OTL logfile created on: 27/05/2014 11:07:43 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\pabuk_000\Desktop
64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17031)
Locale: 00000809 | Country: Spojené království | Language: ENG | Date Format: dd/MM/yyyy
3.86 Gb Total Physical Memory | 2.06 Gb Available Physical Memory | 53.29% Memory free
5.99 Gb Paging File | 4.10 Gb Available in Paging File | 68.40% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 78.63 Gb Total Space | 53.19 Gb Free Space | 67.65% Space Free | Partition Type: NTFS
Drive D: | 596.49 Gb Total Space | 78.49 Gb Free Space | 13.16% Space Free | Partition Type: NTFS
Drive F: | 350.00 Mb Total Space | 292.49 Mb Free Space | 83.57% Space Free | Partition Type: NTFS
Drive G: | 256.04 Gb Total Space | 137.37 Gb Free Space | 53.65% Space Free | Partition Type: NTFS
Computer Name: LENOVO-Z500 | User Name: pabuk_000 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2014/05/27 11:05:57 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\pabuk_000\Desktop\OTL.exe
PRC - [2014/03/10 04:25:05 | 000,252,216 | ---- | M] (Maxthon International ltd.) -- D:\Programky\Maxthon\Bin\Maxthon.exe
PRC - [2013/11/20 15:43:26 | 000,059,720 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
PRC - [2013/11/20 15:43:14 | 000,059,720 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
PRC - [2013/11/15 12:01:12 | 001,326,408 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
PRC - [2013/11/01 09:22:46 | 000,059,720 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
PRC - [2013/09/12 12:06:22 | 001,337,752 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
PRC - [2013/08/26 14:18:50 | 001,157,496 | ---- | M] (Motorola Solutions, Inc.) -- D:\Programky\B\obexsrv.exe
PRC - [2013/08/26 14:18:28 | 001,137,016 | ---- | M] (Motorola Solutions, Inc.) -- D:\Programky\B\devmonsrv.exe
PRC - [2013/08/08 13:24:26 | 000,390,616 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
PRC - [2013/08/08 13:23:34 | 000,169,432 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
PRC - [2013/07/27 16:36:28 | 001,889,568 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2012/04/24 14:37:56 | 000,169,752 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
========== Modules (No Company Name) ==========
MOD - [2014/02/14 05:37:57 | 016,287,624 | ---- | M] () -- D:\Programky\Maxthon\Core\Webkit\Npplugins\NPSWF32_12_0_0_44.dll
MOD - [2014/02/14 05:37:51 | 000,247,096 | ---- | M] () -- D:\Programky\Maxthon\Addons\Mobile\MxMobile.dll
MOD - [2013/11/26 05:50:47 | 002,128,152 | ---- | M] () -- D:\Programky\Maxthon\Core\Webkit\ffmpegsumo.dll
MOD - [2013/11/26 05:50:47 | 000,887,064 | ---- | M] () -- D:\Programky\Maxthon\Core\Webkit\libGLESv2.dll
MOD - [2013/11/26 05:50:47 | 000,109,336 | ---- | M] () -- D:\Programky\Maxthon\Core\Webkit\libEGL.dll
MOD - [2013/09/14 01:51:02 | 000,087,952 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
MOD - [2013/09/14 01:50:36 | 001,242,952 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
MOD - [2012/12/04 07:35:56 | 000,258,944 | ---- | M] () -- D:\Programky\Maxthon\Bin\Maxzlib.dll
========== Services (SafeList) ==========
SRV:64bit: - [2014/04/06 12:20:36 | 000,201,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2014/04/03 03:51:48 | 001,584,128 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:64bit: - [2014/03/24 03:31:14 | 000,347,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:64bit: - [2014/03/24 03:31:14 | 000,023,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2014/03/14 07:26:25 | 000,491,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:64bit: - [2014/03/08 06:41:25 | 001,306,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:64bit: - [2014/03/06 08:02:13 | 000,834,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2014/02/22 16:53:10 | 003,394,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2014/02/22 10:57:16 | 000,710,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2014/02/22 10:26:58 | 000,366,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2014/02/22 10:25:39 | 000,399,872 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2014/02/22 10:25:14 | 000,269,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2014/02/22 10:23:58 | 001,576,960 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2013/12/10 08:35:18 | 000,530,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:64bit: - [2013/11/23 05:50:00 | 000,282,112 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2013/10/19 06:37:49 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2013/09/30 05:00:48 | 000,183,296 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2013/09/30 05:00:47 | 000,090,464 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\KeyboardFilterSvc.dll -- (MsKeyboardFilter)
SRV:64bit: - [2013/09/12 12:06:22 | 001,337,752 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe -- (ekrn)
SRV:64bit: - [2013/08/22 13:31:56 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2013/08/22 12:32:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:64bit: - [2013/08/22 12:31:43 | 000,040,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2013/08/22 12:22:45 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2013/08/22 12:21:15 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2013/08/22 12:16:57 | 000,118,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2013/08/22 12:03:41 | 000,052,736 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\SysNative\rundll32.exe -- (3e9deaca)
SRV:64bit: - [2013/08/22 11:25:28 | 000,164,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2013/08/22 11:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:64bit: - [2013/08/22 11:02:47 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:64bit: - [2013/08/22 10:57:25 | 000,130,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:64bit: - [2013/08/22 10:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2013/08/22 10:50:59 | 000,245,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2013/08/22 10:50:00 | 000,525,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2013/08/22 10:45:59 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:64bit: - [2013/08/22 10:40:49 | 000,248,832 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2013/08/22 10:31:03 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2013/08/22 10:15:54 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:64bit: - [2013/05/11 17:45:54 | 000,822,232 | ---- | M] (Intel(R) Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel(R)
SRV:64bit: - [2013/05/11 17:45:38 | 000,733,696 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel(R)
SRV - [2014/04/22 10:25:14 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014/03/14 07:10:16 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2014/03/02 21:58:08 | 000,977,088 | ---- | M] () [Auto | Stopped] -- D:\Programky\KMSpico\Service_KMS.exe -- (Service KMSELDI)
SRV - [2013/09/18 22:38:44 | 000,157,128 | ---- | M] (Intel Corporation) [Auto | Running] -- D:\Programky\B\ibtrksrv.exe -- (Intel(R)
SRV - [2013/08/26 14:18:50 | 001,157,496 | ---- | M] (Motorola Solutions, Inc.) [Auto | Running] -- D:\Programky\B\obexsrv.exe -- (Bluetooth OBEX Service)
SRV - [2013/08/26 14:18:28 | 001,137,016 | ---- | M] (Motorola Solutions, Inc.) [Auto | Running] -- D:\Programky\B\devmonsrv.exe -- (Bluetooth Device Monitor)
SRV - [2013/08/23 05:07:20 | 000,279,000 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2013/08/22 13:31:56 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2013/08/22 04:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2013/08/22 03:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)
SRV - [2013/08/08 13:24:26 | 000,390,616 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2013/08/08 13:23:34 | 000,169,432 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe -- (jhi_service)
SRV - [2013/07/27 16:36:28 | 001,889,568 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012/04/24 14:37:56 | 000,169,752 | ---- | M] (Intel Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe -- (ICCS)
========== Driver Services (SafeList) ==========
DRV:64bit: - [2014/05/18 07:32:37 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2014/05/16 14:40:52 | 000,035,600 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AcpiVpc.sys -- (ACPIVPC)
DRV:64bit: - [2014/05/16 14:40:49 | 000,039,008 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\LhdX64.sys -- (LHDmgr)
DRV:64bit: - [2014/04/01 07:23:41 | 000,384,856 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2014/03/24 03:30:57 | 000,257,880 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2014/03/24 03:30:57 | 000,123,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:64bit: - [2014/03/24 03:27:03 | 000,035,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2014/03/20 04:41:20 | 000,376,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2014/03/13 13:35:24 | 000,157,016 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\WINDOWS\SysNative\drivers\wof.sys -- (Wof)
DRV:64bit: - [2014/03/08 21:40:16 | 000,136,024 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2014/03/08 21:35:45 | 000,467,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2014/02/22 17:00:25 | 000,236,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2014/02/22 16:50:31 | 000,054,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2014/02/22 16:49:51 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2014/02/22 16:49:49 | 000,189,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2014/02/22 16:49:49 | 000,079,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2014/02/22 16:49:47 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2014/02/22 16:44:13 | 000,924,504 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refs.sys -- (ReFS)
DRV:64bit: - [2014/02/22 13:14:02 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2013/12/27 00:30:20 | 000,038,296 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:64bit: - [2013/12/26 19:42:48 | 000,032,544 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:64bit: - [2013/11/11 03:48:41 | 000,039,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:64bit: - [2013/11/01 12:39:53 | 000,086,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:64bit: - [2013/10/26 02:54:32 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:64bit: - [2013/10/15 11:42:24 | 001,390,904 | ---- | M] (Motorola Solutions, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btmhsf.sys -- (btmhsf)
DRV:64bit: - [2013/10/15 11:42:10 | 000,069,088 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iBtFltCoex.sys -- (iBtFltCoex)
DRV:64bit: - [2013/10/08 23:12:46 | 003,345,376 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NETwew00.sys -- (NETwNe64)
DRV:64bit: - [2013/10/05 16:25:54 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:64bit: - [2013/09/30 05:18:19 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2013/09/30 05:00:50 | 000,022,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\kbldfltr.sys -- (kbldfltr)
DRV:64bit: - [2013/09/30 05:00:48 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2013/09/30 05:00:37 | 000,129,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmbusr.sys -- (vmbusr)
DRV:64bit: - [2013/09/30 05:00:37 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2013/09/30 05:00:36 | 000,220,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Vid.sys -- (Vid)
DRV:64bit: - [2013/09/30 05:00:36 | 000,068,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\storvsp.sys -- (storvsp)
DRV:64bit: - [2013/09/30 05:00:36 | 000,065,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpcivsp.sys -- (vpcivsp)
DRV:64bit: - [2013/09/17 15:17:38 | 000,239,320 | ---- | M] (ESET) [File_System | System | Running] -- C:\Windows\SysNative\drivers\eamonm.sys -- (eamonm)
DRV:64bit: - [2013/09/17 15:17:38 | 000,239,296 | ---- | M] (ESET) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\edevmon.sys -- (edevmon)
DRV:64bit: - [2013/09/17 15:17:38 | 000,168,256 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ehdrv.sys -- (ehdrv)
DRV:64bit: - [2013/09/17 15:17:38 | 000,157,432 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV:64bit: - [2013/08/23 05:07:18 | 004,165,120 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2013/08/22 14:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:64bit: - [2013/08/22 14:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2013/08/22 13:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:64bit: - [2013/08/22 13:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2013/08/22 13:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:64bit: - [2013/08/22 13:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2013/08/22 13:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2013/08/22 13:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2013/08/22 13:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2013/08/22 13:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2013/08/22 13:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2013/08/22 13:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:64bit: - [2013/08/22 13:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:64bit: - [2013/08/22 13:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2013/08/22 13:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2013/08/22 13:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:64bit: - [2013/08/22 13:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2013/08/22 13:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2013/08/22 13:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2013/08/22 13:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2013/08/22 13:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2013/08/22 13:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2013/08/22 13:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2013/08/22 13:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:64bit: - [2013/08/22 13:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2013/08/22 13:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2013/08/22 13:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:64bit: - [2013/08/22 13:37:27 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:64bit: - [2013/08/22 13:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2013/08/22 12:39:54 | 000,076,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:64bit: - [2013/08/22 12:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2013/08/22 12:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2013/08/22 12:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2013/08/22 12:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2013/08/22 12:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2013/08/22 12:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2013/08/22 12:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2013/08/22 12:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2013/08/22 12:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2013/08/22 12:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2013/08/22 12:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2013/08/22 12:37:46 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2013/08/22 12:37:42 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2013/08/22 12:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2013/08/22 12:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2013/08/22 12:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2013/08/22 12:36:43 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:64bit: - [2013/08/22 12:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:64bit: - [2013/08/22 12:36:17 | 000,124,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2013/08/22 12:36:07 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2013/08/22 12:35:42 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2013/08/22 09:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2013/08/20 07:25:00 | 000,449,528 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2013/08/14 17:10:30 | 000,034,544 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Smb_driver_Intel.sys -- (SmbDrvI)
DRV:64bit: - [2013/08/13 00:25:46 | 000,017,624 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:64bit: - [2013/08/10 01:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:64bit: - [2013/08/08 22:25:13 | 000,026,008 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus)
DRV:64bit: - [2013/08/08 13:23:34 | 000,099,288 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverx64.sys -- (MEIx64)
DRV:64bit: - [2013/07/30 19:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:64bit: - [2013/07/25 20:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:64bit: - [2013/07/09 14:35:38 | 000,329,944 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUVStor.sys -- (RSUSBVSTOR)
DRV:64bit: - [2013/06/18 15:46:17 | 000,591,360 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt630x64.sys -- (RTL8168)
DRV:64bit: - [2013/03/18 16:51:08 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012/09/01 18:01:56 | 000,647,736 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:64bit: - [2012/08/27 08:48:34 | 008,227,216 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rtsuvc.sys -- (rtsuvc)
DRV:64bit: - [2012/08/21 13:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/06/13 17:10:32 | 000,102,376 | ---- | M] ("CyberLink) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wsvd.sys -- (wsvd)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://t.uk.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-GB
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 36 31 C3 09 1A 72 CF 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE11SR
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:29.0
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: D:\Programky\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKCU\Software\MozillaPlugins\@lightspark.github.com/Lightspark;version=1: C:\Program Files (x86)\Lightspark 0.5.3-git\nplightsparkplugin.dll File not found
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 29.0\extensions\\Components: D:\Programky\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 29.0\extensions\\Plugins: D:\Programky\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2014/05/23 12:40:55 | 000,000,000 | ---D | M]
[2014/05/25 10:37:11 | 000,000,000 | ---D | M] (No name found) -- C:\Users\pabuk_000\AppData\Roaming\Mozilla\Extensions
[2014/05/26 09:31:38 | 000,000,000 | ---D | M] (No name found) -- C:\Users\pabuk_000\AppData\Roaming\Mozilla\Firefox\Profiles\dv3ave8e.default\extensions
O1 HOSTS File: ([2014/05/27 00:01:18 | 000,000,741 | R--- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [BTMTrayAgent] D:\Programky\B\btmshellex.dll (Motorola Solutions, Inc.)
O4:64bit: - HKLM..\Run: [Dolby Tuning and Profile Creator] C:\Program Files\Dolby Tuning and Profile Creator\pcee4.exe (Dolby Laboratories Inc.)
O4:64bit: - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4:64bit: - HKLM..\Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited)
O4:64bit: - HKLM..\Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\utility.exe (Lenovo(beijing) Limited)
O4:64bit: - HKLM..\Run: [Persistence] C:\WINDOWS\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVBg_Dolby] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKCU..\Run: [AppleIEDAV] C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe (Apple Inc.)
