Ahoj, poslední dobou je notebook hodně pomalí a párkrát se mi úplně zasekla webová stránka.
Prosím o kontrolu a případně čístku havěti.
Předem mnohokrát děkuji.
RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by admin at 2017-04-14 14:50:00
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 134 GB (65%) free of 205 GB
Total RAM: 2972 MB (54% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:50:04, on 14.4.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18639)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
C:\Program Files\trend micro\admin.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com/?cid={1277F63D ... 2017-01-20 16:13:34&v=4.3.6.255&pid=wtu&sg=&sap=hp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení k účtu Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Web TuneUp - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Web TuneUp\4.3.7.452\AVG Web TuneUp.dll
O2 - BHO: McAfee WebAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Web TuneUp\vprot.exe"
O4 - HKCU\..\RunOnce: [SeznamInstall-uninstall:c496b20633ac4f2f9f8ce5104ff80d6c] "C:\Users\admin\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe" -c "C:\Users\admin\AppData\Roaming\Seznam.cz"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office10\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O9 - Extra 'Tools' menuitem: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AVG Antivirus - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
O23 - Service: avgbIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Digital Wave Update Service (DigitalWave.Update.Service) - Digital Wave Ltd. - C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - c:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater40.3.7 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.7\ToolbarUpdater.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: WtuSystemSupport - Unknown owner - C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
--
End of file - 10685 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe"
C:\Windows\system32\WLANExt.exe 36439712
\??\C:\Windows\system32\conhost.exe "278532163-1458294661316049615-7451123371822864924-537830681-1143752082-1551145744
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe"
taskeng.exe {1763A1F8-4A6E-40B7-B00E-0B63B0ACD72F}
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
AVGUI.exe /nogui
"C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
/fmw.trayonly
"C:\Program Files (x86)\AVG Web TuneUp\vprot.exe"
"c:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe"
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.7\ToolbarUpdater.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
WLIDSvcM.exe 3272
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\system32\msiexec.exe /V
C:\Windows\System32\svchost.exe -k swprv
"C:\Windows\system32\wuauclt.exe"
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
taskeng.exe {F866622B-E8D6-45C3-B163-39A778EF0BA4}
"C:\Users\admin\Desktop\RSITx64.exe"
=========Mozilla firefox=========
ProfilePath - C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default
prefs.js - "browser.search.suggest.enabled" - false
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"=C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 25.0.0.148 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_148.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.7\\npsitesafety.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.40.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.40.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 25.0.0.148 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_148.dll
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\extensions\
adbhelper@mozilla.org
fxdevtools-adapters@mozilla.org
{ea614400-e918-4741-9a97-7a972ff7c30b}
C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\searchplugins\
avg-secure-search.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\x64\mcieplg.dll [2017-03-27 189288]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-20 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení k účtu Microsoft - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG Web TuneUp - C:\Program Files (x86)\AVG Web TuneUp\4.3.7.452\AVG Web TuneUp.dll [2017-03-30 2261576]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee WebAdvisor BHO - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll [2017-03-27 160192]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-20 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-04-03 170264]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-04-03 398616]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-04-03 439064]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2012-04-06 2885904]
"AvgUi"=C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [2017-03-23 239104]
"AVGUI.exe"=C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [2017-04-06 263088]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SeznamInstall-uninstall:c496b20633ac4f2f9f8ce5104ff80d6c"=C:\Users\admin\AppData\Local\Temp\\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe [2017-04-14 534528]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-09-23 926896]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2013-01-28 59720]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AvgUi"=C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [2017-03-23 239104]
"vProt"=C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2017-03-30 2183752]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Microsoft Office.lnk - C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-03-19 434688]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-04-12 16:24:30 ----A---- C:\Windows\system32\mshtml.dll
2017-04-12 16:24:21 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-04-12 16:24:17 ----A---- C:\Windows\system32\ieframe.dll
2017-04-12 16:24:15 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-04-12 16:24:13 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-04-12 16:24:12 ----A---- C:\Windows\system32\wininet.dll
2017-04-12 16:24:11 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-04-12 16:24:10 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-04-12 16:24:10 ----A---- C:\Windows\system32\wuaueng.dll
2017-04-12 16:24:10 ----A---- C:\Windows\system32\iertutil.dll
2017-04-12 16:24:09 ----A---- C:\Windows\system32\win32k.sys
2017-04-12 16:24:09 ----A---- C:\Windows\system32\ole32.dll
2017-04-12 16:24:08 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-04-12 16:24:08 ----A---- C:\Windows\system32\wucltux.dll
2017-04-12 16:24:08 ----A---- C:\Windows\system32\urlmon.dll
2017-04-12 16:24:07 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2017-04-12 16:24:07 ----A---- C:\Windows\system32\win32spl.dll
2017-04-12 16:24:07 ----A---- C:\Windows\system32\samsrv.dll
2017-04-12 16:24:06 ----A---- C:\Windows\system32\wuapi.dll
2017-04-12 16:24:06 ----A---- C:\Windows\system32\ucrtbase.dll
2017-04-12 16:24:06 ----A---- C:\Windows\system32\quartz.dll
2017-04-12 16:24:04 ----A---- C:\Windows\system32\msfeeds.dll
2017-04-12 16:24:04 ----A---- C:\Windows\system32\cdosys.dll
2017-04-12 16:24:04 ----A---- C:\Windows\system32\atmfd.dll
2017-04-12 16:24:03 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2017-04-12 16:24:03 ----A---- C:\Windows\system32\gdi32.dll
2017-04-12 16:24:02 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2017-04-12 16:24:02 ----A---- C:\Windows\SYSWOW64\quartz.dll
2017-04-12 16:24:02 ----A---- C:\Windows\SYSWOW64\ole32.dll
2017-04-12 16:24:02 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2017-04-12 16:24:01 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2017-04-12 16:24:01 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-04-12 16:24:01 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-utility-l1-1-0.dll
2017-04-12 16:24:01 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-private-l1-1-0.dll
2017-04-12 16:24:01 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2017-04-12 16:24:01 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-environment-l1-1-0.dll
2017-04-12 16:24:01 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-2-0.dll
2017-04-12 16:24:01 ----A---- C:\Windows\system32\iedkcs32.dll
2017-04-12 16:24:01 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2017-04-12 16:24:01 ----A---- C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2017-04-12 16:24:01 ----A---- C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-04-12 16:24:00 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-time-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-string-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-process-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-math-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-locale-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-heap-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-convert-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\SYSWOW64\api-ms-win-crt-conio-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l2-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-timezone-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-2-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2017-04-12 16:24:00 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-2-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\SYSWOW64\api-ms-win-core-file-l2-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\system32\jscript.dll
2017-04-12 16:24:00 ----A---- C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2017-04-12 16:24:00 ----A---- C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2017-04-12 16:24:00 ----A---- C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2017-04-12 16:23:58 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2017-04-12 16:23:55 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2017-04-12 16:23:54 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2017-04-12 16:23:53 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-04-12 16:23:52 ----A---- C:\Windows\system32\ntdll.dll
2017-04-12 16:23:52 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-04-12 16:23:51 ----A---- C:\Windows\system32\jscript9.dll
2017-04-12 16:23:51 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-04-12 16:23:51 ----A---- C:\Windows\system32\asycfilt.dll
2017-04-12 16:23:50 ----A---- C:\Windows\SYSWOW64\asycfilt.dll
2017-04-12 16:23:50 ----A---- C:\Windows\system32\samlib.dll
2017-04-12 16:23:49 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2017-04-12 16:23:49 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-04-12 16:23:49 ----A---- C:\Windows\SYSWOW64\mfmjpegdec.dll
2017-04-12 16:23:49 ----A---- C:\Windows\system32\webcheck.dll
2017-04-12 16:23:49 ----A---- C:\Windows\system32\mfmjpegdec.dll
2017-04-12 16:23:48 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-04-12 16:23:48 ----A---- C:\Windows\SYSWOW64\samlib.dll
2017-04-12 16:23:48 ----A---- C:\Windows\SYSWOW64\cdosys.dll
2017-04-12 16:23:46 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2017-04-12 16:23:46 ----A---- C:\Windows\SYSWOW64\certcli.dll
2017-04-12 16:23:46 ----A---- C:\Windows\system32\wuwebv.dll
2017-04-12 16:23:46 ----A---- C:\Windows\system32\wups2.dll
2017-04-12 16:23:46 ----A---- C:\Windows\system32\wups.dll
2017-04-12 16:23:46 ----A---- C:\Windows\system32\vbscript.dll
2017-04-12 16:23:46 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-04-12 16:23:46 ----A---- C:\Windows\system32\ie4uinit.exe
2017-04-12 16:23:46 ----A---- C:\Windows\system32\certcli.dll
2017-04-12 16:23:45 ----A---- C:\Windows\SYSWOW64\wups.dll
2017-04-12 16:23:45 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-04-12 16:23:45 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-04-12 16:23:45 ----A---- C:\Windows\system32\wudriver.dll
2017-04-12 16:23:45 ----A---- C:\Windows\system32\srcore.dll
2017-04-12 16:23:45 ----A---- C:\Windows\system32\rpcrt4.dll
2017-04-12 16:23:45 ----A---- C:\Windows\system32\ieapfltr.dll
2017-04-12 16:23:44 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2017-04-12 16:23:44 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2017-04-12 16:23:44 ----A---- C:\Windows\system32\wuauclt.exe
2017-04-12 16:23:44 ----A---- C:\Windows\system32\lsasrv.dll
2017-04-12 16:23:44 ----A---- C:\Windows\system32\ieui.dll
2017-04-12 16:23:43 ----A---- C:\Windows\system32\srclient.dll
2017-04-12 16:23:43 ----A---- C:\Windows\system32\dxtrans.dll
2017-04-12 16:23:43 ----A---- C:\Windows\system32\dxtmsft.dll
2017-04-12 16:23:43 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-04-12 16:23:42 ----A---- C:\Windows\system32\smss.exe
2017-04-12 16:23:42 ----A---- C:\Windows\system32\msrating.dll
2017-04-12 16:23:42 ----A---- C:\Windows\system32\mshtmled.dll
2017-04-12 16:23:42 ----A---- C:\Windows\system32\kerberos.dll
2017-04-12 16:23:42 ----A---- C:\Windows\system32\advapi32.dll
2017-04-12 16:23:41 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-04-12 16:23:40 ----A---- C:\Windows\SYSWOW64\srclient.dll
2017-04-12 16:23:40 ----A---- C:\Windows\system32\WinSetupUI.dll
2017-04-12 16:23:40 ----A---- C:\Windows\system32\rstrui.exe
2017-04-12 16:23:40 ----A---- C:\Windows\system32\occache.dll
2017-04-12 16:23:40 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-04-12 16:23:40 ----A---- C:\Windows\system32\kernel32.dll
2017-04-12 16:23:40 ----A---- C:\Windows\system32\jscript9diag.dll
2017-04-12 16:23:39 ----A---- C:\Windows\system32\schannel.dll
2017-04-12 16:23:39 ----A---- C:\Windows\system32\jsproxy.dll
2017-04-12 16:23:39 ----A---- C:\Windows\system32\ieUnatt.exe
2017-04-12 16:23:39 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-04-12 16:23:39 ----A---- C:\Windows\system32\conhost.exe
2017-04-12 16:23:38 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2017-04-12 16:23:38 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2017-04-12 16:23:38 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-04-12 16:23:38 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2017-04-12 16:23:38 ----A---- C:\Windows\system32\wow64win.dll
2017-04-12 16:23:38 ----A---- C:\Windows\system32\winsrv.dll
2017-04-12 16:23:38 ----A---- C:\Windows\system32\ncrypt.dll
2017-04-12 16:23:38 ----A---- C:\Windows\system32\msv1_0.dll
2017-04-12 16:23:38 ----A---- C:\Windows\system32\KernelBase.dll
2017-04-12 16:23:38 ----A---- C:\Windows\system32\inseng.dll
2017-04-12 16:23:37 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-04-12 16:23:37 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-04-12 16:23:37 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2017-04-12 16:23:37 ----A---- C:\Windows\system32\wdigest.dll
2017-04-12 16:23:37 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-04-12 16:23:37 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-04-12 16:23:37 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-04-12 16:23:36 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-04-12 16:23:36 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2017-04-12 16:23:36 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-04-12 16:23:36 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-04-12 16:23:36 ----A---- C:\Windows\system32\wuapp.exe
2017-04-12 16:23:36 ----A---- C:\Windows\system32\TSpkg.dll
2017-04-12 16:23:36 ----A---- C:\Windows\system32\sspicli.dll
2017-04-12 16:23:36 ----A---- C:\Windows\system32\iesetup.dll
2017-04-12 16:23:35 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-04-12 16:23:35 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2017-04-12 16:23:35 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-04-12 16:23:35 ----A---- C:\Windows\system32\wow64.dll
2017-04-12 16:23:35 ----A---- C:\Windows\system32\rpchttp.dll
2017-04-12 16:23:35 ----A---- C:\Windows\system32\iernonce.dll
2017-04-12 16:23:35 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-04-12 16:23:35 ----A---- C:\Windows\system32\cdd.dll
2017-04-12 16:23:35 ----A---- C:\Windows\system32\bcrypt.dll
2017-04-12 16:23:34 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2017-04-12 16:23:34 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2017-04-12 16:23:34 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2017-04-12 16:23:34 ----A---- C:\Windows\SYSWOW64\schannel.dll
2017-04-12 16:23:34 ----A---- C:\Windows\SYSWOW64\secur32.dll
2017-04-12 16:23:34 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2017-04-12 16:23:34 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2017-04-12 16:23:34 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-04-12 16:23:34 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2017-04-12 16:23:34 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-04-12 16:23:34 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-04-12 16:23:34 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-04-12 16:23:34 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-04-12 16:23:34 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-04-12 16:23:34 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-04-12 16:23:34 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2017-04-12 16:23:34 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2017-04-12 16:23:34 ----A---- C:\Windows\SYSWOW64\bcrypt.dll
2017-04-12 16:23:34 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2017-04-12 16:23:34 ----A---- C:\Windows\system32\wow64cpu.dll
2017-04-12 16:23:34 ----A---- C:\Windows\system32\sspisrv.dll
2017-04-12 16:23:34 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-04-12 16:23:34 ----A---- C:\Windows\system32\secur32.dll
2017-04-12 16:23:34 ----A---- C:\Windows\system32\ntvdm64.dll
2017-04-12 16:23:34 ----A---- C:\Windows\system32\lsass.exe
2017-04-12 16:23:34 ----A---- C:\Windows\system32\lpk.dll
2017-04-12 16:23:34 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-04-12 16:23:34 ----A---- C:\Windows\system32\fontsub.dll
2017-04-12 16:23:34 ----A---- C:\Windows\system32\drivers\appid.sys
2017-04-12 16:23:34 ----A---- C:\Windows\system32\dciman32.dll
2017-04-12 16:23:34 ----A---- C:\Windows\system32\csrsrv.dll
2017-04-12 16:23:34 ----A---- C:\Windows\system32\cryptbase.dll
2017-04-12 16:23:34 ----A---- C:\Windows\system32\credssp.dll
2017-04-12 16:23:34 ----A---- C:\Windows\system32\appidsvc.dll
2017-04-12 16:23:34 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-04-12 16:23:34 ----A---- C:\Windows\system32\appidapi.dll
2017-04-12 16:23:33 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-04-12 16:23:33 ----A---- C:\Windows\SYSWOW64\wow32.dll
2017-04-12 16:23:33 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2017-04-12 16:23:33 ----A---- C:\Windows\SYSWOW64\lpk.dll
2017-04-12 16:23:33 ----A---- C:\Windows\SYSWOW64\dciman32.dll
2017-04-12 16:23:33 ----A---- C:\Windows\SYSWOW64\credssp.dll
2017-04-12 16:23:33 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2017-04-12 16:23:33 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2017-04-12 16:23:33 ----A---- C:\Windows\system32\auditpol.exe
2017-04-12 16:23:33 ----A---- C:\Windows\system32\atmlib.dll
2017-04-12 16:23:33 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-04-12 16:23:32 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-04-12 16:23:32 ----A---- C:\Windows\SYSWOW64\user.exe
2017-04-12 16:23:32 ----A---- C:\Windows\SYSWOW64\tzres.dll
2017-04-12 16:23:32 ----A---- C:\Windows\SYSWOW64\setup16.exe
2017-04-12 16:23:32 ----A---- C:\Windows\SYSWOW64\instnm.exe
2017-04-12 16:23:32 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2017-04-12 16:23:32 ----A---- C:\Windows\system32\tzres.dll
2017-04-12 16:23:32 ----A---- C:\Windows\system32\apisetschema.dll
2017-04-12 16:23:30 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2017-04-12 16:23:30 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2017-04-12 16:23:30 ----A---- C:\Windows\system32\msaudite.dll
2017-04-12 16:23:30 ----A---- C:\Windows\system32\adtschema.dll
2017-04-12 16:23:28 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2017-04-12 16:23:28 ----A---- C:\Windows\system32\msobjs.dll
2017-04-12 16:23:28 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-04-08 08:04:07 ----HD---- C:\$AV_AVG
2017-04-06 10:46:34 ----A---- C:\Windows\system32\drivers\avgStm.sys
2017-04-06 10:46:33 ----A---- C:\Windows\system32\drivers\avgVmm.sys
2017-04-06 10:46:33 ----A---- C:\Windows\system32\drivers\avgSP.sys
2017-04-06 10:46:32 ----A---- C:\Windows\system32\drivers\avgRvrt.sys
2017-04-06 10:46:32 ----A---- C:\Windows\system32\drivers\avgMonFlt.sys
2017-04-06 10:46:31 ----A---- C:\Windows\system32\drivers\avgRdr2.sys
2017-04-06 10:46:31 ----A---- C:\Windows\system32\drivers\avgHwid.sys
2017-04-06 10:46:30 ----A---- C:\Windows\system32\drivers\avgSnx.sys
2017-04-06 10:46:30 ----A---- C:\Windows\system32\drivers\avgbuniva.sys
2017-04-06 10:46:29 ----A---- C:\Windows\system32\drivers\avgbloga.sys
2017-04-06 10:46:29 ----A---- C:\Windows\system32\drivers\avgbidsha.sys
2017-04-06 10:46:28 ----A---- C:\Windows\system32\drivers\avgbidsdrivera.sys
2017-04-06 10:46:28 ----A---- C:\Windows\system32\drivers\avgbdiska.sys
2017-04-06 10:45:49 ----A---- C:\Windows\system32\avgBoot.exe
2017-03-20 19:10:04 ----A---- C:\Windows\SYSWOW64\msvcr120_clr0400.dll
2017-03-20 19:10:04 ----A---- C:\Windows\SYSWOW64\msvcr110_clr0400.dll
2017-03-20 19:10:04 ----A---- C:\Windows\SYSWOW64\msvcr100_clr0400.dll
2017-03-20 19:10:04 ----A---- C:\Windows\SYSWOW64\msvcp120_clr0400.dll
2017-03-20 19:10:04 ----A---- C:\Windows\SYSWOW64\msvcp110_clr0400.dll
2017-03-20 19:10:04 ----A---- C:\Windows\SYSWOW64\aspnet_counters.dll
2017-03-20 18:32:12 ----A---- C:\Windows\system32\msvcr120_clr0400.dll
2017-03-20 18:32:12 ----A---- C:\Windows\system32\msvcr110_clr0400.dll
2017-03-20 18:32:12 ----A---- C:\Windows\system32\msvcr100_clr0400.dll
2017-03-20 18:32:12 ----A---- C:\Windows\system32\msvcp120_clr0400.dll
2017-03-20 18:32:12 ----A---- C:\Windows\system32\msvcp110_clr0400.dll
2017-03-20 18:32:12 ----A---- C:\Windows\system32\aspnet_counters.dll
2017-03-16 07:37:11 ----SD---- C:\Windows\system32\CompatTel
2017-03-16 07:37:11 ----D---- C:\Windows\system32\appraiser
2017-03-15 08:09:21 ----A---- C:\Windows\system32\invagent.dll
2017-03-15 08:09:21 ----A---- C:\Windows\system32\generaltel.dll
2017-03-15 08:09:21 ----A---- C:\Windows\system32\devinv.dll
2017-03-15 08:09:21 ----A---- C:\Windows\system32\CompatTelRunner.exe
2017-03-15 08:09:21 ----A---- C:\Windows\system32\centel.dll
2017-03-15 08:09:21 ----A---- C:\Windows\system32\appraiser.dll
2017-03-15 08:09:21 ----A---- C:\Windows\system32\aitstatic.exe
2017-03-15 08:09:21 ----A---- C:\Windows\system32\acmigration.dll
2017-03-15 08:09:20 ----A---- C:\Windows\system32\aepic.dll
2017-03-15 08:09:20 ----A---- C:\Windows\system32\aeinv.dll
2017-03-15 08:08:39 ----A---- C:\Windows\system32\msxml3.dll
2017-03-15 08:08:35 ----A---- C:\Windows\system32\DWrite.dll
2017-03-15 08:08:34 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2017-03-15 08:08:33 ----A---- C:\Windows\system32\usp10.dll
2017-03-15 08:08:32 ----A---- C:\Windows\system32\FntCache.dll
2017-03-15 08:08:32 ----A---- C:\Windows\HelpPane.exe
2017-03-15 08:08:31 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2017-03-15 08:08:30 ----A---- C:\Windows\SYSWOW64\usp10.dll
2017-03-15 08:08:30 ----A---- C:\Windows\system32\drivers\srv.sys
2017-03-15 08:08:29 ----A---- C:\Windows\system32\inetcomm.dll
2017-03-15 08:08:28 ----A---- C:\Windows\SYSWOW64\inetcomm.dll
2017-03-15 08:08:27 ----A---- C:\Windows\system32\mscms.dll
2017-03-15 08:08:27 ----A---- C:\Windows\system32\icm32.dll
2017-03-15 08:08:25 ----A---- C:\Windows\SYSWOW64\WcsPlugInService.dll
2017-03-15 08:08:25 ----A---- C:\Windows\SYSWOW64\mscms.dll
2017-03-15 08:08:25 ----A---- C:\Windows\SYSWOW64\icm32.dll
2017-03-15 08:08:25 ----A---- C:\Windows\system32\WcsPlugInService.dll
2017-03-15 08:08:23 ----A---- C:\Windows\SYSWOW64\INETRES.dll
2017-03-15 08:08:23 ----A---- C:\Windows\system32\INETRES.dll
2017-03-15 08:08:23 ----A---- C:\Windows\system32\drivers\srvnet.sys
2017-03-15 08:08:23 ----A---- C:\Windows\system32\drivers\srv2.sys
2017-03-15 08:08:22 ----A---- C:\Windows\SYSWOW64\msxml3r.dll
2017-03-15 08:08:22 ----A---- C:\Windows\system32\msxml3r.dll
======List of files/folders modified in the last 1 month======
2017-04-14 14:50:02 ----D---- C:\Program Files\trend micro
2017-04-14 14:49:40 ----D---- C:\Users\admin\AppData\Roaming\uTorrent
2017-04-14 14:46:37 ----D---- C:\Users\admin\AppData\Roaming\Seznam.cz
2017-04-14 14:46:02 ----D---- C:\Users\admin\AppData\Roaming\Seznam Browser
2017-04-14 14:45:31 ----SHD---- C:\Windows\Installer
2017-04-14 14:45:30 ----RD---- C:\Program Files (x86)
2017-04-14 14:45:29 ----D---- C:\Windows\SysWOW64
2017-04-14 14:45:29 ----D---- C:\Program Files (x86)\Common Files
