,272 | ---- | M] (NVIDIA Corporation) MD5=F7CD50FE7139F07E77DA8AC8033D1832 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7601.17514_none_9800c896d59e2ea8\nvstor.sys

< MD5 for: SCECLI.DLL >
[2010.11.21 05:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\erdnt\cache86\scecli.dll
[2010.11.21 05:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010.11.21 05:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.21 05:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\erdnt\cache64\scecli.dll
[2010.11.21 05:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010.11.21 05:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll

< MD5 for: SMSS.EXE >
[2015.03.17 07:16:11 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=0B6514A14631E41DE4D6D40D1C80BE68 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18798_none_0a0e1c38300e82ce\smss.exe
[2015.05.25 20:21:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=18196A0F4C3904C81ACE6E91529227D9 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.23072_none_0aa7312749218315\smss.exe
[2009.07.14 03:39:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=1911A3356FA3F77CCC825CCBAC038C2A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_082f99a432e2a661\smss.exe
[2015.03.17 07:11:20 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=206A6B71AC09D9F7651F0A8B015676C7 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.23002_none_0af2e09b48e8bf7e\smss.exe
[2014.04.12 04:31:44 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=3442A918386D4716D74C661543151746 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22653_none_0abdf375491039d3\smss.exe
[2014.04.12 04:31:44 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=3442A918386D4716D74C661543151746 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22780_none_0a9a84b9492b3ec8\smss.exe
[2014.04.12 04:31:44 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=3442A918386D4716D74C661543151746 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22908_none_0af90a3548e32446\smss.exe
[2014.04.12 04:31:44 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=3442A918386D4716D74C661543151746 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22921_none_0adc685748f9aac7\smss.exe
[2014.04.12 04:31:44 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=3442A918386D4716D74C661543151746 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22923_none_0ade68eb48f7dd75\smss.exe
[2015.02.03 05:30:42 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=63D3C30B497347495B8EA78A38188969 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18741_none_0a3d29ce2fec45b8\smss.exe
[2015.01.29 05:18:52 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=83C0199B7C06AC3C33212E1A0DC2260E -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18738_none_0a4efbc02fdddb28\smss.exe
[2015.02.03 05:50:41 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=8CD5A97B8D155718D357B2D9BC6B113D -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22948_none_0acdca854903940a\smss.exe
[2015.05.25 20:18:39 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=9BBEA639884C0338DD78654277BD188A -- C:\Windows\SysNative\smss.exe
[2015.05.25 20:18:39 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=9BBEA639884C0338DD78654277BD188A -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18869_none_0a2f8e2c2ff54579\smss.exe
[2013.08.29 03:04:30 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=B2B31D4C79EFD883097FA24D02E79C12 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22436_none_0ad6905f48fd53a8\smss.exe
[2015.01.27 05:56:16 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=B75198D88A34994DE1E4D9F2286DF759 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22943_none_0ac8c91349081557\smss.exe
[2013.08.02 07:06:34 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=CB5DA3E44456D1084BCD87F5B1B3152B -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.22411_none_0ae72ec548f19d13\smss.exe
[2015.04.27 21:17:12 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=CF8DC00FA29243A347AD4B605AFFF1E5 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.23040_none_0ac5a057490afc94\smss.exe
[2015.04.27 21:22:53 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=DA5EF2CC0764BE7097BAFA9CAF903FE8 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18839_none_0a4ffdf02fdcf1a6\smss.exe
[2013.03.19 05:06:33 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=F0371DE302FFFF8F086661611BE60848 -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18113_none_0a5f8ec22fd235a9\smss.exe
[2013.08.02 02:59:09 | 000,112,640 | ---- | M] (Microsoft Corporation) MD5=F0970A4BC8395659C22BF53D0FADF16F -- C:\Windows\winsxs\amd64_microsoft-windows-smss_31bf3856ad364e35_6.1.7601.18229_none_0a5ac2782fd4e6cb\smss.exe

< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\erdnt\cache86\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\erdnt\cache64\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe

< MD5 for: TCPIP.SYS >
[2014.04.05 04:47:20 | 001,903,552 | ---- | M] (Microsoft Corporation) MD5=04ADD18EE5CC9FBEDAEC1DD1CD0CB45E -- C:\Windows\erdnt\cache64\tcpip.sys
[2014.04.05 04:47:20 | 001,903,552 | ---- | M] (Microsoft Corporation) MD5=04ADD18EE5CC9FBEDAEC1DD1CD0CB45E -- C:\Windows\SysNative\drivers\tcpip.sys
[2014.04.05 04:47:20 | 001,903,552 | ---- | M] (Microsoft Corporation) MD5=04ADD18EE5CC9FBEDAEC1DD1CD0CB45E -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18438_none_113260637d1284ef\tcpip.sys
[2012.10.03 19:56:54 | 001,914,248 | ---- | M] (Microsoft Corporation) MD5=37608401DFDB388CAF66917F6B2D6FB0 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_110e0fbd7d2e4b88\tcpip.sys
[2013.09.08 04:30:37 | 001,903,552 | ---- | M] (Microsoft Corporation) MD5=40AF23633D197905F03AB5628C558C51 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18254_none_1118bb977d265d27\tcpip.sys
[2014.04.05 04:37:43 | 001,897,408 | ---- | M] (Microsoft Corporation) MD5=4F80944B03112F486212DC20BE166079 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22648_none_11b12f2896383dd1\tcpip.sys
[2010.11.21 05:24:08 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2013.09.07 04:27:48 | 001,896,896 | ---- | M] (Microsoft Corporation) MD5=75F9106B74585D38C8FF6BB5CAD262D7 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22444_none_11ad2a34963bde27\tcpip.sys
[2012.10.03 19:44:29 | 001,902,472 | ---- | M] (Microsoft Corporation) MD5=D5707FC2300AA5B04B7BFE86D40C0133 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_11c2c45a962baed0\tcpip.sys

< MD5 for: USERINIT.EXE >
[2010.11.21 05:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\erdnt\cache86\userinit.exe
[2010.11.21 05:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010.11.21 05:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010.11.21 05:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\erdnt\cache64\userinit.exe
[2010.11.21 05:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010.11.21 05:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2010.11.21 05:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2014.03.04 13:08:14 | 000,455,680 | ---- | M] (Microsoft Corporation) MD5=6CE2AE073BD21C542FC2C707CAE944CC -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.22616_none_ce748d1d04acf24f\winlogon.exe
[2014.03.04 11:43:50 | 000,455,168 | ---- | M] (Microsoft Corporation) MD5=88AB9B72B4BF3963A0DE0820B4B0B06C -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.18409_none_cdf8bf35eb848572\winlogon.exe
[2014.07.17 04:07:24 | 000,455,168 | ---- | M] (Microsoft Corporation) MD5=8CEBD9D0A0A879CDE9F36F4383B7CAEA -- C:\Windows\erdnt\cache64\winlogon.exe
[2014.07.17 04:07:24 | 000,455,168 | ---- | M] (Microsoft Corporation) MD5=8CEBD9D0A0A879CDE9F36F4383B7CAEA -- C:\Windows\SysNative\winlogon.exe
[2014.07.17 04:07:24 | 000,455,168 | ---- | M] (Microsoft Corporation) MD5=8CEBD9D0A0A879CDE9F36F4383B7CAEA -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.18540_none_cdc47ed1ebad0e4e\winlogon.exe
[2014.07.16 05:23:23 | 000,455,680 | ---- | M] (Microsoft Corporation) MD5=98AA0BFEE089C7E5DADB94190D93456C -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.22750_none_ce434d9704d2c730\winlogon.exe

< MD5 for: WS2_32.DLL >
[2010.11.21 05:24:28 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\Windows\erdnt\cache64\ws2_32.dll
[2010.11.21 05:24:28 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\Windows\SysNative\ws2_32.dll
[2010.11.21 05:24:28 | 000,297,984 | ---- | M] (Microsoft Corporation) MD5=4BBFA57F594F7E8A8EDC8F377184C3F0 -- C:\Windows\winsxs\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_50ddb631e4f59005\ws2_32.dll
[2010.11.21 05:23:55 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\erdnt\cache86\ws2_32.dll
[2010.11.21 05:23:55 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\SysWOW64\ws2_32.dll
[2010.11.21 05:23:55 | 000,206,848 | ---- | M] (Microsoft Corporation) MD5=7FF15A4F092CD4A96055BA69F903E3E9 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7601.17514_none_f4bf1aae2c981ecf\ws2_32.dll

< >

< %systemroot%*.* /U /s >
[1 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[6 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2014.06.27 17:53:39 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\Adobe
[2014.07.15 11:40:59 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\Battle.net
[2014.08.05 19:36:55 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\BitSpirit
[2014.08.18 09:17:32 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\FastStone
[2014.08.18 09:17:47 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\Free Picture Solutions
[2015.01.02 20:57:53 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\Guild Wars 2
[2014.06.27 10:42:18 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\Identities
[2014.06.27 11:16:06 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\Macromedia
[2011.04.12 10:28:08 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\Media Center Programs
[2015.05.26 18:43:26 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\MetaQuotes
[2015.05.05 21:07:11 | 000,000,000 | --SD | M] -- C:\Users\maty\AppData\Roaming\Microsoft
[2014.09.16 23:03:49 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\Mozilla
[2014.10.19 17:19:10 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\Opera Software
[2014.06.27 11:00:38 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\Oracle
[2015.06.20 09:03:43 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\Skype
[2014.06.27 10:52:37 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\TP-LINK
[2014.06.27 11:17:08 | 000,000,000 | ---D | M] -- C:\Users\maty\AppData\Roaming\WinRAR

< %APPDATA%\*.exe /s >

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >

< %systemroot%\system32\*.* /3 >

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"ISUSPM Startup" = C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup -- [2005.02.17 07:15:22 | 000,221,184 | ---- | M] (InstallShield Software Corporation)
"Skype" = "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun -- [2015.06.02 17:20:24 | 028,785,792 | R--- | M] (Skype Technologies S.A.)
"CCleaner Monitoring" = "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR -- [2015.05.08 21:49:04 | 008,322,328 | ---- | M] (Piriform Ltd)

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs

< >

< type c:\boot.ini >> test.txt /c >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2015.06.20 09:15:12 | 000,000,512 | ---- | M] () MD5=6F42AC3E07E8E4567F10A874D1025538 -- C:\PhysicalMBR.bin

< >

< *crack* /s >
[2014.08.26 22:07:28 | 000,062,238 | ---- | M] () -- \Program Files\GIMP 2\share\gimp\2.0\patterns\cracked.pat