O4 - HKCU..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Apple Inc.)
O4 - HKCU..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
O4 - HKCU..\Run: [uTorrent] C:\Users\pabuk_000\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{554AB602-61EB-4260-94A6-B48E1F4240F7}: DhcpNameServer = 192.168.0.1
O20:64bit: - AppInit_DLLs: (C:\WINDOWS\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20 - AppInit_DLLs: (c:\windows\syswow64\nvinit.dll) - c:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\WINDOWS\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2014/05/24 09:29:08 | 000,000,150 | ---- | M] () - C:\autoupdate.log -- [ NTFS ]
O33 - MountPoints2\{d16040a3-de0a-11e3-8258-2089849ae681}\Shell - "" = AutoRun
O33 - MountPoints2\{d16040a3-de0a-11e3-8258-2089849ae681}\Shell\AutoRun\command - "" = "K:\.autorun\autorun.exe"
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs:64bit: lfsvc - C:\Windows\SysNative\GeofenceMonitorService.dll (Microsoft Corporation)
NetSvcs:64bit: wlidsvc - C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation)
NetSvcs:64bit: DsmSvc - C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation)
NetSvcs:64bit: NcaSvc - C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation)
NetSvcs:64bit: AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
NetSvcs:64bit: MsKeyboardFilter - C:\Windows\SysNative\KeyboardFilterSvc.dll (Microsoft Corporation)
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\WINDOWS\SysWow64\iccvid.dll (Radius Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 30 Days ==========
[2014/05/27 11:05:57 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\pabuk_000\Desktop\OTL.exe
[2014/05/27 10:26:17 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2014/05/26 16:54:20 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\Desktop\RK_Quarantine
[2014/05/26 15:39:04 | 000,536,576 | ---- | C] (SQLite Development Team) -- C:\WINDOWS\SysWow64\sqlite3.dll
[2014/05/26 15:38:47 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014/05/26 08:57:51 | 000,000,000 | ---D | C] -- C:\rsit
[2014/05/25 18:07:34 | 000,000,000 | ---D | C] -- C:\ProgramData\BitDefender
[2014/05/25 10:37:05 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\Mozilla
[2014/05/25 10:37:05 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Mozilla
[2014/05/25 10:37:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2014/05/25 10:37:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2014/05/25 02:05:31 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\LavasoftStatistics
[2014/05/25 02:02:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Lavasoft
[2014/05/24 22:47:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
[2014/05/24 22:47:31 | 000,000,000 | ---D | C] -- C:\Program Files\Dolby Tuning and Profile Creator
[2014/05/24 22:45:36 | 001,014,016 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\slcnt64.dll
[2014/05/24 22:45:36 | 000,897,792 | ---- | C] (DTS, Inc.) -- C:\WINDOWS\SysNative\sl3apo64.dll
[2014/05/24 22:45:36 | 000,722,688 | ---- | C] (DTS, Inc.) -- C:\WINDOWS\SysNative\sltech64.dll
[2014/05/24 22:45:36 | 000,244,480 | ---- | C] (TODO: <Company name>) -- C:\WINDOWS\SysNative\slprp64.dll
[2014/05/24 22:45:35 | 004,848,920 | ---- | C] (ASUSTeKcomputer.Inc Inc) -- C:\WINDOWS\SysNative\RTKSMlfx.dll
[2014/05/24 22:45:35 | 000,818,008 | ---- | C] (ASUSTeKcomputer.Inc Inc) -- C:\WINDOWS\SysNative\RTKSMSettingsIPC.dll
[2014/05/24 22:45:33 | 027,518,208 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioVnA64.dll
[2014/05/24 22:45:33 | 003,610,880 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioVnN64.dll
[2014/05/24 22:45:33 | 001,325,312 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioAPO5064.dll
[2014/05/24 22:45:33 | 001,084,160 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioAPO4064.dll
[2014/05/24 22:45:33 | 000,907,008 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxVoiceAPO2064.dll
[2014/05/24 22:45:33 | 000,765,184 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxSpeechAPO64.dll
[2014/05/24 22:45:33 | 000,603,984 | ---- | C] (Knowles Acoustics ) -- C:\WINDOWS\SysNative\KAAPORT64.dll
[2014/05/24 22:45:31 | 000,501,192 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSU2PLFX64.dll
[2014/05/24 22:45:31 | 000,487,368 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSU2PGFX64.dll
[2014/05/24 22:45:31 | 000,415,688 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSU2PREC64.dll
[2014/05/24 20:28:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spybot - Search & Destroy 2
[2014/05/24 20:15:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2014/05/24 20:15:12 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2014/05/24 20:03:38 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lavasoft Ad-aware 6
[2014/05/24 20:03:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft Ad-aware 6
[2014/05/24 09:16:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2014/05/23 16:09:01 | 000,000,000 | ---D | C] -- D:\Dokumenty\Razer
[2014/05/23 15:44:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
[2014/05/23 15:44:56 | 000,000,000 | ---D | C] -- C:\Program Files\Speccy
[2014/05/23 15:44:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
[2014/05/23 15:44:25 | 000,000,000 | ---D | C] -- C:\Program Files\Recuva
[2014/05/23 15:44:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
[2014/05/23 15:44:04 | 000,000,000 | ---D | C] -- C:\Program Files\Defraggler
[2014/05/23 15:42:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2014/05/23 15:42:14 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2014/05/23 15:39:48 | 000,000,000 | ---D | C] -- C:\ProgramData\GlarySoft
[2014/05/23 15:31:52 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Razer
[2014/05/23 15:30:16 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\GlarySoft
[2014/05/23 15:30:16 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\DiskDefrag
[2014/05/23 15:29:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
[2014/05/23 15:28:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Razer
[2014/05/23 15:23:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\appmgmt
[2014/05/23 15:21:16 | 002,213,776 | ---- | C] (ELAN Microelectronics Corp.) -- C:\WINDOWS\ETDUninst.dll
[2014/05/23 12:43:29 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\ESET
[2014/05/23 12:40:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
[2014/05/23 12:40:54 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2014/05/23 12:40:54 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2014/05/23 12:31:41 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Otvíraní nechtěných webových stránek prosím kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Otvíraní nechtěných webových stránek prosím kontrolu log
[2014/05/23 12:01:26 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\com
[2014/05/23 11:55:15 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_43.dll
[2014/05/23 11:55:15 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_7.dll
[2014/05/23 11:55:15 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_7.dll
[2014/05/23 11:55:15 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_7.dll
[2014/05/23 11:55:15 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_7.dll
[2014/05/23 11:55:15 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_5.dll
[2014/05/23 11:55:15 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_5.dll
[2014/05/23 11:55:14 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_43.dll
[2014/05/23 11:55:14 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dcsx_43.dll
[2014/05/23 11:55:14 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dcsx_43.dll
[2014/05/23 11:55:14 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_6.dll
[2014/05/23 11:55:14 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_6.dll
[2014/05/23 11:55:14 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_43.dll
[2014/05/23 11:55:14 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_43.dll
[2014/05/23 11:55:14 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx11_43.dll
[2014/05/23 11:55:14 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx11_43.dll
[2014/05/23 11:55:14 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_6.dll
[2014/05/23 11:55:14 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_6.dll
[2014/05/23 11:55:14 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_4.dll
[2014/05/23 11:55:14 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_4.dll
[2014/05/23 11:55:14 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_7.dll
[2014/05/23 11:55:14 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_7.dll
[2014/05/23 11:55:13 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_5.dll
[2014/05/23 11:55:13 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_5.dll
[2014/05/23 11:55:13 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_5.dll
[2014/05/23 11:55:13 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_5.dll
[2014/05/23 11:55:12 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dcsx_42.dll
[2014/05/23 11:55:12 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dcsx_42.dll
[2014/05/23 11:55:12 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_42.dll
[2014/05/23 11:55:12 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_42.dll
[2014/05/23 11:55:12 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_42.dll
[2014/05/23 11:55:12 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_42.dll
[2014/05/23 11:55:12 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx11_42.dll
[2014/05/23 11:55:12 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx11_42.dll
[2014/05/23 11:55:11 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_41.dll
[2014/05/23 11:55:11 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_41.dll
[2014/05/23 11:55:11 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_42.dll
[2014/05/23 11:55:11 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_41.dll
[2014/05/23 11:55:11 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_42.dll
[2014/05/23 11:55:11 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_41.dll
[2014/05/23 11:55:11 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_4.dll
[2014/05/23 11:55:11 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_41.dll
[2014/05/23 11:55:11 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_4.dll
[2014/05/23 11:55:11 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_41.dll
[2014/05/23 11:55:11 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_4.dll
[2014/05/23 11:55:11 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_4.dll
[2014/05/23 11:55:11 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_3.dll
[2014/05/23 11:55:11 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_3.dll
[2014/05/23 11:55:11 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_6.dll
[2014/05/23 11:55:11 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_6.dll
[2014/05/23 11:55:10 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_40.dll
[2014/05/23 11:55:10 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_40.dll
[2014/05/23 11:55:10 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_40.dll
[2014/05/23 11:55:10 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_40.dll
[2014/05/23 11:55:10 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_40.dll
[2014/05/23 11:55:10 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_3.dll
[2014/05/23 11:55:10 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_3.dll
[2014/05/23 11:55:10 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_40.dll
[2014/05/23 11:55:10 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_3.dll
[2014/05/23 11:55:10 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_3.dll
[2014/05/23 11:55:10 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_2.dll
[2014/05/23 11:55:10 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_2.dll
[2014/05/23 11:55:10 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_5.dll
[2014/05/23 11:55:10 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_5.dll
[2014/05/23 11:55:09 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_39.dll
[2014/05/23 11:55:09 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_39.dll
[2014/05/23 11:55:09 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_39.dll
[2014/05/23 11:55:09 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_39.dll
[2014/05/23 11:55:09 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_39.dll
[2014/05/23 11:55:09 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_2.dll
[2014/05/23 11:55:09 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_1.dll
[2014/05/23 11:55:09 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_2.dll
[2014/05/23 11:55:09 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_1.dll
[2014/05/23 11:55:09 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_39.dll
[2014/05/23 11:55:09 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_2.dll
[2014/05/23 11:55:09 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_2.dll
[2014/05/23 11:55:09 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_1.dll
[2014/05/23 11:55:09 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_1.dll
[2014/05/23 11:55:09 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_0.dll
[2014/05/23 11:55:09 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_0.dll
[2014/05/23 11:55:08 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_38.dll
[2014/05/23 11:55:08 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_38.dll
[2014/05/23 11:55:08 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_38.dll
[2014/05/23 11:55:08 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_38.dll
[2014/05/23 11:55:08 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_1.dll
[2014/05/23 11:55:08 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_1.dll
[2014/05/23 11:55:08 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_4.dll
[2014/05/23 11:55:08 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_4.dll
[2014/05/23 11:55:07 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_38.dll
[2014/05/23 11:55:07 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_38.dll
[2014/05/23 11:55:07 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_37.dll
[2014/05/23 11:55:07 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_37.dll
[2014/05/23 11:55:07 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_37.dll
[2014/05/23 11:55:07 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_0.dll
[2014/05/23 11:55:07 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_0.dll
[2014/05/23 11:55:07 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_37.dll
[2014/05/23 11:55:07 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_0.dll
[2014/05/23 11:55:07 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_0.dll
[2014/05/23 11:55:07 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_3.dll
[2014/05/23 11:55:07 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_3.dll
[2014/05/23 11:55:06 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_37.dll
[2014/05/23 11:55:06 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_37.dll
[2014/05/23 11:55:06 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_10.dll
[2014/05/23 11:55:06 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_10.dll
[2014/05/23 11:55:05 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_36.dll
[2014/05/23 11:55:05 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_36.dll
[2014/05/23 11:55:05 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_36.dll
[2014/05/23 11:55:05 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_35.dll
[2014/05/23 11:55:05 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_36.dll
[2014/05/23 11:55:05 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_35.dll
[2014/05/23 11:55:05 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_36.dll
[2014/05/23 11:55:05 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_35.dll
[2014/05/23 11:55:05 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_36.dll
[2014/05/23 11:55:05 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_35.dll
[2014/05/23 11:55:05 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_9.dll
[2014/05/23 11:55:05 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_9.dll
[2014/05/23 11:55:04 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_35.dll
[2014/05/23 11:55:04 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_34.dll
[2014/05/23 11:55:04 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_35.dll
[2014/05/23 11:55:04 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_34.dll
[2014/05/23 11:55:04 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_34.dll
[2014/05/23 11:55:04 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_34.dll
[2014/05/23 11:55:04 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_34.dll
[2014/05/23 11:55:04 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_34.dll
[2014/05/23 11:55:04 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_8.dll
[2014/05/23 11:55:04 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_8.dll
[2014/05/23 11:55:04 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_2.dll
[2014/05/23 11:55:04 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_2.dll
[2014/05/23 11:55:03 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_33.dll
[2014/05/23 11:55:03 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_33.dll
[2014/05/23 11:55:03 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_33.dll
[2014/05/23 11:55:03 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_33.dll
[2014/05/23 11:55:03 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_33.dll
[2014/05/23 11:55:03 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_33.dll
[2014/05/23 11:55:03 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_7.dll
[2014/05/23 11:55:03 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_6.dll
[2014/05/23 11:55:03 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_7.dll
[2014/05/23 11:55:03 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_6.dll
[2014/05/23 11:55:03 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xinput1_3.dll
[2014/05/23 11:55:03 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xinput1_3.dll
[2014/05/23 11:55:02 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_32.dll
[2014/05/23 11:55:02 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_31.dll
[2014/05/23 11:55:02 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_32.dll
[2014/05/23 11:55:02 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_31.dll
[2014/05/23 11:55:02 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10.dll
[2014/05/23 11:55:02 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10.dll
[2014/05/23 11:55:02 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_5.dll
[2014/05/23 11:55:02 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_4.dll
[2014/05/23 11:55:02 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_3.dll
[2014/05/23 11:55:02 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_5.dll
[2014/05/23 11:55:02 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_4.dll
[2014/05/23 11:55:02 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_3.dll
[2014/05/23 11:55:02 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xinput1_2.dll
[2014/05/23 11:55:02 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xinput1_2.dll
[2014/05/23 11:55:02 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\x3daudio1_1.dll
[2014/05/23 11:55:02 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\x3daudio1_1.dll
[2014/05/23 11:55:01 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_30.dll
[2014/05/23 11:55:01 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_30.dll
[2014/05/23 11:55:01 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_2.dll
[2014/05/23 11:55:01 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_1.dll
[2014/05/23 11:55:01 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_2.dll
[2014/05/23 11:55:01 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_1.dll
[2014/05/23 11:55:01 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xinput1_1.dll