2017-04-14 14:45:00 ----D---- C:\ProgramData\Skype
2017-04-14 14:44:57 ----D---- C:\Users\admin\AppData\Roaming\Skype
2017-04-14 14:44:33 ----SHD---- C:\System Volume Information
2017-04-14 14:42:55 ----A---- C:\Windows\SYSWOW64\log.txt
2017-04-14 14:42:48 ----D---- C:\Windows\Temp
2017-04-14 14:40:45 ----D---- C:\Windows\inf
2017-04-14 14:39:22 ----D---- C:\Windows
2017-04-14 14:38:31 ----D---- C:\Windows\system32\config
2017-04-13 14:01:47 ----HD---- C:\ProgramData
2017-04-13 08:27:47 ----D---- C:\Windows\Microsoft.NET
2017-04-13 08:09:26 ----RSD---- C:\Windows\assembly
2017-04-13 07:55:08 ----D---- C:\Windows\System32
2017-04-13 07:55:08 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-04-13 07:49:14 ----D---- C:\Windows\winsxs
2017-04-13 07:44:53 ----D---- C:\Windows\SYSWOW64\sk-SK
2017-04-13 07:44:53 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-04-13 07:44:53 ----D---- C:\Program Files\Internet Explorer
2017-04-13 07:44:52 ----D---- C:\Windows\SYSWOW64\en-US
2017-04-13 07:44:51 ----D---- C:\Windows\system32\drivers
2017-04-13 07:44:50 ----D---- C:\Windows\system32\sk-SK
2017-04-13 07:44:50 ----D---- C:\Windows\system32\en-US
2017-04-13 07:44:50 ----D---- C:\Windows\system32\cs-CZ
2017-04-13 07:44:48 ----D---- C:\Windows\AppPatch
2017-04-13 07:44:48 ----D---- C:\Program Files (x86)\Internet Explorer
2017-04-13 07:44:46 ----D---- C:\Windows\system32\Boot
2017-04-13 07:12:58 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2017-04-12 16:10:26 ----D---- C:\Windows\system32\catroot2
2017-04-11 12:07:46 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2017-04-11 12:07:15 ----D---- C:\Windows\system32\Macromed
2017-04-11 12:07:11 ----D---- C:\Windows\SYSWOW64\Macromed
2017-04-09 07:45:37 ----D---- C:\Users\admin\AppData\Roaming\PhotoScape
2017-04-09 07:41:58 ----D---- C:\Program Files (x86)\RelevantKnowledge
2017-04-09 07:41:45 ----D---- C:\Program Files\KMSpico
2017-04-09 07:41:44 ----D---- C:\Windows\system32\Tasks
2017-04-07 06:03:47 ----D---- C:\ProgramData\MFAData
2017-04-07 06:03:47 ----D---- C:\Program Files\Common Files
2017-04-06 19:19:15 ----D---- C:\Windows\Logs
2017-04-06 12:01:15 ----D---- C:\ProgramData\Avg
2017-04-06 10:48:20 ----D---- C:\Users\admin\AppData\Roaming\AVG
2017-04-06 10:43:06 ----D---- C:\Program Files (x86)\AVG
2017-04-06 06:29:45 ----D---- C:\Program Files (x86)\McAfee
2017-03-30 18:32:19 ----D---- C:\Windows\Tasks
2017-03-30 18:31:55 ----D---- C:\ProgramData\AVG Web TuneUp
2017-03-30 18:31:03 ----D---- C:\Program Files (x86)\AVG Web TuneUp
2017-03-29 06:29:02 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-03-29 06:29:02 ----D---- C:\Program Files (x86)\Mozilla Firefox
2017-03-19 11:45:41 ----SD---- C:\Users\admin\AppData\Roaming\Microsoft
2017-03-17 07:30:24 ----D---- C:\Windows\AppCompat
2017-03-16 07:37:29 ----D---- C:\Program Files\DVD Maker
2017-03-16 07:37:28 ----D---- C:\Windows\SYSWOW64\migration
2017-03-16 07:37:23 ----D---- C:\Windows\system32\migration
2017-03-16 07:37:11 ----D---- C:\Windows\system32\wbem
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 avgbidsh;avgbidsh; C:\Windows\system32\drivers\avgbidsha.sys [2017-04-06 192096]
R0 avgblog;avgblog; C:\Windows\system32\drivers\avgbloga.sys [2017-04-06 336408]
R0 avgbuniv;avgbuniv; C:\Windows\system32\drivers\avgbuniva.sys [2017-04-06 50848]
R0 avgRvrt;avgRvrt; C:\Windows\system32\drivers\avgRvrt.sys [2017-04-06 76688]
R0 avgVmm;avgVmm; C:\Windows\system32\drivers\avgVmm.sys [2017-04-06 340688]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 avgbdisk;avgbdisk; C:\Windows\system32\drivers\avgbdiska.sys [2017-04-06 166136]
R1 avgbidsdriver;avgbidsdriver; C:\Windows\system32\drivers\avgbidsdrivera.sys [2017-04-06 310056]
R1 avgRdr;avgRdr; C:\Windows\system32\drivers\avgRdr2.sys [2017-04-06 102136]
R1 avgSnx;avgSnx; C:\Windows\system32\drivers\avgSnx.sys [2017-04-06 1006040]
R1 avgSP;avgSP; C:\Windows\system32\drivers\avgSP.sys [2017-04-06 557776]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-21 514560]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-04-22 283200]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 avgMonFlt;avgMonFlt; C:\Windows\system32\drivers\avgMonFlt.sys [2017-04-06 128096]
R2 avgStm;avgStm; C:\Windows\system32\drivers\avgStm.sys [2017-04-06 165048]
R3 athr;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2012-10-24 3802112]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-03-19 14745600]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2011-12-06 331264]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-04-06 60184]
R3 mfesapsn;McAfee Process Start Notification Service; \??\C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [2016-06-06 46240]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RSP2STOR;Realtek PCIE CardReader Driver - P2; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [2011-10-28 259688]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-04-06 685160]
R3 SmbDrv;SmbDrv; C:\Windows\system32\DRIVERS\Smb_driver.sys [2012-04-06 21264]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2012-04-06 425232]
S3 avgHwid;avgHwid; C:\Windows\system32\drivers\avgHwid.sys [2017-04-06 39288]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2014-03-31 58056]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [2015-04-03 129752]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-21 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2015-06-11 20992]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-21 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2010-11-21 34816]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-09-23 65192]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]
R2 AVG Antivirus;AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [2017-04-06 262696]
R2 avgsvc;AVG Service; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2017-03-23 1428680]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-02-02 628448]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-04-06 161560]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-04-06 277784]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [2017-03-27 188264]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-04-06 363800]
R2 vToolbarUpdater40.3.7;vToolbarUpdater40.3.7; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.7\ToolbarUpdater.exe [2017-03-30 1354312]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480]
R2 WtuSystemSupport;WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [2017-03-30 981576]
R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 avgbIDSAgent;avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe [2017-04-06 7448992]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-03-20 103568]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-03-20 124040]
S2 DigitalWave.Update.Service;Digital Wave Update Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [2016-10-27 437224]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-15 107848]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-04-11 271448]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-03-20 50808]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-04-03 276248]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2014-03-31 1512640]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-07-15 107848]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-03-25 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-03-28 172488]
S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-15 774144]
S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-03-12 271920]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-04-10 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-03-20 139896]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-03-20 139896]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-03-20 139896]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosim o čístku
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosim o čístku
Zdravím!
Jak je na tom váš oper. systém s legalitou?
Jak je na tom váš oper. systém s legalitou?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosim o čístku
Dobrý večer, notebook jsem kupovala z kamenné pc prodejny komplet i s windowsem v našem městě. Tvrdil mi že vše je nové. Tak Tedy doufám že win je legální verze. Ale jelikož jsem si u Vás nechávala dávno zpět dělat čístku už jednou a taky jste se mě ptali na totéž, začínám váhat zda-li mě dotyčný prodejce nepodvedl.
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosim o čístku
Není moc obvyklé, aby na NB pro home použití byla nejdražší verze oper. systému, které je notabene běžnému uživateli na nic. Myslím tu nástavbu, kterou se liší od oper. systému pro home požití. Udělejte tyto skeny:
Stáhněte a spusťte OTL: http://oldtimer.geekstogo.com/OTL.exe . Spusťte, zaškrněte "Pro všechny uživatele", Kontrola na havěť LOP" a Kontrola na hvěť PURITY" a do dolního bílého okna zkopírujte:
Stáhněte a spusťte OTL: http://oldtimer.geekstogo.com/OTL.exe . Spusťte, zaškrněte "Pro všechny uživatele", Kontrola na havěť LOP" a Kontrola na hvěť PURITY" a do dolního bílého okna zkopírujte:
a klikněte na >Prohledat<. Dejte oba logy.CREATERESTOREPOINT
netsvcs
drivers32
savembr:0
/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
services.exe
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop
%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5
%SystemDrive%\PhysicalMBR.bin /md5
*crack* /s
*keygen* /s
*loader* /s
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosim o čístku
To mám radost, to mě musel ten chlap z prodejny pěkně natáhnout takhle. 
Já tomu vůbec nerozumím, jsem opravdu jen uživatel, bohužel.
OTL logfile created on: 15.4.2017 22:16:58 - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\admin\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.18638)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,90 Gb Total Physical Memory | 1,66 Gb Available Physical Memory | 57,32% Memory free
5,80 Gb Paging File | 4,16 Gb Available in Paging File | 71,76% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 200,20 Gb Total Space | 129,86 Gb Free Space | 64,87% Space Free | Partition Type: NTFS
Drive D: | 255,47 Gb Total Space | 182,55 Gb Free Space | 71,46% Space Free | Partition Type: NTFS
Computer Name: HP650-NTB | User Name: admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2017.04.06 10:45:29 | 009,274,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
PRC - [2017.04.06 10:45:22 | 000,262,696 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
PRC - [2017.03.30 18:30:38 | 002,183,752 | ---- | M] () -- C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
PRC - [2017.03.30 18:30:38 | 001,354,312 | ---- | M] (AVG Secure Search) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.7\ToolbarUpdater.exe
PRC - [2017.03.30 18:30:38 | 000,981,576 | ---- | M] () -- C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
PRC - [2017.03.29 04:03:55 | 000,941,912 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2017.03.27 13:04:34 | 000,488,520 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
PRC - [2017.03.23 16:34:02 | 001,800,224 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
PRC - [2016.10.27 13:33:50 | 000,437,224 | ---- | M] (Digital Wave Ltd.) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
PRC - [2016.07.23 08:25:49 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\admin\Desktop\OTL.exe
PRC - [2012.09.23 20:43:34 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012.04.06 09:17:46 | 000,363,800 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2012.04.06 09:17:46 | 000,277,784 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2012.04.06 09:17:42 | 000,161,560 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
PRC - [2010.11.21 05:24:03 | 000,302,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cmd.exe
========== Modules (No Company Name) ==========
MOD - [2017.04.06 10:45:31 | 048,936,448 | ---- | M] () -- C:\Program Files (x86)\AVG\Antivirus\libcef.dll
MOD - [2017.04.06 10:45:26 | 000,654,504 | ---- | M] () -- C:\Program Files (x86)\AVG\Antivirus\ffl2.dll
MOD - [2017.04.06 10:45:26 | 000,177,472 | ---- | M] () -- C:\Program Files (x86)\AVG\Antivirus\event_routing_rpc.dll
MOD - [2017.04.06 10:45:23 | 000,171,208 | ---- | M] () -- C:\Program Files (x86)\AVG\Antivirus\JsonRpcServer.dll
MOD - [2017.03.30 18:30:38 | 002,183,752 | ---- | M] () -- C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
MOD - [2017.03.29 04:04:01 | 002,187,096 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\libglesv2.dll
MOD - [2017.03.29 04:04:00 | 000,086,360 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\libegl.dll
MOD - [2016.11.29 07:11:32 | 048,920,064 | ---- | M] () -- C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
========== Services (SafeList) ==========
SRV:64bit: - [2017.03.25 19:56:51 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2016.08.22 18:19:43 | 001,386,496 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack)
SRV:64bit: - [2013.05.27 07:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2012.02.02 22:29:52 | 000,628,448 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- c:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2017.04.11 12:07:49 | 000,271,448 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2017.04.06 10:45:22 | 000,262,696 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe -- (AVG Antivirus)
SRV - [2017.04.06 10:45:19 | 007,448,992 | ---- | M] (AVG Technologies CZ, s.r.o.) [On_Demand | Running] -- C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe -- (avgbIDSAgent)
SRV - [2017.03.30 18:30:38 | 001,354,312 | ---- | M] (AVG Secure Search) [Auto | Running] -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.7\ToolbarUpdater.exe -- (vToolbarUpdater40.3.7)
SRV - [2017.03.30 18:30:38 | 000,981,576 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe -- (WtuSystemSupport)
SRV - [2017.03.28 22:42:34 | 000,172,488 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2017.03.27 13:08:00 | 000,188,264 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe -- (McAfee SiteAdvisor Service)
SRV - [2017.03.23 16:33:38 | 001,428,680 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe -- (avgsvc)
SRV - [2017.03.20 19:10:04 | 000,103,568 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2016.10.27 13:33:50 | 000,437,224 | ---- | M] (Digital Wave Ltd.) [Auto | Running] -- C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe -- (DigitalWave.Update.Service)
SRV - [2014.03.21 00:49:18 | 000,067,224 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2012.09.23 20:43:34 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012.04.06 09:17:46 | 000,363,800 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012.04.06 09:17:46 | 000,277,784 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012.04.06 09:17:42 | 000,161,560 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2012.04.03 08:55:20 | 000,276,248 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2017.04.06 10:45:41 | 000,557,776 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgSP.sys -- (avgSP)
DRV:64bit: - [2017.04.06 10:45:41 | 000,340,688 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\avgVmm.sys -- (avgVmm)
DRV:64bit: - [2017.04.06 10:45:41 | 000,165,048 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\avgStm.sys -- (avgStm)
DRV:64bit: - [2017.04.06 10:45:41 | 000,128,096 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgMonFlt.sys -- (avgMonFlt)
DRV:64bit: - [2017.04.06 10:45:41 | 000,076,688 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\avgRvrt.sys -- (avgRvrt)
DRV:64bit: - [2017.04.06 10:45:41 | 000,039,288 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\avgHwid.sys -- (avgHwid)
DRV:64bit: - [2017.04.06 10:45:40 | 000,102,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgRdr2.sys -- (avgRdr)
DRV:64bit: - [2017.04.06 10:45:22 | 001,006,040 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgSnx.sys -- (avgSnx)
DRV:64bit: - [2017.04.06 10:45:10 | 000,050,848 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgbuniva.sys -- (avgbuniv)
DRV:64bit: - [2017.04.06 10:45:09 | 000,336,408 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgbloga.sys -- (avgblog)
DRV:64bit: - [2017.04.06 10:45:09 | 000,310,056 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgbidsdrivera.sys -- (avgbidsdriver)
DRV:64bit: - [2017.04.06 10:45:09 | 000,192,096 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgbidsha.sys -- (avgbidsh)
DRV:64bit: - [2017.04.06 10:45:09 | 000,166,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgbdiska.sys -- (avgbdisk)
DRV:64bit: - [2015.06.11 19:15:53 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2015.04.03 09:40:55 | 000,129,752 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
DRV:64bit: - [2014.03.31 22:06:06 | 000,058,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2013.04.22 21:26:54 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2012.12.13 13:50:36 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012.10.24 19:31:18 | 003,802,112 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2012.04.06 15:16:20 | 000,685,160 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2012.04.06 09:17:42 | 000,060,184 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2012.04.06 09:17:32 | 000,021,264 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Smb_driver.sys -- (SmbDrv)
DRV:64bit: - [2012.04.06 09:17:26 | 000,425,232 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2012.03.19 16:32:02 | 014,745,600 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2012.03.01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011.12.06 04:23:08 | 000,331,264 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2011.11.23 21:42:32 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.11.23 21:42:32 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011.10.28 02:27:52 | 000,259,688 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsP2Stor.sys -- (RSP2STOR)
DRV:64bit: - [2010.11.21 05:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010.11.21 05:23:48 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub)
DRV:64bit: - [2010.11.21 05:23:48 | 000,088,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:64bit: - [2010.11.21 05:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2010.11.21 05:23:48 | 000,034,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2010.11.21 05:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.21 05:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2016.06.06 22:08:46 | 000,046,240 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys -- (mfesapsn)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-61953878-1118191327-652955997-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
IE - HKU\S-1-5-21-61953878-1118191327-652955997-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com/?cid={1277F63D ... 2017-01-20 16:13:34&v=4.3.6.255&pid=wtu&sg=&sap=hp
IE - HKU\S-1-5-21-61953878-1118191327-652955997-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = 3C A5 66 63 E4 2E D2 01 [binary data]
IE - HKU\S-1-5-21-61953878-1118191327-652955997-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = Reg Error: Value error.
IE - HKU\S-1-5-21-61953878-1118191327-652955997-1000\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKU\S-1-5-21-61953878-1118191327-652955997-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IESR02
IE - HKU\S-1-5-21-61953878-1118191327-652955997-1000\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = https://mysearch.avg.com/search?cid={12 ... 2017-01-20 16:13:34&v=4.3.7.452&pid=wtu&sg=&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-61953878-1118191327-652955997-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-61953878-1118191327-652955997-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.countryCode: "CZ"
FF - prefs.js..browser.search.defaultengine: ""
FF - prefs.js..browser.search.hiddenOneOffs: "Seznam,Google,ZboĹľĂ.cz"
FF - prefs.js..browser.search.isUS: false
FF - prefs.js..browser.search.order.1: ""
FF - prefs.js..browser.search.region: "CZ"
FF - prefs.js..browser.search.searchengine.desc: "this is my first firefox searchEngine"
FF - prefs.js..browser.search.searchengine.ptid: "amt"
FF - prefs.js..browser.search.searchengine.uid: "ST9500325AS_S2WLLPXG"
FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledAddons: %7B4ED1F68A-5463-4931-9384-8FFF5ED91D92%7D:5.0.512.0
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:52.0.2
FF - user.js - File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_148.dll File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_148.dll ()
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.7\\npsitesafety.dll File not found
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.40.2: C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.40.2: C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@kb-ext.cz/PKIComponent: C:\Users\admin\AppData\Roaming\KB-ext\lib\x86\npPKIComponentNPAPI-kbext.dll (Komerční banka, a.s.)
FF - HKCU\Software\MozillaPlugins\@nsroblox.roblox.com/launcher: C:\Users\admin\AppData\Local\Roblox\Versions\version-6a65e85da5fe4a75\\NPRobloxProxy.dll ()
FF - HKCU\Software\MozillaPlugins\@nsroblox.roblox.com/launcher64: C:\Users\admin\AppData\Local\Roblox\Versions\version-6a65e85da5fe4a75\\NPRobloxProxy64.dll ()
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\admin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\PROGRAM FILES (X86)\MCAFEE\SITEADVISOR\SAFFPLG.XPI [2017.02.14 17:07:02 | 000,121,206 | ---- | M] ()
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{C7AE725D-FA5C-4027-BB4C-787EF9F8248A}: C:\Program Files (x86)\RelevantKnowledge\firefox
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2017.02.14 17:07:02 | 000,121,206 | ---- | M] ()
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 52.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 52.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 52.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 52.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
[2013.05.01 21:09:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\admin\AppData\Roaming\Mozilla\Extensions
[2017.04.15 14:27:55 | 000,000,000 | ---D | M] (No name found) -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\extensions
[2017.04.07 06:52:49 | 000,000,000 | ---D | M] (Seznam lištička) -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2017.03.17 07:56:05 | 000,000,000 | ---D | M] (ADB Helper) -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\extensions\adbhelper@mozilla.org
[2017.01.27 08:13:53 | 000,000,000 | ---D | M] (Valence) -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\extensions\fxdevtools-adapters@mozilla.org
[2017.03.30 18:30:34 | 000,181,648 | ---- | M] () (No name found) -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\extensions\avg@toolbar.xpi
[2017.04.05 06:46:27 | 000,005,297 | ---- | M] () (No name found) -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\features\{3ea97899-750a-4cce-9762-2f42d082e7f3}\disable-prefetch@mozilla.org.xpi
[2017.04.05 06:46:27 | 000,007,195 | ---- | M] () (No name found) -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\features\{3ea97899-750a-4cce-9762-2f42d082e7f3}\e10srollout@mozilla.org.xpi
[2017.04.15 14:27:55 | 000,014,315 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\searchplugins\avg-secure-search.xml
[2017.03.28 22:42:35 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2017.02.14 17:07:02 | 000,121,206 | ---- | M] () (No name found) -- C:\PROGRAM FILES (X86)\MCAFEE\SITEADVISOR\SAFFPLG.XPI
========== Chrome ==========
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig\1.4.2_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd\1.4.6_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\5.0.532.0_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\9.0.0.7200_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkndcbhcgphcfkkddanakjiepeknbgle\1.3.337.4_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.2_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak\1.8.7_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5717.116.0.4_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkejgpgaflkeonkliblcplomemekogop\2.47_0\
O1 HOSTS File: ([2016.07.25 12:58:58 | 000,000,098 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (McAfee WebAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (AVG Web TuneUp) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Web TuneUp\4.3.7.452\AVG Web TuneUp.dll (AVG)
O2 - BHO: (McAfee WebAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [AvgUi] C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe (AVG Technologies CZ, s.r.o.)