< *keygen* /s >

< *AntiWPA* /s >

< *loader* /s >
[2014.09.03 01:27:24 | 000,268,432 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2014.09.03 01:27:24 | 000,019,096 | ---- | M] () -- \Program Files (x86)\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2015.06.03 23:05:47 | 001,176,208 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\ExtensionLoader.dll
[2015.05.28 09:04:11 | 000,057,592 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2015.05.28 09:04:11 | 000,065,784 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2015.05.28 09:04:11 | 000,073,976 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2015.05.28 09:04:11 | 000,090,872 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader64.dll
[2014.09.03 01:27:24 | 000,364,176 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\VSTOLoader.dll
[2014.09.03 01:27:24 | 000,019,096 | ---- | M] () -- \Program Files\Common Files\Microsoft Shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2011.03.08 09:43:28 | 000,013,734 | ---- | M] () -- \Program Files\GIMP 2\Python\Lib\unittest\loader.py
[2015.05.28 09:04:11 | 000,057,592 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\Display.PhysX.{307E7FDD-3031-43E8-970A-19544D37F694}\files\Common\PhysXLoader.dll
[2015.05.28 09:04:11 | 000,065,784 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\Display.PhysX.{307E7FDD-3031-43E8-970A-19544D37F694}\files\Common\PhysXLoader64.dll
[2015.05.28 09:04:11 | 000,073,976 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\Display.PhysX.{307E7FDD-3031-43E8-970A-19544D37F694}\files\Common\PhysXUpdateLoader.dll
[2015.05.28 09:04:11 | 000,090,872 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\Display.PhysX.{307E7FDD-3031-43E8-970A-19544D37F694}\files\Common\PhysXUpdateLoader64.dll
[2015.06.03 23:06:07 | 000,916,112 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\installer.{C87E661E-4AA9-4F26-88A4-1E31F2E17E54}\NVDownloader.dll
[2015.06.03 23:04:47 | 000,028,430 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\installer.{C87E661E-4AA9-4F26-88A4-1E31F2E17E54}\NVI2DownloaderExt.CFG
[2015.06.03 23:06:07 | 000,850,576 | ---- | M] () -- \Program Files\NVIDIA Corporation\Installer2\installer.{C87E661E-4AA9-4F26-88A4-1E31F2E17E54}\NVI2DownloaderExt.DLL
[2014.05.10 17:54:08 | 000,061,528 | ---- | M] () -- \Program Files\WinRAR\Ace32Loader.exe
[2015.06.16 22:12:54 | 000,019,121 | ---- | M] () -- \Users\maty\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\13XDJWLH\AdLoader-288a31a04e1398b1a794975bf93ce9a4.min[1].js
[2015.06.16 22:12:53 | 000,001,980 | ---- | M] () -- \Users\maty\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2MZ69OQ4\AdLoader[1].htm
[2015.05.13 14:57:28 | 000,072,638 | ---- | M] () -- \Users\maty\AppData\Local\Skype\Apps\login\images\loader.gif
[2015.05.13 14:57:28 | 000,003,032 | ---- | M] () -- \Users\maty\AppData\Local\Skype\Apps\login\images\loader.png
[2015.05.13 14:57:28 | 000,006,012 | ---- | M] () -- \Users\maty\AppData\Local\Skype\Apps\login\images\normal\loader_15fps.gif
[2015.05.13 14:57:28 | 000,021,956 | ---- | M] () -- \Users\maty\AppData\Local\Skype\Apps\login\images\normal\loader_30fps.gif
[2015.05.13 14:57:28 | 000,009,772 | ---- | M] () -- \Users\maty\AppData\Local\Skype\Apps\login\images\retina\loader@2x.png
[2015.05.01 15:49:22 | 000,000,664 | ---- | M] () -- \Users\maty\Desktop\Fleknet+gliss\fleknet\fleknet2\administrator\img\ajax-loader.gif
[2013.03.09 08:52:18 | 000,019,080 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_amd64_ln.3643236F_FC70_11D3_A536_0090278A1BB8
[2010.03.24 20:35:48 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_amd64_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2013.03.09 08:17:04 | 000,019,080 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8
[2010.03.24 20:12:34 | 000,018,264 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\FL_VSTOLoaderUI_dll_x86_ln.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2013.03.09 08:52:18 | 000,364,168 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\VSTOLoader_dll_amd64.3643236F_FC70_11D3_A536_0090278A1BB8
[2010.03.24 20:35:48 | 000,370,512 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\VSTOLoader_dll_amd64.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2013.03.09 08:17:04 | 000,268,440 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8
[2010.03.24 20:12:34 | 000,249,680 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\00004119110000000100000000F01FEC\14.0.4763\VSTOLoader_dll_x86.3643236F_FC70_11D3_A536_0090278A1BB8.41B86362_9D8B_4D9B_B426_8A6D1F809A25
[2015.05.25 22:02:40 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_da-dk_2ee8d7fb233f596f.manifest
[2015.05.25 21:55:38 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_de-de_2c146d372515ae09.manifest
[2015.05.25 22:00:30 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_el-gr_d4aa9aca142b1697.manifest
[2015.05.25 22:01:40 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_es-es_d4d0a014141aab73.manifest
[2015.05.25 22:00:12 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_fi-fi_73eba4c109349d9d.manifest
[2015.05.25 21:57:09 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_fr-fr_7788161306ecc1d5.manifest
[2015.05.25 22:04:01 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_hu-hu_bef8965aeb4c90f1.manifest
[2015.05.25 22:03:14 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_it-it_61b00c59de1ea753.manifest
[2015.05.25 21:59:06 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_ja-jp_03d58b66d139b92e.manifest
[2015.05.25 21:57:42 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_ko-kr_a73f681bc3aa8044.manifest
[2015.05.25 22:03:03 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_nb-no_8fd1e9509bcfac00.manifest
[2015.05.25 22:04:39 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_nl-nl_8e11348e9cfbb5d5.manifest
[2015.05.25 22:03:16 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_pl-pl_d44d8f10821e2389.manifest
[2015.05.25 22:03:55 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_pt-br_d6a179b480a7b76d.manifest
[2015.05.25 22:03:24 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_pt-pt_d783492080172749.manifest
[2015.05.25 22:04:25 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_ru-ru_1e265ae464f8b575.manifest
[2015.05.25 22:04:07 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_sv-se_ba2145595c21bfd0.manifest
[2015.05.25 22:04:18 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_tr-tr_632e8fa04addc1c1.manifest
[2015.05.25 21:58:57 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_zh-cn_348bad9dfb1593e0.manifest
[2015.05.25 21:51:49 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_zh-hk_3336a62bfbf10670.manifest
[2015.05.25 21:58:36 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_zh-tw_3887eaf3f8867050.manifest
[2015.05.25 22:02:49 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_cs-cz_9fa1cec0681612cc.manifest
[2015.05.25 22:02:38 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_da-dk_3cdbaee75e5c0ecb.manifest
[2015.05.25 21:55:02 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_de-de_3a07442360326365.manifest
[2015.05.25 22:00:29 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_el-gr_e29d71b64f47cbf3.manifest
[2015.05.25 20:25:03 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_en-us_e2f81a1c4f106f2a.manifest
[2015.05.25 22:00:55 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_es-es_e2c377004f3760cf.manifest
[2015.05.25 22:00:10 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_fi-fi_81de7bad445152f9.manifest
[2015.05.25 21:56:43 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_fr-fr_857aecff42097731.manifest
[2015.05.25 22:02:44 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_hu-hu_cceb6d472669464d.manifest
[2015.05.25 22:01:52 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_it-it_6fa2e346193b5caf.manifest
[2015.05.25 21:58:36 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_ja-jp_11c862530c566e8a.manifest
[2015.05.25 21:57:20 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_ko-kr_b5323f07fec735a0.manifest
[2015.05.25 22:03:00 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_nb-no_9dc4c03cd6ec615c.manifest
[2015.05.25 22:03:03 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_nl-nl_9c040b7ad8186b31.manifest
[2015.05.25 22:02:03 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_pl-pl_e24065fcbd3ad8e5.manifest
[2015.05.25 22:02:33 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_pt-br_e49450a0bbc46cc9.manifest
[2015.05.25 22:02:05 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_pt-pt_e576200cbb33dca5.manifest
[2015.05.25 22:02:52 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_ru-ru_2c1931d0a0156ad1.manifest
[2015.05.25 22:02:49 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_sv-se_c8141c45973e752c.manifest
[2015.05.25 22:02:58 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_tr-tr_7121668c85fa771d.manifest
[2015.05.25 21:58:29 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_zh-cn_427e848a3632493c.manifest
[2015.05.25 21:51:48 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_zh-hk_41297d18370dbbcc.manifest
[2015.05.25 21:58:18 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_zh-tw_467ac1e033a325ac.manifest
[2015.05.25 20:45:52 | 000,005,793 | ---- | M] () -- \Windows\SoftwareDistribution\Download\5b94cfccf8026155b37fdc15c738f964\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.23072_none_9e5b180c9a8720cf.manifest
[2015.05.25 19:55:18 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2015.05.25 19:55:18 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll

s\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 03:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.06.27 13:13:59 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17617_none_68daf829926cc6a9\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.06.27 13:15:07 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_68c05c919281774d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 19:38:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_68a2edab92971725\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 07:38:44 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_68d8d569926ebeb2\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 04:12:19 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_68d20a7192733a4d\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.03.17 07:11:07 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18798_none_6885643192acd650\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.04.27 21:16:37 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18839_none_68c745e9927b4528\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.05.09 05:20:07 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18847_none_68ba756992852e6b\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.05.25 20:11:40 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18869_none_68a6d625929398fb\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.06.27 13:13:57 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21728_none_695ac552ab919bbb\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.06.27 13:15:06 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_6907efc6abd0db81\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 19:35:00 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_6957a248ab947a6d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 07:39:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_69239340abbb38d0\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 08:20:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22411_none_695e76beab8ff095\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.29 04:18:31 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22436_none_694dd858ab9ba72a\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.04 13:03:17 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22616_none_69637bfcab8b6996\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.04.12 04:28:21 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22653_none_69353b6eabae8d55\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.03.17 07:05:34 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23002_none_696a2894ab871300\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.04.27 21:10:58 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23040_none_693ce850aba95016\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.05.09 07:58:34 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23049_none_6945eaeaaba13425\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.05.25 20:14:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23072_none_691e7920abbfd697\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.03.11 23:42:50 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18741_cs-cz_9144f07b13c42013.manifest
[2015.03.11 23:42:50 | 000,033,208 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18741_cs-cz_9144f07b13c42013_winload.efi.mui_35ee487d
[2015.03.11 23:42:50 | 000,034,752 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18741_cs-cz_9144f07b13c42013_winload.exe.mui_3bc5b827
[2015.03.11 23:42:50 | 000,029,624 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18741_cs-cz_9144f07b13c42013_winresume.efi.mui_f412814e
[2015.03.11 23:42:50 | 000,030,136 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18741_cs-cz_9144f07b13c42013_winresume.exe.mui_ff8b5358
[2015.03.11 23:42:50 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18741_en-us_d49b3bd6fabe7c71.manifest
[2015.03.11 23:42:50 | 000,033,208 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18741_en-us_d49b3bd6fabe7c71_winload.efi.mui_35ee487d
[2015.03.11 23:42:50 | 000,033,208 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18741_en-us_d49b3bd6fabe7c71_winload.exe.mui_3bc5b827
[2015.03.11 23:42:50 | 000,029,624 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18741_en-us_d49b3bd6fabe7c71_winresume.efi.mui_f412814e
[2015.03.11 23:42:50 | 000,029,632 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18741_en-us_d49b3bd6fabe7c71_winresume.exe.mui_ff8b5358
[2015.03.11 23:42:53 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.18741_none_b9293c0383618646.manifest
[2015.03.11 23:42:53 | 000,693,176 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.18741_none_b9293c0383618646_winload.efi_75834aa0
[2015.03.11 23:42:53 | 000,619,056 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.18741_none_b9293c0383618646_winload.exe_75835076
[2015.03.11 23:42:53 | 000,616,360 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.18741_none_b9293c0383618646_winresume.efi_85cd069f
[2015.03.11 23:42:53 | 000,532,176 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.18741_none_b9293c0383618646_winresume.exe_85cd1215
[2009.07.14 04:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 04:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2015.05.14 00:18:57 | 000,000,616 | ---- | M] () -- \Windows\winsxs\FileMaps\programdata_microsoft_diagnosis_asimovuploader_0413bca0c3dfdda4.cdf-ms
[2009.07.13 19:18:36 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2011.04.12 10:16:46 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a.manifest
[2014.07.08 23:51:46 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_cs-cz_915f8df913af6c96.manifest
[2014.07.08 23:52:01 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18526_en-us_d4b5d954faa9c8f4.manifest
[2015.02.03 06:49:45 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18741_cs-cz_9144f07b13c42013.manifest
[2015.02.03 05:35:06 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18741_en-us_d49b3bd6fabe7c71.manifest
[2014.07.08 23:52:03 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_cs-cz_91de5cbe2cd52578.manifest
[2014.07.08 23:52:05 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22736_en-us_d534a81a13cf81d6.manifest
[2014.12.13 03:57:48 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22908_cs-cz_9200d0e22cbafea1.manifest
[2014.12.13 03:58:08 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22908_en-us_d5571c3e13b55aff.manifest
[2015.01.13 00:17:25 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_cs-cz_91e42f042cd18522.manifest
[2015.01.13 00:17:17 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_en-us_d53a7a6013cbe180.manifest
[2015.01.16 08:36:46 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_cs-cz_91e62f982ccfb7d0.manifest
[2015.01.16 08:36:33 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_en-us_d53c7af413ca142e.manifest
[2015.01.27 07:32:05 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22943_cs-cz_91d08fc02cdfefb2.manifest
[2015.01.27 06:02:12 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22943_en-us_d526db1c13da4c10.manifest
[2015.02.03 07:30:16 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22948_cs-cz_91d591322cdb6e65.manifest
[2015.02.03 05:54:55 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22948_en-us_d52bdc8e13d5cac3.manifest
[2015.03.17 08:28:02 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23002_cs-cz_91faa7482cc099d9.manifest
[2015.03.17 07:14:37 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23002_en-us_d550f2a413baf637.manifest
[2015.04.27 22:33:31 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23040_cs-cz_91cd67042ce2d6ef.manifest
[2015.04.27 21:23:13 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23040_en-us_d523b26013dd334d.manifest
[2015.05.25 22:04:06 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_cs-cz_91aef7d42cf95d70.manifest
[2015.05.25 20:25:12 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_en-us_d505433013f3b9ce.manifest
[2010.11.21 05:16:35 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2011.02.05 19:34:23 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2014.08.19 05:35:45 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.18574_none_b90bc95183772bd0.manifest
[2015.02.03 05:51:30 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.18741_none_b9293c0383618646.manifest
[2011.02.05 15:09:57 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2014.08.19 05:26:49 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22780_none_b98696ee9ca07f56.manifest
[2014.12.12 08:29:00 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22908_none_b9e51c6a9c5864d4.manifest
[2015.01.12 05:50:53 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22921_none_b9c87a8c9c6eeb55.manifest
[2015.01.16 08:37:02 | 000,005,511 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22923_none_b9ca7b209c6d1e03.manifest
[2015.01.27 06:22:06 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22943_none_b9b4db489c7d55e5.manifest
[2015.02.03 06:17:47 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22948_none_b9b9dcba9c78d498.manifest
[2015.03.17 07:34:28 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23002_none_b9def2d09c5e000c.manifest
[2015.04.27 21:40:54 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23040_none_b9b1b28c9c803d22.manifest
[2015.05.25 20:45:47 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23072_none_b993435c9c96c3a3.manifest
[2009.07.14 04:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.06.27 13:14:00 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17617_none_0cbc5ca5da0f5573\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.06.27 13:15:08 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_0ca1c10dda240617\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:40:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:45:15 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 03:48:15 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_0cb36eedda15c917\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.03.17 06:50:46 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18798_none_0c66c8adda4f651a\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.04.27 20:59:41 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18839_none_0ca8aa65da1dd3f2\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.05.09 05:08:08 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18847_none_0c9bd9e5da27bd35\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.05.25 19:55:18 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18869_none_0c883aa1da3627c5\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.06.27 13:13:58 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21728_none_0d3c29cef3342a85\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.06.27 13:15:07 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_0ce95442f3736a4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 07:53:29 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22411_none_0d3fdb3af3327f5f\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.29 03:54:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22436_none_0d2f3cd4f33e35f4\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.03.04 12:35:49 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22616_none_0d44e078f32df860\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.04.12 04:03:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22653_none_0d169feaf3511c1f\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.03.17 06:42:28 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23002_none_0d4b8d10f329a1ca\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.04.27 20:52:26 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23040_none_0d1e4cccf34bdee0\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.05.09 07:34:47 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23049_none_0d274f66f343c2ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.05.25 20:00:35 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23072_none_0cffdd9cf3626561\api-ms-win-core-libraryloader-l1-1-0.dll