[2014/05/23 11:55:01 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xinput1_1.dll
[2014/05/23 11:55:00 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_0.dll
[2014/05/23 11:55:00 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_0.dll
[2014/05/23 11:55:00 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\x3daudio1_0.dll
[2014/05/23 11:55:00 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\x3daudio1_0.dll
[2014/05/23 11:54:59 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_29.dll
[2014/05/23 11:54:59 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_25.dll
[2014/05/23 11:54:59 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_28.dll
[2014/05/23 11:54:59 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_27.dll
[2014/05/23 11:54:59 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_26.dll
[2014/05/23 11:54:59 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_25.dll
[2014/05/23 11:54:59 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_29.dll
[2014/05/23 11:54:59 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_28.dll
[2014/05/23 11:54:59 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_27.dll
[2014/05/23 11:54:59 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_26.dll
[2014/05/23 11:54:58 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_24.dll
[2014/05/23 11:54:58 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_24.dll
[2014/05/23 11:47:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\directx
[2014/05/23 11:43:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts
[2014/05/23 11:32:30 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\ALLPlayer
[2014/05/23 11:29:51 | 000,000,000 | ---D | C] -- C:\ProgramData\TopApp software
[2014/05/23 11:28:52 | 000,000,000 | ---D | C] -- C:\ProgramData\f16340a543df4ef4
[2014/05/23 11:28:50 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Comodo
[2014/05/23 11:28:49 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Google
[2014/05/23 11:27:32 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallMate
[2014/05/23 10:53:36 | 000,000,000 | ---D | C] -- D:\Dokumenty\Electronic Arts
[2014/05/22 15:27:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2014/05/22 15:18:48 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_43.dll
[2014/05/22 15:18:48 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_43.dll
[2014/05/22 15:18:35 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XBMC
[2014/05/22 14:36:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Reference Assemblies
[2014/05/22 14:36:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSBuild
[2014/05/22 14:36:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\XPSViewer
[2014/05/22 14:36:06 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2014/05/22 14:36:06 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2014/05/22 14:34:10 | 000,778,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationNative_v0300.dll
[2014/05/22 14:34:10 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TsWpfWrp.exe
[2014/05/22 14:34:09 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationCFFRasterizerNative_v0300.dll
[2014/05/22 14:34:07 | 001,166,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationNative_v0300.dll
[2014/05/22 14:34:07 | 000,124,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationCFFRasterizerNative_v0300.dll
[2014/05/22 14:34:07 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TsWpfWrp.exe
[2014/05/22 09:44:45 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\Mp3tag
[2014/05/21 18:44:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\NV
[2014/05/21 18:44:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\NV
[2014/05/21 18:42:24 | 016,872,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll
[2014/05/21 18:42:24 | 007,173,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Data.Pdf.dll
[2014/05/21 18:42:24 | 006,645,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mstscax.dll
[2014/05/21 18:42:23 | 008,652,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Search.dll
[2014/05/21 18:42:23 | 005,104,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Data.Pdf.dll
[2014/05/21 18:42:22 | 012,711,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll
[2014/05/21 18:42:20 | 005,774,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstscax.dll
[2014/05/21 18:42:20 | 003,359,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpcorets.dll
[2014/05/21 18:42:18 | 004,269,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SyncEngine.dll
[2014/05/21 18:42:17 | 013,287,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll
[2014/05/21 18:42:16 | 002,140,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll
[2014/05/21 18:42:16 | 002,124,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d9.dll
[2014/05/21 18:42:15 | 005,833,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Search.dll
[2014/05/21 18:42:14 | 011,792,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll
[2014/05/21 18:42:14 | 002,688,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers.dll
[2014/05/21 18:42:14 | 000,765,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmpeg2srcsnk.dll
[2014/05/21 18:42:13 | 002,144,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll
[2014/05/21 18:42:13 | 001,584,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\workfolderssvc.dll
[2014/05/21 18:42:13 | 001,403,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winmde.dll
[2014/05/21 18:42:13 | 001,379,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpmde.dll
[2014/05/21 18:42:13 | 000,669,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmpeg2srcsnk.dll
[2014/05/21 18:42:13 | 000,407,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\services.exe
[2014/05/21 18:42:12 | 001,411,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll
[2014/05/21 18:42:12 | 001,222,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Streaming.dll
[2014/05/21 18:42:12 | 001,126,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchFolder.dll
[2014/05/21 18:42:12 | 001,025,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\localspl.dll
[2014/05/21 18:42:12 | 000,955,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFMediaEngine.dll
[2014/05/21 18:42:12 | 000,491,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GeofenceMonitorService.dll
[2014/05/21 18:42:12 | 000,364,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AUDIOKSE.dll
[2014/05/21 18:42:12 | 000,357,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GeofenceMonitorService.dll
[2014/05/21 18:42:11 | 007,425,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe
[2014/05/21 18:42:11 | 001,230,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.dll
[2014/05/21 18:42:11 | 001,209,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winmde.dll
[2014/05/21 18:42:11 | 000,982,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Streaming.dll
[2014/05/21 18:42:11 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32spl.dll
[2014/05/21 18:42:11 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFMediaEngine.dll
[2014/05/21 18:42:11 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gpprefcl.dll
[2014/05/21 18:42:11 | 000,491,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsvr.dll
[2014/05/21 18:42:11 | 000,462,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XpsGdiConverter.dll
[2014/05/21 18:42:11 | 000,335,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDEServer.exe
[2014/05/21 18:42:11 | 000,305,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AUDIOKSE.dll
[2014/05/21 18:42:10 | 000,888,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.dll
[2014/05/21 18:42:10 | 000,590,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\gpprefcl.dll
[2014/05/21 18:42:10 | 000,486,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winspool.drv
[2014/05/21 18:42:10 | 000,387,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsvr.dll
[2014/05/21 18:42:10 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XpsGdiConverter.dll
[2014/05/21 18:42:10 | 000,337,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\Classpnp.sys
[2014/05/21 18:42:10 | 000,324,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFCaptureEngine.dll
[2014/05/21 18:42:10 | 000,285,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFCaptureEngine.dll
[2014/05/21 18:42:10 | 000,281,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\resutils.dll
[2014/05/21 18:42:10 | 000,263,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsAdminFlows.exe
[2014/05/21 18:42:10 | 000,250,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpencom.dll
[2014/05/21 18:42:10 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rdpencom.dll
[2014/05/21 18:42:10 | 000,201,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSVideoDSP.dll
[2014/05/21 18:42:10 | 000,130,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gpapi.dll
[2014/05/21 18:42:10 | 000,125,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmapi.dll
[2014/05/21 18:42:10 | 000,032,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ploptin.dll
[2014/05/21 18:42:09 | 001,466,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\propsys.dll
[2014/05/21 18:42:09 | 000,881,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll
[2014/05/21 18:42:09 | 000,707,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll
[2014/05/21 18:42:09 | 000,609,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mf.dll
[2014/05/21 18:42:09 | 000,518,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mf.dll
[2014/05/21 18:42:09 | 000,467,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srcore.dll
[2014/05/21 18:42:09 | 000,467,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll
[2014/05/21 18:42:09 | 000,463,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEng.dll
[2014/05/21 18:42:09 | 000,428,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\FWPKCLNT.SYS
[2014/05/21 18:42:09 | 000,426,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\clusapi.dll
[2014/05/21 18:42:09 | 000,384,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\spaceport.sys
[2014/05/21 18:42:09 | 000,372,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\storport.sys
[2014/05/21 18:42:09 | 000,313,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\clusapi.dll
[2014/05/21 18:42:09 | 000,307,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wintrust.dll
[2014/05/21 18:42:09 | 000,244,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\audiodg.exe
[2014/05/21 18:42:09 | 000,233,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfps.dll
[2014/05/21 18:42:09 | 000,219,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tscfgwmi.dll
[2014/05/21 18:42:09 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rpchttp.dll
[2014/05/21 18:42:09 | 000,178,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSVideoDSP.dll
[2014/05/21 18:42:09 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rpchttp.dll
[2014/05/21 18:42:09 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\energyprov.dll
[2014/05/21 18:42:09 | 000,028,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfpmp.exe
[2014/05/21 18:42:08 | 002,100,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsAdminFlowUI.dll
[2014/05/21 18:42:08 | 001,287,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mispace.dll
[2014/05/21 18:42:08 | 001,057,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdvidcrl.dll
[2014/05/21 18:42:08 | 001,029,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mispace.dll
[2014/05/21 18:42:08 | 000,872,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SkyDrive.exe
[2014/05/21 18:42:08 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rdvidcrl.dll
[2014/05/21 18:42:08 | 000,761,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WorkfoldersControl.dll
[2014/05/21 18:42:08 | 000,721,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SkyDriveTelemetry.dll
[2014/05/21 18:42:08 | 000,443,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlansec.dll
[2014/05/21 18:42:08 | 000,370,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanmsm.dll
[2014/05/21 18:42:08 | 000,300,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlanmsm.dll
[2014/05/21 18:42:08 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanapi.dll
[2014/05/21 18:42:08 | 000,219,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\resutils.dll
[2014/05/21 18:42:08 | 000,201,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEndpointBuilder.dll
[2014/05/21 18:42:08 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WorkFoldersShell.dll
[2014/05/21 18:42:08 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BootMenuUX.dll
[2014/05/21 18:42:08 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tlscsp.dll
[2014/05/21 18:42:08 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tlscsp.dll
[2014/05/21 18:42:07 | 000,271,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rstrui.exe
[2014/05/21 18:42:07 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlanapi.dll
[2014/05/21 18:42:07 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srclient.dll
[2014/05/21 18:42:07 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tsgqec.dll
[2014/05/21 18:42:07 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlanhlp.dll
[2014/05/21 18:42:07 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanhlp.dll
[2014/05/21 18:30:21 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\NVIDIA
[2014/05/21 17:35:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\RTCOM
[2014/05/21 17:35:03 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2014/05/21 17:34:14 | 002,103,040 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\WavesGUILib64.dll
[2014/05/21 17:34:14 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSWOW64.dll
[2014/05/21 17:34:13 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSTSX64.dll
[2014/05/21 17:34:13 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSTSH64.dll
[2014/05/21 17:34:13 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSHP64.dll
[2014/05/21 17:34:12 | 000,221,024 | ---- | C] (Synopsys, Inc.) -- C:\WINDOWS\SysNative\SFNHK64.dll
[2014/05/21 17:34:12 | 000,081,248 | ---- | C] (Synopsys, Inc.) -- C:\WINDOWS\SysNative\SFCOM64.dll
[2014/05/21 17:34:12 | 000,078,688 | ---- | C] (Synopsys, Inc.) -- C:\WINDOWS\SysNative\SFAPO64.dll
[2014/05/21 17:34:12 | 000,074,064 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\WINDOWS\SysWow64\SFCOM.dll
[2014/05/21 17:34:10 | 000,378,000 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\SysNative\RtkGuiCompLib.dll
[2014/05/21 17:34:10 | 000,375,128 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEEP64A.dll
[2014/05/21 17:34:10 | 000,204,120 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEED64A.dll
[2014/05/21 17:34:10 | 000,101,208 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEEL64A.dll
[2014/05/21 17:34:10 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEEG64A.dll
[2014/05/21 17:34:09 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RP3DHT64.dll
[2014/05/21 17:34:09 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RP3DAA64.dll
[2014/05/21 17:34:08 | 007,164,176 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EEP64A.dll
[2014/05/21 17:34:08 | 000,662,784 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxVolumeSDAPO.dll
[2014/05/21 17:34:08 | 000,434,960 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EED64A.dll
[2014/05/21 17:34:08 | 000,141,584 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EEL64A.dll
[2014/05/21 17:34:08 | 000,124,176 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EEA64A.dll
[2014/05/21 17:34:08 | 000,075,024 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EEG64A.dll
[2014/05/21 17:34:07 | 014,048,512 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioRealtek64.dll
[2014/05/21 17:34:06 | 002,032,896 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioEQ64.dll
[2014/05/21 17:34:06 | 001,916,672 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioRealtek264.dll
[2014/05/21 17:34:06 | 000,922,880 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioAPOShell64.dll
[2014/05/21 17:34:06 | 000,663,296 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioAPO30.dll
[2014/05/21 17:34:06 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioAPO20.dll
[2014/05/21 17:34:03 | 002,743,328 | ---- | C] (Fortemedia Corporation) -- C:\WINDOWS\SysNative\FMAPO64.dll
[2014/05/21 17:34:03 | 001,756,264 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSS2SpeakerDLL64.dll
[2014/05/21 17:34:03 | 001,568,360 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSS2HeadphoneDLL64.dll
[2014/05/21 17:34:03 | 000,712,296 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSSymmetryDLL64.dll
[2014/05/21 17:34:03 | 000,693,352 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSVoiceClarityDLL64.dll
[2014/05/21 17:34:03 | 000,491,112 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSNeoPCDLL64.dll
[2014/05/21 17:34:03 | 000,432,744 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSLimiterDLL64.dll
[2014/05/21 17:34:03 | 000,242,792 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSLFXAPO64.dll
[2014/05/21 17:34:02 | 006,219,096 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\DDPP64A.dll
[2014/05/21 17:34:02 | 001,908,568 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\DDPD64A.dll
[2014/05/21 17:34:02 | 001,486,952 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSBoostDLL64.dll
[2014/05/21 17:34:02 | 000,728,680 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSBassEnhancementDLL64.dll
[2014/05/21 17:34:02 | 000,428,648 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSGainCompensatorDLL64.dll
[2014/05/21 17:34:02 | 000,312,152 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\DDPO64A.dll
[2014/05/21 17:34:02 | 000,261,464 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\DDPA64.dll
[2014/05/21 17:34:02 | 000,242,792 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSGFXAPO64.dll
[2014/05/21 17:34:02 | 000,241,768 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSGFXAPONS64.dll
[2014/05/21 17:34:02 | 000,113,576 | ---- | C] (Real Sound Lab SIA) -- C:\WINDOWS\SysNative\CONEQMSAPOGUILibrary.dll
[2014/05/21 17:33:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2014/05/21 17:32:40 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\ElevatedDiagnostics
[2014/05/21 17:14:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Synaptics
[2014/05/21 17:13:51 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2014/05/20 22:28:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2014/05/20 22:28:06 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2014/05/20 22:28:06 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2014/05/20 22:28:06 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
[2014/05/20 22:24:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2014/05/20 22:24:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2014/05/20 22:23:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
[2014/05/18 07:33:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TELL ME MORE Performance
[2014/05/18 07:32:34 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\DAEMON Tools Lite
[2014/05/18 07:32:34 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2014/05/18 07:27:33 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\Desktop\IT
[2014/05/17 09:35:12 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\AppData\Local\EmieUserList
[2014/05/17 09:35:12 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\AppData\Local\EmieSiteList
[2014/05/17 09:32:57 | 000,308,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wusa.exe
[2014/05/17 09:32:57 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wusa.exe
[2014/05/17 09:32:55 | 000,257,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdFilter.sys
[2014/05/17 09:32:54 | 000,123,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdNisDrv.sys
[2014/05/17 09:32:53 | 000,035,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdBoot.sys
[2014/05/17 09:32:25 | 000,921,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSShared.dll
[2014/05/17 09:32:25 | 000,754,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WSShared.dll