O4:64bit: - HKLM..\Run: [AVGUI.exe] C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe (AVG Technologies CZ, s.r.o.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [AvgUi] C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG Web TuneUp\vprot.exe ()
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9:64bit: - Extra Button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O9:64bit: - Extra 'Tools' menuitem : McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O9 - Extra Button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O9 - Extra 'Tools' menuitem : McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: mojebanka.cz ([etrading] https in Trusted sites)
O15 - HKLM\..Trusted Domains: mojebanka.cz ([www] https in Trusted sites)
O15 - HKU\S-1-5-21-61953878-1118191327-652955997-1000\..Trusted Domains: localhost ([]http in Internet)
O15 - HKU\S-1-5-21-61953878-1118191327-652955997-1000\..Trusted Domains: mojebanka.cz ([etrading] https in Trusted sites)
O15 - HKU\S-1-5-21-61953878-1118191327-652955997-1000\..Trusted Domains: mojebanka.cz ([sign] https in Trusted sites)
O15 - HKU\S-1-5-21-61953878-1118191327-652955997-1000\..Trusted Domains: mojebanka.cz ([www] https in Trusted sites)
O15 - HKU\S-1-5-21-61953878-1118191327-652955997-1000\..Trusted Domains: mojeplatba.cz ([www] https in Trusted sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4ACD06ED-3096-46DC-BBE0-BA5C3EF47949}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9FBE94B6-E740-4CF9-B18F-DC7478176992}: DhcpNameServer = 192.168.100.100
O18:64bit: - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{969811fa-476b-11e6-a8db-20689d1a6ff0}\Shell - "" = AutoRun
O33 - MountPoints2\{969811fa-476b-11e6-a8db-20689d1a6ff0}\Shell\AutoRun\command - "" = H:\HiSuiteDownLoader.exe
O33 - MountPoints2\{bbc2104b-0192-11e7-8d48-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{bbc2104b-0192-11e7-8d48-806e6f6e6963}\Shell\AutoRun\command - "" = F:\HiSuiteDownLoader.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\HiSuiteDownLoader.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv50 - C:\Windows\SysWow64\ir50_32.dll (Intel Corporation)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2017.04.12 16:24:09 | 002,064,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll
[2017.04.12 16:24:08 | 003,165,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2017.04.12 16:24:07 | 000,769,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samsrv.dll
[2017.04.12 16:24:07 | 000,757,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2017.04.12 16:24:07 | 000,497,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2017.04.12 16:24:06 | 001,574,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2017.04.12 16:24:06 | 000,994,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ucrtbase.dll
[2017.04.12 16:24:06 | 000,709,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2017.04.12 16:24:04 | 002,055,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2017.04.12 16:24:04 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll
[2017.04.12 16:24:04 | 000,806,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2017.04.12 16:24:04 | 000,382,696 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2017.04.12 16:24:03 | 000,405,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32.dll
[2017.04.12 16:24:03 | 000,308,456 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2017.04.12 16:24:02 | 002,131,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2017.04.12 16:24:02 | 001,329,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2017.04.12 16:24:02 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2017.04.12 16:24:01 | 000,922,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ucrtbase.dll
[2017.04.12 16:24:01 | 000,265,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2017.04.12 16:24:01 | 000,066,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-private-l1-1-0.dll
[2017.04.12 16:24:01 | 000,013,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-filesystem-l1-1-0.dll
[2017.04.12 16:24:01 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-utility-l1-1-0.dll
[2017.04.12 16:24:01 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-environment-l1-1-0.dll
[2017.04.12 16:24:01 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l2-1-0.dll
[2017.04.12 16:24:01 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-2-0.dll
[2017.04.12 16:24:01 | 000,011,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-2-0.dll
[2017.04.12 16:24:00 | 001,155,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2017.04.12 16:24:00 | 000,817,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2017.04.12 16:24:00 | 000,063,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-private-l1-1-0.dll
[2017.04.12 16:24:00 | 000,022,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-math-l1-1-0.dll
[2017.04.12 16:24:00 | 000,020,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-math-l1-1-0.dll
[2017.04.12 16:24:00 | 000,019,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-multibyte-l1-1-0.dll
[2017.04.12 16:24:00 | 000,019,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-multibyte-l1-1-0.dll
[2017.04.12 16:24:00 | 000,017,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-string-l1-1-0.dll
[2017.04.12 16:24:00 | 000,017,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-string-l1-1-0.dll
[2017.04.12 16:24:00 | 000,017,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-stdio-l1-1-0.dll
[2017.04.12 16:24:00 | 000,017,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-stdio-l1-1-0.dll
[2017.04.12 16:24:00 | 000,016,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-runtime-l1-1-0.dll
[2017.04.12 16:24:00 | 000,016,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-runtime-l1-1-0.dll
[2017.04.12 16:24:00 | 000,015,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-convert-l1-1-0.dll
[2017.04.12 16:24:00 | 000,015,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-convert-l1-1-0.dll
[2017.04.12 16:24:00 | 000,014,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-time-l1-1-0.dll
[2017.04.12 16:24:00 | 000,014,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-time-l1-1-0.dll
[2017.04.12 16:24:00 | 000,014,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-2-0.dll
[2017.04.12 16:24:00 | 000,014,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-2-0.dll
[2017.04.12 16:24:00 | 000,013,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-filesystem-l1-1-0.dll
[2017.04.12 16:24:00 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-process-l1-1-0.dll
[2017.04.12 16:24:00 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-process-l1-1-0.dll
[2017.04.12 16:24:00 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-heap-l1-1-0.dll
[2017.04.12 16:24:00 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-heap-l1-1-0.dll
[2017.04.12 16:24:00 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-conio-l1-1-0.dll
[2017.04.12 16:24:00 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-conio-l1-1-0.dll
[2017.04.12 16:24:00 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-utility-l1-1-0.dll
[2017.04.12 16:24:00 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-locale-l1-1-0.dll
[2017.04.12 16:24:00 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-locale-l1-1-0.dll
[2017.04.12 16:24:00 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-environment-l1-1-0.dll
[2017.04.12 16:24:00 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-2-0.dll
[2017.04.12 16:24:00 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-2-0.dll
[2017.04.12 16:24:00 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-1.dll
[2017.04.12 16:24:00 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-1.dll
[2017.04.12 16:24:00 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l2-1-0.dll
[2017.04.12 16:24:00 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-timezone-l1-1-0.dll
[2017.04.12 16:24:00 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-timezone-l1-1-0.dll
[2017.04.12 16:24:00 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l2-1-0.dll
[2017.04.12 16:24:00 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l2-1-0.dll
[2017.04.12 16:23:58 | 000,631,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2017.04.12 16:23:55 | 004,000,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2017.04.12 16:23:54 | 003,945,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2017.04.12 16:23:53 | 005,548,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2017.04.12 16:23:52 | 001,732,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2017.04.12 16:23:52 | 000,706,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2017.04.12 16:23:51 | 006,045,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2017.04.12 16:23:50 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samlib.dll
[2017.04.12 16:23:49 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmjpegdec.dll
[2017.04.12 16:23:49 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmjpegdec.dll
[2017.04.12 16:23:48 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2017.04.12 16:23:46 | 001,359,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2017.04.12 16:23:46 | 000,725,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2017.04.12 16:23:46 | 000,576,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2017.04.12 16:23:46 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certcli.dll
[2017.04.12 16:23:46 | 000,342,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certcli.dll
[2017.04.12 16:23:46 | 000,192,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2017.04.12 16:23:46 | 000,174,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuwebv.dll
[2017.04.12 16:23:46 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2017.04.12 16:23:46 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2017.04.12 16:23:45 | 001,212,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpcrt4.dll
[2017.04.12 16:23:45 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2017.04.12 16:23:45 | 000,663,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2017.04.12 16:23:45 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2017.04.12 16:23:45 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2017.04.12 16:23:45 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2017.04.12 16:23:45 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wups.dll
[2017.04.12 16:23:44 | 001,460,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2017.04.12 16:23:44 | 000,615,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2017.04.12 16:23:44 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2017.04.12 16:23:44 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll
[2017.04.12 16:23:43 | 000,489,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2017.04.12 16:23:43 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2017.04.12 16:23:43 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srclient.dll
[2017.04.12 16:23:42 | 000,880,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\advapi32.dll
[2017.04.12 16:23:42 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2017.04.12 16:23:42 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\smss.exe
[2017.04.12 16:23:42 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2017.04.12 16:23:41 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2017.04.12 16:23:40 | 001,163,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2017.04.12 16:23:40 | 000,968,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2017.04.12 16:23:40 | 000,814,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2017.04.12 16:23:40 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rstrui.exe
[2017.04.12 16:23:40 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2017.04.12 16:23:40 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSetupUI.dll
[2017.04.12 16:23:39 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2017.04.12 16:23:39 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2017.04.12 16:23:38 | 000,476,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2017.04.12 16:23:38 | 000,419,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2017.04.12 16:23:38 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2017.04.12 16:23:38 | 000,341,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2017.04.12 16:23:38 | 000,312,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2017.04.12 16:23:38 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2017.04.12 16:23:38 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2017.04.12 16:23:37 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
[2017.04.12 16:23:37 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\JavaScriptCollectionAgent.dll
[2017.04.12 16:23:37 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll
[2017.04.12 16:23:37 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wu.upgrade.ps.dll
[2017.04.12 16:23:36 | 000,620,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2017.04.12 16:23:36 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2017.04.12 16:23:36 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2017.04.12 16:23:36 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2017.04.12 16:23:36 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2017.04.12 16:23:36 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2017.04.12 16:23:35 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2017.04.12 16:23:35 | 000,190,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpchttp.dll
[2017.04.12 16:23:35 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2017.04.12 16:23:35 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2017.04.12 16:23:35 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcrypt.dll
[2017.04.12 16:23:35 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2017.04.12 16:23:34 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appidpolicyconverter.exe
[2017.04.12 16:23:34 | 000,141,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rpchttp.dll
[2017.04.12 16:23:34 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2017.04.12 16:23:34 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
[2017.04.12 16:23:34 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
[2017.04.12 16:23:34 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2017.04.12 16:23:34 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2017.04.12 16:23:34 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
[2017.04.12 16:23:34 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setbcdlocale.dll
[2017.04.12 16:23:34 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2017.04.12 16:23:34 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
[2017.04.12 16:23:34 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appidapi.dll
[2017.04.12 16:23:34 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\appidapi.dll
[2017.04.12 16:23:34 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
[2017.04.12 16:23:34 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2017.04.12 16:23:34 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptbase.dll
[2017.04.12 16:23:34 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpk.dll
[2017.04.12 16:23:34 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapp.exe
[2017.04.12 16:23:34 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2017.04.12 16:23:34 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2017.04.12 16:23:34 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2017.04.12 16:23:34 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2017.04.12 16:23:34 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dciman32.dll
[2017.04.12 16:23:34 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2017.04.12 16:23:33 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\auditpol.exe
[2017.04.12 16:23:33 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\auditpol.exe
[2017.04.12 16:23:33 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2017.04.12 16:23:33 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2017.04.12 16:23:33 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appidcertstorecheck.exe
[2017.04.12 16:23:33 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2017.04.12 16:23:33 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2017.04.12 16:23:33 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2017.04.12 16:23:32 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2017.04.12 16:23:32 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2017.04.12 16:23:32 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\apisetschema.dll
[2017.04.12 16:23:32 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apisetschema.dll
[2017.04.12 16:23:32 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2017.04.12 16:23:32 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2017.04.12 16:23:32 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2017.04.12 16:23:32 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2017.04.12 16:23:32 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2017.04.12 16:23:30 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adtschema.dll
[2017.04.12 16:23:30 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adtschema.dll
[2017.04.12 16:23:30 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msaudite.dll
[2017.04.12 16:23:30 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msaudite.dll
[2017.04.12 16:23:28 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msobjs.dll
[2017.04.12 16:23:28 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msobjs.dll
[2017.04.12 16:23:28 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll
[2017.04.08 08:04:07 | 000,000,000 | -H-D | C] -- C:\$AV_AVG
[2017.04.06 10:46:34 | 000,165,048 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgStm.sys
[2017.04.06 10:46:33 | 000,557,776 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgSP.sys
[2017.04.06 10:46:33 | 000,340,688 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgVmm.sys
[2017.04.06 10:46:32 | 000,128,096 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgMonFlt.sys
[2017.04.06 10:46:32 | 000,076,688 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgRvrt.sys
[2017.04.06 10:46:31 | 000,102,136 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgRdr2.sys
[2017.04.06 10:46:31 | 000,039,288 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgHwid.sys
[2017.04.06 10:46:30 | 001,006,040 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgSnx.sys
[2017.04.06 10:46:30 | 000,050,848 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgbuniva.sys
[2017.04.06 10:46:29 | 000,336,408 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgbloga.sys
[2017.04.06 10:46:29 | 000,192,096 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgbidsha.sys
[2017.04.06 10:46:28 | 000,310,056 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgbidsdrivera.sys
[2017.04.06 10:46:28 | 000,166,136 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgbdiska.sys
[2017.04.06 10:45:49 | 000,400,928 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\avgBoot.exe
[2017.04.06 10:38:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge
[2017.03.20 19:10:04 | 000,875,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr120_clr0400.dll
[2017.03.20 19:10:04 | 000,536,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcp120_clr0400.dll
[2017.03.20 19:10:04 | 000,028,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aspnet_counters.dll
[2017.03.20 19:10:04 | 000,018,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr110_clr0400.dll
[2017.03.20 19:10:04 | 000,018,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr100_clr0400.dll
[2017.03.20 19:10:04 | 000,018,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcp110_clr0400.dll
[2017.03.20 18:32:12 | 000,869,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcr120_clr0400.dll
[2017.03.20 18:32:12 | 000,678,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcp120_clr0400.dll
[2017.03.20 18:32:12 | 000,029,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aspnet_counters.dll
[2017.03.20 18:32:12 | 000,018,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcr110_clr0400.dll
[2017.03.20 18:32:12 | 000,018,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcr100_clr0400.dll
[2017.03.20 18:32:12 | 000,018,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcp110_clr0400.dll
[2013.04.11 22:11:41 | 016,486,616 | ---- | C] (Adobe Systems Incorporated) -- C:\Users\admin\install_flash_player_11_plugin.exe
Já tomu vůbec nerozumím, jsem opravdu jen uživatel, bohužel.OTL logfile created on: 15.4.2017 22:16:58 - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\admin\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.18638)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,90 Gb Total Physical Memory | 1,66 Gb Available Physical Memory | 57,32% Memory free
5,80 Gb Paging File | 4,16 Gb Available in Paging File | 71,76% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 200,20 Gb Total Space | 129,86 Gb Free Space | 64,87% Space Free | Partition Type: NTFS
Drive D: | 255,47 Gb Total Space | 182,55 Gb Free Space | 71,46% Space Free | Partition Type: NTFS
Computer Name: HP650-NTB | User Name: admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2017.04.06 10:45:29 | 009,274,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
PRC - [2017.04.06 10:45:22 | 000,262,696 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
PRC - [2017.03.30 18:30:38 | 002,183,752 | ---- | M] () -- C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
PRC - [2017.03.30 18:30:38 | 001,354,312 | ---- | M] (AVG Secure Search) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.7\ToolbarUpdater.exe
PRC - [2017.03.30 18:30:38 | 000,981,576 | ---- | M] () -- C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
PRC - [2017.03.29 04:03:55 | 000,941,912 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2017.03.27 13:04:34 | 000,488,520 | ---- | M] (McAfee, Inc.) -- C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
PRC - [2017.03.23 16:34:02 | 001,800,224 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
PRC - [2016.10.27 13:33:50 | 000,437,224 | ---- | M] (Digital Wave Ltd.) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
PRC - [2016.07.23 08:25:49 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\admin\Desktop\OTL.exe
PRC - [2012.09.23 20:43:34 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012.04.06 09:17:46 | 000,363,800 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
PRC - [2012.04.06 09:17:46 | 000,277,784 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2012.04.06 09:17:42 | 000,161,560 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
PRC - [2010.11.21 05:24:03 | 000,302,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cmd.exe
========== Modules (No Company Name) ==========
MOD - [2017.04.06 10:45:31 | 048,936,448 | ---- | M] () -- C:\Program Files (x86)\AVG\Antivirus\libcef.dll
MOD - [2017.04.06 10:45:26 | 000,654,504 | ---- | M] () -- C:\Program Files (x86)\AVG\Antivirus\ffl2.dll
MOD - [2017.04.06 10:45:26 | 000,177,472 | ---- | M] () -- C:\Program Files (x86)\AVG\Antivirus\event_routing_rpc.dll
MOD - [2017.04.06 10:45:23 | 000,171,208 | ---- | M] () -- C:\Program Files (x86)\AVG\Antivirus\JsonRpcServer.dll
MOD - [2017.03.30 18:30:38 | 002,183,752 | ---- | M] () -- C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
MOD - [2017.03.29 04:04:01 | 002,187,096 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\libglesv2.dll
MOD - [2017.03.29 04:04:00 | 000,086,360 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\libegl.dll
MOD - [2016.11.29 07:11:32 | 048,920,064 | ---- | M] () -- C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
========== Services (SafeList) ==========
SRV:64bit: - [2017.03.25 19:56:51 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2016.08.22 18:19:43 | 001,386,496 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\diagtrack.dll -- (DiagTrack)
SRV:64bit: - [2013.05.27 07:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2012.02.02 22:29:52 | 000,628,448 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- c:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2017.04.11 12:07:49 | 000,271,448 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2017.04.06 10:45:22 | 000,262,696 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe -- (AVG Antivirus)
SRV - [2017.04.06 10:45:19 | 007,448,992 | ---- | M] (AVG Technologies CZ, s.r.o.) [On_Demand | Running] -- C:\Program Files (x86)\AVG\Antivirus\x64\aswidsagenta.exe -- (avgbIDSAgent)
SRV - [2017.03.30 18:30:38 | 001,354,312 | ---- | M] (AVG Secure Search) [Auto | Running] -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.7\ToolbarUpdater.exe -- (vToolbarUpdater40.3.7)
SRV - [2017.03.30 18:30:38 | 000,981,576 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe -- (WtuSystemSupport)
SRV - [2017.03.28 22:42:34 | 000,172,488 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2017.03.27 13:08:00 | 000,188,264 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe -- (McAfee SiteAdvisor Service)
SRV - [2017.03.23 16:33:38 | 001,428,680 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe -- (avgsvc)
SRV - [2017.03.20 19:10:04 | 000,103,568 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2016.10.27 13:33:50 | 000,437,224 | ---- | M] (Digital Wave Ltd.) [Auto | Running] -- C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe -- (DigitalWave.Update.Service)
SRV - [2014.03.21 00:49:18 | 000,067,224 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2012.09.23 20:43:34 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012.04.06 09:17:46 | 000,363,800 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012.04.06 09:17:46 | 000,277,784 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012.04.06 09:17:42 | 000,161,560 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2012.04.03 08:55:20 | 000,276,248 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2017.04.06 10:45:41 | 000,557,776 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgSP.sys -- (avgSP)
DRV:64bit: - [2017.04.06 10:45:41 | 000,340,688 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\avgVmm.sys -- (avgVmm)
DRV:64bit: - [2017.04.06 10:45:41 | 000,165,048 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\avgStm.sys -- (avgStm)
DRV:64bit: - [2017.04.06 10:45:41 | 000,128,096 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgMonFlt.sys -- (avgMonFlt)
DRV:64bit: - [2017.04.06 10:45:41 | 000,076,688 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\avgRvrt.sys -- (avgRvrt)
DRV:64bit: - [2017.04.06 10:45:41 | 000,039,288 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\avgHwid.sys -- (avgHwid)
DRV:64bit: - [2017.04.06 10:45:40 | 000,102,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgRdr2.sys -- (avgRdr)
DRV:64bit: - [2017.04.06 10:45:22 | 001,006,040 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgSnx.sys -- (avgSnx)
DRV:64bit: - [2017.04.06 10:45:10 | 000,050,848 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgbuniva.sys -- (avgbuniv)
DRV:64bit: - [2017.04.06 10:45:09 | 000,336,408 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgbloga.sys -- (avgblog)
DRV:64bit: - [2017.04.06 10:45:09 | 000,310,056 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgbidsdrivera.sys -- (avgbidsdriver)
DRV:64bit: - [2017.04.06 10:45:09 | 000,192,096 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgbidsha.sys -- (avgbidsh)
DRV:64bit: - [2017.04.06 10:45:09 | 000,166,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgbdiska.sys -- (avgbdisk)
DRV:64bit: - [2015.06.11 19:15:53 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2015.04.03 09:40:55 | 000,129,752 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
DRV:64bit: - [2014.03.31 22:06:06 | 000,058,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2013.04.22 21:26:54 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2012.12.13 13:50:36 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012.10.24 19:31:18 | 003,802,112 | ---- | M] (Qualcomm Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2012.04.06 15:16:20 | 000,685,160 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2012.04.06 09:17:42 | 000,060,184 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2012.04.06 09:17:32 | 000,021,264 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Smb_driver.sys -- (SmbDrv)
DRV:64bit: - [2012.04.06 09:17:26 | 000,425,232 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2012.03.19 16:32:02 | 014,745,600 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2012.03.01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011.12.06 04:23:08 | 000,331,264 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2011.11.23 21:42:32 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.11.23 21:42:32 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011.10.28 02:27:52 | 000,259,688 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsP2Stor.sys -- (RSP2STOR)
DRV:64bit: - [2010.11.21 05:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010.11.21 05:23:48 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub)
DRV:64bit: - [2010.11.21 05:23:48 | 000,088,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:64bit: - [2010.11.21 05:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2010.11.21 05:23:48 | 000,034,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2010.11.21 05:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.21 05:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2016.06.06 22:08:46 | 000,046,240 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys -- (mfesapsn)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = www.google.com
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-61953878-1118191327-652955997-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
IE - HKU\S-1-5-21-61953878-1118191327-652955997-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com/?cid={1277F63D ... 2017-01-20 16:13:34&v=4.3.6.255&pid=wtu&sg=&sap=hp
IE - HKU\S-1-5-21-61953878-1118191327-652955997-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page_TIMESTAMP = 3C A5 66 63 E4 2E D2 01 [binary data]
IE - HKU\S-1-5-21-61953878-1118191327-652955997-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SyncHomePage Protected - It is a violation of Windows Policy to modify. See aka.ms/browserpolicy = Reg Error: Value error.