< *minodlogin* /s >

< *tnod* /s >

< *AutoKMS* /s >
[2014.06.28 10:18:13 | 000,647,168 | ---- | M] () -- \Windows\AutoKMS.exe
[2014.06.28 10:18:13 | 000,000,184 | ---- | M] () -- \Windows\AutoKMS.ini
[2015.06.20 08:02:13 | 000,001,951 | ---- | M] () -- \Windows\AutoKMS.log
[2015.06.20 08:02:14 | 000,000,198 | ---- | M] () -- \Windows\Tasks\AutoKMS.job
[2015.06.20 08:02:13 | 000,000,202 | ---- | M] () -- \Windows\Tasks\AutoKMSDaily.job

< *activator* /s >

< *serial* /s >
[2015.04.15 23:18:10 | 000,434,368 | ---- | M] () -- \Program Files (x86)\Microsoft Silverlight\5.1.40416.0\System.Runtime.Serialization.dll
[2015.05.14 00:04:03 | 001,164,288 | ---- | M] () -- \Program Files (x86)\Microsoft Silverlight\5.1.40416.0\System.Runtime.Serialization.ni.dll
[2014.07.11 00:24:10 | 000,970,752 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2010.11.04 17:53:40 | 000,090,112 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2015.04.16 00:30:32 | 000,434,368 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.40416.0\System.Runtime.Serialization.dll
[2015.05.14 00:04:27 | 001,546,240 | ---- | M] () -- \Program Files\Microsoft Silverlight\5.1.40416.0\System.Runtime.Serialization.ni.dll
[2014.07.11 00:24:01 | 000,847,872 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2010.11.04 17:54:44 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2015.05.01 15:48:42 | 000,000,563 | ---- | M] () -- \Users\maty\Desktop\Fleknet+gliss\fleknet\fleknet2\administrator\img\serialy.png
[2015.05.01 15:48:32 | 000,000,563 | ---- | M] () -- \Users\maty\Desktop\Fleknet+gliss\fleknet\fleknet2\images\serialy.png
[2013.07.08 14:43:52 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.06.24 01:43:20 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.13 04:37:37 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2014.07.11 00:24:10 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014.10.15 03:36:46 | 000,310,784 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\91eb4f41130c65ef17f0fee1d3ab48fb\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.10.15 03:43:02 | 002,347,008 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\b1e0939384cc320d6ac7b8921ccc2877\System.Runtime.Serialization.ni.dll
[2014.10.15 03:34:24 | 000,396,288 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\2a07bf9a29a64827bf06e7853214fc0f\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2014.10.15 03:38:17 | 003,073,536 | ---- | M] () -- \Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\5015b90fbd31c9ba4fff989b2c79711b\System.Runtime.Serialization.ni.dll
[2015.01.19 18:35:26 | 000,306,176 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\a94049de665f1854ea5df1a857b2c68f\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2015.01.19 18:35:26 | 000,000,440 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runt9064068c#\a94049de665f1854ea5df1a857b2c68f\System.Runtime.Serialization.Formatters.Soap.ni.dll.aux
[2015.01.19 18:36:47 | 002,855,424 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\187177229c00aec6dec613ea4b9ff209\System.Runtime.Serialization.ni.dll
[2015.01.19 18:36:47 | 000,000,996 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\187177229c00aec6dec613ea4b9ff209\System.Runtime.Serialization.ni.dll.aux
[2015.01.24 17:56:05 | 000,025,600 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\ad0261438ff8f46e093faa717226ebef\System.Xml.Serialization.ni.dll
[2015.01.24 17:56:05 | 000,000,284 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.84e525b7#\ad0261438ff8f46e093faa717226ebef\System.Xml.Serialization.ni.dll.aux
[2015.01.23 13:41:13 | 000,366,080 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runt9064068c#\769e80c5193dedd5ef90a962c002d15a\System.Runtime.Serialization.Formatters.Soap.ni.dll
[2015.01.23 13:41:13 | 000,000,440 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runt9064068c#\769e80c5193dedd5ef90a962c002d15a\System.Runtime.Serialization.Formatters.Soap.ni.dll.aux
[2015.01.24 17:51:00 | 003,597,312 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\cdca00d5c58d31de2503310a31ca096f\System.Runtime.Serialization.ni.dll
[2015.01.24 17:51:00 | 000,000,996 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\cdca00d5c58d31de2503310a31ca096f\System.Runtime.Serialization.ni.dll.aux
[2015.01.24 17:52:16 | 000,027,648 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.84e525b7#\85b2d15d965e64489744325c53d91db0\System.Xml.Serialization.ni.dll
[2015.01.24 17:52:16 | 000,000,284 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.84e525b7#\85b2d15d965e64489744325c53d91db0\System.Xml.Serialization.ni.dll.aux
[2014.04.12 01:48:40 | 001,051,888 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\6414876250E69FF3395387C6C7F05BEB\4.5.51209\System.Runtime.Serialization.dll.amd64
[2014.04.12 01:48:40 | 001,051,888 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\6414876250E69FF3395387C6C7F05BEB\4.5.51209\System.Runtime.Serialization.dll.x86
[2014.04.12 01:48:40 | 001,051,888 | R--- | M] () -- \Windows\Installer\$PatchCache$\Managed\6414876250E69FF3395387C6C7F05BEB\4.5.51209\System.Runtime.Serialization.dll_gac_x86
[2013.09.11 22:33:38 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.04.12 01:48:40 | 000,133,432 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2014.04.12 00:08:06 | 000,029,472 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Json\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Json.dll
[2014.04.12 00:08:06 | 000,029,512 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Primitives\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Primitives.dll
[2013.09.11 22:33:38 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2014.04.12 00:08:06 | 000,029,976 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Xml\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Xml.dll
[2014.07.23 01:17:44 | 001,050,840 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014.04.12 00:08:06 | 000,045,800 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2014.04.12 00:08:06 | 000,029,928 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.XmlSerializer\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Xml.XmlSerializer.dll
[2014.06.24 01:43:20 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.04 17:53:34 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014.07.11 00:24:11 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2014.07.23 01:17:44 | 001,050,840 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2014.04.12 01:48:40 | 000,133,432 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2014.04.12 00:08:06 | 000,029,472 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Json.dll
[2014.04.12 00:08:06 | 000,029,512 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2014.04.12 00:08:06 | 000,029,976 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2014.04.12 00:08:06 | 000,045,800 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2014.04.12 00:08:06 | 000,029,928 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.XmlSerializer.dll
[2013.09.11 22:33:38 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.09.11 22:33:38 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2014.06.24 01:43:09 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2010.11.04 17:54:40 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2014.07.11 00:24:02 | 000,847,872 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2014.07.23 01:17:44 | 001,050,840 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.dll
[2014.04.12 01:48:40 | 000,133,432 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2014.04.12 00:08:06 | 000,029,472 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Json.dll
[2014.04.12 00:08:06 | 000,029,512 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2014.04.12 00:08:06 | 000,029,976 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2014.04.12 00:08:06 | 000,045,800 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.Serialization.dll
[2014.04.12 00:08:06 | 000,029,928 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.XmlSerializer.dll
[2013.09.11 20:32:16 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.09.11 20:32:16 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\System32\serialui.dll
[2009.07.13 18:38:14 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2009.07.14 02:00:40 | 000,094,208 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_amd64_neutral_fdcfb86ce78678d1\serial.sys
[2009.06.10 22:37:50 | 000,038,400 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\smartcrd.inf_amd64_neutral_6fb75ea318f84fe5\grserial.sys
[2011.04.12 10:17:17 | 000,005,120 | ---- | M] () -- \Windows\System32\en-US\serialui.dll.mui
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\SysWOW64\serialui.dll
[2009.07.13 18:38:14 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\cs-CZ\serialui.dll.mui
[2011.04.12 10:17:17 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\en-US\serialui.dll.mui
[2010.11.04 17:54:40 | 000,011,776 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_1e527062c1f59d5f\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.04 17:54:40 | 000,011,776 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_cs-cz_1e468964c1feb99a\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2010.11.04 17:54:40 | 000,011,776 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.22731_cs-cz_1ec35795db263fce\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2009.07.13 18:58:44 | 000,005,120 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23\serialui.dll.mui
[2011.04.12 10:17:22 | 000,005,120 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_edb61e94e4562781\serialui.dll.mui
[2009.07.14 03:41:54 | 000,017,920 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360\serialui.dll
[2010.11.04 17:54:44 | 000,090,112 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_bb9a1800691e639c\System.RunTime.Serialization.Resources.dll
[2010.11.04 17:54:44 | 000,090,112 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_cs-cz_bb8e310269277fd7\System.RunTime.Serialization.Resources.dll
[2010.11.04 17:54:44 | 000,090,112 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.22733_cs-cz_bc0cffc7824d38b9\System.RunTime.Serialization.Resources.dll
[2009.07.13 19:07:20 | 000,009,728 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_20ab142d65ed6acc\serial.sys.mui
[2011.04.12 10:17:23 | 000,010,240 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf.resources_31bf3856ad364e35_6.1.7600.16385_en-us_64015f894ce7c72a\serial.sys.mui
[2009.07.14 02:00:40 | 000,094,208 | ---- | M] () -- \Windows\winsxs\amd64_msports.inf_31bf3856ad364e35_6.1.7600.16385_none_548ca258d20f4ada\serial.sys
[2009.06.10 22:40:06 | 000,131,072 | ---- | M] () -- \Windows\winsxs\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_a9d1bee515273f56\System.Runtime.Serialization.Formatters.Soap.dll
[2014.06.24 01:43:09 | 000,131,072 | ---- | M] () -- \Windows\winsxs\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7601.18523_none_a9a7e561157d82e9\System.Runtime.Serialization.Formatters.Soap.dll
[2014.06.24 01:43:05 | 000,131,072 | ---- | M] () -- \Windows\winsxs\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7601.22733_none_92db3ec72f23fc97\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.10 22:37:50 | 000,038,400 | ---- | M] () -- \Windows\winsxs\amd64_smartcrd.inf_31bf3856ad364e35_6.1.7600.16385_none_ce9ed3064deed3aa\grserial.sys
[2010.11.21 05:24:53 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17514_none_5918bfde74e3f722\System.Runtime.Serialization.dll
[2012.10.05 12:52:38 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17966_none_591d933074dfaa5b\System.Runtime.Serialization.dll
[2014.03.09 23:48:51 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.18523_none_5919d8d674e2f3ff\System.Runtime.Serialization.dll
[2014.07.11 00:24:02 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.18532_none_591aefe874e1f3b5\System.Runtime.Serialization.dll
[2012.10.05 12:56:11 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.22126_none_424bee728e8a9f53\System.Runtime.Serialization.dll
[2014.03.17 16:38:51 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.22733_none_424d323c8e896dad\System.Runtime.Serialization.dll
[2014.07.08 01:36:29 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.22743_none_424e32868e888704\System.Runtime.Serialization.dll
[2010.11.21 05:24:53 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_93efcca8c8dbf1bb\System.Runtime.Serialization.dll
[2012.10.05 12:52:37 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_93f49ffac8d7a4f4\System.Runtime.Serialization.dll
[2014.03.09 23:48:50 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18523_none_93f0e5a0c8daee98\System.Runtime.Serialization.dll
[2014.07.11 00:24:01 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18532_none_93f1fcb2c8d9ee4e\System.Runtime.Serialization.dll
[2012.10.05 12:56:11 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_7d22fb3ce28299ec\System.Runtime.Serialization.dll
[2014.03.17 16:38:51 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22733_none_7d243f06e2816846\System.Runtime.Serialization.dll
[2014.07.08 01:36:29 | 000,847,872 | ---- | M] () -- \Windows\winsxs\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22743_none_7d253f50e280819d\System.Runtime.Serialization.dll
[2014.06.27 12:40:55 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8.manifest
[2014.06.27 12:40:55 | 000,017,792 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8_kdcom.dll_db5e7744
[2014.06.27 16:54:41 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_aa5fd338fd5bcb23_serialui.dll.mui_7d29d2a3
[2011.04.12 10:17:46 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_edb61e94e4562781_serialui.dll.mui_7d29d2a3
[2009.07.14 04:57:29 | 000,017,920 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_50f69335385bc360_serialui.dll_bea29328
[2014.06.27 16:54:46 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed_serialui.dll.mui_7d29d2a3
[2011.04.12 10:17:46 | 000,005,120 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_919783112bf8b64b_serialui.dll.mui_7d29d2a3
[2009.07.14 04:58:37 | 000,015,360 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a_serialui.dll_bea29328
[2009.07.14 04:15:17 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7600.16385_none_6daa7ec5c65bf5bc.manifest
[2011.02.05 19:35:45 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.17556_none_6fb25371c3691bc8.manifest
[2011.02.05 15:11:05 | 000,002,766 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.1.7601.21655_none_703aeff2dc87a23b.manifest
[2009.07.14 04:11:30 | 000,000,868 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.1.7600.16385_none_88b1c48f2026fe3f.manifest
[2010.11.21 05:17:50 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17514_none_5918bfde74e3f722.manifest
[2012.10.05 20:18:30 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.17966_none_591d933074dfaa5b.manifest
[2014.07.02 08:30:52 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.18523_none_5919d8d674e2f3ff.manifest
[2014.07.14 04:24:48 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.18532_none_591aefe874e1f3b5.manifest
[2012.10.05 20:10:31 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.22126_none_424bee728e8a9f53.manifest
[2014.07.02 08:30:44 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.22733_none_424d323c8e896dad.manifest
[2014.07.14 04:13:57 | 000,002,237 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.1.7601.22743_none_424e32868e888704.manifest
[2010.11.21 05:17:50 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_93efcca8c8dbf1bb.manifest
[2012.10.05 20:19:07 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_93f49ffac8d7a4f4.manifest
[2014.07.02 08:31:00 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18523_none_93f0e5a0c8daee98.manifest
[2014.07.14 04:24:58 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18532_none_93f1fcb2c8d9ee4e.manifest
[2012.10.05 20:11:10 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_7d22fb3ce28299ec.manifest
[2014.07.02 08:30:53 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22733_none_7d243f06e2816846.manifest
[2014.07.14 04:14:06 | 000,002,262 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22743_none_7d253f50e280819d.manifest
[2010.11.21 05:17:50 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c.manifest
[2012.10.05 19:15:39 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285.manifest
[2014.07.02 07:57:49 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.18523_none_a6803b1074d97c29.manifest
[2014.07.14 04:04:09 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.18532_none_a681522274d87bdf.manifest
[2012.10.05 19:17:50 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d.manifest
[2014.07.02 08:07:46 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22733_none_8fb394768e7ff5d7.manifest
[2014.07.14 04:04:27 | 000,002,226 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22743_none_8fb494c08e7f0f2e.manifest
[2009.07.13 19:17:48 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0.manifest
[2011.04.12 10:16:53 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_en-us_8f71d563bf7aa3c2.manifest
[2012.10.05 22:12:17 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f.manifest
[2012.10.05 20:09:41 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_en-us_8f4bb639bfcd9db1.manifest
[2014.07.02 09:46:46 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18523_cs-cz_342b81c984259c43.manifest
[2014.07.02 08:12:55 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18523_en-us_8f47fbdfbfd0e755.manifest
[2014.07.14 06:02:27 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18532_cs-cz_342c98db84249bf9.manifest
[2014.07.14 04:07:18 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18532_en-us_8f4912f1bfcfe70b.manifest
[2012.10.05 21:59:28 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797.manifest
[2012.10.05 19:57:17 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_en-us_787a117bd97892a9.manifest
[2014.07.02 10:08:13 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22733_cs-cz_1d5edb2f9dcc15f1.manifest
[2014.07.02 08:12:12 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22733_en-us_787b5545d9776103.manifest
[2014.07.14 06:06:58 | 000,001,626 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22743_cs-cz_1d5fdb799dcb2f48.manifest
[2014.07.14 03:56:59 | 000,000,531 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22743_en-us_787c558fd9767a5a.manifest
[2010.11.21 05:17:50 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f.manifest
[2012.10.05 19:15:03 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8.manifest
[2014.07.02 08:00:03 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.18523_none_d6c370aa9c807d5c.manifest
[2014.07.14 04:06:40 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.18532_none_d6c487bc9c7f7d12.manifest
[2012.10.05 19:17:15 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0.manifest
[2014.07.02 08:10:04 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22733_none_bff6ca10b626f70a.manifest
[2014.07.14 04:06:53 | 000,001,985 | ---- | M] () -- \Windows\winsxs\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22743_none_bff7ca5ab6261061.manifest
[2010.11.21 05:18:20 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1.manifest
[2012.10.05 19:19:53 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa.manifest
[2014.07.02 07:58:58 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18523_none_db9e1c77dd57179e.manifest
[2014.07.14 04:05:25 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18532_none_db9f3389dd561754.manifest
[2012.10.05 19:22:10 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2.manifest
[2014.07.02 08:08:55 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22733_none_c4d175ddf6fd914c.manifest
[2014.07.14 04:05:41 | 000,002,260 | ---- | M] () -- \Windows\winsxs\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22743_none_c4d27627f6fcaaa3.manifest
[2009.06.10 23:23:19 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7600.16385_none_1c9a3ec1e01c684b\System.Runtime.Serialization.Formatters.Soap.dll
[2014.06.24 01:43:20 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7601.18523_none_1c70653de072abde\System.Runtime.Serialization.Formatters.Soap.dll
[2014.06.24 01:43:36 | 000,131,072 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.1.7601.22733_none_05a3bea3fa19258c\System.Runtime.Serialization.Formatters.Soap.dll
[2009.06.10 14:10:20 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7600.16385_cs-cz_d5c3552dd9b47144\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013.07.08 14:43:52 | 000,011,776 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.1.7601.18523_cs-cz_d5997ba9da0ab4d7\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.21 05:24:53 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17514_none_a67f221874da7f4c\System.Runtime.Serialization.dll
[2012.10.05 12:53:24 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.17966_none_a683f56a74d63285\System.Runtime.Serialization.dll
[2014.03.09 23:47:42 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.18523_none_a6803b1074d97c29\System.Runtime.Serialization.dll
[2014.07.11 00:24:11 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.18532_none_a681522274d87bdf\System.Runtime.Serialization.dll
[2012.10.05 12:56:07 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22126_none_8fb250ac8e81277d\System.Runtime.Serialization.dll
[2014.03.17 16:38:28 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22733_none_8fb394768e7ff5d7\System.Runtime.Serialization.dll
[2014.07.08 01:27:52 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.ref_b77a5c561934e089_6.1.7601.22743_none_8fb494c08e7f0f2e\System.Runtime.Serialization.dll
[2009.06.08 10:39:36 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7600.16385_cs-cz_34555b4d83cf58b0\System.RunTime.Serialization.Resources.dll
[2010.11.13 04:02:06 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.17966_cs-cz_342f3c238422529f\System.RunTime.Serialization.Resources.dll
[2010.11.13 04:37:37 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18523_cs-cz_342b81c984259c43\System.RunTime.Serialization.Resources.dll
[2010.11.13 04:37:37 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.18532_cs-cz_342c98db84249bf9\System.RunTime.Serialization.Resources.dll
[2010.11.13 04:37:37 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22126_cs-cz_1d5d97659dcd4797\System.RunTime.Serialization.Resources.dll
[2010.11.13 04:37:37 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22733_cs-cz_1d5edb2f9dcc15f1\System.RunTime.Serialization.Resources.dll
[2010.11.13 04:37:37 | 000,090,112 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization.resources_b77a5c561934e089_6.1.7601.22743_cs-cz_1d5fdb799dcb2f48\System.RunTime.Serialization.Resources.dll
[2010.11.21 05:24:53 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17514_none_d6c257b29c81807f\System.Runtime.Serialization.dll
[2012.10.05 12:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.17966_none_d6c72b049c7d33b8\System.Runtime.Serialization.dll
[2014.03.09 23:47:42 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.18523_none_d6c370aa9c807d5c\System.Runtime.Serialization.dll
[2014.07.11 00:24:10 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.18532_none_d6c487bc9c7f7d12\System.Runtime.Serialization.dll
[2012.10.05 12:56:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22126_none_bff58646b62828b0\System.Runtime.Serialization.dll
[2014.03.17 16:38:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22733_none_bff6ca10b626f70a\System.Runtime.Serialization.dll
[2014.07.08 01:27:52 | 000,970,752 | ---- | M] () -- \Windows\winsxs\msil_system.runtime.serialization_b77a5c561934e089_6.1.7601.22743_none_bff7ca5ab6261061\System.Runtime.Serialization.dll
[2010.11.04 17:53:34 | 000,011,776 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_28a71ab4f6565f5a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.04 17:53:34 | 000,011,776 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_cs-cz_289b33b6f65f7b95\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2010.11.04 17:53:34 | 000,011,776 | ---- | M] () -- \Windows\winsxs\wow64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.1.7601.22731_cs-cz_291801e80f8701c9\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2009.07.13 18:38:14 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_4e4137b544fe59ed\serialui.dll.mui
[2011.04.12 10:17:17 | 000,005,120 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.1.7600.16385_en-us_919783112bf8b64b\serialui.dll.mui
[2009.07.14 03:16:13 | 000,015,360 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.1.7600.16385_none_f4d7f7b17ffe522a\serialui.dll
[2010.11.04 17:53:40 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.17514_cs-cz_5f7b7c7cb0c0f266\System.RunTime.Serialization.Resources.dll
[2010.11.04 17:53:40 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.18523_cs-cz_5f6f957eb0ca0ea1\System.RunTime.Serialization.Resources.dll
[2010.11.04 17:53:40 | 000,090,112 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.1.7601.22733_cs-cz_5fee6443c9efc783\System.RunTime.Serialization.Resources.dll
[2010.11.21 05:25:11 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17514_none_db9d037fdd581ac1\System.Runtime.Serialization.dll
[2012.10.05 12:53:23 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.17966_none_dba1d6d1dd53cdfa\System.Runtime.Serialization.dll
[2014.03.09 23:47:42 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18523_none_db9e1c77dd57179e\System.Runtime.Serialization.dll
[2014.07.11 00:24:10 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.18532_none_db9f3389dd561754\System.Runtime.Serialization.dll
[2012.10.05 12:56:05 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22126_none_c4d03213f6fec2f2\System.Runtime.Serialization.dll
[2014.03.17 16:38:27 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22733_none_c4d175ddf6fd914c\System.Runtime.Serialization.dll
[2014.07.08 01:27:52 | 000,970,752 | ---- | M] () -- \Windows\winsxs\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.1.7601.22743_none_c4d27627f6fcaaa3\System.Runtime.Serialization.dll