[2014/05/17 09:32:24 | 001,054,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.appcore.dll
[2014/05/17 09:32:24 | 000,827,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapi.dll
[2014/05/17 09:32:24 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapi.dll
[2014/05/17 09:32:24 | 000,555,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinapi.appcore.dll
[2014/05/17 09:32:24 | 000,419,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinapi.appcore.dll
[2014/05/17 09:32:24 | 000,201,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ubpm.dll
[2014/05/17 09:32:23 | 001,705,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wucltux.dll
[2014/05/17 09:32:23 | 000,828,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.appcore.dll
[2014/05/17 09:32:23 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WUSettingsProvider.dll
[2014/05/17 09:32:23 | 000,249,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll
[2014/05/17 09:32:23 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storewuauth.dll
[2014/05/17 09:32:23 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
[2014/05/17 09:32:23 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups.dll
[2014/05/17 09:32:23 | 000,054,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuauclt.exe
[2014/05/17 09:32:22 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuwebv.dll
[2014/05/17 09:32:22 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuwebv.dll
[2014/05/17 09:32:22 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wudriver.dll
[2014/05/17 09:32:22 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wudriver.dll
[2014/05/17 09:32:22 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSReset.exe
[2014/05/17 09:32:22 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapp.exe
[2014/05/17 09:32:22 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapp.exe
[2014/05/17 09:32:22 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wups.dll
[2014/05/17 09:31:23 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mshtmled.dll
[2014/05/17 09:31:22 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mshtmled.dll
[2014/05/17 09:31:01 | 000,086,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mrt_map.dll
[2014/05/17 09:31:01 | 000,080,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mrt_map.dll
[2014/05/17 09:31:01 | 000,028,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mrt100.dll
[2014/05/17 09:31:01 | 000,026,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mrt100.dll
[2014/05/17 09:19:10 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\vlc
[2014/05/16 16:05:49 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\Desktop\nikol
[2014/05/16 15:31:59 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Intel_Corporation
[2014/05/16 15:22:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies
[2014/05/16 15:22:06 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2014/05/16 14:41:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\sda
[2014/05/16 14:41:20 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2014/05/16 14:41:19 | 000,000,000 | ---D | C] -- C:\Program Files\Lenovo
[2014/05/16 14:41:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lenovo
[2014/05/16 14:40:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Downloaded Installations
[2014/05/16 14:39:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel
[2014/05/16 14:39:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\postureAgent
[2014/05/16 14:39:06 | 001,795,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WdfCoInstaller01011.dll
[2014/05/16 14:39:03 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\InstallShield
[2014/05/16 14:38:15 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
[2014/05/16 14:33:40 | 000,034,544 | ---- | C] (Synaptics Incorporated) -- C:\WINDOWS\SysNative\drivers\Smb_driver_Intel.sys
[2014/05/16 14:21:37 | 011,742,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\glcndFilter.dll
[2014/05/16 14:21:36 | 003,394,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSService.dll
[2014/05/16 14:21:36 | 000,630,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OobeFldr.dll
[2014/05/16 14:21:36 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\OobeFldr.dll
[2014/05/16 14:21:32 | 008,946,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\glcndFilter.dll
[2014/05/16 14:21:30 | 005,784,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2014/05/16 14:21:21 | 013,933,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmp.dll
[2014/05/16 14:21:20 | 001,435,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppobjs.dll
[2014/05/16 14:21:15 | 003,494,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tquery.dll
[2014/05/16 14:21:14 | 011,776,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmp.dll
[2014/05/16 14:21:11 | 001,927,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\combase.dll
[2014/05/16 14:21:10 | 002,368,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssrch.dll
[2014/05/16 14:21:10 | 001,576,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidsvc.dll
[2014/05/16 14:21:08 | 002,643,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tquery.dll
[2014/05/16 14:21:08 | 001,374,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\combase.dll
[2014/05/16 14:21:06 | 002,943,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Wpc.dll
[2014/05/16 14:21:06 | 001,728,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dui70.dll
[2014/05/16 14:21:05 | 001,716,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssrch.dll
[2014/05/16 14:21:04 | 002,574,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVDECOD.DLL
[2014/05/16 14:21:02 | 002,843,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\actxprxy.dll
[2014/05/16 14:21:02 | 001,445,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\webservices.dll
[2014/05/16 14:21:02 | 001,132,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Globalization.dll
[2014/05/16 14:21:00 | 002,588,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcMon.exe
[2014/05/16 14:20:59 | 001,640,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Immersive.dll
[2014/05/16 14:20:59 | 001,341,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dui70.dll
[2014/05/16 14:20:59 | 001,290,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctf.dll
[2014/05/16 14:20:58 | 000,628,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msTextPrediction.dll
[2014/05/16 14:20:57 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Security.Authentication.OnlineId.dll
[2014/05/16 14:20:57 | 000,647,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncHost.exe
[2014/05/16 14:20:56 | 001,727,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntdll.dll
[2014/05/16 14:20:55 | 000,792,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Globalization.dll
[2014/05/16 14:20:54 | 001,215,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetsrc.dll
[2014/05/16 14:20:54 | 000,800,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetcore.dll
[2014/05/16 14:20:54 | 000,777,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncCore.dll
[2014/05/16 14:20:53 | 002,648,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcWebSync.dll
[2014/05/16 14:20:53 | 001,496,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Immersive.dll
[2014/05/16 14:20:53 | 001,077,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\webservices.dll
[2014/05/16 14:20:53 | 001,000,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinTypes.dll
[2014/05/16 14:20:52 | 002,825,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ExplorerFrame.dll
[2014/05/16 14:20:52 | 002,410,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVDECOD.DLL
[2014/05/16 14:20:51 | 000,791,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uDWM.dll
[2014/05/16 14:20:51 | 000,584,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StructuredQuery.dll
[2014/05/16 14:20:51 | 000,526,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wer.dll
[2014/05/16 14:20:51 | 000,390,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DfpCommon.dll
[2014/05/16 14:20:51 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WofTasks.dll
[2014/05/16 14:20:50 | 001,929,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\setupapi.dll
[2014/05/16 14:20:49 | 000,721,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinapi.dll
[2014/05/16 14:20:48 | 001,621,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RacEngn.dll
[2014/05/16 14:20:47 | 000,553,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Security.Authentication.OnlineId.dll
[2014/05/16 14:20:47 | 000,517,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncHost.exe
[2014/05/16 14:20:46 | 001,011,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetsrc.dll
[2014/05/16 14:20:45 | 000,422,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wer.dll
[2014/05/16 14:20:43 | 001,653,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WindowsCodecs.dll
[2014/05/16 14:20:43 | 000,846,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieapfltr.dll
[2014/05/16 14:20:43 | 000,650,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetcore.dll
[2014/05/16 14:20:43 | 000,645,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SHCore.dll
[2014/05/16 14:20:42 | 002,760,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpccpl.dll
[2014/05/16 14:20:42 | 000,600,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncCore.dll
[2014/05/16 14:20:41 | 002,220,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Wpc.dll
[2014/05/16 14:20:41 | 000,556,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinapi.dll
[2014/05/16 14:20:40 | 002,428,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ExplorerFrame.dll
[2014/05/16 14:20:40 | 001,163,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uxtheme.dll
[2014/05/16 14:20:40 | 000,825,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samsrv.dll
[2014/05/16 14:20:39 | 001,519,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\user32.dll
[2014/05/16 14:20:38 | 000,576,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSync.dll
[2014/05/16 14:20:37 | 000,424,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hal.dll
[2014/05/16 14:20:37 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmsvc.dll
[2014/05/16 14:20:36 | 002,395,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storagewmi.dll
[2014/05/16 14:20:36 | 000,592,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript9diag.dll
[2014/05/16 14:20:36 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WofUtil.dll
[2014/05/16 14:20:35 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wimgapi.dll
[2014/05/16 14:20:34 | 000,752,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9diag.dll
[2014/05/16 14:20:34 | 000,477,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SHCore.dll
[2014/05/16 14:20:34 | 000,391,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MMDevAPI.dll
[2014/05/16 14:20:33 | 001,206,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Taskmgr.exe
[2014/05/16 14:20:33 | 000,530,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppReadiness.dll
[2014/05/16 14:20:32 | 000,997,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\reseteng.dll
[2014/05/16 14:20:32 | 000,459,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSync.dll
[2014/05/16 14:20:31 | 001,258,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\RacEngn.dll
[2014/05/16 14:20:31 | 001,063,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Taskmgr.exe
[2014/05/16 14:20:31 | 000,551,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wimgapi.dll
[2014/05/16 14:20:30 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\recimg.exe
[2014/05/16 14:20:30 | 000,569,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpncore.dll
[2014/05/16 14:20:30 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dfp.exe
[2014/05/16 14:20:29 | 001,227,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usercpl.dll
[2014/05/16 14:20:29 | 001,107,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\perftrack.dll
[2014/05/16 14:20:28 | 001,162,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\usercpl.dll
[2014/05/16 14:20:28 | 000,669,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\advapi32.dll
[2014/05/16 14:20:28 | 000,635,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWAHost.exe
[2014/05/16 14:20:28 | 000,461,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WerFault.exe
[2014/05/16 14:20:27 | 001,428,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RecoveryDrive.exe
[2014/05/16 14:20:27 | 000,710,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsm.dll
[2014/05/16 14:20:27 | 000,269,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bisrv.dll
[2014/05/16 14:20:26 | 000,752,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssvp.dll
[2014/05/16 14:20:26 | 000,545,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\apphelp.dll
[2014/05/16 14:20:26 | 000,467,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\energy.dll
[2014/05/16 14:20:25 | 000,968,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tdh.dll
[2014/05/16 14:20:25 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWAHost.exe
[2014/05/16 14:20:25 | 000,410,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WerFault.exe
[2014/05/16 14:20:24 | 001,659,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.efi
[2014/05/16 14:20:23 | 000,653,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DismApi.dll
[2014/05/16 14:20:23 | 000,586,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe
[2014/05/16 14:20:22 | 001,519,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.exe
[2014/05/16 14:20:22 | 001,403,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\storagewmi.dll
[2014/05/16 14:20:22 | 000,562,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winlogon.exe
[2014/05/16 14:20:22 | 000,367,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssph.dll
[2014/05/16 14:20:21 | 001,487,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.efi
[2014/05/16 14:20:20 | 001,356,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.exe
[2014/05/16 14:20:20 | 000,441,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssph.dll
[2014/05/16 14:20:19 | 002,043,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl
[2014/05/16 14:20:19 | 000,878,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ActionCenter.dll
[2014/05/16 14:20:19 | 000,388,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcryptprimitives.dll
[2014/05/16 14:20:19 | 000,372,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msvproc.dll
[2014/05/16 14:20:18 | 001,967,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl
[2014/05/16 14:20:18 | 001,224,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\werconcpl.dll
[2014/05/16 14:20:18 | 000,159,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\thumbcache.dll
[2014/05/16 14:20:17 | 000,321,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\stobject.dll
[2014/05/16 14:20:16 | 000,755,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctfuimanager.dll
[2014/05/16 14:20:16 | 000,320,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchProtocolHost.exe
[2014/05/16 14:20:15 | 001,791,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMALFXGFXDSP.dll
[2014/05/16 14:20:15 | 000,531,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ci.dll
[2014/05/16 14:20:15 | 000,407,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Faultrep.dll
[2014/05/16 14:20:12 | 000,244,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppwinob.dll
[2014/05/16 14:20:11 | 000,761,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iuilp.dll
[2014/05/16 14:20:11 | 000,752,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tdh.dll
[2014/05/16 14:20:11 | 000,716,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntshrui.dll
[2014/05/16 14:20:11 | 000,709,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msctfuimanager.dll
[2014/05/16 14:20:10 | 001,185,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\printui.dll
[2014/05/16 14:20:10 | 000,832,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ActionCenter.dll
[2014/05/16 14:20:10 | 000,747,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidcli.dll
[2014/05/16 14:20:09 | 000,369,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Faultrep.dll
[2014/05/16 14:20:09 | 000,359,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vmrdvcore.dll
[2014/05/16 14:20:09 | 000,336,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcryptprimitives.dll
[2014/05/16 14:20:09 | 000,317,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msvproc.dll
[2014/05/16 14:20:08 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieapfltr.dll
[2014/05/16 14:20:08 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MrmIndexer.dll
[2014/05/16 14:20:08 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\slc.dll
[2014/05/16 14:20:07 | 000,912,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nettrace.dll
[2014/05/16 14:20:07 | 000,675,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssvp.dll
[2014/05/16 14:20:07 | 000,546,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxPackaging.dll
[2014/05/16 14:20:07 | 000,275,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Dism.exe
[2014/05/16 14:20:07 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.Vpn.dll
[2014/05/16 14:20:06 | 000,609,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pnidui.dll
[2014/05/16 14:20:06 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\comdlg32.dll
[2014/05/16 14:20:05 | 001,757,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMPDMC.exe
[2014/05/16 14:20:05 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmredir.dll
[2014/05/16 14:20:04 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\psmsrv.dll
[2014/05/16 14:20:03 | 001,008,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WlanMM.dll
[2014/05/16 14:20:02 | 000,834,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\osk.exe
[2014/05/16 14:20:02 | 000,505,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VAN.dll
[2014/05/16 14:20:02 | 000,388,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ninput.dll
[2014/05/16 14:20:02 | 000,232,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputSwitch.dll
[2014/05/16 14:20:01 | 000,275,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authz.dll
[2014/05/16 14:20:00 | 000,272,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\portcls.sys
[2014/05/16 14:19:59 | 002,288,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SyncCenter.dll
[2014/05/16 14:19:59 | 000,469,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskeng.exe
[2014/05/16 14:19:59 | 000,356,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\conhost.exe
[2014/05/16 14:19:59 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rascustom.dll
[2014/05/16 14:19:58 | 002,862,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\themeui.dll
[2014/05/16 14:19:58 | 000,628,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll
[2014/05/16 14:19:58 | 000,615,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdbui.dll
[2014/05/16 14:19:58 | 000,548,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll
[2014/05/16 14:19:58 | 000,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidcredprov.dll
[2014/05/16 14:19:57 | 000,459,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DismApi.dll
[2014/05/16 14:19:57 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mdmregistration.dll
[2014/05/16 14:19:57 | 000,289,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sqmapi.dll
[2014/05/16 14:19:56 | 003,596,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpcore.dll
[2014/05/16 14:19:55 | 002,811,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\themeui.dll
[2014/05/16 14:19:55 | 000,518,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MrmIndexer.dll
[2014/05/16 14:19:55 | 000,210,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SndVol.exe
[2014/05/16 14:19:55 | 000,169,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WSClient.dll
[2014/05/16 14:19:55 | 000,105,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncryptsslp.dll