IE - HKU\S-1-5-21-61953878-1118191327-652955997-1000\..\SearchScopes,DefaultScope = {95B7759C-8C7F-4BF1-B163-73684A933233}
IE - HKU\S-1-5-21-61953878-1118191327-652955997-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IESR02
IE - HKU\S-1-5-21-61953878-1118191327-652955997-1000\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = https://mysearch.avg.com/search?cid={12 ... 2017-01-20 16:13:34&v=4.3.7.452&pid=wtu&sg=&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-61953878-1118191327-652955997-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-61953878-1118191327-652955997-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.countryCode: "CZ"
FF - prefs.js..browser.search.defaultengine: ""
FF - prefs.js..browser.search.hiddenOneOffs: "Seznam,Google,ZboĹľĂ.cz"
FF - prefs.js..browser.search.isUS: false
FF - prefs.js..browser.search.order.1: ""
FF - prefs.js..browser.search.region: "CZ"
FF - prefs.js..browser.search.searchengine.desc: "this is my first firefox searchEngine"
FF - prefs.js..browser.search.searchengine.ptid: "amt"
FF - prefs.js..browser.search.searchengine.uid: "ST9500325AS_S2WLLPXG"
FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledAddons: %7B4ED1F68A-5463-4931-9384-8FFF5ED91D92%7D:5.0.512.0
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:52.0.2
FF - user.js - File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_148.dll File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_148.dll ()
FF - HKLM\Software\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.7\\npsitesafety.dll File not found
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.40.2: C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.40.2: C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@kb-ext.cz/PKIComponent: C:\Users\admin\AppData\Roaming\KB-ext\lib\x86\npPKIComponentNPAPI-kbext.dll (Komerční banka, a.s.)
FF - HKCU\Software\MozillaPlugins\@nsroblox.roblox.com/launcher: C:\Users\admin\AppData\Local\Roblox\Versions\version-6a65e85da5fe4a75\\NPRobloxProxy.dll ()
FF - HKCU\Software\MozillaPlugins\@nsroblox.roblox.com/launcher64: C:\Users\admin\AppData\Local\Roblox\Versions\version-6a65e85da5fe4a75\\NPRobloxProxy64.dll ()
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\admin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\PROGRAM FILES (X86)\MCAFEE\SITEADVISOR\SAFFPLG.XPI [2017.02.14 17:07:02 | 000,121,206 | ---- | M] ()
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{C7AE725D-FA5C-4027-BB4C-787EF9F8248A}: C:\Program Files (x86)\RelevantKnowledge\firefox
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{4ED1F68A-5463-4931-9384-8FFF5ED91D92}: C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2017.02.14 17:07:02 | 000,121,206 | ---- | M] ()
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 52.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 52.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 52.0.2\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 52.0.2\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
[2013.05.01 21:09:45 | 000,000,000 | ---D | M] (No name found) -- C:\Users\admin\AppData\Roaming\Mozilla\Extensions
[2017.04.15 14:27:55 | 000,000,000 | ---D | M] (No name found) -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\extensions
[2017.04.07 06:52:49 | 000,000,000 | ---D | M] (Seznam lištička) -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[2017.03.17 07:56:05 | 000,000,000 | ---D | M] (ADB Helper) -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\extensions\adbhelper@mozilla.org
[2017.01.27 08:13:53 | 000,000,000 | ---D | M] (Valence) -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\extensions\fxdevtools-adapters@mozilla.org
[2017.03.30 18:30:34 | 000,181,648 | ---- | M] () (No name found) -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\extensions\avg@toolbar.xpi
[2017.04.05 06:46:27 | 000,005,297 | ---- | M] () (No name found) -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\features\{3ea97899-750a-4cce-9762-2f42d082e7f3}\disable-prefetch@mozilla.org.xpi
[2017.04.05 06:46:27 | 000,007,195 | ---- | M] () (No name found) -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\features\{3ea97899-750a-4cce-9762-2f42d082e7f3}\e10srollout@mozilla.org.xpi
[2017.04.15 14:27:55 | 000,014,315 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\searchplugins\avg-secure-search.xml
[2017.03.28 22:42:35 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2017.02.14 17:07:02 | 000,121,206 | ---- | M] () (No name found) -- C:\PROGRAM FILES (X86)\MCAFEE\SITEADVISOR\SAFFPLG.XPI
========== Chrome ==========
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig\1.4.2_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd\1.4.6_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\5.0.532.0_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\9.0.0.7200_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkndcbhcgphcfkkddanakjiepeknbgle\1.3.337.4_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.2_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak\1.8.7_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5717.116.0.4_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkejgpgaflkeonkliblcplomemekogop\2.47_0\
O1 HOSTS File: ([2016.07.25 12:58:58 | 000,000,098 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (McAfee WebAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (AVG Web TuneUp) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Web TuneUp\4.3.7.452\AVG Web TuneUp.dll (AVG)
O2 - BHO: (McAfee WebAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [AvgUi] C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe (AVG Technologies CZ, s.r.o.)
O4:64bit: - HKLM..\Run: [AVGUI.exe] C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe (AVG Technologies CZ, s.r.o.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [AvgUi] C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [vProt] C:\Program Files (x86)\AVG Web TuneUp\vprot.exe ()
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9:64bit: - Extra Button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O9:64bit: - Extra 'Tools' menuitem : McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O9 - Extra Button: McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O9 - Extra 'Tools' menuitem : McAfee WebAdvisor - {48A61126-9A19-4C50-A214-FF08CB94995C} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: mojebanka.cz ([etrading] https in Trusted sites)
O15 - HKLM\..Trusted Domains: mojebanka.cz ([www] https in Trusted sites)
O15 - HKU\S-1-5-21-61953878-1118191327-652955997-1000\..Trusted Domains: localhost ([]http in Internet)
O15 - HKU\S-1-5-21-61953878-1118191327-652955997-1000\..Trusted Domains: mojebanka.cz ([etrading] https in Trusted sites)
O15 - HKU\S-1-5-21-61953878-1118191327-652955997-1000\..Trusted Domains: mojebanka.cz ([sign] https in Trusted sites)
O15 - HKU\S-1-5-21-61953878-1118191327-652955997-1000\..Trusted Domains: mojebanka.cz ([www] https in Trusted sites)
O15 - HKU\S-1-5-21-61953878-1118191327-652955997-1000\..Trusted Domains: mojeplatba.cz ([www] https in Trusted sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4ACD06ED-3096-46DC-BBE0-BA5C3EF47949}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9FBE94B6-E740-4CF9-B18F-DC7478176992}: DhcpNameServer = 192.168.100.100
O18:64bit: - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{969811fa-476b-11e6-a8db-20689d1a6ff0}\Shell - "" = AutoRun
O33 - MountPoints2\{969811fa-476b-11e6-a8db-20689d1a6ff0}\Shell\AutoRun\command - "" = H:\HiSuiteDownLoader.exe
O33 - MountPoints2\{bbc2104b-0192-11e7-8d48-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{bbc2104b-0192-11e7-8d48-806e6f6e6963}\Shell\AutoRun\command - "" = F:\HiSuiteDownLoader.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\HiSuiteDownLoader.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv50 - C:\Windows\SysWow64\ir50_32.dll (Intel Corporation)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2017.04.12 16:24:09 | 002,064,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll
[2017.04.12 16:24:08 | 003,165,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2017.04.12 16:24:07 | 000,769,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samsrv.dll
[2017.04.12 16:24:07 | 000,757,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2017.04.12 16:24:07 | 000,497,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2017.04.12 16:24:06 | 001,574,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2017.04.12 16:24:06 | 000,994,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ucrtbase.dll
[2017.04.12 16:24:06 | 000,709,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2017.04.12 16:24:04 | 002,055,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2017.04.12 16:24:04 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll
[2017.04.12 16:24:04 | 000,806,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2017.04.12 16:24:04 | 000,382,696 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2017.04.12 16:24:03 | 000,405,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32.dll
[2017.04.12 16:24:03 | 000,308,456 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2017.04.12 16:24:02 | 002,131,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2017.04.12 16:24:02 | 001,329,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2017.04.12 16:24:02 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2017.04.12 16:24:01 | 000,922,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ucrtbase.dll
[2017.04.12 16:24:01 | 000,265,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2017.04.12 16:24:01 | 000,066,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-private-l1-1-0.dll
[2017.04.12 16:24:01 | 000,013,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-filesystem-l1-1-0.dll
[2017.04.12 16:24:01 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-utility-l1-1-0.dll
[2017.04.12 16:24:01 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-environment-l1-1-0.dll
[2017.04.12 16:24:01 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l2-1-0.dll
[2017.04.12 16:24:01 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-2-0.dll
[2017.04.12 16:24:01 | 000,011,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-2-0.dll
[2017.04.12 16:24:00 | 001,155,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2017.04.12 16:24:00 | 000,817,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2017.04.12 16:24:00 | 000,063,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-private-l1-1-0.dll
[2017.04.12 16:24:00 | 000,022,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-math-l1-1-0.dll
[2017.04.12 16:24:00 | 000,020,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-math-l1-1-0.dll
[2017.04.12 16:24:00 | 000,019,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-multibyte-l1-1-0.dll
[2017.04.12 16:24:00 | 000,019,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-multibyte-l1-1-0.dll
[2017.04.12 16:24:00 | 000,017,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-string-l1-1-0.dll
[2017.04.12 16:24:00 | 000,017,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-string-l1-1-0.dll
[2017.04.12 16:24:00 | 000,017,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-stdio-l1-1-0.dll
[2017.04.12 16:24:00 | 000,017,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-stdio-l1-1-0.dll
[2017.04.12 16:24:00 | 000,016,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-runtime-l1-1-0.dll
[2017.04.12 16:24:00 | 000,016,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-runtime-l1-1-0.dll
[2017.04.12 16:24:00 | 000,015,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-convert-l1-1-0.dll
[2017.04.12 16:24:00 | 000,015,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-convert-l1-1-0.dll
[2017.04.12 16:24:00 | 000,014,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-time-l1-1-0.dll
[2017.04.12 16:24:00 | 000,014,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-time-l1-1-0.dll
[2017.04.12 16:24:00 | 000,014,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-2-0.dll
[2017.04.12 16:24:00 | 000,014,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-2-0.dll
[2017.04.12 16:24:00 | 000,013,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-filesystem-l1-1-0.dll
[2017.04.12 16:24:00 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-process-l1-1-0.dll
[2017.04.12 16:24:00 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-process-l1-1-0.dll
[2017.04.12 16:24:00 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-heap-l1-1-0.dll
[2017.04.12 16:24:00 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-heap-l1-1-0.dll
[2017.04.12 16:24:00 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-conio-l1-1-0.dll
[2017.04.12 16:24:00 | 000,012,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-conio-l1-1-0.dll
[2017.04.12 16:24:00 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-utility-l1-1-0.dll
[2017.04.12 16:24:00 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-crt-locale-l1-1-0.dll
[2017.04.12 16:24:00 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-locale-l1-1-0.dll
[2017.04.12 16:24:00 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-crt-environment-l1-1-0.dll
[2017.04.12 16:24:00 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-2-0.dll
[2017.04.12 16:24:00 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-2-0.dll
[2017.04.12 16:24:00 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-1.dll
[2017.04.12 16:24:00 | 000,012,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-1.dll
[2017.04.12 16:24:00 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l2-1-0.dll
[2017.04.12 16:24:00 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-timezone-l1-1-0.dll
[2017.04.12 16:24:00 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-timezone-l1-1-0.dll
[2017.04.12 16:24:00 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l2-1-0.dll
[2017.04.12 16:24:00 | 000,011,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l2-1-0.dll
[2017.04.12 16:23:58 | 000,631,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2017.04.12 16:23:55 | 004,000,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2017.04.12 16:23:54 | 003,945,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2017.04.12 16:23:53 | 005,548,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2017.04.12 16:23:52 | 001,732,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2017.04.12 16:23:52 | 000,706,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2017.04.12 16:23:51 | 006,045,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2017.04.12 16:23:50 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samlib.dll
[2017.04.12 16:23:49 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfmjpegdec.dll
[2017.04.12 16:23:49 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfmjpegdec.dll
[2017.04.12 16:23:48 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2017.04.12 16:23:46 | 001,359,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2017.04.12 16:23:46 | 000,725,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2017.04.12 16:23:46 | 000,576,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2017.04.12 16:23:46 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certcli.dll
[2017.04.12 16:23:46 | 000,342,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certcli.dll
[2017.04.12 16:23:46 | 000,192,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2017.04.12 16:23:46 | 000,174,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuwebv.dll
[2017.04.12 16:23:46 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2017.04.12 16:23:46 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2017.04.12 16:23:45 | 001,212,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpcrt4.dll
[2017.04.12 16:23:45 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2017.04.12 16:23:45 | 000,663,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2017.04.12 16:23:45 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2017.04.12 16:23:45 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2017.04.12 16:23:45 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2017.04.12 16:23:45 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wups.dll
[2017.04.12 16:23:44 | 001,460,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2017.04.12 16:23:44 | 000,615,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2017.04.12 16:23:44 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2017.04.12 16:23:44 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll
[2017.04.12 16:23:43 | 000,489,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2017.04.12 16:23:43 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2017.04.12 16:23:43 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srclient.dll
[2017.04.12 16:23:42 | 000,880,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\advapi32.dll
[2017.04.12 16:23:42 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2017.04.12 16:23:42 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\smss.exe
[2017.04.12 16:23:42 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2017.04.12 16:23:41 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2017.04.12 16:23:40 | 001,163,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2017.04.12 16:23:40 | 000,968,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2017.04.12 16:23:40 | 000,814,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2017.04.12 16:23:40 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rstrui.exe
[2017.04.12 16:23:40 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2017.04.12 16:23:40 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSetupUI.dll
[2017.04.12 16:23:39 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2017.04.12 16:23:39 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2017.04.12 16:23:38 | 000,476,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2017.04.12 16:23:38 | 000,419,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2017.04.12 16:23:38 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2017.04.12 16:23:38 | 000,341,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2017.04.12 16:23:38 | 000,312,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
[2017.04.12 16:23:38 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2017.04.12 16:23:38 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2017.04.12 16:23:37 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
[2017.04.12 16:23:37 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\JavaScriptCollectionAgent.dll
[2017.04.12 16:23:37 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll
[2017.04.12 16:23:37 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wu.upgrade.ps.dll
[2017.04.12 16:23:36 | 000,620,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2017.04.12 16:23:36 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2017.04.12 16:23:36 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2017.04.12 16:23:36 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2017.04.12 16:23:36 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2017.04.12 16:23:36 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2017.04.12 16:23:35 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2017.04.12 16:23:35 | 000,190,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpchttp.dll
[2017.04.12 16:23:35 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2017.04.12 16:23:35 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2017.04.12 16:23:35 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcrypt.dll
[2017.04.12 16:23:35 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2017.04.12 16:23:34 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appidpolicyconverter.exe
[2017.04.12 16:23:34 | 000,141,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rpchttp.dll
[2017.04.12 16:23:34 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2017.04.12 16:23:34 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
[2017.04.12 16:23:34 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
[2017.04.12 16:23:34 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2017.04.12 16:23:34 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2017.04.12 16:23:34 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
[2017.04.12 16:23:34 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setbcdlocale.dll
[2017.04.12 16:23:34 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2017.04.12 16:23:34 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
[2017.04.12 16:23:34 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appidapi.dll
[2017.04.12 16:23:34 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\appidapi.dll
[2017.04.12 16:23:34 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
[2017.04.12 16:23:34 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2017.04.12 16:23:34 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptbase.dll
[2017.04.12 16:23:34 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpk.dll
[2017.04.12 16:23:34 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapp.exe
[2017.04.12 16:23:34 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2017.04.12 16:23:34 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2017.04.12 16:23:34 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2017.04.12 16:23:34 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2017.04.12 16:23:34 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dciman32.dll
[2017.04.12 16:23:34 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2017.04.12 16:23:33 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\auditpol.exe
[2017.04.12 16:23:33 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\auditpol.exe
[2017.04.12 16:23:33 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2017.04.12 16:23:33 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2017.04.12 16:23:33 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appidcertstorecheck.exe
[2017.04.12 16:23:33 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2017.04.12 16:23:33 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2017.04.12 16:23:33 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2017.04.12 16:23:32 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2017.04.12 16:23:32 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2017.04.12 16:23:32 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\apisetschema.dll
[2017.04.12 16:23:32 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apisetschema.dll
[2017.04.12 16:23:32 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2017.04.12 16:23:32 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2017.04.12 16:23:32 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2017.04.12 16:23:32 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2017.04.12 16:23:32 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2017.04.12 16:23:32 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2017.04.12 16:23:32 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2017.04.12 16:23:30 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adtschema.dll
[2017.04.12 16:23:30 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adtschema.dll
[2017.04.12 16:23:30 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msaudite.dll
[2017.04.12 16:23:30 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msaudite.dll
[2017.04.12 16:23:28 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msobjs.dll
[2017.04.12 16:23:28 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msobjs.dll
[2017.04.12 16:23:28 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll
[2017.04.08 08:04:07 | 000,000,000 | -H-D | C] -- C:\$AV_AVG
[2017.04.06 10:46:34 | 000,165,048 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgStm.sys
[2017.04.06 10:46:33 | 000,557,776 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgSP.sys
[2017.04.06 10:46:33 | 000,340,688 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgVmm.sys
[2017.04.06 10:46:32 | 000,128,096 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgMonFlt.sys
[2017.04.06 10:46:32 | 000,076,688 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgRvrt.sys
[2017.04.06 10:46:31 | 000,102,136 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgRdr2.sys
[2017.04.06 10:46:31 | 000,039,288 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgHwid.sys
[2017.04.06 10:46:30 | 001,006,040 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgSnx.sys
[2017.04.06 10:46:30 | 000,050,848 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgbuniva.sys
[2017.04.06 10:46:29 | 000,336,408 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgbloga.sys
[2017.04.06 10:46:29 | 000,192,096 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgbidsha.sys
[2017.04.06 10:46:28 | 000,310,056 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgbidsdrivera.sys
[2017.04.06 10:46:28 | 000,166,136 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgbdiska.sys
[2017.04.06 10:45:49 | 000,400,928 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\avgBoot.exe
[2017.04.06 10:38:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge
[2017.03.20 19:10:04 | 000,875,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr120_clr0400.dll
[2017.03.20 19:10:04 | 000,536,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcp120_clr0400.dll
[2017.03.20 19:10:04 | 000,028,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aspnet_counters.dll
[2017.03.20 19:10:04 | 000,018,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr110_clr0400.dll
[2017.03.20 19:10:04 | 000,018,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr100_clr0400.dll
[2017.03.20 19:10:04 | 000,018,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcp110_clr0400.dll
[2017.03.20 18:32:12 | 000,869,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcr120_clr0400.dll
[2017.03.20 18:32:12 | 000,678,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcp120_clr0400.dll
[2017.03.20 18:32:12 | 000,029,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aspnet_counters.dll
[2017.03.20 18:32:12 | 000,018,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcr110_clr0400.dll
[2017.03.20 18:32:12 | 000,018,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcr100_clr0400.dll
[2017.03.20 18:32:12 | 000,018,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcp110_clr0400.dll
[2013.04.11 22:11:41 | 016,486,616 | ---- | C] (Adobe Systems Incorporated) -- C:\Users\admin\install_flash_player_11_plugin.exe
Re: Prosim o čístku
2. část logu
========== Files - Modified Within 30 Days ==========
[2017.04.15 22:24:48 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2017.04.15 22:12:44 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2017.04.15 21:40:59 | 000,016,832 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2017.04.15 21:40:59 | 000,016,832 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2017.04.15 18:27:48 | 001,584,554 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2017.04.15 18:27:48 | 000,669,116 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2017.04.15 18:27:48 | 000,654,464 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2017.04.15 18:27:48 | 000,141,744 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2017.04.15 18:27:48 | 000,122,336 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2017.04.15 14:27:08 | 2337,558,528 | -HS- | M] () -- C:\hiberfil.sys
[2017.04.15 00:51:01 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\last.dump
[2017.04.14 19:56:27 | 000,030,596 | ---- | M] () -- C:\Users\admin\Desktop\nocni cesta.gpx
[2017.04.14 16:00:44 | 000,444,615 | ---- | M] () -- C:\Users\admin\Desktop\mapa.pdf
[2017.04.13 07:48:13 | 000,285,368 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2017.04.13 07:12:58 | 001,560,204 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2017.04.11 12:07:46 | 000,802,904 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2017.04.11 12:07:46 | 000,144,472 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2017.04.07 08:23:45 | 106,878,180 | ---- | M] () -- C:\Users\admin\Desktop\Mistrovství.rar