< *w7lxe* /s >

< End of report >
Děkuju moc!

Co ten ComboFix? Kdo a proc ho spoustel? Byl pouzity i docistovaci skript?

Jak je to s legalitou systemu? Ultimate neni zrovna bezna domaci verze

Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.

Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=137928 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

Nevim, co bylo pouzito v combofixu, mam jej spustit znovu, popr. jak? (Spustilaj sem dle navodu)
legalita systemu? Asi to nebude uplne 100%, to nevím, dával mi to tam kamarád.

Dekuju za radu

Martinka píše:Nevim, co bylo pouzito v combofixu, mam jej spustit znovu, popr. jak?

Neee, uz zadne spousteni!!! Jeho spusteni bez predchozi kontroly logu RSIT/FRST byla prave velka chyba.

Kdybyste cetla pravidla fora http://forum.viry.cz/viewtopic.php?f=12&t=5601 , docetla byste se mimo jine toto

2. Před položením dotazu použijte tlačítko Hledat. Možná již někdo problém podobným Vašemu řešil. Pokud ale ve vyřešeném tématu budou aplikovány různé utility\aplikace, nespouštějte je. Utility se používají až na pokyn rádce, jelikož mohou mazat stopy po havěti a v rukou ne-oborníka může mít jejich použití nedozírné následky.

3. Zvláště utilitu ComboFix nespouštějte i když Vám ji poradil kamarád\nějaký rádoby odborný web. Naše fórum je jediné z CZ-SK antivirových fór, která mají právo luštit logy z ComboFixu a mámě též plnou podporu autora této utility a přístup k nejaktuálnějším informacím a návodům.