[2014/05/16 14:19:55 | 000,089,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ncryptsslp.dll
[2014/05/16 14:19:54 | 000,745,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\oleaut32.dll
[2014/05/16 14:19:54 | 000,655,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cscui.dll
[2014/05/16 14:19:54 | 000,559,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.Connectivity.dll
[2014/05/16 14:19:54 | 000,453,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtmsft.dll
[2014/05/16 14:19:54 | 000,211,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Dism.exe
[2014/05/16 14:19:53 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InputSwitch.dll
[2014/05/16 14:19:53 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SkyDriveShell.dll
[2014/05/16 14:19:53 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppc.dll
[2014/05/16 14:19:52 | 000,473,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxPackaging.dll
[2014/05/16 14:19:52 | 000,152,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcrypt.dll
[2014/05/16 14:19:49 | 000,591,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aepdu.dll
[2014/05/16 14:19:49 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.HumanInterfaceDevice.dll
[2014/05/16 14:19:49 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\clrhost.dll
[2014/05/16 14:19:48 | 001,144,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanmm.dll
[2014/05/16 14:19:48 | 000,512,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wimserv.exe
[2014/05/16 14:19:48 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WLanConn.dll
[2014/05/16 14:19:48 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PkgMgr.exe
[2014/05/16 14:19:48 | 000,196,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSClient.dll
[2014/05/16 14:19:48 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sppc.dll
[2014/05/16 14:19:47 | 000,779,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\osk.exe
[2014/05/16 14:19:47 | 000,448,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VAN.dll
[2014/05/16 14:19:47 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\microsoft-windows-system-events.dll
[2014/05/16 14:19:47 | 000,236,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdbus.sys
[2014/05/16 14:19:47 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wscinterop.dll
[2014/05/16 14:19:46 | 000,797,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PurchaseWindowsLicense.dll
[2014/05/16 14:19:45 | 002,706,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gameux.dll
[2014/05/16 14:19:45 | 002,165,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SyncCenter.dll
[2014/05/16 14:19:45 | 000,693,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhcfg.dll
[2014/05/16 14:19:45 | 000,180,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SndVol.exe
[2014/05/16 14:19:45 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SkyDriveShell.dll
[2014/05/16 14:19:44 | 000,943,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WlanMM.dll
[2014/05/16 14:19:44 | 000,506,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WinTypes.dll
[2014/05/16 14:19:44 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwm.exe
[2014/05/16 14:19:44 | 000,083,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskhost.exe
[2014/05/16 14:19:43 | 000,935,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasgcw.dll
[2014/05/16 14:19:43 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winsrv.dll
[2014/05/16 14:19:42 | 000,273,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmdskmgr.dll
[2014/05/16 14:19:42 | 000,170,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wscapi.dll
[2014/05/16 14:19:41 | 003,085,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rdpcore.dll
[2014/05/16 14:19:41 | 000,350,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srchadmin.dll
[2014/05/16 14:19:41 | 000,139,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wermgr.exe
[2014/05/16 14:19:40 | 000,242,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mdmregistration.dll
[2014/05/16 14:19:40 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.HumanInterfaceDevice.dll
[2014/05/16 14:19:40 | 000,151,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dumpsd.sys
[2014/05/16 14:19:40 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\clrhost.dll
[2014/05/16 14:19:39 | 000,292,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ninput.dll
[2014/05/16 14:19:36 | 000,432,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanconn.dll
[2014/05/16 14:19:36 | 000,376,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsqmcons.exe
[2014/05/16 14:19:36 | 000,316,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BioCredProv.dll
[2014/05/16 14:19:36 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SndVolSSO.dll
[2014/05/16 14:19:36 | 000,142,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\smss.exe
[2014/05/16 14:19:36 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AltTab.dll
[2014/05/16 14:19:35 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RASMM.dll
[2014/05/16 14:19:35 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vdsbas.dll
[2014/05/16 14:19:35 | 000,209,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\imm32.dll
[2014/05/16 14:19:35 | 000,188,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\systemreset.exe
[2014/05/16 14:19:34 | 000,322,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhcpl.dll
[2014/05/16 14:19:34 | 000,208,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToManager.dll
[2014/05/16 14:19:33 | 000,510,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\timedate.cpl
[2014/05/16 14:19:33 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtrans.dll
[2014/05/16 14:19:33 | 000,232,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sqmapi.dll
[2014/05/16 14:19:33 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netid.dll
[2014/05/16 14:19:33 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fsutil.exe
[2014/05/16 14:19:33 | 000,080,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskhostex.exe
[2014/05/16 14:19:32 | 000,399,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\das.dll
[2014/05/16 14:19:32 | 000,397,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sharemediacpl.dll
[2014/05/16 14:19:32 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchFilterHost.exe
[2014/05/16 14:19:32 | 000,146,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\msgpioclx.sys
[2014/05/16 14:19:32 | 000,043,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudNotifications.exe
[2014/05/16 14:19:31 | 000,897,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sdclt.exe
[2014/05/16 14:19:31 | 000,619,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserLanguagesCpl.dll
[2014/05/16 14:19:31 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fsutil.exe
[2014/05/16 14:19:31 | 000,041,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CloudNotifications.exe
[2014/05/16 14:19:30 | 000,924,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\refs.sys
[2014/05/16 14:19:30 | 000,660,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Bluetooth.dll
[2014/05/16 14:19:30 | 000,275,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\powrprof.dll
[2014/05/16 14:19:30 | 000,140,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wscapi.dll
[2014/05/16 14:19:30 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssprxy.dll
[2014/05/16 14:19:29 | 001,392,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMPDMC.exe
[2014/05/16 14:19:29 | 000,432,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\zipfldr.dll
[2014/05/16 14:19:29 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.Connectivity.dll
[2014/05/16 14:19:29 | 000,331,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\newdev.dll
[2014/05/16 14:19:29 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\BasicRender.sys
[2014/05/16 14:19:28 | 002,537,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\gameux.dll
[2014/05/16 14:19:28 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SndVolSSO.dll
[2014/05/16 14:19:28 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aepic.dll
[2014/05/16 14:19:28 | 000,079,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdstor.sys
[2014/05/16 14:19:27 | 000,470,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\timedate.cpl
[2014/05/16 14:19:27 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmvdsitf.dll
[2014/05/16 14:19:27 | 000,101,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RestoreOptIn.exe
[2014/05/16 14:19:26 | 000,444,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\spwizeng.dll
[2014/05/16 14:19:26 | 000,137,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wermgr.exe
[2014/05/16 14:19:25 | 000,413,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wow64win.dll
[2014/05/16 14:19:25 | 000,336,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MbaeApiPublic.dll
[2014/05/16 14:19:25 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\microsoft-windows-kernel-power-events.dll
[2014/05/16 14:19:25 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockScreenContent.dll
[2014/05/16 14:19:25 | 000,032,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserAccountBroker.exe
[2014/05/16 14:19:24 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MicrosoftAccountTokenProvider.dll
[2014/05/16 14:19:24 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToManager.dll
[2014/05/16 14:19:23 | 000,835,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rasgcw.dll
[2014/05/16 14:19:23 | 000,391,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WLanConn.dll
[2014/05/16 14:19:22 | 000,094,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcd.dll
[2014/05/16 14:19:22 | 000,089,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\RestoreOptIn.exe
[2014/05/16 14:19:22 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxSysprep.dll
[2014/05/16 14:19:21 | 000,308,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\srchadmin.dll
[2014/05/16 14:19:21 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\newdev.dll
[2014/05/16 14:19:21 | 000,141,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dot3mm.dll
[2014/05/16 14:19:21 | 000,029,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserAccountBroker.exe
[2014/05/16 14:19:20 | 000,131,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\easinvoker.exe
[2014/05/16 14:19:20 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wscinterop.dll
[2014/05/16 14:19:19 | 003,312,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bootux.dll
[2014/05/16 14:19:19 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DAMM.dll
[2014/05/16 14:19:19 | 000,079,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcd.dll
[2014/05/16 14:19:18 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WiFiDisplay.dll
[2014/05/16 14:19:17 | 000,071,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dumpfve.sys
[2014/05/16 14:19:16 | 000,213,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cleanmgr.exe
[2014/05/16 14:19:15 | 000,325,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBXHCI.SYS
[2014/05/16 14:19:15 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cleanmgr.exe
[2014/05/16 14:19:15 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samlib.dll
[2014/05/16 14:19:15 | 000,054,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wpcfltr.sys
[2014/05/16 14:19:12 | 000,189,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UCX01000.SYS
[2014/05/16 14:19:12 | 000,162,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AuthHost.exe
[2014/05/16 14:19:11 | 000,203,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netiohlp.dll
[2014/05/16 14:19:11 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\deviceaccess.dll
[2014/05/16 14:19:10 | 000,260,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BioCredProv.dll
[2014/05/16 14:19:10 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\korwbrkr.dll
[2014/05/16 14:19:10 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netid.dll
[2014/05/16 14:19:10 | 000,036,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WerFaultSecure.exe
[2014/05/16 14:19:10 | 000,033,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WerFaultSecure.exe
[2014/05/16 14:19:09 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dmvdsitf.dll
[2014/05/16 14:19:08 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\scrrun.dll
[2014/05/16 14:19:07 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\easwrt.dll
[2014/05/16 14:19:07 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netiohlp.dll
[2014/05/16 14:19:06 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netplwiz.dll
[2014/05/16 14:19:06 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudStorageWizard.exe
[2014/05/16 14:19:06 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\acppage.dll
[2014/05/16 14:19:06 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\JavaScriptCollectionAgent.dll
[2014/05/16 14:19:05 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\scrobj.dll
[2014/05/16 14:19:05 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dmdskmgr.dll
[2014/05/16 14:19:05 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmcsp.dll
[2014/05/16 14:19:04 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\scrrun.dll
[2014/05/16 14:19:04 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AuthBroker.dll
[2014/05/16 14:19:04 | 000,038,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockScreenContentServer.exe
[2014/05/16 14:19:04 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winbrand.dll
[2014/05/16 14:19:03 | 001,152,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wscui.cpl
[2014/05/16 14:19:03 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DWWIN.EXE
[2014/05/16 14:19:03 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MicrosoftAccountTokenProvider.dll
[2014/05/16 14:19:03 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\slpts.dll
[2014/05/16 14:19:02 | 000,557,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PrintDialogs.dll
[2014/05/16 14:19:02 | 000,251,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MbaeApiPublic.dll
[2014/05/16 14:19:02 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\deviceaccess.dll
[2014/05/16 14:19:01 | 000,902,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\autoconv.exe
[2014/05/16 14:19:01 | 000,874,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\autofmt.exe
[2014/05/16 14:19:01 | 000,610,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sud.dll
[2014/05/16 14:19:01 | 000,349,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcdedit.exe
[2014/05/16 14:19:01 | 000,283,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wbadmin.exe
[2014/05/16 14:19:01 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpnprv.dll
[2014/05/16 14:19:01 | 000,154,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netplwiz.dll
[2014/05/16 14:19:01 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.Sockets.PushEnabledApplication.dll
[2014/05/16 14:19:01 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Renewal.dll
[2014/05/16 14:19:01 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\acppage.dll
[2014/05/16 14:19:00 | 001,057,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\printui.dll
[2014/05/16 14:19:00 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppnp.dll
[2014/05/16 14:19:00 | 000,027,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SysResetErr.exe
[2014/05/16 14:18:59 | 000,545,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\untfs.dll
[2014/05/16 14:18:59 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlidcredprov.dll
[2014/05/16 14:18:59 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\scrobj.dll
[2014/05/16 14:18:59 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcdboot.exe
[2014/05/16 14:18:58 | 000,890,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\autochk.exe
[2014/05/16 14:18:58 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PkgMgr.exe
[2014/05/16 14:18:58 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\migisol.dll
[2014/05/16 14:18:58 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\spbcd.dll
[2014/05/16 14:18:58 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\setbcdlocale.dll
[2014/05/16 14:18:58 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\JavaScriptCollectionAgent.dll
[2014/05/16 14:18:58 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\slpts.dll
[2014/05/16 14:18:57 | 000,800,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\autoconv.exe
[2014/05/16 14:18:57 | 000,792,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\autochk.exe
[2014/05/16 14:18:57 | 000,780,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\autofmt.exe
[2014/05/16 14:18:57 | 000,484,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\untfs.dll
[2014/05/16 14:18:57 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DAConn.dll
[2014/05/16 14:18:57 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winbrand.dll
[2014/05/16 14:18:56 | 000,439,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Bluetooth.dll
[2014/05/16 14:18:56 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\IdCtrls.dll
[2014/05/16 14:18:56 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafBth.dll
[2014/05/16 14:18:56 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WindowsAnytimeUpgradeResults.exe
[2014/05/16 14:18:56 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhevents.dll
[2014/05/16 14:18:56 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UXInit.dll
[2014/05/16 14:18:55 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DWWIN.EXE
[2014/05/16 14:18:55 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AuthBroker.dll
[2014/05/16 14:18:55 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\spcompat.dll
[2014/05/16 14:18:54 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cscript.exe
[2014/05/16 14:18:54 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vdsutil.dll
[2014/05/16 14:18:54 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.Sockets.PushEnabledApplication.dll
[2014/05/16 14:18:54 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\StorageContextHandler.dll
[2014/05/16 14:18:54 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\watchdog.sys
[2014/05/16 14:18:53 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\spwizeng.dll
[2014/05/16 14:18:53 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\diskpart.exe
[2014/05/16 14:18:53 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\spbcd.dll
[2014/05/16 14:18:53 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\energytask.dll
[2014/05/16 14:18:52 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\devinv.dll
[2014/05/16 14:18:52 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\werui.dll
[2014/05/16 14:18:52 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\powercfg.exe
[2014/05/16 14:18:49 | 000,592,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sud.dll
[2014/05/16 14:18:49 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RelPost.exe
[2014/05/16 14:18:48 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pnpclean.dll
[2014/05/16 14:18:47 | 000,544,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlidcli.dll
[2014/05/16 14:18:47 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingMonitor.dll
[2014/05/16 14:18:47 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\deviceassociation.dll
[2014/05/16 14:18:46 | 000,269,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToDevice.dll
[2014/05/16 14:18:46 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingMonitor.dll
[2014/05/16 14:18:46 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dasHost.exe
[2014/05/16 14:18:45 | 001,136,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wscui.cpl
[2014/05/16 14:18:45 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\qedit.dll
[2014/05/16 14:18:45 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srrstr.dll
[2014/05/16 14:18:44 | 000,586,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\qedit.dll
[2014/05/16 14:18:44 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\offreg.dll
[2014/05/16 14:18:44 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ReAgentc.exe