[2017.04.06 10:45:41 | 000,557,776 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgSP.sys
[2017.04.06 10:45:41 | 000,400,928 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\avgBoot.exe
[2017.04.06 10:45:41 | 000,340,688 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgVmm.sys
[2017.04.06 10:45:41 | 000,165,048 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgStm.sys
[2017.04.06 10:45:41 | 000,128,096 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgMonFlt.sys
[2017.04.06 10:45:41 | 000,076,688 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgRvrt.sys
[2017.04.06 10:45:41 | 000,039,288 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgHwid.sys
[2017.04.06 10:45:40 | 000,102,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgRdr2.sys
[2017.04.06 10:45:22 | 001,006,040 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgSnx.sys
[2017.04.06 10:45:10 | 000,050,848 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgbuniva.sys
[2017.04.06 10:45:09 | 000,336,408 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgbloga.sys
[2017.04.06 10:45:09 | 000,310,056 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgbidsdrivera.sys
[2017.04.06 10:45:09 | 000,192,096 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgbidsha.sys
[2017.04.06 10:45:09 | 000,166,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgbdiska.sys
[2017.04.06 10:41:24 | 000,001,008 | ---- | M] () -- C:\Users\Public\Desktop\AVG.lnk
[2017.04.05 22:37:48 | 000,002,189 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2017.03.25 20:47:47 | 000,047,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
[2017.03.25 20:47:39 | 000,710,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2017.03.25 20:47:21 | 002,055,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2017.03.25 20:46:31 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
[2017.03.25 20:46:29 | 000,663,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2017.03.25 20:46:28 | 000,620,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2017.03.25 20:46:13 | 000,168,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2017.03.25 20:46:03 | 000,130,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2017.03.25 20:45:33 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2017.03.25 20:45:20 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2017.03.25 20:45:16 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2017.03.25 20:45:13 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2017.03.25 20:45:03 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
[2017.03.25 20:44:50 | 000,076,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2017.03.25 20:35:29 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll
[2017.03.25 20:16:09 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2017.03.25 20:14:52 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll
[2017.03.25 20:14:34 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2017.03.25 20:13:58 | 000,088,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
[2017.03.25 20:13:43 | 000,576,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2017.03.25 20:02:47 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2017.03.25 19:57:49 | 000,615,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2017.03.25 19:56:51 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
[2017.03.25 19:56:50 | 000,144,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2017.03.25 19:56:17 | 000,814,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2017.03.25 19:56:08 | 000,817,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2017.03.25 19:45:17 | 000,968,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2017.03.25 19:41:11 | 000,489,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2017.03.25 19:41:08 | 006,045,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2017.03.25 19:30:52 | 000,077,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\JavaScriptCollectionAgent.dll
[2017.03.25 19:29:09 | 000,107,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2017.03.25 19:24:08 | 000,199,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2017.03.25 19:23:15 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2017.03.25 19:20:02 | 000,315,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2017.03.25 19:19:30 | 000,341,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2017.03.25 19:17:22 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2017.03.25 19:06:54 | 000,476,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2017.03.25 19:00:12 | 000,725,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2017.03.25 18:59:31 | 000,806,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2017.03.25 18:57:57 | 001,359,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2017.03.25 18:57:30 | 002,131,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2017.03.25 18:27:02 | 001,155,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2017.03.25 18:01:41 | 000,800,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2017.03.25 00:50:50 | 000,405,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32.dll
[2017.03.22 17:32:05 | 003,165,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2017.03.22 17:32:05 | 000,192,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2017.03.22 17:32:05 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2017.03.22 17:30:15 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WinSetupUI.dll
[2017.03.22 17:24:42 | 000,174,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wuwebv.dll
[2017.03.22 17:15:39 | 000,709,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2017.03.22 17:15:15 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2017.03.22 17:15:14 | 000,140,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2017.03.22 17:15:11 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2017.03.22 17:15:08 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2017.03.22 17:15:08 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wu.upgrade.ps.dll
[2017.03.22 17:05:57 | 000,573,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2017.03.22 17:05:37 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapp.exe
[2017.03.22 17:05:36 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wups.dll
[2017.03.22 17:05:35 | 000,093,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll
[2017.03.20 19:10:04 | 000,875,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr120_clr0400.dll
[2017.03.20 19:10:04 | 000,536,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcp120_clr0400.dll
[2017.03.20 19:10:04 | 000,028,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\aspnet_counters.dll
[2017.03.20 19:10:04 | 000,018,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr110_clr0400.dll
[2017.03.20 19:10:04 | 000,018,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr100_clr0400.dll
[2017.03.20 19:10:04 | 000,018,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcp110_clr0400.dll
[2017.03.20 18:32:12 | 000,869,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msvcr120_clr0400.dll
[2017.03.20 18:32:12 | 000,678,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msvcp120_clr0400.dll
[2017.03.20 18:32:12 | 000,029,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aspnet_counters.dll
[2017.03.20 18:32:12 | 000,018,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msvcr110_clr0400.dll
[2017.03.20 18:32:12 | 000,018,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msvcr100_clr0400.dll
[2017.03.20 18:32:12 | 000,018,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msvcp110_clr0400.dll
========== Files Created - No Company Name ==========
[2017.04.15 00:51:01 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\last.dump
[2017.04.14 19:56:25 | 000,030,596 | ---- | C] () -- C:\Users\admin\Desktop\nocni cesta.gpx
[2017.04.14 16:00:42 | 000,444,615 | ---- | C] () -- C:\Users\admin\Desktop\mapa.pdf
[2017.04.07 08:23:30 | 106,878,180 | ---- | C] () -- C:\Users\admin\Desktop\Mistrovství.rar
[2016.07.14 13:23:21 | 001,560,204 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013.05.03 21:51:40 | 000,004,608 | ---- | C] () -- C:\Users\admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
========== ZeroAccess Check ==========
[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2016.08.29 17:31:19 | 014,183,424 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2016.08.29 17:12:50 | 012,880,384 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.21 05:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2013.12.11 15:36:42 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\.mono
[2014.01.29 14:17:29 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Artogon
[2017.04.06 10:48:20 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\AVG
[2015.03.14 22:46:24 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\cpuminer
[2013.04.22 21:41:44 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\DAEMON Tools Lite
[2015.03.22 15:18:06 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\DominiGames
[2017.03.06 16:02:29 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\DVDVideoSoft
[2013.04.25 20:24:53 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\ERS Game Studios
[2015.05.07 22:36:53 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\IrfanView
[2013.04.28 23:27:03 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\JaiboGames
[2013.10.31 10:35:26 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\KB-ext
[2014.01.27 00:36:25 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Melesta
[2015.03.22 14:54:53 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Meridian93
[2017.04.14 14:49:14 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Opera Software
[2017.04.09 07:45:37 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\PhotoScape
[2013.06.06 23:00:13 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Publisher
[2013.04.10 18:21:28 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Rovio
[2017.04.14 14:46:02 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Seznam Browser
[2017.01.29 09:38:38 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Seznam Browser-86e3636d-c40d-4ace-aaaf-eb445664b913
[2017.04.14 14:46:37 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Seznam.cz
[2015.03.22 18:19:23 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\SMIGames
[2013.04.10 18:14:42 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Synaptics
[2013.04.10 18:36:14 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\TuneUp Software
[2013.08.29 10:29:33 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Unity
[2017.04.14 16:12:15 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\uTorrent
[2015.03.22 15:00:23 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Špidla Data Processing, s.r.o
[2013.04.10 18:40:09 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\TuneUp Software
[2013.04.10 18:40:09 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\TuneUp Software
========== Purity Check ==========
========== Custom Scans ==========
< >
[2009.07.14 07:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 07:08:49 | 000,032,558 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
< >
< MD5 for: ATAPI.SYS >
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Users\admin\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20130410T155027317092\internal_ide_channel\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_552ea5111ec825a6\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.18231_none_3b457059383c66e6\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.22414_none_3be7afc0514717fa\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2010.11.21 05:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\SysNative\autochk.exe
[2010.11.21 05:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2010.11.21 05:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\SysWOW64\autochk.exe
[2010.11.21 05:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe
< MD5 for: CDROM.SYS >
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Users\admin\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20130410T155027317092\gencdrom\cdrom.sys
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys
< MD5 for: EXPLORER.EXE >
[2011.11.23 21:29:45 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2011.11.23 21:29:45 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2016.08.29 17:04:37 | 003,229,696 | ---- | M] (Microsoft Corporation) MD5=38AE1B3C38FAEF56FE4907922F0385BA -- C:\Windows\explorer.exe
[2016.08.29 17:04:37 | 003,229,696 | ---- | M] (Microsoft Corporation) MD5=38AE1B3C38FAEF56FE4907922F0385BA -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.23537_none_b0517adca98752cc\explorer.exe
[2011.11.23 21:29:45 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010.11.21 05:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2016.08.29 16:55:07 | 002,972,672 | ---- | M] (Microsoft Corporation) MD5=6DDCA324434FFA506CF7DC4E51DB7935 -- C:\Windows\SysWOW64\explorer.exe
[2016.08.29 16:55:07 | 002,972,672 | ---- | M] (Microsoft Corporation) MD5=6DDCA324434FFA506CF7DC4E51DB7935 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.23537_none_baa6252edde814c7\explorer.exe
[2011.11.23 21:29:45 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010.11.21 05:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
< MD5 for: HAL.DLL >
[2010.11.21 05:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\SysNative\hal.dll
[2010.11.21 05:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll
< MD5 for: SCECLI.DLL >
[2010.11.21 05:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010.11.21 05:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.21 05:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010.11.21 05:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll
< MD5 for: SERVICES.EXE >
[2009.07.14 03:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
[2015.04.11 06:31:36 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=43DCEC23557C32F7702C8D5BC729738F -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7601.23033_none_2df8898bfd178df8\services.exe
[2015.04.13 05:28:33 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=71C85477DF9347FE8E7BC55768473FCA -- C:\Windows\SysNative\services.exe
[2015.04.13 05:28:33 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=71C85477DF9347FE8E7BC55768473FCA -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7601.18829_none_2d7fe646e3ec3705\services.exe
< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2014.11.21 07:12:42 | 000,761,656 | ---- | M] (MalwareBytes) MD5=625BB08813743947985B0DEEFC35ED12 -- C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
< MD5 for: TCPIP.SYS >
[2014.04.05 04:47:20 | 001,903,552 | ---- | M] (Microsoft Corporation) MD5=04ADD18EE5CC9FBEDAEC1DD1CD0CB45E -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18438_none_113260637d1284ef\tcpip.sys
[2012.10.03 19:56:54 | 001,914,248 | ---- | M] (Microsoft Corporation) MD5=37608401DFDB388CAF66917F6B2D6FB0 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_110e0fbd7d2e4b88\tcpip.sys
[2011.11.23 21:38:13 | 001,912,176 | ---- | M] (Microsoft Corporation) MD5=3810F06A4D74A7D62641EE73D6B3C660 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21828_none_11c6e9949627e69c\tcpip.sys
[2016.07.16 05:11:27 | 001,903,552 | ---- | M] (Microsoft Corporation) MD5=40AF23633D197905F03AB5628C558C51 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18254_none_1118bb977d265d27\tcpip.sys
[2014.04.05 04:37:43 | 001,897,408 | ---- | M] (Microsoft Corporation) MD5=4F80944B03112F486212DC20BE166079 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22648_none_11b12f2896383dd1\tcpip.sys
[2010.11.21 05:24:08 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2016.07.16 05:11:26 | 001,896,896 | ---- | M] (Microsoft Corporation) MD5=75F9106B74585D38C8FF6BB5CAD262D7 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22444_none_11ad2a34963bde27\tcpip.sys
[2011.11.23 21:26:57 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=92CE29D95AC9DD2D0EE9061D551BA250 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_114de9497cfe9316\tcpip.sys
[2016.07.07 17:36:20 | 001,896,168 | ---- | M] (Microsoft Corporation) MD5=B2875D7ABB82867DC3AA03D991940201 -- C:\Windows\SysNative\drivers\tcpip.sys
[2016.07.07 17:36:20 | 001,896,168 | ---- | M] (Microsoft Corporation) MD5=B2875D7ABB82867DC3AA03D991940201 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.23496_none_117904649662b62b\tcpip.sys
[2011.11.23 21:26:57 | 001,927,552 | ---- | M] (Microsoft Corporation) MD5=B77977AEB2FF159D01DB08A309989C5F -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_11cbb5de9625357a\tcpip.sys
[2012.10.03 19:44:29 | 001,902,472 | ---- | M] (Microsoft Corporation) MD5=D5707FC2300AA5B04B7BFE86D40C0133 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_11c2c45a962baed0\tcpip.sys
[2011.11.23 21:38:13 | 001,923,952 | ---- | M] (Microsoft Corporation) MD5=FC62769E7BFF2896035AEED399108162 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17697_none_10f09b257d43f3eb\tcpip.sys
< MD5 for: USERINIT.EXE >
[2010.11.21 05:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010.11.21 05:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010.11.21 05:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010.11.21 05:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe
< MD5 for: WINLOGON.EXE >
[2010.11.21 05:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2014.11.21 07:12:42 | 000,761,656 | ---- | M] (MalwareBytes) MD5=625BB08813743947985B0DEEFC35ED12 -- C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\winlogon.exe
[2014.03.04 13:08:14 | 000,455,680 | ---- | M] (Microsoft Corporation) MD5=6CE2AE073BD21C542FC2C707CAE944CC -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.22616_none_ce748d1d04acf24f\winlogon.exe
[2014.03.04 11:43:50 | 000,455,168 | ---- | M] (Microsoft Corporation) MD5=88AB9B72B4BF3963A0DE0820B4B0B06C -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.18409_none_cdf8bf35eb848572\winlogon.exe
[2014.07.17 04:07:24 | 000,455,168 | ---- | M] (Microsoft Corporation) MD5=8CEBD9D0A0A879CDE9F36F4383B7CAEA -- C:\Windows\SysNative\winlogon.exe
[2014.07.17 04:07:24 | 000,455,168 | ---- | M] (Microsoft Corporation) MD5=8CEBD9D0A0A879CDE9F36F4383B7CAEA -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.18540_none_cdc47ed1ebad0e4e\winlogon.exe
[2014.07.16 05:23:23 | 000,455,680 | ---- | M] (Microsoft Corporation) MD5=98AA0BFEE089C7E5DADB94190D93456C -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.22750_none_ce434d9704d2c730\winlogon.exe
< >
< %systemroot%*.* /U /s >
[4 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[10 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\ebe5c5d7f730b7b5a7fc15c0024591d0\*.tmp files -> C:\Windows\SoftwareDistribution\Download\ebe5c5d7f730b7b5a7fc15c0024591d0\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2013.12.11 15:36:42 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\.mono
[2013.04.12 17:32:35 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Adobe
[2015.12.12 23:45:13 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Ahead
[2013.04.27 18:13:38 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Apple Computer
[2014.01.29 14:17:29 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Artogon
[2017.04.06 10:48:20 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\AVG
[2015.03.14 22:46:24 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\cpuminer
[2013.04.22 21:41:44 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\DAEMON Tools Lite
[2015.03.22 15:18:06 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\DominiGames
[2017.03.06 16:02:29 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\DVDVideoSoft
[2013.04.25 20:24:53 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\ERS Game Studios
[2013.04.10 14:16:00 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Identities
[2015.05.07 22:36:53 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\IrfanView
[2013.04.28 23:27:03 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\JaiboGames
[2013.10.31 10:35:26 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\KB-ext
[2013.04.11 22:22:43 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Macromedia
[2010.11.21 17:10:34 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Media Center Programs
[2014.01.27 00:36:25 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Melesta
[2015.03.22 14:54:53 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Meridian93
[2017.03.19 11:45:41 | 000,000,000 | --SD | M] -- C:\Users\admin\AppData\Roaming\Microsoft
[2013.05.01 21:09:45 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Mozilla
[2017.04.14 14:49:14 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Opera Software
[2017.04.09 07:45:37 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\PhotoScape
[2013.06.06 23:00:13 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Publisher
[2013.04.10 18:21:28 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Rovio
[2017.04.14 14:46:02 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Seznam Browser
[2017.01.29 09:38:38 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Seznam Browser-86e3636d-c40d-4ace-aaaf-eb445664b913
[2017.04.14 14:46:37 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Seznam.cz
[2017.04.14 14:44:57 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Skype
[2015.03.22 18:19:23 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\SMIGames
[2013.04.10 18:14:42 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Synaptics
[2013.04.10 18:36:14 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\TuneUp Software
[2013.08.29 10:29:33 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Unity
[2017.04.14 16:12:15 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\uTorrent
[2017.03.05 13:40:28 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\vlc
[2013.04.21 21:12:34 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\WinRAR
[2015.03.22 15:00:23 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Špidla Data Processing, s.r.o
< %APPDATA%\*.exe /s >
[2015.03.13 20:46:34 | 000,056,931 | ---- | M] (Open Source) -- C:\Users\admin\AppData\Roaming\cpuminer\cpuminer-uninst.exe
[2013.10.31 10:35:26 | 001,175,960 | ---- | M] () -- C:\Users\admin\AppData\Roaming\KB-ext\lib\unins000.exe
[2015.06.19 08:27:54 | 000,172,112 | ---- | M] () -- C:\Users\admin\AppData\Roaming\KB-ext\lib\x86\ProxyHostKBEXT.exe
[2017.03.17 07:56:04 | 001,489,920 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\extensions\adbhelper@mozilla.org\win32\adb.exe
[2017.03.17 07:56:04 | 000,806,912 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\extensions\adbhelper@mozilla.org\win32\fastboot.exe
[2017.01.27 08:13:52 | 000,459,383 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\extensions\fxdevtools-adapters@mozilla.org\tools\win32\ios-webkit-debug-proxy.exe
[2016.08.16 13:08:14 | 001,490,944 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Seznam Browser\ImportFavs.exe
[2016.08.16 13:08:14 | 000,057,024 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Seznam Browser\restart.exe
[2016.08.16 13:08:14 | 000,040,120 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Seznam Browser\restartBack.exe
[2016.10.19 12:54:52 | 001,054,912 | ---- | M] (Seznam.cz) -- C:\Users\admin\AppData\Roaming\Seznam Browser\Seznam.cz.exe
[2016.10.10 18:32:08 | 000,367,875 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Seznam Browser\uninstall.exe
[2016.08.16 13:08:14 | 000,167,936 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Seznam Browser\unzip.exe
[2016.10.19 12:52:24 | 000,379,064 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Seznam Browser\update.exe
[2016.12.14 16:39:58 | 001,490,944 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Seznam Browser-86e3636d-c40d-4ace-aaaf-eb445664b913\ImportFavs.exe
[2016.12.14 16:39:58 | 000,045,344 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Seznam Browser-86e3636d-c40d-4ace-aaaf-eb445664b913\restart.exe
[2016.12.19 14:10:44 | 001,054,904 | ---- | M] (Seznam.cz) -- C:\Users\admin\AppData\Roaming\Seznam Browser-86e3636d-c40d-4ace-aaaf-eb445664b913\Seznam.cz.exe
[2017.01.29 09:38:39 | 000,367,875 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Seznam Browser-86e3636d-c40d-4ace-aaaf-eb445664b913\uninstall.exe
[2016.12.14 16:39:58 | 000,167,936 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Seznam Browser-86e3636d-c40d-4ace-aaaf-eb445664b913\unzip.exe
[2016.12.14 16:40:00 | 002,225,664 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Seznam Browser-86e3636d-c40d-4ace-aaaf-eb445664b913\update.exe
[2013.04.12 20:31:22 | 000,802,136 | ---- | M] (BitTorrent Inc.) -- C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe
[1 C:\Users\admin\AppData\Roaming\uTorrent\*.tmp files -> C:\Users\admin\AppData\Roaming\uTorrent\*.tmp -> ]
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2017.04.15 00:51:01 | 000,000,000 | ---- | M] () -- C:\Windows\system32\last.dump
[2017.04.15 14:30:00 | 000,000,018 | ---- | M] () -- C:\Windows\system32\log.txt
[2017.04.13 07:12:58 | 001,560,204 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
< >
< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2017.03.28 22:42:34 | 000,517,064 | ---- | M] (Mozilla Corporation) MD5=327DEF696E8663C7FFC7037CEF8FA870 -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2017.03.27 19:28:47 | 000,815,312 | ---- | M] (Microsoft Corporation) MD5=C846AE3506AC61A3B38C8DFA3AA72B42 -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
< %PROGRAMFILES%\Opera\opera.exe /md5 >
< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
[2017.03.29 04:03:55 | 000,941,912 | ---- | M] (Google Inc.) MD5=64F911CA43AF4099B679CD85759EAC04 -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
< >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2017.04.15 22:24:48 | 000,000,512 | ---- | M] () MD5=4AD4185222B6738A56D7449C0625A622 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
< *keygen* /s >
[2013.05.01 21:30:39 | 000,015,145 | ---- | M] () -- \Users\admin\AppData\Roaming\uTorrent\Nero 7 Premium 7.8.5.0 CZ + keygen.rar.torrent
[1 \Users\admin\AppData\Roaming\uTorrent\*.tmp files -> \Users\admin\AppData\Roaming\uTorrent\*.tmp -> ]
< *loader* /s >
[2017.04.06 10:45:10 | 000,019,136 | ---- | M] () -- \Program Files (x86)\AVG\Antivirus\setup\CRT\data\avg.vc140.crt\amd64\api-ms-win-core-libraryloader-l1-1-0.dll
[2017.04.06 10:45:14 | 000,019,136 | ---- | M] () -- \Program Files (x86)\AVG\Antivirus\setup\CRT\data\avg.vc140.crt\x86\api-ms-win-core-libraryloader-l1-1-0.dll
[2007.03.12 14:48:46 | 000,177,712 | ---- | M] () -- \Program Files (x86)\Common Files\Ahead\Lib\NeGuideStoreLoader.dll
[2013.01.28 13:08:40 | 000,008,827 | ---- | M] () -- \Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit.resources\inspector\HeapSnapshotLoader.js
[2017.01.27 08:05:28 | 000,018,624 | ---- | M] () -- \Program Files (x86)\Mozilla Firefox\api-ms-win-core-libraryloader-l1-1-0.dll
[2008.02.25 08:05:22 | 000,856,064 | ---- | M] () -- \Program Files (x86)\The KMPlayer\ImLoader.dll
[2012.06.09 19:19:37 | 000,055,296 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2012.12.04 17:00:50 | 000,072,638 | ---- | M] () -- \Source\Skype Portable 6.1.0.129\App\Skype\login\images\loader.gif
[2012.12.04 17:00:50 | 000,003,032 | ---- | M] () -- \Source\Skype Portable 6.1.0.129\App\Skype\login\images\loader.png
[2012.12.04 17:00:50 | 000,009,772 | ---- | M] () -- \Source\Skype Portable 6.1.0.129\App\Skype\login\images\retina\loader@2x.png
[2016.12.14 16:39:58 | 000,001,411 | ---- | M] () -- \Users\admin\AppData\Roaming\Seznam Browser-86e3636d-c40d-4ace-aaaf-eb445664b913\core\init\js\favicon\downloader.js