CF smaze veskere stopy pripadne nakazy a ja ted muzu tak akorat varit z vody, jak se rika

Takze bez doporuceni ho uz rozhodne nepouzivejte, jinak muze byt priste pomoc odmitnuta.
A taky upozornuji, ze se cisteni mozna protahne a vysledek neni vubec jisty

Uvidime

Pokracujte ADWCleanerem a MBAM

AdwCleaner
AdwCleaner v4.206 - Logfile created 21/06/2015 at 08:38:01
# Updated 01/06/2015 by Xplode
# Database : 2015-06-17.1 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (x64)
# Username : maty - MATY-PC
# Running from : C:\Users\maty\Downloads\adwcleaner_4.206.exe
# Option : Cleaning

***** [ Services ] *****

Service Deleted : {2b929fe1-284b-4766-afb9-19b0915b99b0}Gw64

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\WindowsMangerProtect
Folder Deleted : C:\ProgramData\IHProtectUpDate
Folder Deleted : C:\Users\Guest\AppData\Roaming\Elex-tech
Folder Deleted : C:\Users\maty\AppData\Local\globalUpdate
Folder Deleted : C:\Users\maty\AppData\Roaming\Mozilla\Firefox\Profiles\4vxtyn36.default\Extensions\faststartff@gmail.com
Folder Deleted : C:\Users\maty\AppData\Roaming\Mozilla\Firefox\Profiles\4vxtyn36.default\Extensions\quick_searchff@gmail.com
File Deleted : C:\Windows\System32\log\iSafeKrnlCall.log
File Deleted : C:\Windows\System32\drivers\{2b929fe1-284b-4766-afb9-19b0915b99b0}Gw64.sys
File Deleted : C:\Windows\System32\drivers\iSafeNetFilter.sys
File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\delta-homes.xml
File Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.v9.com_0.localstorage
File Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.v9.com_0.localstorage-journal

***** [ Scheduled tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [faststartff@gmail.com]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [quick_searchff@gmail.com]
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Key Deleted : HKCU\Software\Mozilla\Extends
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{03771AEF-400D-4A13-B712-25878EC4A3F5}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E9DB9E7B-A275-41D1-8158-D0423FBEBDEB}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\GlobalUpdate
Key Deleted : HKCU\Software\V9
Key Deleted : HKLM\SOFTWARE\delta-homesSoftware
Key Deleted : HKLM\SOFTWARE\hdcode
Key Deleted : HKLM\SOFTWARE\webssearchesSoftware
Key Deleted : HKLM\SOFTWARE\PicexaSvc
Key Deleted : HKU\.DEFAULT\Software\Elex-tech

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17840

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v32.0.2 (x86 cs)

[4vxtyn36.default\prefs.js] - Line Deleted : user_pref("browser.newtab.url", "hxxp://www.delta-homes.com/newtab/?type=nt&ts= ... 1946719467");
[4vxtyn36.default\prefs.js] - Line Deleted : user_pref("browser.startup.homepage", "hxxp://www.delta-homes.com/?type=hp&ts=1430822 ... 1946719467");

-\\ Google Chrome v43.0.2357.124

[C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Preferences] - Deleted [Homepage] : hxxp://www.v9.com?type=hp&ts=1433408473&from=m ... 6e0b8z2m8c
[C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Preferences] - Deleted [Startup_URLs] : 95AB49414437DFCF6EF33C31617E7263DB7AE3844EDCDA21E904C9721E681BDD"},"software_reporter":{"prompt_reason":"98C9CA83E93094E5D4F3408E6CB3C4E9133F3DF3E2337FCAC1BF2D080A829079","prompt_seed":"2A1FA492D7C4B1149CB47398384631E5D6857CE74D6E94A757A72F12D440F32A","prompt_version":"671D77BDE3E5E9FE5E63FB00A74EBEEFB58C315CC55DA1FF8A02509F0FD1BBFF"},"sync":{"remaining_rollback_tries":"191EF83ABFECEF92E1476074D6F77637C40F3F4BE4CB570C636E21AC82ED197D"}}},"selectfile":{"last_directory":"C:\\Users\\Guest\\Downloads"},"session":{"restore_on_startup":4,"restore_on_startup_migrated":true,"startup_urls":["hxxp://www.v9.com?type=hp&ts=1433408473&from=m ... 6e0b8z2m8c
[C:\Users\maty\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Deleted [Homepage] : hxxp://www.v9.com?type=hp&ts=1433408473&from=m ... 6e0b8z2m8c
[C:\Users\maty\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Deleted [Startup_URLs] : 95AB49414437DFCF6EF33C31617E7263DB7AE3844EDCDA21E904C9721E681BDD"},"software_reporter":{"prompt_reason":"98C9CA83E93094E5D4F3408E6CB3C4E9133F3DF3E2337FCAC1BF2D080A829079","prompt_seed":"19B53E53002005A3B55342C0A83CCBBEC2D423D9737AF9FEEAECE5D41F455DCE","prompt_version":"671D77BDE3E5E9FE5E63FB00A74EBEEFB58C315CC55DA1FF8A02509F0FD1BBFF"},"sync":{"remaining_rollback_tries":"191EF83ABFECEF92E1476074D6F77637C40F3F4BE4CB570C636E21AC82ED197D"}},"super_mac":"867F851C3E55899132A154BAC73D03916E5CE97F5C73651018A564F254F03B16"},"session":{"startup_urls":["hxxp://www.v9.com?type=hp&ts=1433408473&from=m ... 6e0b8z2m8c

-\\ Opera v0.0.0.0

*************************

AdwCleaner[R0].txt - [8467 bytes] - [21/06/2015 08:12:22]
AdwCleaner[S0].txt - [7169 bytes] - [21/06/2015 08:38:01]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [7228 bytes] ##########

Malwarebytes:

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 21.6.2015
Scan Time: 8:49:28
Logfile: log.txt
Administrator: Yes

Version: 2.01.6.1022
Malware Database: v2015.04.05.02
Rootkit Database: v2015.06.15.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: maty

Scan Type: Custom Scan
Result: Completed
Objects Scanned: 542140
Time Elapsed: 1 hr, 3 min, 43 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 1
PUP.Optional.SavePass.A, HKU\S-1-5-18\SOFTWARE\APPDATALOW\SOFTWARE\SavePass 1.1, , [5d992d3b107aca6c6d1e607dd033f010],