[2014/05/16 14:18:43 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PrintDialogs.dll
[2014/05/16 14:18:43 | 000,299,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.dll
[2014/05/16 14:18:43 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winsku.dll
[2014/05/16 14:18:43 | 000,224,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ActionQueue.dll
[2014/05/16 14:18:43 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CloudStorageWizard.exe
[2014/05/16 14:18:43 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SSShim.dll
[2014/05/16 14:18:43 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\offreg.dll
[2014/05/16 14:18:42 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dfrgui.exe
[2014/05/16 14:18:42 | 000,203,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToDevice.dll
[2014/05/16 14:18:42 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\IdCtrls.dll
[2014/05/16 14:18:42 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\deviceassociation.dll
[2014/05/16 14:18:42 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msshooks.dll
[2014/05/16 14:18:41 | 000,559,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserLanguagesCpl.dll
[2014/05/16 14:18:41 | 000,468,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettings.Handlers.dll
[2014/05/16 14:18:41 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\werui.dll
[2014/05/16 14:18:41 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\powercfg.exe
[2014/05/16 14:18:41 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mf3216.dll
[2014/05/16 14:18:40 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\migisol.dll
[2014/05/16 14:18:40 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\f3ahvoas.dll
[2014/05/16 14:18:39 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wshom.ocx
[2014/05/16 14:18:39 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SrTasks.exe
[2014/05/16 14:18:39 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ReAgentc.exe
[2014/05/16 14:18:38 | 000,589,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vdsdyn.dll
[2014/05/16 14:18:38 | 000,561,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dfrgui.exe
[2014/05/16 14:18:38 | 000,316,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winsku.dll
[2014/05/16 14:18:38 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\easwrt.dll
[2014/05/16 14:18:37 | 002,566,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\themecpl.dll
[2014/05/16 14:18:37 | 000,504,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DevicePairing.dll
[2014/05/16 14:18:37 | 000,183,808 | ---- | C] (Microsoft Corp.) -- C:\WINDOWS\SysNative\Defrag.exe
[2014/05/16 14:18:37 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AepRoam.dll
[2014/05/16 14:18:37 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockScreenContentHost.dll
[2014/05/16 14:18:35 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\diskpart.exe
[2014/05/16 14:18:35 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cscript.exe
[2014/05/16 14:18:35 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sxshared.dll
[2014/05/16 14:18:34 | 000,208,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.dll
[2014/05/16 14:18:34 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ConfigureExpandedStorage.dll
[2014/05/16 14:18:34 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ConfigureExpandedStorage.dll
[2014/05/16 14:18:34 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msshooks.dll
[2014/05/16 14:18:33 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\scavengeui.dll
[2014/05/16 14:18:30 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iesetup.dll
[2014/05/16 14:18:29 | 000,355,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wincorlib.dll
[2014/05/16 14:18:28 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\setupugc.exe
[2014/05/16 14:18:28 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ext-ms-win-session-winsta-l1-1-0.dll
[2014/05/16 14:18:27 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wincorlib.dll
[2014/05/16 14:18:24 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BulkOperationHost.exe
[2014/05/16 14:18:24 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UXInit.dll
[2014/05/16 14:18:23 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\syncui.dll
[2014/05/16 14:18:22 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncPolicy.dll
[2014/05/16 14:18:21 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\finger.exe
[2014/05/16 14:18:20 | 002,544,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\themecpl.dll
[2014/05/16 14:18:20 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpdxm.dll
[2014/05/16 14:18:20 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncPolicy.dll
[2014/05/16 14:18:19 | 000,323,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GlobCollationHost.dll
[2014/05/16 14:18:19 | 000,162,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ocsetapi.dll
[2014/05/16 14:18:18 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GlobCollationHost.dll
[2014/05/16 14:18:18 | 000,163,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ocsetapi.dll
[2014/05/16 14:18:18 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StorageContextHandler.dll
[2014/05/16 14:18:18 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ext-ms-win-session-winsta-l1-1-0.dll
[2014/05/16 14:18:17 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aitagent.exe
[2014/05/16 14:18:17 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dataclen.dll
[2014/05/16 14:18:16 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\korwbrkr.dll
[2014/05/16 14:18:15 | 000,113,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shsetup.dll
[2014/05/16 14:18:15 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ext-ms-win-kernel32-package-l1-1-1.dll
[2014/05/16 14:18:15 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ext-ms-win-kernel32-package-l1-1-1.dll
[2014/05/16 14:18:13 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bthprops.cpl
[2014/05/16 14:18:13 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dataclen.dll
[2014/05/16 14:18:12 | 000,527,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aeinv.dll
[2014/05/16 14:18:12 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhsvcctl.dll
[2014/05/16 14:18:12 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lpksetupproxyserv.dll
[2014/05/16 14:18:12 | 000,008,192 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ext-ms-win-ntuser-private-l1-1-1.dll
[2014/05/16 14:18:12 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shimeng.dll
[2014/05/16 14:18:11 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msdxm.ocx
[2014/05/16 14:18:11 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxmasf.dll
[2014/05/16 14:18:11 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ext-ms-win-ntuser-private-l1-1-0.dll
[2014/05/16 14:18:10 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winbici.dll
[2014/05/16 14:18:10 | 000,008,192 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ext-ms-win-ntuser-private-l1-1-1.dll
[2014/05/16 14:18:10 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ext-ms-win-ntuser-private-l1-1-0.dll
[2014/05/16 14:18:09 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\occache.dll
[2014/05/16 14:18:09 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\occache.dll
[2014/05/16 14:18:09 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveskybackup.dll
[2014/05/16 14:18:09 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\finger.exe
[2014/05/16 14:18:09 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ext-ms-win-networking-wcmapi-l1-1-0.dll
[2014/05/23 11:55:15 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_43.dll
[2014/05/23 11:55:15 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_7.dll
[2014/05/23 11:55:15 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_7.dll
[2014/05/23 11:55:15 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_7.dll
[2014/05/23 11:55:15 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_7.dll
[2014/05/23 11:55:15 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_5.dll
[2014/05/23 11:55:15 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_5.dll
[2014/05/23 11:55:14 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_43.dll
[2014/05/23 11:55:14 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dcsx_43.dll
[2014/05/23 11:55:14 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dcsx_43.dll
[2014/05/23 11:55:14 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_6.dll
[2014/05/23 11:55:14 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_6.dll
[2014/05/23 11:55:14 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_43.dll
[2014/05/23 11:55:14 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_43.dll
[2014/05/23 11:55:14 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx11_43.dll
[2014/05/23 11:55:14 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx11_43.dll
[2014/05/23 11:55:14 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_6.dll
[2014/05/23 11:55:14 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_6.dll
[2014/05/23 11:55:14 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_4.dll
[2014/05/23 11:55:14 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_4.dll
[2014/05/23 11:55:14 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_7.dll
[2014/05/23 11:55:14 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_7.dll
[2014/05/23 11:55:13 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_5.dll
[2014/05/23 11:55:13 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_5.dll
[2014/05/23 11:55:13 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_5.dll
[2014/05/23 11:55:13 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_5.dll
[2014/05/23 11:55:12 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dcsx_42.dll
[2014/05/23 11:55:12 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dcsx_42.dll
[2014/05/23 11:55:12 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_42.dll
[2014/05/23 11:55:12 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_42.dll
[2014/05/23 11:55:12 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_42.dll
[2014/05/23 11:55:12 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_42.dll
[2014/05/23 11:55:12 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx11_42.dll
[2014/05/23 11:55:12 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx11_42.dll
[2014/05/23 11:55:11 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_41.dll
[2014/05/23 11:55:11 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_41.dll
[2014/05/23 11:55:11 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_42.dll
[2014/05/23 11:55:11 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_41.dll
[2014/05/23 11:55:11 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_42.dll
[2014/05/23 11:55:11 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_41.dll
[2014/05/23 11:55:11 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_4.dll
[2014/05/23 11:55:11 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_41.dll
[2014/05/23 11:55:11 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_4.dll
[2014/05/23 11:55:11 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_41.dll
[2014/05/23 11:55:11 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_4.dll
[2014/05/23 11:55:11 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_4.dll
[2014/05/23 11:55:11 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_3.dll
[2014/05/23 11:55:11 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_3.dll
[2014/05/23 11:55:11 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_6.dll
[2014/05/23 11:55:11 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_6.dll
[2014/05/23 11:55:10 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_40.dll
[2014/05/23 11:55:10 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_40.dll
[2014/05/23 11:55:10 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_40.dll
[2014/05/23 11:55:10 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_40.dll
[2014/05/23 11:55:10 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_40.dll
[2014/05/23 11:55:10 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_3.dll
[2014/05/23 11:55:10 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_3.dll
[2014/05/23 11:55:10 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_40.dll
[2014/05/23 11:55:10 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_3.dll
[2014/05/23 11:55:10 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_3.dll
[2014/05/23 11:55:10 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_2.dll
[2014/05/23 11:55:10 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_2.dll
[2014/05/23 11:55:10 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_5.dll
[2014/05/23 11:55:10 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_5.dll
[2014/05/23 11:55:09 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_39.dll
[2014/05/23 11:55:09 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_39.dll
[2014/05/23 11:55:09 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_39.dll
[2014/05/23 11:55:09 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_39.dll
[2014/05/23 11:55:09 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_39.dll
[2014/05/23 11:55:09 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_2.dll
[2014/05/23 11:55:09 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_1.dll
[2014/05/23 11:55:09 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_2.dll
[2014/05/23 11:55:09 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_1.dll
[2014/05/23 11:55:09 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_39.dll
[2014/05/23 11:55:09 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_2.dll
[2014/05/23 11:55:09 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_2.dll
[2014/05/23 11:55:09 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_1.dll
[2014/05/23 11:55:09 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_1.dll
[2014/05/23 11:55:09 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_0.dll
[2014/05/23 11:55:09 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_0.dll
[2014/05/23 11:55:08 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_38.dll
[2014/05/23 11:55:08 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_38.dll
[2014/05/23 11:55:08 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_38.dll
[2014/05/23 11:55:08 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_38.dll
[2014/05/23 11:55:08 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_1.dll
[2014/05/23 11:55:08 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_1.dll
[2014/05/23 11:55:08 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_4.dll
[2014/05/23 11:55:08 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_4.dll
[2014/05/23 11:55:07 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_38.dll
[2014/05/23 11:55:07 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_38.dll
[2014/05/23 11:55:07 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_37.dll
[2014/05/23 11:55:07 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_37.dll
[2014/05/23 11:55:07 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_37.dll
[2014/05/23 11:55:07 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_0.dll
[2014/05/23 11:55:07 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_0.dll
[2014/05/23 11:55:07 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_37.dll
[2014/05/23 11:55:07 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_0.dll
[2014/05/23 11:55:07 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_0.dll
[2014/05/23 11:55:07 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_3.dll
[2014/05/23 11:55:07 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_3.dll
[2014/05/23 11:55:06 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_37.dll
[2014/05/23 11:55:06 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_37.dll
[2014/05/23 11:55:06 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_10.dll
[2014/05/23 11:55:06 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_10.dll
[2014/05/23 11:55:05 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_36.dll
[2014/05/23 11:55:05 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_36.dll
[2014/05/23 11:55:05 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_36.dll
[2014/05/23 11:55:05 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_35.dll
[2014/05/23 11:55:05 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_36.dll
[2014/05/23 11:55:05 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_35.dll
[2014/05/23 11:55:05 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_36.dll
[2014/05/23 11:55:05 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_35.dll
[2014/05/23 11:55:05 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_36.dll
[2014/05/23 11:55:05 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_35.dll
[2014/05/23 11:55:05 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_9.dll
[2014/05/23 11:55:05 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_9.dll
[2014/05/23 11:55:04 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_35.dll
[2014/05/23 11:55:04 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_34.dll
[2014/05/23 11:55:04 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_35.dll
[2014/05/23 11:55:04 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_34.dll
[2014/05/23 11:55:04 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_34.dll
[2014/05/23 11:55:04 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_34.dll
[2014/05/23 11:55:04 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_34.dll
[2014/05/23 11:55:04 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_34.dll
[2014/05/23 11:55:04 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_8.dll
[2014/05/23 11:55:04 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_8.dll
[2014/05/23 11:55:04 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_2.dll
[2014/05/23 11:55:04 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_2.dll
[2014/05/23 11:55:03 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_33.dll
[2014/05/23 11:55:03 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_33.dll
[2014/05/23 11:55:03 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_33.dll
[2014/05/23 11:55:03 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_33.dll
[2014/05/23 11:55:03 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_33.dll
[2014/05/23 11:55:03 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_33.dll
[2014/05/23 11:55:03 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_7.dll
[2014/05/23 11:55:03 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_6.dll
[2014/05/23 11:55:03 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_7.dll
[2014/05/23 11:55:03 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_6.dll
[2014/05/23 11:55:03 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xinput1_3.dll
[2014/05/23 11:55:03 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xinput1_3.dll
[2014/05/23 11:55:02 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_32.dll
[2014/05/23 11:55:02 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_31.dll
[2014/05/23 11:55:02 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_32.dll
[2014/05/23 11:55:02 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_31.dll
[2014/05/23 11:55:02 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10.dll
[2014/05/23 11:55:02 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10.dll
[2014/05/23 11:55:02 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_5.dll
[2014/05/23 11:55:02 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_4.dll
[2014/05/23 11:55:02 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_3.dll
[2014/05/23 11:55:02 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_5.dll
[2014/05/23 11:55:02 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_4.dll
[2014/05/23 11:55:02 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_3.dll
[2014/05/23 11:55:02 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xinput1_2.dll
[2014/05/23 11:55:02 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xinput1_2.dll