[2016.12.19 14:10:36 | 000,002,924 | ---- | M] () -- \Users\admin\AppData\Roaming\Seznam Browser-86e3636d-c40d-4ace-aaaf-eb445664b913\core\libs\bower_components\angular-translate-loader-static-files\angular-translate-loader-static-files.js
[2016.12.19 14:10:38 | 000,001,303 | ---- | M] () -- \Users\admin\AppData\Roaming\Seznam Browser-86e3636d-c40d-4ace-aaaf-eb445664b913\core\libs\bower_components\angular-translate-loader-static-files\angular-translate-loader-static-files.min.js
[2015.03.16 15:53:59 | 000,000,495 | ---- | M] () -- \Users\admin\AppData\Roaming\Unity\WebPlayerPrefs\cdn_2erocketeergames_2ecom\prefrc2_2e7-redcrucible_5floader_2eunity3d.upp
[2015.10.10 07:56:24 | 000,000,305 | ---- | M] () -- \Users\admin\AppData\Roaming\Unity\WebPlayerPrefs\charge_2dup_2ein\prefstatic-game-webplayer-gameloader-gameloader_2eunity3d.upp
[2015.04.14 17:17:17 | 000,000,563 | ---- | M] () -- \Users\admin\AppData\Roaming\Unity\WebPlayerPrefs\z6g7t5i5_2essl_2ehwcdn_2enet\prefrc2_2e7-redcrucible_5floader_2eunity3d.upp
[2015.10.06 13:56:18 | 000,000,708 | ---- | M] () -- \Users\admin\AppData\Roaming\Unity\WebPlayerPrefs\z6g7t5i5_2essl_2ehwcdn_2enet\prefrc3-redcrucible_5floader_2eunity3d.upp
[2017.02.14 18:28:11 | 000,003,069 | ---- | M] () -- \Users\admin\Downloads\opera autoupdate\CUsersadminAppDataLocalProgramsOperasuite\6808_21854\ready\notifications\assets\appboy_loader.js
[2017.03.23 12:02:18 | 000,003,147 | ---- | M] () -- \Users\admin\Downloads\opera autoupdate\CUsersadminAppDataLocalProgramsOperasuite\ready\notifications\assets\appboy_loader.js
[2017.03.08 07:45:04 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_da-dk_2f2bc561230cd088.manifest
[2017.03.08 07:47:28 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_de-de_2c575a9d24e32522.manifest
[2017.03.08 07:45:54 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_el-gr_d4ed883013f88db0.manifest
[2017.03.08 07:45:33 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_es-es_d5138d7a13e8228c.manifest
[2017.03.08 07:45:46 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_fi-fi_742e9227090214b6.manifest
[2017.03.08 07:45:18 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_fr-fr_77cb037906ba38ee.manifest
[2017.03.08 07:46:20 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_hu-hu_bf3b83c0eb1a080a.manifest
[2017.03.08 07:47:50 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_it-it_61f2f9bfddec1e6c.manifest
[2017.03.08 07:50:18 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_ja-jp_041878ccd1073047.manifest
[2017.03.08 07:47:13 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_ko-kr_a7825581c377f75d.manifest
[2017.03.08 07:44:48 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_nb-no_9014d6b69b9d2319.manifest
[2017.03.08 07:45:48 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_nl-nl_8e5421f49cc92cee.manifest
[2017.03.08 07:45:49 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_pl-pl_d4907c7681eb9aa2.manifest
[2017.03.08 07:48:06 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_pt-br_d6e4671a80752e86.manifest
[2017.03.08 07:45:41 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_pt-pt_d7c636867fe49e62.manifest
[2017.03.08 07:46:55 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_ru-ru_1e69484a64c62c8e.manifest
[2017.03.08 07:45:54 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_sv-se_ba6432bf5bef36e9.manifest
[2017.03.08 07:45:59 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_tr-tr_63717d064aab38da.manifest
[2017.03.08 07:49:52 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_zh-cn_34ce9b03fae30af9.manifest
[2017.03.08 07:44:50 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_zh-hk_33799391fbbe7d89.manifest
[2017.03.08 07:48:07 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_zh-tw_38cad859f853e769.manifest
[2017.03.08 07:45:39 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_cs-cz_9fe4bc2667e389e5.manifest
[2017.03.08 07:45:04 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_da-dk_3d1e9c4d5e2985e4.manifest
[2017.03.08 07:47:19 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_de-de_3a4a31895fffda7e.manifest
[2017.03.08 07:45:54 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_el-gr_e2e05f1c4f15430c.manifest
[2017.03.08 06:38:53 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_en-us_e33b07824edde643.manifest
[2017.03.08 07:45:25 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_es-es_e30664664f04d7e8.manifest
[2017.03.08 07:45:46 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_fi-fi_82216913441eca12.manifest
[2017.03.08 07:45:09 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_fr-fr_85bdda6541d6ee4a.manifest
[2017.03.08 07:46:12 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_hu-hu_cd2e5aad2636bd66.manifest
[2017.03.08 07:47:42 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_it-it_6fe5d0ac1908d3c8.manifest
[2017.03.08 07:50:10 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_ja-jp_120b4fb90c23e5a3.manifest
[2017.03.08 07:47:05 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_ko-kr_b5752c6dfe94acb9.manifest
[2017.03.08 07:44:48 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_nb-no_9e07ada2d6b9d875.manifest
[2017.03.08 07:45:36 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_nl-nl_9c46f8e0d7e5e24a.manifest
[2017.03.08 07:45:39 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_pl-pl_e2835362bd084ffe.manifest
[2017.03.08 07:47:59 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_pt-br_e4d73e06bb91e3e2.manifest
[2017.03.08 07:45:33 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_pt-pt_e5b90d72bb0153be.manifest
[2017.03.08 07:46:47 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_ru-ru_2c5c1f369fe2e1ea.manifest
[2017.03.08 07:45:44 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_sv-se_c85709ab970bec45.manifest
[2017.03.08 07:45:50 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_tr-tr_716453f285c7ee36.manifest
[2017.03.08 07:49:45 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_zh-cn_42c171f035ffc055.manifest
[2017.03.08 07:44:49 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_zh-hk_416c6a7e36db32e5.manifest
[2017.03.08 07:47:59 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_zh-tw_46bdaf4633709cc5.manifest
[2017.03.08 06:51:30 | 000,005,793 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.23714_none_9e9e05729a5497e8.manifest
[2017.03.08 06:21:54 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2017.03.08 06:21:54 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2016.11.29 07:13:34 | 000,019,136 | ---- | M] () -- \Windows\winsxs\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 03:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.11.23 21:35:54 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_68a9b6bd92929e63\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.07.16 05:06:42 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_68c05c919281774d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 19:38:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_68a2edab92971725\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.07.16 05:14:19 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_68d8d569926ebeb2\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 04:12:19 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_68d20a7192733a4d\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.05.25 20:11:40 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18869_none_68a6d625929398fb\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.15 05:06:41 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18923_none_68cc15ff92788e54\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.15 20:00:47 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18933_none_68c146139280aa45\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.23 01:52:00 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18939_none_68c747cf927b424f\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.01.22 08:12:24 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.19135_none_68c320af927f0d5c\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.11.23 21:35:54 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_691eb3faabbf8f66\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.11.23 21:31:30 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21831_none_6948f546aba00372\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.07.16 05:06:34 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_6907efc6abd0db81\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 19:35:00 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_6957a248ab947a6d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 07:39:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_69239340abbb38d0\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.07.16 05:14:10 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22436_none_694dd858ab9ba72a\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.04.12 04:28:21 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22653_none_69353b6eabae8d55\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.05.25 20:14:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23072_none_691e7920abbfd697\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.15 05:11:33 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23126_none_69588bcaab93ad65\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.15 20:05:03 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23136_none_694dbbdeab9bc956\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.22 23:52:11 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23142_none_693eeacaaba77feb\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.01.22 08:17:41 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23338_none_694fc03eab99f652\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.03.16 20:44:07 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23391_none_6907deb0abd0ec97\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.03.18 00:50:10 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23392_none_6908defaabd005ee\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.04.09 08:57:48 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23418_none_696561fcab89bb97\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.09.02 17:30:45 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23539_none_6950c454ab9909f7\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.09.09 20:20:38 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23543_none_693ff2acaba68dde\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.10.11 17:31:50 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23572_none_691e829eabbfc85a\api-ms-win-core-libraryloader-l1-1-0.dll
[2017.02.09 18:31:48 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23677_none_692385f6abbb4434\api-ms-win-core-libraryloader-l1-1-0.dll
[2017.03.08 06:33:02 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23714_none_69616686ab8d4db0\api-ms-win-core-libraryloader-l1-1-0.dll
[2017.04.13 07:26:27 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_cs-cz_91f1e53a2cc6d489.manifest
[2017.04.13 07:26:27 | 000,033,000 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_cs-cz_91f1e53a2cc6d489_winload.efi.mui_35ee487d
[2017.04.13 07:26:27 | 000,034,536 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_cs-cz_91f1e53a2cc6d489_winload.exe.mui_3bc5b827
[2017.04.13 07:26:27 | 000,029,928 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_cs-cz_91f1e53a2cc6d489_winresume.efi.mui_f412814e
[2017.04.13 07:26:27 | 000,030,440 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_cs-cz_91f1e53a2cc6d489_winresume.exe.mui_ff8b5358
[2017.04.13 07:27:02 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_en-us_d548309613c130e7.manifest
[2017.04.13 07:27:02 | 000,033,000 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_en-us_d548309613c130e7_winload.efi.mui_35ee487d
[2017.04.13 07:27:02 | 000,033,000 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_en-us_d548309613c130e7_winload.exe.mui_3bc5b827
[2017.04.13 07:27:02 | 000,029,928 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_en-us_d548309613c130e7_winresume.efi.mui_f412814e
[2017.04.13 07:27:02 | 000,029,928 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_en-us_d548309613c130e7_winresume.exe.mui_ff8b5358
[2017.04.13 07:26:54 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23714_none_b9d630c29c643abc.manifest
[2017.04.13 07:26:55 | 000,706,792 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23714_none_b9d630c29c643abc_winload.efi_75834aa0
[2017.04.13 07:26:55 | 000,633,296 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23714_none_b9d630c29c643abc_winload.exe_75835076
[2017.04.13 07:26:56 | 000,631,176 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23714_none_b9d630c29c643abc_winresume.efi_85cd069f
[2017.04.13 07:26:57 | 000,546,656 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23714_none_b9d630c29c643abc_winresume.exe_85cd1215
[2009.07.14 04:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 04:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2017.03.06 00:18:59 | 000,000,616 | ---- | M] () -- \Windows\winsxs\FileMaps\programdata_microsoft_diagnosis_asimovuploader_0413bca0c3dfdda4.cdf-ms
[2011.11.24 00:26:05 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2010.11.21 16:59:29 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a.manifest
[2015.02.03 06:49:45 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18741_cs-cz_9144f07b13c42013.manifest
[2015.02.03 05:35:06 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18741_en-us_d49b3bd6fabe7c71.manifest
[2015.01.13 00:17:25 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_cs-cz_91e42f042cd18522.manifest
[2015.01.13 00:17:17 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_en-us_d53a7a6013cbe180.manifest
[2015.01.16 08:36:46 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_cs-cz_91e62f982ccfb7d0.manifest
[2015.01.16 08:36:33 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_en-us_d53c7af413ca142e.manifest
[2015.02.03 07:30:16 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22948_cs-cz_91d591322cdb6e65.manifest
[2015.02.03 05:54:55 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22948_en-us_d52bdc8e13d5cac3.manifest
[2015.05.25 22:04:06 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_cs-cz_91aef7d42cf95d70.manifest
[2015.05.25 20:25:12 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_en-us_d505433013f3b9ce.manifest
[2015.07.15 07:49:58 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23126_cs-cz_91e90a7e2ccd343e.manifest
[2015.07.15 05:32:59 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23126_en-us_d53f55da13c7909c.manifest
[2015.07.15 22:47:39 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23136_cs-cz_91de3a922cd5502f.manifest
[2015.07.15 20:15:00 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23136_en-us_d53485ee13cfac8d.manifest
[2015.07.23 05:58:18 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23142_cs-cz_91cf697e2ce106c4.manifest
[2015.07.23 00:05:32 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23142_en-us_d525b4da13db6322.manifest
[2016.01.22 10:02:23 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23338_cs-cz_91e03ef22cd37d2b.manifest
[2016.01.22 08:29:17 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23338_en-us_d5368a4e13cdd989.manifest
[2016.03.16 23:01:39 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23391_cs-cz_91985d642d0a7370.manifest
[2016.03.16 20:55:51 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23391_en-us_d4eea8c01404cfce.manifest
[2016.03.18 02:10:31 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23392_cs-cz_91995dae2d098cc7.manifest
[2016.03.18 01:00:47 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23392_en-us_d4efa90a1403e925.manifest
[2016.04.09 10:12:19 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23418_cs-cz_91f5e0b02cc34270.manifest
[2016.04.09 09:03:48 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23418_en-us_d54c2c0c13bd9ece.manifest
[2016.09.02 18:34:19 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23539_cs-cz_91e143082cd290d0.manifest
[2016.09.02 17:37:24 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23539_en-us_d5378e6413cced2e.manifest
[2016.09.09 21:12:09 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23543_cs-cz_91d071602ce014b7.manifest
[2016.09.09 20:26:41 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23543_en-us_d526bcbc13da7115.manifest
[2016.10.11 18:46:07 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23572_cs-cz_91af01522cf94f33.manifest
[2016.10.11 17:38:00 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23572_en-us_d5054cae13f3ab91.manifest
[2017.02.09 19:37:14 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23677_cs-cz_91b404aa2cf4cb0d.manifest
[2017.02.09 18:38:10 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23677_en-us_d50a500613ef276b.manifest
[2017.03.08 07:45:49 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_cs-cz_91f1e53a2cc6d489.manifest
[2017.03.08 06:39:05 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_en-us_d548309613c130e7.manifest
[2010.11.21 05:16:35 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2011.11.23 21:27:30 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2015.02.03 05:51:30 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.18741_none_b9293c0383618646.manifest
[2011.11.23 21:27:30 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2015.01.12 05:50:53 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22921_none_b9c87a8c9c6eeb55.manifest
[2015.01.16 08:37:02 | 000,005,511 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22923_none_b9ca7b209c6d1e03.manifest
[2015.02.03 06:17:47 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22948_none_b9b9dcba9c78d498.manifest
[2015.05.25 20:45:47 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23072_none_b993435c9c96c3a3.manifest
[2015.07.15 05:48:43 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23126_none_b9cd56069c6a9a71.manifest
[2015.07.15 20:39:45 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23136_none_b9c2861a9c72b662.manifest
[2015.07.23 03:47:39 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23142_none_b9b3b5069c7e6cf7.manifest
[2016.01.22 08:51:12 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23338_none_b9c48a7a9c70e35e.manifest
[2016.03.16 21:24:30 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23391_none_b97ca8ec9ca7d9a3.manifest
[2016.03.18 01:29:22 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23392_none_b97da9369ca6f2fa.manifest
[2016.04.09 09:28:05 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23418_none_b9da2c389c60a8a3.manifest
[2016.09.02 17:55:50 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23539_none_b9c58e909c6ff703.manifest
[2016.09.09 20:48:58 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23543_none_b9b4bce89c7d7aea.manifest
[2016.10.11 17:56:19 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23572_none_b9934cda9c96b566.manifest
[2017.02.09 18:50:40 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23677_none_b99850329c923140.manifest
[2017.03.08 06:51:25 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23714_none_b9d630c29c643abc.manifest
[2009.07.14 04:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2016.11.29 07:13:46 | 000,019,136 | ---- | M] () -- \Windows\winsxs\x86_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_b1a7386eee2cbfb4\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.11.23 21:35:54 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_0c8b1b39da352d2d\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.07.16 05:06:46 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_0ca1c10dda240617\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:40:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.07.16 05:14:24 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 03:48:15 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_0cb36eedda15c917\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.05.25 19:55:18 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18869_none_0c883aa1da3627c5\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.15 04:47:54 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18923_none_0cad7a7bda1b1d1e\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.15 19:44:18 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18933_none_0ca2aa8fda23390f\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.22 19:42:39 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18939_none_0ca8ac4bda1dd119\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.01.22 07:59:07 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.19135_none_0ca4852bda219c26\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.11.23 21:35:54 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_0d001876f3621e30\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.11.23 21:31:30 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21831_none_0d2a59c2f342923c\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.07.16 05:06:38 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_0ce95442f3736a4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.07.16 05:14:15 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22436_none_0d2f3cd4f33e35f4\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.04.12 04:03:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22653_none_0d169feaf3511c1f\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.05.25 20:00:35 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23072_none_0cffdd9cf3626561\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.15 04:51:41 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23126_none_0d39f046f3363c2f\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.15 19:40:57 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23136_none_0d2f205af33e5820\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.23 01:54:11 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23142_none_0d204f46f34a0eb5\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.01.22 07:58:11 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23338_none_0d3124baf33c851c\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.03.16 20:23:40 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23391_none_0ce9432cf3737b61\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.03.18 00:24:26 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23392_none_0cea4376f37294b8\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.04.09 08:54:42 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23418_none_0d46c678f32c4a61\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.09.02 17:16:23 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23539_none_0d3228d0f33b98c1\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.09.09 19:59:46 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23543_none_0d215728f3491ca8\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.10.11 17:18:03 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23572_none_0cffe71af3625724\api-ms-win-core-libraryloader-l1-1-0.dll
[2017.02.09 18:14:24 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23677_none_0d04ea72f35dd2fe\api-ms-win-core-libraryloader-l1-1-0.dll
[2017.03.08 06:21:54 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23714_none_0d42cb02f32fdc7a\api-ms-win-core-libraryloader-l1-1-0.dll
========== Alternate Data Streams ==========
@Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:373E1720
< End of report >
========== Files - Modified Within 30 Days ==========
[2017.04.15 22:24:48 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2017.04.15 22:12:44 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2017.04.15 21:40:59 | 000,016,832 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2017.04.15 21:40:59 | 000,016,832 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2017.04.15 18:27:48 | 001,584,554 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2017.04.15 18:27:48 | 000,669,116 | ---- | M] () -- C:\Windows\SysNative\perfh005.dat
[2017.04.15 18:27:48 | 000,654,464 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2017.04.15 18:27:48 | 000,141,744 | ---- | M] () -- C:\Windows\SysNative\perfc005.dat
[2017.04.15 18:27:48 | 000,122,336 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2017.04.15 14:27:08 | 2337,558,528 | -HS- | M] () -- C:\hiberfil.sys
[2017.04.15 00:51:01 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\last.dump
[2017.04.14 19:56:27 | 000,030,596 | ---- | M] () -- C:\Users\admin\Desktop\nocni cesta.gpx
[2017.04.14 16:00:44 | 000,444,615 | ---- | M] () -- C:\Users\admin\Desktop\mapa.pdf
[2017.04.13 07:48:13 | 000,285,368 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2017.04.13 07:12:58 | 001,560,204 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2017.04.11 12:07:46 | 000,802,904 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2017.04.11 12:07:46 | 000,144,472 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2017.04.07 08:23:45 | 106,878,180 | ---- | M] () -- C:\Users\admin\Desktop\Mistrovství.rar
[2017.04.06 10:45:41 | 000,557,776 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgSP.sys
[2017.04.06 10:45:41 | 000,400,928 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\avgBoot.exe
[2017.04.06 10:45:41 | 000,340,688 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgVmm.sys
[2017.04.06 10:45:41 | 000,165,048 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgStm.sys
[2017.04.06 10:45:41 | 000,128,096 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgMonFlt.sys
[2017.04.06 10:45:41 | 000,076,688 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgRvrt.sys
[2017.04.06 10:45:41 | 000,039,288 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgHwid.sys
[2017.04.06 10:45:40 | 000,102,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgRdr2.sys
[2017.04.06 10:45:22 | 001,006,040 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgSnx.sys
[2017.04.06 10:45:10 | 000,050,848 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgbuniva.sys
[2017.04.06 10:45:09 | 000,336,408 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgbloga.sys
[2017.04.06 10:45:09 | 000,310,056 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgbidsdrivera.sys
[2017.04.06 10:45:09 | 000,192,096 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgbidsha.sys
[2017.04.06 10:45:09 | 000,166,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\SysNative\drivers\avgbdiska.sys
[2017.04.06 10:41:24 | 000,001,008 | ---- | M] () -- C:\Users\Public\Desktop\AVG.lnk
[2017.04.05 22:37:48 | 000,002,189 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2017.03.25 20:47:47 | 000,047,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
[2017.03.25 20:47:39 | 000,710,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
[2017.03.25 20:47:21 | 002,055,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2017.03.25 20:46:31 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
[2017.03.25 20:46:29 | 000,663,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2017.03.25 20:46:28 | 000,620,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
[2017.03.25 20:46:13 | 000,168,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2017.03.25 20:46:03 | 000,130,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2017.03.25 20:45:33 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
[2017.03.25 20:45:20 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2017.03.25 20:45:16 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
[2017.03.25 20:45:13 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2017.03.25 20:45:03 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
[2017.03.25 20:44:50 | 000,076,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2017.03.25 20:35:29 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll
[2017.03.25 20:16:09 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