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 4
FraudTool.YAC, C:\AdwCleaner\Quarantine\C\Windows\System32\drivers\iSafeNetFilter.sys.vir, , [7a7ca5c36e1cab8be57e62d317ebe818],
Riskware.Keygen, C:\Windows\AutoKMS.exe, , [6d896800f793d85e15276277d92739c7],
RiskWare.Tool.CK, C:\Windows\KMSEmulator.exe, , [35c1a4c4a7e3ab8b9216e1d08d75d12f],
PUP.Optional.V9.A, C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Preferences, Good: (), Bad: ({"apps":{"shortcuts_have_been_created":true},"browser":{"last_known_google_url":"https://www.google.cz/","show_home_butt ... nal_length":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","833483906"],"daily_original_length_via_data_reduction_proxy":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0"],"daily_original_length_with_data_reduction_proxy_enabled":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0"],"daily_received_length":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","833483906"],"daily_received_length_https_with_data_reduction_proxy_enabled":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0"],"daily_received_length_long_bypass_with_data_reduction_proxy_enabled":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0"],"daily_received_length_short_bypass_with_data_reduction_proxy_enabled":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0"],"daily_received_length_unknown_with_data_reduction_proxy_enabled":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0"],"daily_received_length_via_data_reduction_proxy":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0"],"daily_received_length_with_data_reduction_proxy_enabled":["0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0","0"],"last_update_date":"13078188000000000"},"default_apps_install_state":3,"default_search_provider":{"keyword":"V9","name":"V9","search_url":""},"distribution":{"make_chrome_default_for_user":true},"download":{"directory_upgrade":true},"enhanced_bookmarks_enabled":0,"extensions":{"alerts":{"initialized":true},"autoupdate":{"last_check":"13078246815215528","next_check":"13078266443038528"},"chrome_url_overrides":{"bookmarks":["chrome-extension://eemcgdkfndhakfknompkggombfjjjeno/main.html"]},"commands":{},"install_signature":{"expire_date":"2014-10-27","ids":["aohghmighlieiainnegkcijnfilokake"],"invalid_ids":[],"salt":"HCrjBoo75hdvRbOap1jvLi4wweAK6ym4P5/mqiQkuts=","signature":"b6m0fEyPmzF6qGO96X2x9I1uPvdyAyI+WXJme0zmJyayKX9x72UV9vS7eE7wZ2+ACWRgsMxHVAHLkIPuRWvdaMhcMHM5lHsz05u0tbeSgBFc9JyV5Vponk13tU1Qwtwc19HGSpZK+JZr9xu/ZZ/9bAHQHGVQiPOjAQRTYEIb+YvypuSgnEUB/79Td6Vss2du8lsMguoH1IaFrVIvr5GAoaZxEWItPIz9JGNZA898HDFsP/wnz4xBMbyeixFl1W9QRbqBGpT4gVwzClh2somnBEVRAEq5g/3m7D8heDaESTIF6GcuJ+PJId5aBwzfSQCv4n/cIBMNT88uJ27F4Gt7EQ==","signature_format_version":2,"timestamp":"13051642071786527"},"known_disabled":[],"last_chrome_version":"43.0.2357.81","settings":{"ahfgeienlihckogmohjhadlkjgocpleb":{"active_permissions":{"api":["management","system.display","system.storage","webstorePrivate","system.cpu","system.memory","system.network"],"manifest_permissions":[]},"app_launcher_ordinal":"t","content_settings":[],"creation_flags":1,"events":[],"from_bookmark":false,"from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"install_time":"13051642067339305","location":5,"manifest":{"app":{"launch":{"web_url":"https://chrome.google.com/webstore"},"urls":["https://chrome.google.com/webstore"]},"description":"Chrome Web Store","icons":{"128":"webstore_icon_128.png","16":"webstore_icon_16.png"},"key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCtl3tO0osjuzRsf6xtD2SKxPlTfuoy7AWoObysitBPvH5fE1NaAA1/2JkPWkVDhdLBWLaIBPYeXbzlHp3y4Vv/4XG+aN5qFE3z+1RU/NqkzVYHtIpVScf3DjTYtKVL66mzVGijSoAIwbFCC3LpGdaoe6Q1rSRDp76wR6jjFzsYwQIDAQAB","name":"Obchod","permissions":["webstorePrivate","management"],"version":"0.2"},"page_ordinal":"n","path":"C:\\Program Files (x86)\\Google\\Chrome\\Application\\36.0.1985.125\\resources\\web_store","preferences":{},"regular_only_preferences":{},"was_installed_by_default":false,"was_installed_by_oem":false},"aohghmighlieiainnegkcijnfilokake":{"ack_external":true,"active_permissions":{"api":[],"manifest_permissions":[]},"app_launcher_ordinal":"w","commands":{},"content_settings":[],"creation_flags":137,"events":[],"from_bookmark":false,"from_webstore":true,"granted_permissions":{"api":[],"manifest_permissions":[]},"incognito_content_settings":[],"incognito_preferences":{},"initial_keybindings_set":true,"install_time":"13078246816598528","lastpingday":"13078220400605528","location":1,"manifest":{"api_console_project_id":"619683526622","app":{"launch":{"local_path":"main.html"}},"container":"GOOGLE_DRIVE","current_locale":"cs","default_locale":"en_US","description":"VytvA!A?ejte a upravujte dokumenty","icons":{"128":"icon_128.png","16":"icon_16.png"},"key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDJhLK6fk/BWTEvJhywpk7jDe4A2r0bGXGOLZW4/AdBp3IiD9o9nx4YjLAtv0tIPxi7MvFd/GUUbQBwHT5wQWONJj1z/0Rc2qBkiJA0yqXh42p0snuA8dCfdlhOLsp7/XTMEwAVasjV5hC4awl78eKfJYlZ+8fM/UldLWJ/51iBQwIDAQAB","manifest_version":2,"name":"Dokumenty Google","offline_enabled":true,"update_url":"https://clients2.google.com/service/upd ... ons":{"api":["background","clipboardRead","clipboardWrite","notifications","unlimitedStorage"],"manifest_permissions":[]},"app_launcher_ordinal":"x","commands":{},"content_settings":[],"creation_flags":137,"events":[],"from_bookmark":false,"from_webstore":true,"granted_permissions":{"api":["background","clipboardRead","clipboardWrite","notifications","unlimitedStorage"],"manifest_permissions":[]},"incognito_content_settings":[],"incognito_preferences":{},"install_time":"13078246819958528","lastpingday":"13078220400605528","location":1,"manifest":{"app":{"launch":{"web_url":"https://drive.google.com/?usp=chrome_app"},"urls":["http://docs.google.com/","http://drive. ... oogle.com/"]},"background":{"allow_js_access":false},"current_locale":"cs","default_locale":"en_US","description":"Disk Google: vytvA!A?ejte, sdAlejte a uklA!dejte soubory na jednom mAstÄ?.","icons":{"128":"128.png"},"key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDIl5KlKwL2TSkntkpY3naLLz5jsN0YwjhZyObcTOK6Nda4Ie21KRqZau9lx5SHcLh7pE2/S9OiArb+na2dn7YK5EvH+aRXS1ec3uxVlBhqLdnleVgwgwlg5fH95I52IeHcoeK6pR4hW/Nv39GNlI/Uqk6O6GBCCsAxYrdxww9BiQIDAQAB","manifest_version":2,"name":"Disk Google","offline_enabled":true,"options_page":"https://drive.google.com/settings","permissions":["background","clipboardRead","clipboardWrite","notifications","unlimitedStorage"],"update_url":"https://clients2.google.com/service/upd ... benÄ?jA!A komunita online videa na svÄ?tÄ?.","icons":{"128":"128.png"},"key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDC/HotmFlyuz5FaHaIbVBhhL4BwbcUtsfWwzgUMpZt5ZsLB2nW/Y5xwNkkPANYGdVsJkT2GPpRRIKBO5QiJ7jPMa3EZtcZHpkygBlQLSjMhdrAKevpKgIl6YTkwzNvExY6rzVDzeE9zqnIs33eppY4S5QcoALMxuSWlMKqgFQjHQIDAQAB","manifest_version":2,"name":"YouTube","update_url":"http://clients2.google.com/service/upda ... pp"},"urls":["*://www.google.com/search","*://www.google. ... com/imgres"]},"current_locale":"cs","default_locale":"en","description":"NejrychlejA!A zpA—sob, jak hledat na webu.","icons":{"128":"128.png","16":"16.png","32":"32.png","48":"48.png"},"key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDIiso3Loy5VJHL40shGhUl6it5ZG55XB9q/2EX6aa88jAxwPutbCgy5d9bm1YmBzLfSgpX4xcpgTU08ydWbd7b50fbkLsqWl1mRhxoqnN01kuNfv9Hbz9dWWYd+O4ZfD3L2XZs0wQqo0y6k64n+qeLkUMd1MIhf6MR8Xz1SOA8pwIDAQAB","manifest_version":2,"name":"VyhledA!vA!nA Google","permissions":[],"update_url":"http://clients2.google.com/service/upda ... ons":{"api":["bookmarks","bookmarkManagerPrivate","metricsPrivate","systemPrivate","tabs"],"explicit_host":["chrome://favicon/*","chrome://resources/*"],"manifest_permissions":[]},"content_settings":[],"creation_flags":1,"events":[],"from_bookmark":false,"from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"initial_keybindings_set":true,"install_time":"13051642067338305","location":5,"manifest":{"chrome_url_overrides":{"bookmarks":"main.html"},"content_security_policy":"object-src 'none'; script-src chrome://resources 'self'","description":"Bookmark Manager","icons":{},"incognito":"split","key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDQcByy+eN9jzazWF/DPn7NW47sW7lgmpk6eKc0BQM18q8hvEM3zNm2n7HkJv/R6fU+X5mtqkDuKvq5skF6qqUF4oEyaleWDFhd1xFwV7JV+/DU7bZ00w2+6gzqsabkerFpoP33ZRIw7OviJenP0c0uWqDWF8EGSyMhB3txqhOtiQIDAQAB","manifest_version":2,"name":"Bookmark Manager","permissions":["bookmarks","bookmarkManagerPrivate","metricsPrivate","systemPrivate","tabs","chrome://favicon/","chrome://resources/"],"version":"0.1"},"path":"C:\\Program Files (x86)\\Google\\Chrome\\Application\\36.0.1985.125\\resources\\bookmark_manager","preferences":{},"regular_only_preferences":{},"was_installed_by_default":false,"was_installed_by_oem":false},"ennkphjdgehloodpbhlhldgbnhmacadg":{"active_permissions":{"api":[],"explicit_host":["chrome://settings-frame/*"],"manifest_permissions":[]},"content_settings":[],"creation_flags":1,"events":["app.runtime.onLaunched"],"from_bookmark":false,"from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"initial_keybindings_set":true,"install_time":"13051642067341305","location":5,"manifest":{"app":{"background":{"scripts":["settings_app.js"]}},"description":"Settings","display_in_launcher":false,"icons":{"128":"settings_app_icon_128.png","16":"settings_app_icon_16.png","32":"settings_app_icon_32.png","48":"settings_app_icon_48.png"},"key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDoVDPGX6fvKPVVgc+gnkYlGqHuuapgFDyKhsy4z7UzRLO/95zXPv8h8e5EacqbAQJLUbP6DERH5jowyNEYVxq9GJyntJMwP1ejvoz/52hnY3CCGGCmttmKzzpp5zwLuq3iZf8bslwywfflNUYtaCFSDa0TtrBZz0aOPrAAd/AhNwIDAQAB","manifest_version":2,"name":"Settings","permissions":["chrome://settings-frame/"],"version":"0.2"},"path":"C:\\Program Files (x86)\\Google\\Chrome\\Application\\36.0.1985.125\\resources\\settings_app","preferences":{},"regular_only_preferences":{},"running":false,"was_installed_by_default":false,"was_installed_by_oem":false},"gfdkimpbcpahaombhbimeihdjnejgicl":{"active_permissions":{"api":["feedbackPrivate"],"explicit_host":["chrome://resources/*"],"manifest_permissions":[]},"content_settings":[],"creation_flags":1,"events":["feedbackPrivate.onFeedbackRequested","runtime.onMessageExternal"],"from_bookmark":false,"from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"initial_keybindings_set":true,"install_time":"13051642067342305","location":5,"manifest":{"app":{"background":{"scripts":["js/event_handler.js"]},"content_security_policy":"default-src 'none'; script-src 'self' chrome://resources; style-src 'unsafe-inline' *; img-src *; media-src 'self'"},"description":"User feedback extension","display_in_launcher":false,"display_in_new_tab_page":false,"icons":{"32":"images/icon32.png","64":"images/icon64.png"},"incognito":"split","key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDMZElzFX2J1g1nRQ/8S3rg/1CjFyDltWOxQg+9M8aVgNVxbutEWFQz+oQzIP9BB67mJifULgiv12ToFKsae4NpEUR8sPZjiKDIHumc6pUdixOm8SJ5Rs16SMR6+VYxFUjlVW+5CA3IILptmNBxgpfyqoK0qRpBDIhGk1KDEZ4zqQIDAQAB","manifest_version":2,"name":"Feedback","permissions":["feedbackPrivate","chrome://resources/"],"version":"1.0"},"path":"C:\\Program Files (x86)\\Google\\Chrome\\Application\\36.0.1985.125\\resources\\feedback","preferences":{},"regular_only_preferences":{},"running":false,"was_installed_by_default":false,"was_installed_by_oem":false},"kmendfapggjehodndflmmgagdbamhnfd":{"active_permissions":{"api":["cryptotokenPrivate","externally_connectable.all_urls","hid","tabs","u2fDevices","usb",{"usbDevices":[{"interfaceId":-1,"productId":529,"vendorId":4176}]},"webConnectable"],"explicit_host":["http://*/*","https://*/*","https://www.gstatic.com/*"],"manifest_permissions":[]},"commands":{},"content_settings":[],"creation_flags":1,"events":["runtime.onConnectExternal","runtime.onMessageExternal"],"from_bookmark":false,"from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"initial_keybindings_set":true,"install_time":"13078246218402376","location":5,"manifest":{"background":{"persistent":false,"scripts":["util.js","b64.js","sha256.js","countdown.js","countdowntimer.js","devicestatuscodes.js","approvedorigins.js","errorcodes.js","gnubbycodetypes.js","webrequest.js","gnubbymsgtypes.js","messagetypes.js","factoryregistry.js","closeable.js","requesthelper.js","webrequestsender.js","enroller.js","requestqueue.js","signer.js","origincheck.js","textfetcher.js","appid.js","watchdog.js","cryptotokenorigincheck.js","cryptotokenapprovedorigins.js","gnubbydevice.js","hidgnubbydevice.js","usbgnubbydevice.js","gnubbies.js","gnubby.js","gnubby-u2f.js","gnubbyfactory.js","singlesigner.js","multiplesigner.js","generichelper.js","inherits.js","individualattest.js","devicefactoryregistry.js","usbhelper.js","usbenrollhandler.js","usbsignhandler.js","usbgnubbyfactory.js","googlecorpindividualattest.js","cryptotokenbackground.js"]},"description":"CryptoToken Component Extension","externally_connectable":{"accepts_tls_channel_id":true,"ids":["fjajfjhkeibgmiggdfehjplbhmfkialk"],"matches":["\u003Call_urls>"]},"incognito":"split","key":"MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq7zRobvA+AVlvNqkHSSVhh1sEWsHSqz4oR/XptkDe/Cz3+gW9ZGumZ20NCHjaac8j1iiesdigp8B1LJsd/2WWv2Dbnto4f8GrQ5MVphKyQ9WJHwejEHN2K4vzrTcwaXqv5BSTXwxlxS/mXCmXskTfryKTLuYrcHEWK8fCHb+0gvr8b/kvsi75A1aMmb6nUnFJvETmCkOCPNX5CHTdy634Ts/x0fLhRuPlahk63rdf7agxQv5viVjQFk+tbgv6aa9kdSd11Js/RZ9yZjrFgHOBWgP4jTBqud4+HUglrzu8qynFipyNRLCZsaxhm+NItTyNgesxLdxZcwOz56KD1Q4IQIDAQAB","manifest_version":2,"name":"CryptoTokenExtension","permissions":["hid","u2fDevices","usb","cryptotokenPrivate","externally_connectable.all_urls","tabs","https://*/*","http://*/*",{"usbDevices":[{"productId":529,"vendorId":4176}]}],"version":"0.9.22"},"path":"C:\\Program Files (x86)\\Google\\Chrome\\Application\\43.0.2357.81\\resources\\cryptotoken","preferences":{},"regular_only_preferences":{},"state":1,"was_installed_by_default":false,"was_installed_by_oem":false},"mfehgcgbbipciphmccgaenjidiccnmng":{"active_permissions":{"api":["cloudPrintPrivate"],"manifest_permissions":[]},"content_settings":[],"creation_flags":1,"events":[],"from_bookmark":false,"from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"install_time":"13051642067338305","location":5,"manifest":{"app":{"launch":{"web_url":"https://www.google.com/cloudprint"},"urls":["https://www.google.com/cloudprint/enabl ... _connector"]},"description":"Cloud Print","display_in_launcher":false,"icons":{},"key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDqOhnwk4+HXVfGyaNsAQdU/js1Na56diW08oF1MhZiwzSnJsEaeuMN9od9q9N4ZdK3o1xXOSARrYdE+syV7Dl31nf6qz3A6K+D5NHe6sSB9yvYlIiN37jdWdrfxxE0pRYEVYZNTe3bzq3NkcYJlOdt1UPcpJB+isXpAGUKUvt7EQIDAQAB","name":"Cloud Print","permissions":["cloudPrintPrivate"],"version":"0.1"},"path":"C:\\Program Files (x86)\\Google\\Chrome\\Application\\36.0.1985.125\\resources\\cloud_print","preferences":{},"regular_only_preferences":{},"was_installed_by_default":false,"was_installed_by_oem":false},"mfffpogegjflfpflabcdkioaeobkgjik":{"active_permissions":{"api":["webRequest","webRequestBlocking"],"explicit_host":["\u003Call_urls>","chrome://favicon/*"],"manifest_permissions":[],"scriptable_host":["\u003Call_urls>"]},"content_settings":[],"creation_flags":1,"events":[],"from_bookmark":false,"from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"initial_keybindings_set":true,"install_time":"13051642070939305","location":5,"manifest":{"background":{"scripts":["background.js","channel.js"]},"content_scripts":[{"all_frames":true,"js":["channel.js","saml_injected.js"],"matches":["\u003Call_urls>"]}],"content_security_policy":"default-src 'self'; script-src 'self'; frame-src *; style-src 'self' 'unsafe-inline'","description":"GAIA Component Extension","key":"MIGdMA0GCSqGSIb3DQEBAQUAA4GLADCBhwKBgQC4L17nAfeTd6Xhtx96WhQ6DSr8KdHeQmfzgCkieKLCgUkWdwB9G1DCuh0EPMDn1MdtSwUAT7xE36APEzi0X/UpKjOVyX8tCC3aQcLoRAE0aJAvCcGwK7qIaQaczHmHKvPC2lrRdzSoMMTC5esvHX+ZqIBMi123FOL0dGW6OPKzIwIBIw==","manifest_version":2,"name":"GaiaAuthExtension","permissions":["\u003Call_urls>","webRequest","webRequestBlocking"],"version":"0.0.1","web_accessible_resources":["main.css","main.html","main.js","offline.css","offline.html","offline.js","success.html","success.js","util.js"]},"path":"C:\\Program Files (x86)\\Google\\Chrome\\Application\\36.0.1985.125\\resources\\gaia_auth","preferences":{},"regular_only_preferences":{},"was_installed_by_default":false,"was_installed_by_oem":false},"mgndgikekgjfcpckkfioiadnlibdjbkf":{"active_permissions":{"api":[],"manifest_permissions":[]},"app_launcher_ordinal":"n","content_settings":[],"creation_flags":1,"events":[],"from_bookmark":false,"from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"install_time":"13051642067340305","location":5,"manifest":{"app":{"launch":{"web_url":"http://THIS-WILL-BE-REPLACED"}},"description":"Chrome as an app","display_in_launcher":true,"display_in_new_tab_page":false,"icons":{"128":"product_logo_128.png","16":"product_logo_16.png"},"key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDNuYLEQ1QPMcc5HfWI/9jiEf6FdJWqEtgRmIeI7qtjPLBM5oje+Ny2E2mTAhou5qdJiO2CHWdU1DQXY2F7Zu2gZaKZgHLfK4WimHxUT5Xd9/aro/R9PCzjguM1BLusiWYc9xlj1IsZpyiN1hcjU7SCnBhv1feQlv2WSB5KRiXwhQIDAQAB","name":"Chrome","version":"0.1"},"page_ordinal":"n","path":"C:\\Program Files (x86)\\Google\\Chrome\\Application\\36.0.1985.125\\resources\\chrome_app","preferences":{},"regular_only_preferences":{},"was_installed_by_default":false,"was_installed_by_oem":false},"mhjfbmdgcfjbbpaeojofohoefgiehjai":{"active_permissions":{"api":[],"explicit_host":["\u003Call_urls>","chrome://favicon/*"],"manifest_permissions":[],"scriptable_host":["chrome://print/*"]},"commands":{},"content_settings":[],"creation_flags":1,"events":[],"from_bookmark":false,"from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"initial_keybindings_set":true,"install_time":"13078246218402376","location":5,"manifest":{"content_scripts":[{"js":["content_script.js"],"matches":["chrome://print/*"]}],"content_security_policy":"script-src 'self' chrome://resources; object-src *; plugin-types application/x-google-chrome-pdf","description":"","incognito":"split","key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDN6hM0rsDYGbzQPQfOygqlRtQgKUXMfnSjhIBL7LnReAVBEd7ZmKtyN2qmSasMl4HZpMhVe2rPWVVwBDl6iyNE/Kok6E6v6V3vCLGsOpQAuuNVye/3QxzIldzG/jQAdWZiyXReRVapOhZtLjGfywCvlWq7Sl/e3sbc0vWybSDI2QIDAQAB","manifest_version":2,"mime_types":["application/pdf"],"mime_types_handler":"index.html","name":"Chrome PDF Viewer","offline_enabled":true,"permissions":["\u003Call_urls>"],"version":"1","web_accessible_resources":["index.html","index.html"]},"path":"C:\\Program Files (x86)\\Google\\Chrome\\Application\\43.0.2357.81\\resources\\pdf","preferences":{},"regular_only_preferences":{},"state":1,"was_installed_by_default":false,"was_installed_by_oem":false},"neajdppkdcdipfabeoofebfddakdcjhd":{"active_permissions":{"api":["systemPrivate","ttsEngine"],"explicit_host":["https://www.google.com/*"],"manifest_permissions":[]},"content_settings":[],"creation_flags":1,"events":["ttsEngine.onPause","ttsEngine.onResume","ttsEngine.onSpeak","ttsEngine.onStop"],"from_bookmark":false,"from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"initial_keybindings_set":true,"install_time":"13051642067343305","location":5,"manifest":{"background":{"persistent":false,"scripts":["tts_extension.js"]},"description":"Component extension providing speech via the Google network text-to-speech service.","key":"MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8GSbNUMGygqQTNDMFGIjZNcwXsHLzkNkHjWbuY37PbNdSDZ4VqlVjzbWqODSe+MjELdv5Keb51IdytnoGYXBMyqKmWpUrg+RnKvQ5ibWr4MW9pyIceOIdp9GrzC1WZGgTmZismYR3AjaIpufZ7xDdQQv+XrghPWCkdVqLN+qZDA1HU+DURznkMICiDDSH2sU0egm9UbWfS218bZqzKeQDiC3OnTPlaxcbJtKUuupIm5knjze3Wo9Ae9poTDMzKgchg0VlFCv3uqox+wlD8sjXBoyBCCK9HpImdVAF1a7jpdgiUHpPeV/26oYzM9/grltwNR3bzECQgSpyXp0eyoegwIDAQAB","manifest_version":2,"name":"Google Network Speech","permissions":["systemPrivate","ttsEngine","https://www.google.com/"],"tts_engine":{"voices":[{"event_types":["start","end","error"],"gender":"female","lang":"en-US","remote":true,"voice_name":"Google US English"},{"event_types":["start","end","error"],"gender":"male","lang":"en-GB","remote":true,"vo