[2014/05/23 11:55:02 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\x3daudio1_1.dll
[2014/05/23 11:55:02 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\x3daudio1_1.dll
[2014/05/23 11:55:01 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_30.dll
[2014/05/23 11:55:01 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_30.dll
[2014/05/23 11:55:01 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_2.dll
[2014/05/23 11:55:01 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_1.dll
[2014/05/23 11:55:01 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_2.dll
[2014/05/23 11:55:01 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_1.dll
[2014/05/23 11:55:01 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xinput1_1.dll
[2014/05/23 11:55:01 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xinput1_1.dll
[2014/05/23 11:55:00 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_0.dll
[2014/05/23 11:55:00 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_0.dll
[2014/05/23 11:55:00 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\x3daudio1_0.dll
[2014/05/23 11:55:00 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\x3daudio1_0.dll
[2014/05/23 11:54:59 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_29.dll
[2014/05/23 11:54:59 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_25.dll
[2014/05/23 11:54:59 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_28.dll
[2014/05/23 11:54:59 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_27.dll
[2014/05/23 11:54:59 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_26.dll
[2014/05/23 11:54:59 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_25.dll
[2014/05/23 11:54:59 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_29.dll
[2014/05/23 11:54:59 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_28.dll
[2014/05/23 11:54:59 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_27.dll
[2014/05/23 11:54:59 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_26.dll
[2014/05/23 11:54:58 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_24.dll
[2014/05/23 11:54:58 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_24.dll
[2014/05/23 11:47:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\directx
[2014/05/23 11:43:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts
[2014/05/23 11:32:30 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\ALLPlayer
[2014/05/23 11:29:51 | 000,000,000 | ---D | C] -- C:\ProgramData\TopApp software
[2014/05/23 11:28:52 | 000,000,000 | ---D | C] -- C:\ProgramData\f16340a543df4ef4
[2014/05/23 11:28:50 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Comodo
[2014/05/23 11:28:49 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Google
[2014/05/23 11:27:32 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallMate
[2014/05/23 10:53:36 | 000,000,000 | ---D | C] -- D:\Dokumenty\Electronic Arts
[2014/05/22 15:27:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2014/05/22 15:18:48 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_43.dll
[2014/05/22 15:18:48 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_43.dll
[2014/05/22 15:18:35 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XBMC
[2014/05/22 14:36:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Reference Assemblies
[2014/05/22 14:36:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSBuild
[2014/05/22 14:36:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\XPSViewer
[2014/05/22 14:36:06 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2014/05/22 14:36:06 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2014/05/22 14:34:10 | 000,778,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationNative_v0300.dll
[2014/05/22 14:34:10 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TsWpfWrp.exe
[2014/05/22 14:34:09 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationCFFRasterizerNative_v0300.dll
[2014/05/22 14:34:07 | 001,166,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationNative_v0300.dll
[2014/05/22 14:34:07 | 000,124,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationCFFRasterizerNative_v0300.dll
[2014/05/22 14:34:07 | 000,035,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TsWpfWrp.exe
[2014/05/22 09:44:45 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\Mp3tag
[2014/05/21 18:44:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\NV
[2014/05/21 18:44:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\NV
[2014/05/21 18:42:24 | 016,872,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll
[2014/05/21 18:42:24 | 007,173,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Data.Pdf.dll
[2014/05/21 18:42:24 | 006,645,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mstscax.dll
[2014/05/21 18:42:23 | 008,652,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Search.dll
[2014/05/21 18:42:23 | 005,104,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Data.Pdf.dll
[2014/05/21 18:42:22 | 012,711,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll
[2014/05/21 18:42:20 | 005,774,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstscax.dll
[2014/05/21 18:42:20 | 003,359,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpcorets.dll
[2014/05/21 18:42:18 | 004,269,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SyncEngine.dll
[2014/05/21 18:42:17 | 013,287,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll
[2014/05/21 18:42:16 | 002,140,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll
[2014/05/21 18:42:16 | 002,124,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d9.dll
[2014/05/21 18:42:15 | 005,833,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Search.dll
[2014/05/21 18:42:14 | 011,792,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll
[2014/05/21 18:42:14 | 002,688,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingsHandlers.dll
[2014/05/21 18:42:14 | 000,765,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmpeg2srcsnk.dll
[2014/05/21 18:42:13 | 002,144,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll
[2014/05/21 18:42:13 | 001,584,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\workfolderssvc.dll
[2014/05/21 18:42:13 | 001,403,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winmde.dll
[2014/05/21 18:42:13 | 001,379,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpmde.dll
[2014/05/21 18:42:13 | 000,669,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmpeg2srcsnk.dll
[2014/05/21 18:42:13 | 000,407,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\services.exe
[2014/05/21 18:42:12 | 001,411,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll
[2014/05/21 18:42:12 | 001,222,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Streaming.dll
[2014/05/21 18:42:12 | 001,126,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchFolder.dll
[2014/05/21 18:42:12 | 001,025,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\localspl.dll
[2014/05/21 18:42:12 | 000,955,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFMediaEngine.dll
[2014/05/21 18:42:12 | 000,491,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GeofenceMonitorService.dll
[2014/05/21 18:42:12 | 000,364,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AUDIOKSE.dll
[2014/05/21 18:42:12 | 000,357,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GeofenceMonitorService.dll
[2014/05/21 18:42:11 | 007,425,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe
[2014/05/21 18:42:11 | 001,230,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.dll
[2014/05/21 18:42:11 | 001,209,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winmde.dll
[2014/05/21 18:42:11 | 000,982,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Streaming.dll
[2014/05/21 18:42:11 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\win32spl.dll
[2014/05/21 18:42:11 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFMediaEngine.dll
[2014/05/21 18:42:11 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gpprefcl.dll
[2014/05/21 18:42:11 | 000,491,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsvr.dll
[2014/05/21 18:42:11 | 000,462,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XpsGdiConverter.dll
[2014/05/21 18:42:11 | 000,335,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDEServer.exe
[2014/05/21 18:42:11 | 000,305,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AUDIOKSE.dll
[2014/05/21 18:42:10 | 000,888,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.dll
[2014/05/21 18:42:10 | 000,590,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\gpprefcl.dll
[2014/05/21 18:42:10 | 000,486,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winspool.drv
[2014/05/21 18:42:10 | 000,387,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsvr.dll
[2014/05/21 18:42:10 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XpsGdiConverter.dll
[2014/05/21 18:42:10 | 000,337,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\Classpnp.sys
[2014/05/21 18:42:10 | 000,324,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFCaptureEngine.dll
[2014/05/21 18:42:10 | 000,285,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFCaptureEngine.dll
[2014/05/21 18:42:10 | 000,281,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\resutils.dll
[2014/05/21 18:42:10 | 000,263,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsAdminFlows.exe
[2014/05/21 18:42:10 | 000,250,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpencom.dll
[2014/05/21 18:42:10 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rdpencom.dll
[2014/05/21 18:42:10 | 000,201,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MSVideoDSP.dll
[2014/05/21 18:42:10 | 000,130,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gpapi.dll
[2014/05/21 18:42:10 | 000,125,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmapi.dll
[2014/05/21 18:42:10 | 000,032,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ploptin.dll
[2014/05/21 18:42:09 | 001,466,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\propsys.dll
[2014/05/21 18:42:09 | 000,881,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll
[2014/05/21 18:42:09 | 000,707,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll
[2014/05/21 18:42:09 | 000,609,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mf.dll
[2014/05/21 18:42:09 | 000,518,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mf.dll
[2014/05/21 18:42:09 | 000,467,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srcore.dll
[2014/05/21 18:42:09 | 000,467,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll
[2014/05/21 18:42:09 | 000,463,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEng.dll
[2014/05/21 18:42:09 | 000,428,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\FWPKCLNT.SYS
[2014/05/21 18:42:09 | 000,426,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\clusapi.dll
[2014/05/21 18:42:09 | 000,384,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\spaceport.sys
[2014/05/21 18:42:09 | 000,372,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\storport.sys
[2014/05/21 18:42:09 | 000,313,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\clusapi.dll
[2014/05/21 18:42:09 | 000,307,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wintrust.dll
[2014/05/21 18:42:09 | 000,244,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\audiodg.exe
[2014/05/21 18:42:09 | 000,233,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfps.dll
[2014/05/21 18:42:09 | 000,219,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tscfgwmi.dll
[2014/05/21 18:42:09 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rpchttp.dll
[2014/05/21 18:42:09 | 000,178,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MSVideoDSP.dll
[2014/05/21 18:42:09 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rpchttp.dll
[2014/05/21 18:42:09 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\energyprov.dll
[2014/05/21 18:42:09 | 000,028,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfpmp.exe
[2014/05/21 18:42:08 | 002,100,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettingsAdminFlowUI.dll
[2014/05/21 18:42:08 | 001,287,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mispace.dll
[2014/05/21 18:42:08 | 001,057,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdvidcrl.dll
[2014/05/21 18:42:08 | 001,029,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mispace.dll
[2014/05/21 18:42:08 | 000,872,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SkyDrive.exe
[2014/05/21 18:42:08 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rdvidcrl.dll
[2014/05/21 18:42:08 | 000,761,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WorkfoldersControl.dll
[2014/05/21 18:42:08 | 000,721,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SkyDriveTelemetry.dll
[2014/05/21 18:42:08 | 000,443,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlansec.dll
[2014/05/21 18:42:08 | 000,370,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanmsm.dll
[2014/05/21 18:42:08 | 000,300,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlanmsm.dll
[2014/05/21 18:42:08 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanapi.dll
[2014/05/21 18:42:08 | 000,219,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\resutils.dll
[2014/05/21 18:42:08 | 000,201,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEndpointBuilder.dll
[2014/05/21 18:42:08 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WorkFoldersShell.dll
[2014/05/21 18:42:08 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BootMenuUX.dll
[2014/05/21 18:42:08 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tlscsp.dll
[2014/05/21 18:42:08 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tlscsp.dll
[2014/05/21 18:42:07 | 000,271,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rstrui.exe
[2014/05/21 18:42:07 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlanapi.dll
[2014/05/21 18:42:07 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srclient.dll
[2014/05/21 18:42:07 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tsgqec.dll
[2014/05/21 18:42:07 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlanhlp.dll
[2014/05/21 18:42:07 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanhlp.dll
[2014/05/21 18:30:21 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\NVIDIA
[2014/05/21 17:35:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\RTCOM
[2014/05/21 17:35:03 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2014/05/21 17:34:14 | 002,103,040 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\WavesGUILib64.dll
[2014/05/21 17:34:14 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSWOW64.dll
[2014/05/21 17:34:13 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSTSX64.dll
[2014/05/21 17:34:13 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSTSH64.dll
[2014/05/21 17:34:13 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSHP64.dll
[2014/05/21 17:34:12 | 000,221,024 | ---- | C] (Synopsys, Inc.) -- C:\WINDOWS\SysNative\SFNHK64.dll
[2014/05/21 17:34:12 | 000,081,248 | ---- | C] (Synopsys, Inc.) -- C:\WINDOWS\SysNative\SFCOM64.dll
[2014/05/21 17:34:12 | 000,078,688 | ---- | C] (Synopsys, Inc.) -- C:\WINDOWS\SysNative\SFAPO64.dll
[2014/05/21 17:34:12 | 000,074,064 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\WINDOWS\SysWow64\SFCOM.dll
[2014/05/21 17:34:10 | 000,378,000 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\SysNative\RtkGuiCompLib.dll
[2014/05/21 17:34:10 | 000,375,128 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEEP64A.dll
[2014/05/21 17:34:10 | 000,204,120 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEED64A.dll
[2014/05/21 17:34:10 | 000,101,208 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEEL64A.dll
[2014/05/21 17:34:10 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEEG64A.dll
[2014/05/21 17:34:09 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RP3DHT64.dll
[2014/05/21 17:34:09 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RP3DAA64.dll
[2014/05/21 17:34:08 | 007,164,176 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EEP64A.dll
[2014/05/21 17:34:08 | 000,662,784 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxVolumeSDAPO.dll
[2014/05/21 17:34:08 | 000,434,960 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EED64A.dll
[2014/05/21 17:34:08 | 000,141,584 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EEL64A.dll
[2014/05/21 17:34:08 | 000,124,176 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EEA64A.dll
[2014/05/21 17:34:08 | 000,075,024 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EEG64A.dll
[2014/05/21 17:34:07 | 014,048,512 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioRealtek64.dll
[2014/05/21 17:34:06 | 002,032,896 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioEQ64.dll
[2014/05/21 17:34:06 | 001,916,672 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioRealtek264.dll
[2014/05/21 17:34:06 | 000,922,880 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioAPOShell64.dll
[2014/05/21 17:34:06 | 000,663,296 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioAPO30.dll
[2014/05/21 17:34:06 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioAPO20.dll
[2014/05/21 17:34:03 | 002,743,328 | ---- | C] (Fortemedia Corporation) -- C:\WINDOWS\SysNative\FMAPO64.dll
[2014/05/21 17:34:03 | 001,756,264 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSS2SpeakerDLL64.dll
[2014/05/21 17:34:03 | 001,568,360 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSS2HeadphoneDLL64.dll
[2014/05/21 17:34:03 | 000,712,296 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSSymmetryDLL64.dll
[2014/05/21 17:34:03 | 000,693,352 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSVoiceClarityDLL64.dll
[2014/05/21 17:34:03 | 000,491,112 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSNeoPCDLL64.dll
[2014/05/21 17:34:03 | 000,432,744 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSLimiterDLL64.dll
[2014/05/21 17:34:03 | 000,242,792 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSLFXAPO64.dll
[2014/05/21 17:34:02 | 006,219,096 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\DDPP64A.dll
[2014/05/21 17:34:02 | 001,908,568 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\DDPD64A.dll
[2014/05/21 17:34:02 | 001,486,952 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSBoostDLL64.dll
[2014/05/21 17:34:02 | 000,728,680 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSBassEnhancementDLL64.dll
[2014/05/21 17:34:02 | 000,428,648 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSGainCompensatorDLL64.dll
[2014/05/21 17:34:02 | 000,312,152 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\DDPO64A.dll
[2014/05/21 17:34:02 | 000,261,464 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\DDPA64.dll
[2014/05/21 17:34:02 | 000,242,792 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSGFXAPO64.dll
[2014/05/21 17:34:02 | 000,241,768 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSGFXAPONS64.dll
[2014/05/21 17:34:02 | 000,113,576 | ---- | C] (Real Sound Lab SIA) -- C:\WINDOWS\SysNative\CONEQMSAPOGUILibrary.dll
[2014/05/21 17:33:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2014/05/21 17:32:40 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\ElevatedDiagnostics
[2014/05/21 17:14:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Synaptics
[2014/05/21 17:13:51 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2014/05/20 22:28:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2014/05/20 22:28:06 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2014/05/20 22:28:06 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2014/05/20 22:28:06 | 000,000,000 | ---D | C] -- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
[2014/05/20 22:24:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2014/05/20 22:24:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2014/05/20 22:23:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
[2014/05/18 07:33:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TELL ME MORE Performance
[2014/05/18 07:32:34 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\DAEMON Tools Lite
[2014/05/18 07:32:34 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2014/05/18 07:27:33 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\Desktop\IT