[2017.03.25 20:14:52 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll
[2017.03.25 20:14:34 | 000,417,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2017.03.25 20:13:58 | 000,088,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
[2017.03.25 20:13:43 | 000,576,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2017.03.25 20:02:47 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
[2017.03.25 19:57:49 | 000,615,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2017.03.25 19:56:51 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
[2017.03.25 19:56:50 | 000,144,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2017.03.25 19:56:17 | 000,814,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
[2017.03.25 19:56:08 | 000,817,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2017.03.25 19:45:17 | 000,968,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
[2017.03.25 19:41:11 | 000,489,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
[2017.03.25 19:41:08 | 006,045,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2017.03.25 19:30:52 | 000,077,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\JavaScriptCollectionAgent.dll
[2017.03.25 19:29:09 | 000,107,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2017.03.25 19:24:08 | 000,199,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
[2017.03.25 19:23:15 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2017.03.25 19:20:02 | 000,315,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
[2017.03.25 19:19:30 | 000,341,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2017.03.25 19:17:22 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\occache.dll
[2017.03.25 19:06:54 | 000,476,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2017.03.25 19:00:12 | 000,725,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
[2017.03.25 18:59:31 | 000,806,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2017.03.25 18:57:57 | 001,359,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
[2017.03.25 18:57:30 | 002,131,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2017.03.25 18:27:02 | 001,155,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
[2017.03.25 18:01:41 | 000,800,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
[2017.03.25 00:50:50 | 000,405,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32.dll
[2017.03.22 17:32:05 | 003,165,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2017.03.22 17:32:05 | 000,192,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2017.03.22 17:32:05 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2017.03.22 17:30:15 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WinSetupUI.dll
[2017.03.22 17:24:42 | 000,174,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wuwebv.dll
[2017.03.22 17:15:39 | 000,709,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2017.03.22 17:15:15 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2017.03.22 17:15:14 | 000,140,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2017.03.22 17:15:11 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2017.03.22 17:15:08 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2017.03.22 17:15:08 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wu.upgrade.ps.dll
[2017.03.22 17:05:57 | 000,573,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2017.03.22 17:05:37 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapp.exe
[2017.03.22 17:05:36 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wups.dll
[2017.03.22 17:05:35 | 000,093,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll
[2017.03.20 19:10:04 | 000,875,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr120_clr0400.dll
[2017.03.20 19:10:04 | 000,536,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcp120_clr0400.dll
[2017.03.20 19:10:04 | 000,028,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\aspnet_counters.dll
[2017.03.20 19:10:04 | 000,018,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr110_clr0400.dll
[2017.03.20 19:10:04 | 000,018,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcr100_clr0400.dll
[2017.03.20 19:10:04 | 000,018,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msvcp110_clr0400.dll
[2017.03.20 18:32:12 | 000,869,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msvcr120_clr0400.dll
[2017.03.20 18:32:12 | 000,678,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msvcp120_clr0400.dll
[2017.03.20 18:32:12 | 000,029,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aspnet_counters.dll
[2017.03.20 18:32:12 | 000,018,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msvcr110_clr0400.dll
[2017.03.20 18:32:12 | 000,018,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msvcr100_clr0400.dll
[2017.03.20 18:32:12 | 000,018,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msvcp110_clr0400.dll
========== Files Created - No Company Name ==========
[2017.04.15 00:51:01 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\last.dump
[2017.04.14 19:56:25 | 000,030,596 | ---- | C] () -- C:\Users\admin\Desktop\nocni cesta.gpx
[2017.04.14 16:00:42 | 000,444,615 | ---- | C] () -- C:\Users\admin\Desktop\mapa.pdf
[2017.04.07 08:23:30 | 106,878,180 | ---- | C] () -- C:\Users\admin\Desktop\Mistrovství.rar
[2016.07.14 13:23:21 | 001,560,204 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013.05.03 21:51:40 | 000,004,608 | ---- | C] () -- C:\Users\admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
========== ZeroAccess Check ==========
[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2016.08.29 17:31:19 | 014,183,424 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2016.08.29 17:12:50 | 012,880,384 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.21 05:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2013.12.11 15:36:42 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\.mono
[2014.01.29 14:17:29 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Artogon
[2017.04.06 10:48:20 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\AVG
[2015.03.14 22:46:24 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\cpuminer
[2013.04.22 21:41:44 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\DAEMON Tools Lite
[2015.03.22 15:18:06 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\DominiGames
[2017.03.06 16:02:29 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\DVDVideoSoft
[2013.04.25 20:24:53 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\ERS Game Studios
[2015.05.07 22:36:53 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\IrfanView
[2013.04.28 23:27:03 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\JaiboGames
[2013.10.31 10:35:26 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\KB-ext
[2014.01.27 00:36:25 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Melesta
[2015.03.22 14:54:53 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Meridian93
[2017.04.14 14:49:14 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Opera Software
[2017.04.09 07:45:37 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\PhotoScape
[2013.06.06 23:00:13 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Publisher
[2013.04.10 18:21:28 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Rovio
[2017.04.14 14:46:02 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Seznam Browser
[2017.01.29 09:38:38 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Seznam Browser-86e3636d-c40d-4ace-aaaf-eb445664b913
[2017.04.14 14:46:37 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Seznam.cz
[2015.03.22 18:19:23 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\SMIGames
[2013.04.10 18:14:42 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Synaptics
[2013.04.10 18:36:14 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\TuneUp Software
[2013.08.29 10:29:33 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Unity
[2017.04.14 16:12:15 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\uTorrent
[2015.03.22 15:00:23 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Špidla Data Processing, s.r.o
[2013.04.10 18:40:09 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\TuneUp Software
[2013.04.10 18:40:09 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\TuneUp Software
========== Purity Check ==========
========== Custom Scans ==========
< >
[2009.07.14 07:08:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2009.07.14 07:08:49 | 000,032,558 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
< >
< MD5 for: ATAPI.SYS >
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Users\admin\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20130410T155027317092\internal_ide_channel\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_552ea5111ec825a6\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.18231_none_3b457059383c66e6\atapi.sys
[2009.07.14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.22414_none_3be7afc0514717fa\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2010.11.21 05:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\SysNative\autochk.exe
[2010.11.21 05:24:27 | 000,777,728 | ---- | M] (Microsoft Corporation) MD5=3B536A8BEC3B4F23FFDFD78B11A2AB93 -- C:\Windows\winsxs\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_4019f2b8d860ad30\autochk.exe
[2010.11.21 05:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\SysWOW64\autochk.exe
[2010.11.21 05:23:53 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=F88A52EB62019D6A62FDD9E08034DBD8 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7601.17514_none_e3fb573520033bfa\autochk.exe
< MD5 for: CDROM.SYS >
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Users\admin\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20130410T155027317092\gencdrom\cdrom.sys
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010.11.21 05:23:47 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys
< MD5 for: EXPLORER.EXE >
[2011.11.23 21:29:45 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[2011.11.23 21:29:45 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=332FEAB1435662FC6C672E25BEB37BE3 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[2016.08.29 17:04:37 | 003,229,696 | ---- | M] (Microsoft Corporation) MD5=38AE1B3C38FAEF56FE4907922F0385BA -- C:\Windows\explorer.exe
[2016.08.29 17:04:37 | 003,229,696 | ---- | M] (Microsoft Corporation) MD5=38AE1B3C38FAEF56FE4907922F0385BA -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.23537_none_b0517adca98752cc\explorer.exe
[2011.11.23 21:29:45 | 002,871,808 | ---- | M] (Microsoft Corporation) MD5=3B69712041F3D63605529BD66DC00C48 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[2010.11.21 05:24:25 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe
[2016.08.29 16:55:07 | 002,972,672 | ---- | M] (Microsoft Corporation) MD5=6DDCA324434FFA506CF7DC4E51DB7935 -- C:\Windows\SysWOW64\explorer.exe
[2016.08.29 16:55:07 | 002,972,672 | ---- | M] (Microsoft Corporation) MD5=6DDCA324434FFA506CF7DC4E51DB7935 -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.23537_none_baa6252edde814c7\explorer.exe
[2011.11.23 21:29:45 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[2010.11.21 05:24:11 | 002,872,320 | ---- | M] (Microsoft Corporation) MD5=AC4C51EB24AA95B77F705AB159189E24 -- C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe
< MD5 for: HAL.DLL >
[2010.11.21 05:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\SysNative\hal.dll
[2010.11.21 05:24:08 | 000,263,040 | ---- | M] (Microsoft Corporation) MD5=CFB8C673F9188F99466E76C6972191E0 -- C:\Windows\winsxs\amd64_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.17514_none_094ef8137049c196\hal.dll
< MD5 for: SCECLI.DLL >
[2010.11.21 05:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\SysWOW64\scecli.dll
[2010.11.21 05:23:54 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=8124944EC89D6A1815E4E53F5B96AAF4 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_a088921d241bbb4e\scecli.dll
[2010.11.21 05:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\SysNative\scecli.dll
[2010.11.21 05:24:32 | 000,232,960 | ---- | M] (Microsoft Corporation) MD5=ED78427259134C63ED69804D2132B86C -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7601.17514_none_9633e7caefbaf953\scecli.dll
< MD5 for: SERVICES.EXE >
[2009.07.14 03:39:37 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=24ACB7E5BE595468E3B9AA488B9B4FCB -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
[2015.04.11 06:31:36 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=43DCEC23557C32F7702C8D5BC729738F -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7601.23033_none_2df8898bfd178df8\services.exe
[2015.04.13 05:28:33 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=71C85477DF9347FE8E7BC55768473FCA -- C:\Windows\SysNative\services.exe
[2015.04.13 05:28:33 | 000,328,704 | ---- | M] (Microsoft Corporation) MD5=71C85477DF9347FE8E7BC55768473FCA -- C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7601.18829_none_2d7fe646e3ec3705\services.exe
< MD5 for: SVCHOST.EXE >
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\SysWOW64\svchost.exe
[2009.07.14 03:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2014.11.21 07:12:42 | 000,761,656 | ---- | M] (MalwareBytes) MD5=625BB08813743947985B0DEEFC35ED12 -- C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\SysNative\svchost.exe
[2009.07.14 03:39:46 | 000,027,136 | ---- | M] (Microsoft Corporation) MD5=C78655BC80301D76ED4FEF1C1EA40A7D -- C:\Windows\winsxs\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_11b04b481efec48c\svchost.exe
< MD5 for: TCPIP.SYS >
[2014.04.05 04:47:20 | 001,903,552 | ---- | M] (Microsoft Corporation) MD5=04ADD18EE5CC9FBEDAEC1DD1CD0CB45E -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18438_none_113260637d1284ef\tcpip.sys
[2012.10.03 19:56:54 | 001,914,248 | ---- | M] (Microsoft Corporation) MD5=37608401DFDB388CAF66917F6B2D6FB0 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17964_none_110e0fbd7d2e4b88\tcpip.sys
[2011.11.23 21:38:13 | 001,912,176 | ---- | M] (Microsoft Corporation) MD5=3810F06A4D74A7D62641EE73D6B3C660 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21828_none_11c6e9949627e69c\tcpip.sys
[2016.07.16 05:11:27 | 001,903,552 | ---- | M] (Microsoft Corporation) MD5=40AF23633D197905F03AB5628C558C51 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.18254_none_1118bb977d265d27\tcpip.sys
[2014.04.05 04:37:43 | 001,897,408 | ---- | M] (Microsoft Corporation) MD5=4F80944B03112F486212DC20BE166079 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22648_none_11b12f2896383dd1\tcpip.sys
[2010.11.21 05:24:08 | 001,924,480 | ---- | M] (Microsoft Corporation) MD5=509383E505C973ED7534A06B3D19688D -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17514_none_114417c17d05cb37\tcpip.sys
[2016.07.16 05:11:26 | 001,896,896 | ---- | M] (Microsoft Corporation) MD5=75F9106B74585D38C8FF6BB5CAD262D7 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22444_none_11ad2a34963bde27\tcpip.sys
[2011.11.23 21:26:57 | 001,923,968 | ---- | M] (Microsoft Corporation) MD5=92CE29D95AC9DD2D0EE9061D551BA250 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17603_none_114de9497cfe9316\tcpip.sys
[2016.07.07 17:36:20 | 001,896,168 | ---- | M] (Microsoft Corporation) MD5=B2875D7ABB82867DC3AA03D991940201 -- C:\Windows\SysNative\drivers\tcpip.sys
[2016.07.07 17:36:20 | 001,896,168 | ---- | M] (Microsoft Corporation) MD5=B2875D7ABB82867DC3AA03D991940201 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.23496_none_117904649662b62b\tcpip.sys
[2011.11.23 21:26:57 | 001,927,552 | ---- | M] (Microsoft Corporation) MD5=B77977AEB2FF159D01DB08A309989C5F -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21712_none_11cbb5de9625357a\tcpip.sys
[2012.10.03 19:44:29 | 001,902,472 | ---- | M] (Microsoft Corporation) MD5=D5707FC2300AA5B04B7BFE86D40C0133 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.22124_none_11c2c45a962baed0\tcpip.sys
[2011.11.23 21:38:13 | 001,923,952 | ---- | M] (Microsoft Corporation) MD5=FC62769E7BFF2896035AEED399108162 -- C:\Windows\winsxs\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.17697_none_10f09b257d43f3eb\tcpip.sys
< MD5 for: USERINIT.EXE >
[2010.11.21 05:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\SysWOW64\userinit.exe
[2010.11.21 05:23:55 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe
[2010.11.21 05:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\SysNative\userinit.exe
[2010.11.21 05:24:28 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=BAFE84E637BF7388C96EF48D4D3FDD53 -- C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_3a4ebf84e84f824c\userinit.exe
< MD5 for: WINLOGON.EXE >
[2010.11.21 05:24:29 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe
[2014.11.21 07:12:42 | 000,761,656 | ---- | M] (MalwareBytes) MD5=625BB08813743947985B0DEEFC35ED12 -- C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\winlogon.exe
[2014.03.04 13:08:14 | 000,455,680 | ---- | M] (Microsoft Corporation) MD5=6CE2AE073BD21C542FC2C707CAE944CC -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.22616_none_ce748d1d04acf24f\winlogon.exe
[2014.03.04 11:43:50 | 000,455,168 | ---- | M] (Microsoft Corporation) MD5=88AB9B72B4BF3963A0DE0820B4B0B06C -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.18409_none_cdf8bf35eb848572\winlogon.exe
[2014.07.17 04:07:24 | 000,455,168 | ---- | M] (Microsoft Corporation) MD5=8CEBD9D0A0A879CDE9F36F4383B7CAEA -- C:\Windows\SysNative\winlogon.exe
[2014.07.17 04:07:24 | 000,455,168 | ---- | M] (Microsoft Corporation) MD5=8CEBD9D0A0A879CDE9F36F4383B7CAEA -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.18540_none_cdc47ed1ebad0e4e\winlogon.exe
[2014.07.16 05:23:23 | 000,455,680 | ---- | M] (Microsoft Corporation) MD5=98AA0BFEE089C7E5DADB94190D93456C -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.22750_none_ce434d9704d2c730\winlogon.exe
< >
< %systemroot%*.* /U /s >
[4 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[10 C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_64\Temp\*.tmp -> ]
[1 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[1 C:\Windows\SoftwareDistribution\Download\ebe5c5d7f730b7b5a7fc15c0024591d0\*.tmp files -> C:\Windows\SoftwareDistribution\Download\ebe5c5d7f730b7b5a7fc15c0024591d0\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2013.12.11 15:36:42 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\.mono
[2013.04.12 17:32:35 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Adobe
[2015.12.12 23:45:13 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Ahead
[2013.04.27 18:13:38 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Apple Computer
[2014.01.29 14:17:29 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Artogon
[2017.04.06 10:48:20 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\AVG
[2015.03.14 22:46:24 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\cpuminer
[2013.04.22 21:41:44 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\DAEMON Tools Lite
[2015.03.22 15:18:06 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\DominiGames
[2017.03.06 16:02:29 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\DVDVideoSoft
[2013.04.25 20:24:53 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\ERS Game Studios
[2013.04.10 14:16:00 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Identities
[2015.05.07 22:36:53 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\IrfanView
[2013.04.28 23:27:03 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\JaiboGames
[2013.10.31 10:35:26 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\KB-ext
[2013.04.11 22:22:43 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Macromedia
[2010.11.21 17:10:34 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Media Center Programs
[2014.01.27 00:36:25 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Melesta
[2015.03.22 14:54:53 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Meridian93
[2017.03.19 11:45:41 | 000,000,000 | --SD | M] -- C:\Users\admin\AppData\Roaming\Microsoft
[2013.05.01 21:09:45 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Mozilla
[2017.04.14 14:49:14 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Opera Software
[2017.04.09 07:45:37 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\PhotoScape
[2013.06.06 23:00:13 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Publisher
[2013.04.10 18:21:28 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Rovio
[2017.04.14 14:46:02 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Seznam Browser
[2017.01.29 09:38:38 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Seznam Browser-86e3636d-c40d-4ace-aaaf-eb445664b913
[2017.04.14 14:46:37 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Seznam.cz
[2017.04.14 14:44:57 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Skype
[2015.03.22 18:19:23 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\SMIGames
[2013.04.10 18:14:42 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Synaptics
[2013.04.10 18:36:14 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\TuneUp Software
[2013.08.29 10:29:33 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Unity
[2017.04.14 16:12:15 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\uTorrent
[2017.03.05 13:40:28 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\vlc
[2013.04.21 21:12:34 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\WinRAR
[2015.03.22 15:00:23 | 000,000,000 | ---D | M] -- C:\Users\admin\AppData\Roaming\Špidla Data Processing, s.r.o
< %APPDATA%\*.exe /s >
[2015.03.13 20:46:34 | 000,056,931 | ---- | M] (Open Source) -- C:\Users\admin\AppData\Roaming\cpuminer\cpuminer-uninst.exe
[2013.10.31 10:35:26 | 001,175,960 | ---- | M] () -- C:\Users\admin\AppData\Roaming\KB-ext\lib\unins000.exe
[2015.06.19 08:27:54 | 000,172,112 | ---- | M] () -- C:\Users\admin\AppData\Roaming\KB-ext\lib\x86\ProxyHostKBEXT.exe
[2017.03.17 07:56:04 | 001,489,920 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\extensions\adbhelper@mozilla.org\win32\adb.exe
[2017.03.17 07:56:04 | 000,806,912 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\extensions\adbhelper@mozilla.org\win32\fastboot.exe
[2017.01.27 08:13:52 | 000,459,383 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Mozilla\Firefox\Profiles\c1s7k0a9.default\extensions\fxdevtools-adapters@mozilla.org\tools\win32\ios-webkit-debug-proxy.exe
[2016.08.16 13:08:14 | 001,490,944 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Seznam Browser\ImportFavs.exe
[2016.08.16 13:08:14 | 000,057,024 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Seznam Browser\restart.exe
[2016.08.16 13:08:14 | 000,040,120 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Seznam Browser\restartBack.exe
[2016.10.19 12:54:52 | 001,054,912 | ---- | M] (Seznam.cz) -- C:\Users\admin\AppData\Roaming\Seznam Browser\Seznam.cz.exe
[2016.10.10 18:32:08 | 000,367,875 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Seznam Browser\uninstall.exe
[2016.08.16 13:08:14 | 000,167,936 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Seznam Browser\unzip.exe
[2016.10.19 12:52:24 | 000,379,064 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Seznam Browser\update.exe
[2016.12.14 16:39:58 | 001,490,944 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Seznam Browser-86e3636d-c40d-4ace-aaaf-eb445664b913\ImportFavs.exe
[2016.12.14 16:39:58 | 000,045,344 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Seznam Browser-86e3636d-c40d-4ace-aaaf-eb445664b913\restart.exe
[2016.12.19 14:10:44 | 001,054,904 | ---- | M] (Seznam.cz) -- C:\Users\admin\AppData\Roaming\Seznam Browser-86e3636d-c40d-4ace-aaaf-eb445664b913\Seznam.cz.exe
[2017.01.29 09:38:39 | 000,367,875 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Seznam Browser-86e3636d-c40d-4ace-aaaf-eb445664b913\uninstall.exe
[2016.12.14 16:39:58 | 000,167,936 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Seznam Browser-86e3636d-c40d-4ace-aaaf-eb445664b913\unzip.exe
[2016.12.14 16:40:00 | 002,225,664 | ---- | M] () -- C:\Users\admin\AppData\Roaming\Seznam Browser-86e3636d-c40d-4ace-aaaf-eb445664b913\update.exe
[2013.04.12 20:31:22 | 000,802,136 | ---- | M] (BitTorrent Inc.) -- C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe
[1 C:\Users\admin\AppData\Roaming\uTorrent\*.tmp files -> C:\Users\admin\AppData\Roaming\uTorrent\*.tmp -> ]
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2017.04.15 00:51:01 | 000,000,000 | ---- | M] () -- C:\Windows\system32\last.dump
[2017.04.15 14:30:00 | 000,000,018 | ---- | M] () -- C:\Windows\system32\log.txt
[2017.04.13 07:12:58 | 001,560,204 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
< >
< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >
[2017.03.28 22:42:34 | 000,517,064 | ---- | M] (Mozilla Corporation) MD5=327DEF696E8663C7FFC7037CEF8FA870 -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2017.03.27 19:28:47 | 000,815,312 | ---- | M] (Microsoft Corporation) MD5=C846AE3506AC61A3B38C8DFA3AA72B42 -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
< %PROGRAMFILES%\Opera\opera.exe /md5 >
< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >
[2017.03.29 04:03:55 | 000,941,912 | ---- | M] (Google Inc.) MD5=64F911CA43AF4099B679CD85759EAC04 -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
< >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2017.04.15 22:24:48 | 000,000,512 | ---- | M] () MD5=4AD4185222B6738A56D7449C0625A622 -- C:\PhysicalMBR.bin
< >
< *crack* /s >
< *keygen* /s >
[2013.05.01 21:30:39 | 000,015,145 | ---- | M] () -- \Users\admin\AppData\Roaming\uTorrent\Nero 7 Premium 7.8.5.0 CZ + keygen.rar.torrent
[1 \Users\admin\AppData\Roaming\uTorrent\*.tmp files -> \Users\admin\AppData\Roaming\uTorrent\*.tmp -> ]
< *loader* /s >
[2017.04.06 10:45:10 | 000,019,136 | ---- | M] () -- \Program Files (x86)\AVG\Antivirus\setup\CRT\data\avg.vc140.crt\amd64\api-ms-win-core-libraryloader-l1-1-0.dll
[2017.04.06 10:45:14 | 000,019,136 | ---- | M] () -- \Program Files (x86)\AVG\Antivirus\setup\CRT\data\avg.vc140.crt\x86\api-ms-win-core-libraryloader-l1-1-0.dll
[2007.03.12 14:48:46 | 000,177,712 | ---- | M] () -- \Program Files (x86)\Common Files\Ahead\Lib\NeGuideStoreLoader.dll
[2013.01.28 13:08:40 | 000,008,827 | ---- | M] () -- \Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit.resources\inspector\HeapSnapshotLoader.js
[2017.01.27 08:05:28 | 000,018,624 | ---- | M] () -- \Program Files (x86)\Mozilla Firefox\api-ms-win-core-libraryloader-l1-1-0.dll
[2008.02.25 08:05:22 | 000,856,064 | ---- | M] () -- \Program Files (x86)\The KMPlayer\ImLoader.dll
[2012.06.09 19:19:37 | 000,055,296 | ---- | M] () -- \Program Files\WinRAR\Formats\ace32loader.exe
[2012.12.04 17:00:50 | 000,072,638 | ---- | M] () -- \Source\Skype Portable 6.1.0.129\App\Skype\login\images\loader.gif
[2012.12.04 17:00:50 | 000,003,032 | ---- | M] () -- \Source\Skype Portable 6.1.0.129\App\Skype\login\images\loader.png
[2012.12.04 17:00:50 | 000,009,772 | ---- | M] () -- \Source\Skype Portable 6.1.0.129\App\Skype\login\images\retina\loader@2x.png
[2016.12.14 16:39:58 | 000,001,411 | ---- | M] () -- \Users\admin\AppData\Roaming\Seznam Browser-86e3636d-c40d-4ace-aaaf-eb445664b913\core\init\js\favicon\downloader.js
[2016.12.19 14:10:36 | 000,002,924 | ---- | M] () -- \Users\admin\AppData\Roaming\Seznam Browser-86e3636d-c40d-4ace-aaaf-eb445664b913\core\libs\bower_components\angular-translate-loader-static-files\angular-translate-loader-static-files.js
[2016.12.19 14:10:38 | 000,001,303 | ---- | M] () -- \Users\admin\AppData\Roaming\Seznam Browser-86e3636d-c40d-4ace-aaaf-eb445664b913\core\libs\bower_components\angular-translate-loader-static-files\angular-translate-loader-static-files.min.js
[2015.03.16 15:53:59 | 000,000,495 | ---- | M] () -- \Users\admin\AppData\Roaming\Unity\WebPlayerPrefs\cdn_2erocketeergames_2ecom\prefrc2_2e7-redcrucible_5floader_2eunity3d.upp
[2015.10.10 07:56:24 | 000,000,305 | ---- | M] () -- \Users\admin\AppData\Roaming\Unity\WebPlayerPrefs\charge_2dup_2ein\prefstatic-game-webplayer-gameloader-gameloader_2eunity3d.upp