ice_name":"Google UK English Male"},{"event_types":["start","end","error"],"gender":"female","lang":"en-GB","remote":true,"voice_name":"Google UK English Female"},{"event_types":["start","end","error"],"gender":"female","lang":"es-ES","remote":true,"voice_name":"Google EspaA±ol"},{"event_types":["start","end","error"],"gender":"female","lang":"fr-FR","remote":true,"voice_name":"Google FranA§ais"},{"event_types":["start","end","error"],"gender":"female","lang":"it-IT","remote":true,"voice_name":"Google Italiano"},{"event_types":["start","end","error"],"gender":"female","lang":"de-DE","remote":true,"voice_name":"Google Deutsch"},{"event_types":["start","end","error"],"gender":"female","lang":"ja-JP","remote":true,"voice_name":"Google a?Ya?¬äoo"},{"event_types":["start","end","error"],"gender":"female","lang":"ko-KR","remote":true,"voice_name":"Google í??eµi?"},{"event_types":["start","end","error"],"gender":"female","lang":"zh-CN","remote":true,"voice_name":"Google ä¸a?1ç??"}]},"version":"1.0"},"path":"C:\\Program Files (x86)\\Google\\Chrome\\Application\\36.0.1985.125\\resources\\network_speech_synthesis","preferences":{},"regular_only_preferences":{},"was_installed_by_default":false,"was_installed_by_oem":false},"nkeimhogjdpnpccoofpliimaahmaaome":{"active_permissions":{"api":["alarms","desktopCapture","processes","webConnectable","webrtcAudioPrivate","webrtcLoggingPrivate","system.cpu"],"manifest_permissions":[]},"content_settings":[],"creation_flags":1,"events":["runtime.onConnectExternal","runtime.onMessageExternal"],"from_bookmark":false,"from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"initial_keybindings_set":true,"install_time":"13051642067340305","location":5,"manifest":{"background":{"page":"background.html","persistent":false},"externally_connectable":{"matches":[ice_name":"Google UK English Male"},{"event_types":["start","end","error"],"gender":"female","lang":"en-GB","remote":true,"voice_name":"Google UK English Female"},{"event_types":["start","end","error"],"gender":"female","lang":"es-ES","remote":true,"voice_name":"Google EspaA±ol"},{"event_types":["start","end","error"],"gender":"female","lang":"fr-FR","remote":true,"voice_name":"Google FranA§ais"},{"event_types":["start","end","error"],"gender":"female","lang":"it-IT","remote":true,"voice_name":"Google Italiano"},{"event_types":["start","end","error"],"gender":"female","lang":"de-DE","remote":true,"voice_name":"Google Deutsch"},{"event_types":["start","end","error"],"gender":"female","lang":"ja-JP","remote":true,"voice_name":"Google a?Ya?¬äoo"},{"event_types":["start","end","error"],"gender":"female","lang":"ko-KR","remote":true,"voice_name":"Google í??eµi?"},{"event_types":["start","end","error"],"gender":"female","lang":"zh-CN","remote":true,"voice_name":"Google ä¸a?1ç??"}]},"version":"1.0"},"path":"C:\\Program Files (x86)\\Google\\Chrome\\Application\\36.0.1985.125\\resources\\network_speech_synthesis","preferences":{},"regular_only_preferences":{},"was_installed_by_default":false,"was_installed_by_oem":false},"nkeimhogjdpnpccoofpliimaahmaaome":{"active_permissions":{"api":["alarms","desktopCapture","processes","webConnectable","webrtcAudioPrivate","webrtcLoggingPrivate","system.cpu"],"manifest_permissions":[]},"content_settings":[],"creation_flags":1,"events":["runtime.onConnectExternal","runtime.onMessageExternal"],"from_bookmark":false,"from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"initial_keybindings_set":true,"install_time":"13051642067340305","location":5,"manifest":{"background":{"page":"background.html","persistent":false},"externally_connectable":{"matches":["https://*.google.com/hangouts*","*://localhost/*"]},"incognito":"split","key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDAQt2ZDdPfoSe/JI6ID5bgLHRCnCu9T36aYczmhw/tnv6QZB2I6WnOCMZXJZlRdqWc7w9jo4BWhYS50Vb4weMfh/I0On7VcRwJUgfAxW2cHB+EkmtI1v4v/OU24OqIa1Nmv9uRVeX0GjhQukdLNhAE6ACWooaf5kqKlCeK+1GOkQIDAQAB","manifest_version":2,"name":"Google+ Hangouts","permissions":["alarms","desktopCapture","processes","system.cpu","webrtcAudioPrivate","webrtcLoggingPrivate"],"version":"1.0"},"path":"C:\\Program Files (x86)\\Google\\Chrome\\Application\\36.0.1985.125\\resources\\hangout_services","preferences":{},"regular_only_preferences":{},"was_installed_by_default":false,"was_installed_by_oem":false},"nmmhkkegccagdldgiimedpiccmgmieda":{"ack_external":true,"active_permissions":{"api":["identity","webview"],"explicit_host":["https://wallet-web.sandbox.google.com/* ... eapis.com/*"],"manifest_permissions":[]},"commands":{},"content_settings":[],"creation_flags":137,"events":["app.runtime.onLaunched","runtime.onConnectExternal"],"from_bookmark":false,"from_webstore":true,"granted_permissions":{"api":["identity","webview"],"explicit_host":["https://checkout.google.com/*","https:/ ... eapis.com/*"],"manifest_permissions":[]},"incognito_content_settings":[],"incognito_preferences":{},"initial_keybindings_set":true,"install_time":"13078246818666528","lastpingday":"13078220400605528","location":10,"manifest":{"app":{"background":{"scripts":["craw_background.js"]}},"current_locale":"cs","default_locale":"en","description":"PenÄ?A3enka Google pro digitA!lnA zboA3A","display_in_launcher":false,"display_in_new_tab_page":false,"icons":{"128":"images/icon_128.png","16":"images/icon_16.png"},"key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCrKfMnLqViEyokd1wk57FxJtW2XXpGXzIHBzv9vQI/01UsuP0IV5/lj0wx7zJ/xcibUgDeIxobvv9XD+zO1MdjMWuqJFcKuSS4Suqkje6u+pMrTSGOSHq1bmBVh0kpToN8YoJs/P/yrRd7FEtAXTaFTGxQL4C385MeXSjaQfiRiQIDAQAB","manifest_version":2,"minimum_chrome_version":"29","name":"PenÄ?A3enka Google","oauth2":{"auto_approve":true,"client_id":"203784468217.apps.googleusercontent.com","scopes":["https://www.googleapis.com/auth/sierra" ... e.readonly"]},"permissions":["identity","webview","https://wallet.google.com/","https://wa ... eapis.com/*"],"update_url":"https://clients2.google.com/service/upd ... ons":{"api":["alarms","identity","metricsPrivate","notifications","pushMessaging","storage","tabs","webstorePrivate"],"explicit_host":["*://*.google.com/*","*://*.gstatic.com/*","https://*.googleapis.com/*","https://*.googleusercontent.com/*"],"manifest_permissions":[]},"content_settings":[],"creation_flags":1,"events":["alarms.onAlarm","identity.onSignInChanged","notifications.onButtonClicked","notifications.onClicked","notifications.onClosed","notifications.onPermissionLevelChanged","notifications.onShowSettings","pushMessaging.onMessage","runtime.onInstalled","runtime.onStartup","runtime.onSuspend","storage.onChanged"],"from_bookmark":false,"from_webstore":false,"incognito_content_settings":[],"incognito_preferences":{},"initial_keybindings_set":true,"install_time":"13051642067342305","location":5,"manifest":{"background":{"persistent":false,"scripts":["utility.js","cards.js","background.js"]},"description":"Integrates Google Now into Chrome.","icons":{"128":"images/icon128.png","16":"images/icon16.png","48":"images/icon48.png"},"key":"MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkhqJr32OFD/bMXW4Md7jMfd7LbwHXVc6x5bBQG5U+dloofoxrICDR20yur/40mQ8O//0sS1b8srvbab1CRlSrxoNCr9T80NAkfzx0gHyVS+p1Zow+1FzLMu9PiGwwFyN80HIB7GI/dIa0wC9K/2OrrzcHEhVH96DacTtWQqjfDVtZPjT7Xwv23dgoWcpbkRC86jMJot3dmX9xnn0KzoVc9gDOHSIkBLbkkr6Sp3LGXCCM4L0DJgxdFwaLr5WBzgC3y5x0/wwPIwN4PtIaK3BhH6njlksfnKwwIJ9iRT41V4BqbWu4mszO/7VJ3HJyw2DBpIc2grU9ZRRxrV3fRQG4wIDAQAB","manifest_version":2,"name":"Google Now","oauth2":{"auto_approve":true,"scopes":["https://www.googleapis.com/auth/googlenow"]},"optional_permissions":["background"],"permissions":["alarms","identity","metricsPrivate","notifications","pushMessaging","storage","tabs","webstorePrivate","\u003Call_urls>"],"version":"1.2.0.1"},"path":"C:\\Program Files (x86)\\Google\\Chrome\\Application\\36.0.1985.125\\resources\\google_now","preferences":{},"regular_only_preferences":{},"was_installed_by_default":false,"was_installed_by_oem":false},"pjkljhegncpnkpknbcohdijeoejaedia":{"ack_external":true,"active_permissions":{"api":["notifications"],"manifest_permissions":[]},"app_launcher_ordinal":"y","commands":{},"content_settings":[],"creation_flags":137,"events":[],"from_bookmark":false,"from_webstore":true,"granted_permissions":{"api":["notifications"],"manifest_permissions":[]},"incognito_content_settings":[],"incognito_preferences":{},"install_time":"13078246818010528","lastpingday":"13078220400605528","location":1,"manifest":{"app":{"launch":{"container":"tab","web_url":"https://mail.google.com/mail/ca"},"urls":["*://mail.google.com/mail/ca"]},"current_locale":"cs","default_locale":"en","description":"RychlA1 e-mail s moA3nostA vyhledA!vA!nA a menA!Am mnoA3stvAm spamu.","icons":{"128":"128.png"},"key":"MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDCuGglK43iAz3J9BEYK/Mz6ZhloIMMDqQSAaf3vJt4eHbTbSDsu4WdQ9dQDRcKlg8nwQdePBt0C3PSUBtiSNSS37Z3qEGfS7LCju3h6pI1Yr9MQtxw+jUa7kXXIS09VV73pEFUT/F7c6Qe8L5ZxgAcBvXBh1Fie63qb02I9XQ/CQIDAQAB","manifest_version":2,"name":"Gmail","options_page":"https://mail.google.com/mail/ca/#settings","permissions":["notifications"],"update_url":"http://clients2.google.com/service/upda ... ve_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"accounts.youtube.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"ad.doubleclick.net:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"ajax.googleapis.com:443":{"supports_spdy":true},"analytics.twitter.com:443":{"supports_spdy":true},"apis.google.com:443":{"supports_spdy":true},"bid.g.doubleclick.net:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"cbks0.google.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"cbks3.google.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}]},"channel-proxy-06-ash2.facebook.com:443":{"supports_spdy":true},"channel-proxy-06-frc1.facebook.com:443":{"supports_spdy":true},"channel-proxy-07-ash2.facebook.com:443":{"supports_spdy":true},"clients1.google.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"clients1.google.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"clients2.google.com:443":{"supports_spdy":true},"clients2.googleusercontent.com:443":{"supports_spdy":true},"cm.g.doubleclick.net:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"content.googleapis.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"cs-cz.facebook.com:443":{"supports_spdy":true},"csi.gstatic.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"csi.gstatic.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"cx.atdmt.com:443":{"supports_spdy":true},"developer.android.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"encrypted-tbn2.gstatic.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"external-cdg.xx.fbcdn.net:443":{"supports_spdy":true},"fbcdn-photos-b-a.akamaihd.net:443":{"supports_spdy":true},"fbcdn-photos-c-a.akamaihd.net:443":{"supports_spdy":true},"fbcdn-photos-d-a.akamaihd.net:443":{"supports_spdy":true},"fbcdn-profile-a.akamaihd.net:443":{"supports_spdy":true},"fbstatic-a.akamaihd.net:443":{"supports_spdy":true},"fonts.googleapis.com:443":{"supports_spdy":true},"fonts.googleapis.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"fonts.gstatic.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"fonts.gstatic.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"gdata.youtube.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"goo.gl:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"googleads.g.doubleclick.net:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"googleads.g.doubleclick.net:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"googleads4.g.doubleclick.net:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"gp3.googleusercontent.com:443":{"supports_spdy":true},"gp4.googleusercontent.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"gp5.googleusercontent.com:443":{"supports_spdy":true},"gp6.googleusercontent.com:443":{"supports_spdy":true},"i.ytimg.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"i.ytimg.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"i1.ytimg.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"i1.ytimg.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"i2.ytimg.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"i4.ytimg.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"lh3.ggpht.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}]},"lh3.googleusercontent.com:443":{"supports_spdy":true},"lh4.ggpht.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"lh6.ggpht.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}]},"oauth.googleusercontent.com:443":{"supports_spdy":true},"p4-b2r2tud3gumg6-hmj55y2n3f6q6vtg-if-v6exp3-v4.metric.gstatic.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"p4-cjzeckwmmawaa-p5io32gorbqtxefv-906691-i1-v6exp3-v4.metric.gstatic.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"p4-cjzeckwmmawaa-p5io32gorbqtxefv-906691-i2-v6exp3-ds.metric.gstatic.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"p4-cjzeckwmmawaa-p5io32gorbqtxefv-906691-s1-v6exp3-v4.metric.gstatic.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"p4-cjzeckwmmawaa-p5io32gorbqtxefv-if-v6exp3-v4.metric.gstatic.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"pagead2.googlesyndication.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"partner.googleadservices.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"pixel.facebook.com:443":{"supports_spdy":true},"plus.googleapis.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"pubads.g.doubleclick.net:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"r12---sn-25ge7n7l.c.pack.google.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"r19---sn-25g7sm7k.googlevideo.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"s.youtube.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"s.ytimg.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"s1.2mdn.net:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"scontent-a-cdg.xx.fbcdn.net:443":{"supports_spdy":true},"scontent-b-cdg.xx.fbcdn.net:443":{"supports_spdy":true},"scontent-fra3-1.xx.fbcdn.net:443":{"supports_spdy":true},"segment-pixel.invitemedia.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"ssl.google-analytics.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"ssl.gstatic.com:443":{"supports_spdy":true},"themes.googleusercontent.com:443":{"supports_spdy":true},"tools.google.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"tpc.googlesyndication.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"translate.google.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"translate.googleapis.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"twitter.com:443":{"supports_spdy":true},"www.facebook.com:443":{"supports_spdy":true},"www.google.com:443":{"supports_spdy":true},"www.google.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"www.google.cz:443":{"supports_spdy":true},"www.google.cz:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"www.googleadservices.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"www.googleapis.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true},"www.googletagservices.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"www.gstatic.com:443":{"supports_spdy":true},"www.gstatic.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"www.youtube-nocookie.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"www.youtube.com:80":{"alternative_service":[{"port":80,"probability":1.0,"protocol_str":"quic"}]},"yt3.ggpht.com:443":{"alternative_service":[{"port":443,"probability":1.0,"protocol_str":"quic"}],"supports_spdy":true}},"version":3}},"pinned_tabs":[],"plugins":{"migrated_to_pepper_flash":true,"plugins_list":[],"removed_old_component_pepper_flash_settings":true},"profile":{"avatar_index":0,"content_settings":{"clear_on_exit_migrated":true,"exceptions":{"app_banner":{},"auto_select_certificate":{},"automatic_downloads":{},"cookies":{},"fullscreen":{},"geolocation":{},"images":{},"javascript":{},"media_stream":{},"media_stream_camera":{},"media_stream_mic":{},"metro_switch_to_desktop":{},"midi_sysex":{},"mixed_script":{},"mouselock":{},"notifications":{},"plugins":{},"popups":{},"ppapi_broker":{},"protocol_handlers":{},"push_messaging":{},"ssl_cert_decisions":{}},"pattern_pairs":{},"pref_version":1},"exit_type":"SessionEnded","exited_cleanly":true,"icon_version":3,"managed_user_id":"","migrated_content_settings_exceptions":true,"migrated_default_content_settings":true,"migrated_default_media_stream_content_settings":true,"name":"PrvnA uA3ivatel","password_manager_groups_for_domains":[null,null,null,null,null,null,4],"per_host_zoom_levels":{}},"protection":{"macs":{"browser":{"show_home_button":"C9E96333AFD464407984B37BB7D4AD7801F060E90F387D83BD264DDD36BA7847"},"default_search_provider":{"keyword":"F4487F0415A900FE5B8E297C2DC763B94D4FB72D1A795C9204FB51970F399626","name":"6ACCEAD72E933B505026D1B6F09C96E9F5004A2796A0F6152E4F57AE8CD18DCB","search_url":"41B37189E176F5611821AE58363C142B817A4EF3D755F9FF282D6BEEDCF2825A"},"default_search_provider_data":{"template_url_data":"9C6E66D0DF8A0894ECDA18700D8C1365C057B238A4E3386DEE7CEDC7AAA8673C"},"extensions":{"known_disabled":"47324F208114EB7DF835D52C102098E0470C92E714BC1E0E49FCE9D6ED2830D0","settings":{"ahfgeienlihckogmohjhadlkjgocpleb":"12D3C19680E2960B334771E33DC3A444B69481C2603D4B663F478800917313EF","aohghmighlieiainnegkcijnfilokake":"3EBBEE11BF8579876EE5D511E6F1D8E932656D2240855FA06577DD5FD5A1AF98","apdfllckaahabafndbhieahigkjlhalf":"7D3EEB3776B7E10D96F6D6EAD68952F615A3E2609BA23AB295DDE59A390EBA0D","bepbmhgboaologfdajaanbcjmnhjmhfn":"440771E44B31886C3402B05F5E5EE85EF183661F42671A457D0D7E912B4130E4","blpcfgokakmgnkcojhhkbfbldkacnbeo":"DD9151D2FE6EB1DC372365D32DEB665BB0D502DBBEB3E551BEE933BDF571854E","coobgpohoikkiipiblmjeljniedjpjpf":"7EE9198B323A74ACE497FF49930B2460F4BCAEB4382496AEC6309BA71CD3436F","eemcgdkfndhakfknompkggombfjjjeno":"65C7BA9B8DB9EF66E8D7A92D358C063BEDB1BA29CA21B3FCBB9421FDE32FE863","ennkphjdgehloodpbhlhldgbnhmacadg":"BFADEB068A7480794775A0AF0B4BBB12822F879DD49017B5B6464B3334345BA9","gfdkimpbcpahaombhbimeihdjnejgicl":"C102796A5DD5BDA9BBD9C9B18AE9A96E872B7B92A96FB410A979176CE2E0F918","kmendfapggjehodndflmmgagdbamhnfd":"22E232EA66BE02540D8A1272C203EBCE69EFB1812777241CBC7208C6EEB706B6","mfehgcgbbipciphmccgaenjidiccnmng":"152E235CFFD36215F5E9140E5FC38EB05A7A87EFE811A28109C42896ACAB2208","mfffpogegjflfpflabcdkioaeobkgjik":"FEFFD50CF72C05353FABC196D1127F1747EF4A8F5E538291A7347DAAD0267C5C","mgndgikekgjfcpckkfioiadnlibdjbkf":"1BE1173084146A1D3B2E3F30B3C9BB763A79A9AF3D468E9D71E9AE8006A17620","mhjfbmdgcfjbbpaeojofohoefgiehjai":"08F31EC0FF8AB0AF98FCF5286EE80E01759588C9178F6390142A8A8816EE0197","neajdppkdcdipfabeoofebfddakdcjhd":"EF3D292CD5EF56504FAF536FA36DC41FC70689D393D0C30D5F80959BED543FB1","nkeimhogjdpnpccoofpliimaahmaaome":"6361B9F229754056BD48F15EB0EFF4C95A005D6CB665126A7A30BA27FFBCAA9E","nmmhkkegccagdldgiimedpiccmgmieda":"9E9FE278A4C99A7028712AA7B1289E9CBD10EBCC8D6E8EA640CDFE8826383CAC","pafkbggdmjlpgkdkcbjmhmfcdpncadgh":"C6FF00A805DC8B1F901F7BB7498FA39ED6B9345D49BC550E27F4315D4FA3921C","pjkljhegncpnkpknbcohdijeoejaedia":"38490DE123E8034B19BBD872115FA607F7BC5C8FEBD91349625100C496F94241"}},"google":{"services":{"last_username":"54C27FC0B9C37132771A6A38ECF5161ED23878CD72DF7B7F15A79C2637972261","username":"93F762B6925581506784733EB568BFC62AFDFE5A6C9ED8A72AF639FE3905D63F"}},"homepage":"6A649B7C1A20FFBE8DB2C06636633B68AB0B6F389C9A121BFAC447E02A9B5122","homepage_is_newtabpage":"7E1705FD396D48055CDECFDCC84BBA4CF1AA7AAE6765A02C0DE31019D90B37C8","pinned_tabs":"2B2ABDAC6AE17685F377B3E73F65F6FDAD609E92A032C4DC9470453B978EB639","prefs":{"preference_reset_time":"484AE7D2D15B3DA7C202A2E3A423A1EF428D69A23113788FFB25DC077EF3D086"},"profile":{"reset_prompt_memento":"66F1989CA71B414466F3E0FA531C01034A5D23AA78AFDBECE52E76C704FFCC64"},"safebrowsing":{"incidents_sent":"E089FF45B0D22A85DCF81034BFB7B75E3579DDC2FCECF6A5B340A55F05FAEBA2"},"search_provider_overrides":"90959196B10E36433B60B7F929070915707AEA7DB9E1EDF55D5814020FC4F6D2","session":{"restore_on_startup":"515C7A9EC88AAE342318A9500FF62155FF55506B0BDCDE159B9B33B3302F74EF","startup_urls":],"startup_urls_migration_time":"13051642067326305"},"software_reporter":{"prompt_reason":0,"prompt_version":"3.21.0"},"sync":{"dictionary":false,"extension_settings":false,"extensions":false,"keep_everything_synced":false,"managed":false,"preferences":false,"priority_preferences":false,"remaining_rollback_tries":0,"search_engines":false},"sync_promo":{"startup_count":8},"translate_blocked_languages":["cs"],"translate_whitelists":{},"variations_seed":"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

Zbytk logu bohužel poslat nejde, píše mi to: nebyla odeslána žádná data.

Martinka píše:Zbytk logu bohužel poslat nejde, píše mi to: nebyla odeslána žádná data.

Zkuste mi ten log poslat na mail (adresu mam v podpisu). MBAM zatim pokud mozno nezavirejte.

18.7. pro neaktivitu

http://forum.viry.cz/viewtopic.php?f=12&t=123975

VIRY.CZ

Prosím o kontrolu logu.

Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.

Re: Prosím o kontrolu logu.