[2015.04.14 17:17:17 | 000,000,563 | ---- | M] () -- \Users\admin\AppData\Roaming\Unity\WebPlayerPrefs\z6g7t5i5_2essl_2ehwcdn_2enet\prefrc2_2e7-redcrucible_5floader_2eunity3d.upp
[2015.10.06 13:56:18 | 000,000,708 | ---- | M] () -- \Users\admin\AppData\Roaming\Unity\WebPlayerPrefs\z6g7t5i5_2essl_2ehwcdn_2enet\prefrc3-redcrucible_5floader_2eunity3d.upp
[2017.02.14 18:28:11 | 000,003,069 | ---- | M] () -- \Users\admin\Downloads\opera autoupdate\CUsersadminAppDataLocalProgramsOperasuite\6808_21854\ready\notifications\assets\appboy_loader.js
[2017.03.23 12:02:18 | 000,003,147 | ---- | M] () -- \Users\admin\Downloads\opera autoupdate\CUsersadminAppDataLocalProgramsOperasuite\ready\notifications\assets\appboy_loader.js
[2017.03.08 07:45:04 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_da-dk_2f2bc561230cd088.manifest
[2017.03.08 07:47:28 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_de-de_2c575a9d24e32522.manifest
[2017.03.08 07:45:54 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_el-gr_d4ed883013f88db0.manifest
[2017.03.08 07:45:33 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_es-es_d5138d7a13e8228c.manifest
[2017.03.08 07:45:46 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_fi-fi_742e9227090214b6.manifest
[2017.03.08 07:45:18 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_fr-fr_77cb037906ba38ee.manifest
[2017.03.08 07:46:20 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_hu-hu_bf3b83c0eb1a080a.manifest
[2017.03.08 07:47:50 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_it-it_61f2f9bfddec1e6c.manifest
[2017.03.08 07:50:18 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_ja-jp_041878ccd1073047.manifest
[2017.03.08 07:47:13 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_ko-kr_a7825581c377f75d.manifest
[2017.03.08 07:44:48 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_nb-no_9014d6b69b9d2319.manifest
[2017.03.08 07:45:48 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_nl-nl_8e5421f49cc92cee.manifest
[2017.03.08 07:45:49 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_pl-pl_d4907c7681eb9aa2.manifest
[2017.03.08 07:48:06 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_pt-br_d6e4671a80752e86.manifest
[2017.03.08 07:45:41 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_pt-pt_d7c636867fe49e62.manifest
[2017.03.08 07:46:55 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_ru-ru_1e69484a64c62c8e.manifest
[2017.03.08 07:45:54 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_sv-se_ba6432bf5bef36e9.manifest
[2017.03.08 07:45:59 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_tr-tr_63717d064aab38da.manifest
[2017.03.08 07:49:52 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_zh-cn_34ce9b03fae30af9.manifest
[2017.03.08 07:44:50 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_zh-hk_33799391fbbe7d89.manifest
[2017.03.08 07:48:07 | 000,004,431 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_zh-tw_38cad859f853e769.manifest
[2017.03.08 07:45:39 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_cs-cz_9fe4bc2667e389e5.manifest
[2017.03.08 07:45:04 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_da-dk_3d1e9c4d5e2985e4.manifest
[2017.03.08 07:47:19 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_de-de_3a4a31895fffda7e.manifest
[2017.03.08 07:45:54 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_el-gr_e2e05f1c4f15430c.manifest
[2017.03.08 06:38:53 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_en-us_e33b07824edde643.manifest
[2017.03.08 07:45:25 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_es-es_e30664664f04d7e8.manifest
[2017.03.08 07:45:46 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_fi-fi_82216913441eca12.manifest
[2017.03.08 07:45:09 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_fr-fr_85bdda6541d6ee4a.manifest
[2017.03.08 07:46:12 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_hu-hu_cd2e5aad2636bd66.manifest
[2017.03.08 07:47:42 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_it-it_6fe5d0ac1908d3c8.manifest
[2017.03.08 07:50:10 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_ja-jp_120b4fb90c23e5a3.manifest
[2017.03.08 07:47:05 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_ko-kr_b5752c6dfe94acb9.manifest
[2017.03.08 07:44:48 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_nb-no_9e07ada2d6b9d875.manifest
[2017.03.08 07:45:36 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_nl-nl_9c46f8e0d7e5e24a.manifest
[2017.03.08 07:45:39 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_pl-pl_e2835362bd084ffe.manifest
[2017.03.08 07:47:59 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_pt-br_e4d73e06bb91e3e2.manifest
[2017.03.08 07:45:33 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_pt-pt_e5b90d72bb0153be.manifest
[2017.03.08 07:46:47 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_ru-ru_2c5c1f369fe2e1ea.manifest
[2017.03.08 07:45:44 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_sv-se_c85709ab970bec45.manifest
[2017.03.08 07:45:50 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_tr-tr_716453f285c7ee36.manifest
[2017.03.08 07:49:45 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_zh-cn_42c171f035ffc055.manifest
[2017.03.08 07:44:49 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_zh-hk_416c6a7e36db32e5.manifest
[2017.03.08 07:47:59 | 000,004,434 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_zh-tw_46bdaf4633709cc5.manifest
[2017.03.08 06:51:30 | 000,005,793 | ---- | M] () -- \Windows\SoftwareDistribution\Download\92eb18d6b53d87e3b1b07e8ff6112bb2\amd64_microsoft-windows-e..vironment-os-loader_31bf3856ad364e35_6.1.7601.23714_none_9e9e05729a5497e8.manifest
[2017.03.08 06:21:54 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2017.03.08 06:21:54 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2016.11.29 07:13:34 | 000,019,136 | ---- | M] () -- \Windows\winsxs\amd64_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_69fa0197d9b096ae\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:40:31 | 000,047,616 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_a1e90d98a953d601\dmloader.dll
[2009.07.14 03:24:53 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_66a6e19d9580f9e3\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.11.23 21:35:54 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_68a9b6bd92929e63\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.07.16 05:06:42 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_68c05c919281774d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 19:38:48 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_68a2edab92971725\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.07.16 05:14:19 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_68d8d569926ebeb2\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 04:12:19 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_68d20a7192733a4d\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.05.25 20:11:40 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18869_none_68a6d625929398fb\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.15 05:06:41 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18923_none_68cc15ff92788e54\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.15 20:00:47 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18933_none_68c146139280aa45\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.23 01:52:00 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18939_none_68c747cf927b424f\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.01.22 08:12:24 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.19135_none_68c320af927f0d5c\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.11.23 21:35:54 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_691eb3faabbf8f66\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.11.23 21:31:30 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21831_none_6948f546aba00372\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.07.16 05:06:34 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_6907efc6abd0db81\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 19:35:00 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_6957a248ab947a6d\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 07:39:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_69239340abbb38d0\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.07.16 05:14:10 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22436_none_694dd858ab9ba72a\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.04.12 04:28:21 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22653_none_69353b6eabae8d55\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.05.25 20:14:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23072_none_691e7920abbfd697\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.15 05:11:33 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23126_none_69588bcaab93ad65\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.15 20:05:03 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23136_none_694dbbdeab9bc956\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.22 23:52:11 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23142_none_693eeacaaba77feb\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.01.22 08:17:41 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23338_none_694fc03eab99f652\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.03.16 20:44:07 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23391_none_6907deb0abd0ec97\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.03.18 00:50:10 | 000,003,584 | ---- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23392_none_6908defaabd005ee\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.04.09 08:57:48 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23418_none_696561fcab89bb97\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.09.02 17:30:45 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23539_none_6950c454ab9909f7\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.09.09 20:20:38 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23543_none_693ff2acaba68dde\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.10.11 17:31:50 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23572_none_691e829eabbfc85a\api-ms-win-core-libraryloader-l1-1-0.dll
[2017.02.09 18:31:48 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23677_none_692385f6abbb4434\api-ms-win-core-libraryloader-l1-1-0.dll
[2017.03.08 06:33:02 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23714_none_69616686ab8d4db0\api-ms-win-core-libraryloader-l1-1-0.dll
[2017.04.13 07:26:27 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_cs-cz_91f1e53a2cc6d489.manifest
[2017.04.13 07:26:27 | 000,033,000 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_cs-cz_91f1e53a2cc6d489_winload.efi.mui_35ee487d
[2017.04.13 07:26:27 | 000,034,536 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_cs-cz_91f1e53a2cc6d489_winload.exe.mui_3bc5b827
[2017.04.13 07:26:27 | 000,029,928 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_cs-cz_91f1e53a2cc6d489_winresume.efi.mui_f412814e
[2017.04.13 07:26:27 | 000,030,440 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_cs-cz_91f1e53a2cc6d489_winresume.exe.mui_ff8b5358
[2017.04.13 07:27:02 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_en-us_d548309613c130e7.manifest
[2017.04.13 07:27:02 | 000,033,000 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_en-us_d548309613c130e7_winload.efi.mui_35ee487d
[2017.04.13 07:27:02 | 000,033,000 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_en-us_d548309613c130e7_winload.exe.mui_3bc5b827
[2017.04.13 07:27:02 | 000,029,928 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_en-us_d548309613c130e7_winresume.efi.mui_f412814e
[2017.04.13 07:27:02 | 000,029,928 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_en-us_d548309613c130e7_winresume.exe.mui_ff8b5358
[2017.04.13 07:26:54 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23714_none_b9d630c29c643abc.manifest
[2017.04.13 07:26:55 | 000,706,792 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23714_none_b9d630c29c643abc_winload.efi_75834aa0
[2017.04.13 07:26:55 | 000,633,296 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23714_none_b9d630c29c643abc_winload.exe_75835076
[2017.04.13 07:26:56 | 000,631,176 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23714_none_b9d630c29c643abc_winresume.efi_85cd069f
[2017.04.13 07:26:57 | 000,546,656 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23714_none_b9d630c29c643abc_winresume.exe_85cd1215
[2009.07.14 04:57:50 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2009.07.14 04:57:50 | 000,019,008 | ---- | M] () -- \Windows\winsxs\Backup\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59_spldr.sys_98bd87a0
[2017.03.06 00:18:59 | 000,000,616 | ---- | M] () -- \Windows\winsxs\FileMaps\programdata_microsoft_diagnosis_asimovuploader_0413bca0c3dfdda4.cdf-ms
[2011.11.24 00:26:05 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_cs-cz_8f37605116ba80bc.manifest
[2010.11.21 16:59:29 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_d28dabacfdb4dd1a.manifest
[2015.02.03 06:49:45 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18741_cs-cz_9144f07b13c42013.manifest
[2015.02.03 05:35:06 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.18741_en-us_d49b3bd6fabe7c71.manifest
[2015.01.13 00:17:25 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_cs-cz_91e42f042cd18522.manifest
[2015.01.13 00:17:17 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22921_en-us_d53a7a6013cbe180.manifest
[2015.01.16 08:36:46 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_cs-cz_91e62f982ccfb7d0.manifest
[2015.01.16 08:36:33 | 000,004,141 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22923_en-us_d53c7af413ca142e.manifest
[2015.02.03 07:30:16 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22948_cs-cz_91d591322cdb6e65.manifest
[2015.02.03 05:54:55 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.22948_en-us_d52bdc8e13d5cac3.manifest
[2015.05.25 22:04:06 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_cs-cz_91aef7d42cf95d70.manifest
[2015.05.25 20:25:12 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23072_en-us_d505433013f3b9ce.manifest
[2015.07.15 07:49:58 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23126_cs-cz_91e90a7e2ccd343e.manifest
[2015.07.15 05:32:59 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23126_en-us_d53f55da13c7909c.manifest
[2015.07.15 22:47:39 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23136_cs-cz_91de3a922cd5502f.manifest
[2015.07.15 20:15:00 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23136_en-us_d53485ee13cfac8d.manifest
[2015.07.23 05:58:18 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23142_cs-cz_91cf697e2ce106c4.manifest
[2015.07.23 00:05:32 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23142_en-us_d525b4da13db6322.manifest
[2016.01.22 10:02:23 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23338_cs-cz_91e03ef22cd37d2b.manifest
[2016.01.22 08:29:17 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23338_en-us_d5368a4e13cdd989.manifest
[2016.03.16 23:01:39 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23391_cs-cz_91985d642d0a7370.manifest
[2016.03.16 20:55:51 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23391_en-us_d4eea8c01404cfce.manifest
[2016.03.18 02:10:31 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23392_cs-cz_91995dae2d098cc7.manifest
[2016.03.18 01:00:47 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23392_en-us_d4efa90a1403e925.manifest
[2016.04.09 10:12:19 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23418_cs-cz_91f5e0b02cc34270.manifest
[2016.04.09 09:03:48 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23418_en-us_d54c2c0c13bd9ece.manifest
[2016.09.02 18:34:19 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23539_cs-cz_91e143082cd290d0.manifest
[2016.09.02 17:37:24 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23539_en-us_d5378e6413cced2e.manifest
[2016.09.09 21:12:09 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23543_cs-cz_91d071602ce014b7.manifest
[2016.09.09 20:26:41 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23543_en-us_d526bcbc13da7115.manifest
[2016.10.11 18:46:07 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23572_cs-cz_91af01522cf94f33.manifest
[2016.10.11 17:38:00 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23572_en-us_d5054cae13f3ab91.manifest
[2017.02.09 19:37:14 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23677_cs-cz_91b404aa2cf4cb0d.manifest
[2017.02.09 18:38:10 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23677_en-us_d50a500613ef276b.manifest
[2017.03.08 07:45:49 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_cs-cz_91f1e53a2cc6d489.manifest
[2017.03.08 06:39:05 | 000,004,431 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.23714_en-us_d548309613c130e7.manifest
[2010.11.21 05:16:35 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17514_none_b94cbfa183466a89.manifest
[2011.11.23 21:27:30 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.17556_none_b923808583650cfb.manifest
[2015.02.03 05:51:30 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.18741_none_b9293c0383618646.manifest
[2011.11.23 21:27:30 | 000,005,745 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21655_none_b9ac1d069c83936e.manifest
[2015.01.12 05:50:53 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22921_none_b9c87a8c9c6eeb55.manifest
[2015.01.16 08:37:02 | 000,005,511 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22923_none_b9ca7b209c6d1e03.manifest
[2015.02.03 06:17:47 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.22948_none_b9b9dcba9c78d498.manifest
[2015.05.25 20:45:47 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23072_none_b993435c9c96c3a3.manifest
[2015.07.15 05:48:43 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23126_none_b9cd56069c6a9a71.manifest
[2015.07.15 20:39:45 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23136_none_b9c2861a9c72b662.manifest
[2015.07.23 03:47:39 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23142_none_b9b3b5069c7e6cf7.manifest
[2016.01.22 08:51:12 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23338_none_b9c48a7a9c70e35e.manifest
[2016.03.16 21:24:30 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23391_none_b97ca8ec9ca7d9a3.manifest
[2016.03.18 01:29:22 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23392_none_b97da9369ca6f2fa.manifest
[2016.04.09 09:28:05 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23418_none_b9da2c389c60a8a3.manifest
[2016.09.02 17:55:50 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23539_none_b9c58e909c6ff703.manifest
[2016.09.09 20:48:58 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23543_none_b9b4bce89c7d7aea.manifest
[2016.10.11 17:56:19 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23572_none_b9934cda9c96b566.manifest
[2017.02.09 18:50:40 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23677_none_b99850329c923140.manifest
[2017.03.08 06:51:25 | 000,005,744 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.23714_none_b9d630c29c643abc.manifest
[2009.07.14 04:18:27 | 000,002,896 | ---- | M] () -- \Windows\winsxs\Manifests\amd64_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_c72819e06acceb59.manifest
[2016.11.29 07:13:46 | 000,019,136 | ---- | M] () -- \Windows\winsxs\x86_avg.vc140.crt_f92d94485545da78_14.0.24210.0_none_b1a7386eee2cbfb4\api-ms-win-core-libraryloader-l1-1-0.dll
[2009.07.14 03:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll
[2009.07.14 03:03:49 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7600.16385_none_0a884619dd2388ad\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.11.23 21:35:54 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17651_none_0c8b1b39da352d2d\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.07.16 05:06:46 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17932_none_0ca1c10dda240617\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:40:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.17965_none_0c845227da39a5ef\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.07.16 05:14:24 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18015_none_0cba39e5da114d7c\api-ms-win-core-libraryloader-l1-1-0.dll
[2013.08.02 03:48:15 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18229_none_0cb36eedda15c917\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.05.25 19:55:18 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18869_none_0c883aa1da3627c5\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.15 04:47:54 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18923_none_0cad7a7bda1b1d1e\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.15 19:44:18 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18933_none_0ca2aa8fda23390f\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.22 19:42:39 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.18939_none_0ca8ac4bda1dd119\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.01.22 07:59:07 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.19135_none_0ca4852bda219c26\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.11.23 21:35:54 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21772_none_0d001876f3621e30\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.11.23 21:31:30 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.21831_none_0d2a59c2f342923c\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.07.16 05:06:38 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22091_none_0ce95442f3736a4b\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.10.04 18:29:45 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22125_none_0d3906c4f3370937\api-ms-win-core-libraryloader-l1-1-0.dll
[2012.11.30 06:46:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22177_none_0d04f7bcf35dc79a\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.07.16 05:14:15 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22436_none_0d2f3cd4f33e35f4\api-ms-win-core-libraryloader-l1-1-0.dll
[2014.04.12 04:03:37 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.22653_none_0d169feaf3511c1f\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.05.25 20:00:35 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23072_none_0cffdd9cf3626561\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.15 04:51:41 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23126_none_0d39f046f3363c2f\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.15 19:40:57 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23136_none_0d2f205af33e5820\api-ms-win-core-libraryloader-l1-1-0.dll
[2015.07.23 01:54:11 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23142_none_0d204f46f34a0eb5\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.01.22 07:58:11 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23338_none_0d3124baf33c851c\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.03.16 20:23:40 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23391_none_0ce9432cf3737b61\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.03.18 00:24:26 | 000,003,584 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23392_none_0cea4376f37294b8\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.04.09 08:54:42 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23418_none_0d46c678f32c4a61\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.09.02 17:16:23 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23539_none_0d3228d0f33b98c1\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.09.09 19:59:46 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23543_none_0d215728f3491ca8\api-ms-win-core-libraryloader-l1-1-0.dll
[2016.10.11 17:18:03 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23572_none_0cffe71af3625724\api-ms-win-core-libraryloader-l1-1-0.dll
[2017.02.09 18:14:24 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23677_none_0d04ea72f35dd2fe\api-ms-win-core-libraryloader-l1-1-0.dll
[2017.03.08 06:21:54 | 000,003,584 | -H-- | M] () -- \Windows\winsxs\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.1.7601.23714_none_0d42cb02f32fdc7a\api-ms-win-core-libraryloader-l1-1-0.dll
========== Alternate Data Streams ==========
@Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:373E1720
< End of report >
Re: Prosim o čístku
Log se zobrazil jen jeden.
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosim o čístku
Někde by tam měl být txt soubor s tím druhým logem.
Spusťte znovu OTL jako správce.
Do spodniho okna vlozte nasledujici text:
Po restartu se objevi novy log, ten sem dejte.
Spusťte znovu OTL jako správce.
Do spodniho okna vlozte nasledujici text:
Kliknete na Opravit a nechte program pracovat. Pri otazce na restart souhlaste.:OTL
@Alternate Data Stream - 144 bytes -> C:\ProgramData\TEMP:373E1720
IE - HKU\S-1-5-21-61953878-1118191327-652955997-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg.com/?cid={1277F63D ... 2017-01-20 16:13:34&v=4.3.6.255&pid=wtu&sg=&sap=hp
IE - HKU\S-1-5-21-61953878-1118191327-652955997-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IESR02
IE - HKU\S-1-5-21-61953878-1118191327-652955997-1000\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = https://mysearch.avg.com/search?cid={12 ... 2017-01-20 16:13:34&v=4.3.7.452&pid=wtu&sg=&sap=dsp&q={searchTerms}
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig\1.4.2_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd\1.4.6_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\5.0.532.0_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\9.0.0.7200_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkndcbhcgphcfkkddanakjiepeknbgle\1.3.337.4_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.2_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak\1.8.7_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\5717.116.0.4_0\
CHR - Extension: No name found = C:\Users\admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkejgpgaflkeonkliblcplomemekogop\2.47_0\
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
:files
C:\Users\admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
:commands
[EMPTYTEMP]
[EMPTYFLASH]
[RESETHOSTS]
[Purity]
[CreateRestorePoint]
Po restartu se objevi novy log, ten sem dejte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosim o čístku
Opravu jsme provedli . Po restartu se pc nechce pripojit k internetu. Píšu z mobilu.
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosim o čístku
Co se stane, když kliknete pravým myšítkem na ikonu sítě (vpravo dole na tray) a pak na odstranit potíže. Nic ze síťových nastavení nebylo mazáno.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosim o čístku
Napíše to : systému windows se nepodarilo automaticky zjistit nastaveni proxy serveru sítě..
Re: Prosim o čístku
Tak, začala na mě vyskakovat nějaká hláška o ukončení činnosti wondowsu nebo nějakeho prgramu windows, pak další okýnko skakalo že něco ve windows přestalo pracovat.
Dala jsem obnovit system z bodu obnovení před to čištění s otl a už mi zas vše běží.
Jo a po té opravě hrozně dlouho najížděl windows po restartu, objevilo se vítejte a pak dloouho černá obrazovkanež to najelo.
Něco tomu uškodilo. Po boduobnovení vše jede , i internet, akorát pomalu (pc).
Dala jsem obnovit system z bodu obnovení před to čištění s otl a už mi zas vše běží.
Jo a po té opravě hrozně dlouho najížděl windows po restartu, objevilo se vítejte a pak dloouho černá obrazovkanež to najelo.
Něco tomu uškodilo. Po boduobnovení vše jede , i internet, akorát pomalu (pc).
Re: Prosim o čístku
přikládám log který se zobrazil po opravě.
- Přílohy
-
- 04162017_122741.rar
- (3.15 KiB) Staženo 59 x
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosim o čístku
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?