[2014/05/17 09:35:12 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\AppData\Local\EmieUserList
[2014/05/17 09:35:12 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\AppData\Local\EmieSiteList
[2014/05/17 09:32:57 | 000,308,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wusa.exe
[2014/05/17 09:32:57 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wusa.exe
[2014/05/17 09:32:55 | 000,257,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdFilter.sys
[2014/05/17 09:32:54 | 000,123,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdNisDrv.sys
[2014/05/17 09:32:53 | 000,035,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WdBoot.sys
[2014/05/17 09:32:25 | 000,921,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSShared.dll
[2014/05/17 09:32:25 | 000,754,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WSShared.dll
[2014/05/17 09:32:24 | 001,054,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.appcore.dll
[2014/05/17 09:32:24 | 000,827,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapi.dll
[2014/05/17 09:32:24 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapi.dll
[2014/05/17 09:32:24 | 000,555,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinapi.appcore.dll
[2014/05/17 09:32:24 | 000,419,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinapi.appcore.dll
[2014/05/17 09:32:24 | 000,201,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ubpm.dll
[2014/05/17 09:32:23 | 001,705,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wucltux.dll
[2014/05/17 09:32:23 | 000,828,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.appcore.dll
[2014/05/17 09:32:23 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WUSettingsProvider.dll
[2014/05/17 09:32:23 | 000,249,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll
[2014/05/17 09:32:23 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storewuauth.dll
[2014/05/17 09:32:23 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
[2014/05/17 09:32:23 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups.dll
[2014/05/17 09:32:23 | 000,054,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuauclt.exe
[2014/05/17 09:32:22 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuwebv.dll
[2014/05/17 09:32:22 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuwebv.dll
[2014/05/17 09:32:22 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wudriver.dll
[2014/05/17 09:32:22 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wudriver.dll
[2014/05/17 09:32:22 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSReset.exe
[2014/05/17 09:32:22 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapp.exe
[2014/05/17 09:32:22 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapp.exe
[2014/05/17 09:32:22 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wups.dll
[2014/05/17 09:31:23 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mshtmled.dll
[2014/05/17 09:31:22 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mshtmled.dll
[2014/05/17 09:31:01 | 000,086,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mrt_map.dll
[2014/05/17 09:31:01 | 000,080,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mrt_map.dll
[2014/05/17 09:31:01 | 000,028,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mrt100.dll
[2014/05/17 09:31:01 | 000,026,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mrt100.dll
[2014/05/17 09:19:10 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\vlc
[2014/05/16 16:05:49 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\Desktop\nikol
[2014/05/16 15:31:59 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Intel_Corporation
[2014/05/16 15:22:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies
[2014/05/16 15:22:06 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2014/05/16 14:41:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\sda
[2014/05/16 14:41:20 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2014/05/16 14:41:19 | 000,000,000 | ---D | C] -- C:\Program Files\Lenovo
[2014/05/16 14:41:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Lenovo
[2014/05/16 14:40:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Downloaded Installations
[2014/05/16 14:39:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel
[2014/05/16 14:39:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\postureAgent
[2014/05/16 14:39:06 | 001,795,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WdfCoInstaller01011.dll
[2014/05/16 14:39:03 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\InstallShield
[2014/05/16 14:38:15 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
[2014/05/16 14:33:40 | 000,034,544 | ---- | C] (Synaptics Incorporated) -- C:\WINDOWS\SysNative\drivers\Smb_driver_Intel.sys
[2014/05/16 14:21:37 | 011,742,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\glcndFilter.dll
[2014/05/16 14:21:36 | 003,394,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSService.dll
[2014/05/16 14:21:36 | 000,630,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\OobeFldr.dll
[2014/05/16 14:21:36 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\OobeFldr.dll
[2014/05/16 14:21:32 | 008,946,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\glcndFilter.dll
[2014/05/16 14:21:30 | 005,784,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll
[2014/05/16 14:21:21 | 013,933,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmp.dll
[2014/05/16 14:21:20 | 001,435,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppobjs.dll
[2014/05/16 14:21:15 | 003,494,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tquery.dll
[2014/05/16 14:21:14 | 011,776,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmp.dll
[2014/05/16 14:21:11 | 001,927,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\combase.dll
[2014/05/16 14:21:10 | 002,368,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssrch.dll
[2014/05/16 14:21:10 | 001,576,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidsvc.dll
[2014/05/16 14:21:08 | 002,643,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tquery.dll
[2014/05/16 14:21:08 | 001,374,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\combase.dll
[2014/05/16 14:21:06 | 002,943,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Wpc.dll
[2014/05/16 14:21:06 | 001,728,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dui70.dll
[2014/05/16 14:21:05 | 001,716,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssrch.dll
[2014/05/16 14:21:04 | 002,574,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMVDECOD.DLL
[2014/05/16 14:21:02 | 002,843,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\actxprxy.dll
[2014/05/16 14:21:02 | 001,445,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\webservices.dll
[2014/05/16 14:21:02 | 001,132,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Globalization.dll
[2014/05/16 14:21:00 | 002,588,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcMon.exe
[2014/05/16 14:20:59 | 001,640,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Immersive.dll
[2014/05/16 14:20:59 | 001,341,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dui70.dll
[2014/05/16 14:20:59 | 001,290,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctf.dll
[2014/05/16 14:20:58 | 000,628,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msTextPrediction.dll
[2014/05/16 14:20:57 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Security.Authentication.OnlineId.dll
[2014/05/16 14:20:57 | 000,647,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncHost.exe
[2014/05/16 14:20:56 | 001,727,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntdll.dll
[2014/05/16 14:20:55 | 000,792,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Globalization.dll
[2014/05/16 14:20:54 | 001,215,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetsrc.dll
[2014/05/16 14:20:54 | 000,800,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetcore.dll
[2014/05/16 14:20:54 | 000,777,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncCore.dll
[2014/05/16 14:20:53 | 002,648,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcWebSync.dll
[2014/05/16 14:20:53 | 001,496,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Immersive.dll
[2014/05/16 14:20:53 | 001,077,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\webservices.dll
[2014/05/16 14:20:53 | 001,000,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinTypes.dll
[2014/05/16 14:20:52 | 002,825,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ExplorerFrame.dll
[2014/05/16 14:20:52 | 002,410,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMVDECOD.DLL
[2014/05/16 14:20:51 | 000,791,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uDWM.dll
[2014/05/16 14:20:51 | 000,584,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StructuredQuery.dll
[2014/05/16 14:20:51 | 000,526,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wer.dll
[2014/05/16 14:20:51 | 000,390,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DfpCommon.dll
[2014/05/16 14:20:51 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WofTasks.dll
[2014/05/16 14:20:50 | 001,929,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\setupapi.dll
[2014/05/16 14:20:49 | 000,721,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinapi.dll
[2014/05/16 14:20:48 | 001,621,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RacEngn.dll
[2014/05/16 14:20:47 | 000,553,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Security.Authentication.OnlineId.dll
[2014/05/16 14:20:47 | 000,517,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncHost.exe
[2014/05/16 14:20:46 | 001,011,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetsrc.dll
[2014/05/16 14:20:45 | 000,422,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wer.dll
[2014/05/16 14:20:43 | 001,653,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WindowsCodecs.dll
[2014/05/16 14:20:43 | 000,846,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieapfltr.dll
[2014/05/16 14:20:43 | 000,650,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetcore.dll
[2014/05/16 14:20:43 | 000,645,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SHCore.dll
[2014/05/16 14:20:42 | 002,760,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpccpl.dll
[2014/05/16 14:20:42 | 000,600,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncCore.dll
[2014/05/16 14:20:41 | 002,220,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Wpc.dll
[2014/05/16 14:20:41 | 000,556,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinapi.dll
[2014/05/16 14:20:40 | 002,428,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ExplorerFrame.dll
[2014/05/16 14:20:40 | 001,163,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uxtheme.dll
[2014/05/16 14:20:40 | 000,825,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samsrv.dll
[2014/05/16 14:20:39 | 001,519,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\user32.dll
[2014/05/16 14:20:38 | 000,576,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSync.dll
[2014/05/16 14:20:37 | 000,424,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hal.dll
[2014/05/16 14:20:37 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmsvc.dll
[2014/05/16 14:20:36 | 002,395,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storagewmi.dll
[2014/05/16 14:20:36 | 000,592,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript9diag.dll
[2014/05/16 14:20:36 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WofUtil.dll
[2014/05/16 14:20:35 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wimgapi.dll
[2014/05/16 14:20:34 | 000,752,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9diag.dll
[2014/05/16 14:20:34 | 000,477,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SHCore.dll
[2014/05/16 14:20:34 | 000,391,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MMDevAPI.dll
[2014/05/16 14:20:33 | 001,206,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Taskmgr.exe
[2014/05/16 14:20:33 | 000,530,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppReadiness.dll
[2014/05/16 14:20:32 | 000,997,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\reseteng.dll
[2014/05/16 14:20:32 | 000,459,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSync.dll
[2014/05/16 14:20:31 | 001,258,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\RacEngn.dll
[2014/05/16 14:20:31 | 001,063,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Taskmgr.exe
[2014/05/16 14:20:31 | 000,551,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wimgapi.dll
[2014/05/16 14:20:30 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\recimg.exe
[2014/05/16 14:20:30 | 000,569,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpncore.dll
[2014/05/16 14:20:30 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dfp.exe
[2014/05/16 14:20:29 | 001,227,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usercpl.dll
[2014/05/16 14:20:29 | 001,107,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\perftrack.dll
[2014/05/16 14:20:28 | 001,162,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\usercpl.dll
[2014/05/16 14:20:28 | 000,669,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\advapi32.dll
[2014/05/16 14:20:28 | 000,635,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWAHost.exe
[2014/05/16 14:20:28 | 000,461,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WerFault.exe
[2014/05/16 14:20:27 | 001,428,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RecoveryDrive.exe
[2014/05/16 14:20:27 | 000,710,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsm.dll
[2014/05/16 14:20:27 | 000,269,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bisrv.dll
[2014/05/16 14:20:26 | 000,752,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssvp.dll
[2014/05/16 14:20:26 | 000,545,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\apphelp.dll
[2014/05/16 14:20:26 | 000,467,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\energy.dll
[2014/05/16 14:20:25 | 000,968,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tdh.dll
[2014/05/16 14:20:25 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWAHost.exe
[2014/05/16 14:20:25 | 000,410,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WerFault.exe
[2014/05/16 14:20:24 | 001,659,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.efi
[2014/05/16 14:20:23 | 000,653,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DismApi.dll
[2014/05/16 14:20:23 | 000,586,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe
[2014/05/16 14:20:22 | 001,519,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.exe
[2014/05/16 14:20:22 | 001,403,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\storagewmi.dll
[2014/05/16 14:20:22 | 000,562,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winlogon.exe
[2014/05/16 14:20:22 | 000,367,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssph.dll
[2014/05/16 14:20:21 | 001,487,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.efi
[2014/05/16 14:20:20 | 001,356,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.exe
[2014/05/16 14:20:20 | 000,441,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssph.dll
[2014/05/16 14:20:19 | 002,043,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\inetcpl.cpl
[2014/05/16 14:20:19 | 000,878,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ActionCenter.dll
[2014/05/16 14:20:19 | 000,388,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcryptprimitives.dll
[2014/05/16 14:20:19 | 000,372,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msvproc.dll
[2014/05/16 14:20:18 | 001,967,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\inetcpl.cpl
[2014/05/16 14:20:18 | 001,224,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\werconcpl.dll
[2014/05/16 14:20:18 | 000,159,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\thumbcache.dll
[2014/05/16 14:20:17 | 000,321,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\stobject.dll
[2014/05/16 14:20:16 | 000,755,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctfuimanager.dll
[2014/05/16 14:20:16 | 000,320,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchProtocolHost.exe
[2014/05/16 14:20:15 | 001,791,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMALFXGFXDSP.dll
[2014/05/16 14:20:15 | 000,531,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ci.dll
[2014/05/16 14:20:15 | 000,407,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Faultrep.dll
[2014/05/16 14:20:12 | 000,244,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppwinob.dll
[2014/05/16 14:20:11 | 000,761,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iuilp.dll
[2014/05/16 14:20:11 | 000,752,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tdh.dll
[2014/05/16 14:20:11 | 000,716,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntshrui.dll
[2014/05/16 14:20:11 | 000,709,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msctfuimanager.dll
[2014/05/16 14:20:10 | 001,185,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\printui.dll
[2014/05/16 14:20:10 | 000,832,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ActionCenter.dll
[2014/05/16 14:20:10 | 000,747,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidcli.dll
[2014/05/16 14:20:09 | 000,369,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Faultrep.dll
[2014/05/16 14:20:09 | 000,359,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vmrdvcore.dll
[2014/05/16 14:20:09 | 000,336,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcryptprimitives.dll
[2014/05/16 14:20:09 | 000,317,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msvproc.dll
[2014/05/16 14:20:08 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ieapfltr.dll
[2014/05/16 14:20:08 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MrmIndexer.dll
[2014/05/16 14:20:08 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\slc.dll
[2014/05/16 14:20:07 | 000,912,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nettrace.dll
[2014/05/16 14:20:07 | 000,675,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssvp.dll
[2014/05/16 14:20:07 | 000,546,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxPackaging.dll
[2014/05/16 14:20:07 | 000,275,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Dism.exe
[2014/05/16 14:20:07 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.Vpn.dll
[2014/05/16 14:20:06 | 000,609,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pnidui.dll
[2014/05/16 14:20:06 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\comdlg32.dll
[2014/05/16 14:20:05 | 001,757,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMPDMC.exe
[2014/05/16 14:20:05 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmredir.dll
[2014/05/16 14:20:04 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\psmsrv.dll
[2014/05/16 14:20:03 | 001,008,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WlanMM.dll
[2014/05/16 14:20:02 | 000,834,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\osk.exe
[2014/05/16 14:20:02 | 000,505,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VAN.dll
[2014/05/16 14:20:02 | 000,388,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ninput.dll
[2014/05/16 14:20:02 | 000,232,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\InputSwitch.dll
[2014/05/16 14:20:01 | 000,275,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authz.dll
[2014/05/16 14:20:00 | 000,272,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\portcls.sys
[2014/05/16 14:19:59 | 002,288,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SyncCenter.dll
[2014/05/16 14:19:59 | 000,469,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskeng.exe
[2014/05/16 14:19:59 | 000,356,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\conhost.exe
[2014/05/16 14:19:59 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rascustom.dll
[2014/05/16 14:19:58 | 002,862,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\themeui.dll
[2014/05/16 14:19:58 | 000,628,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll
[2014/05/16 14:19:58 | 000,615,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdbui.dll
[2014/05/16 14:19:58 | 000,548,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vbscript.dll
[2014/05/16 14:19:58 | 000,286,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidcredprov.dll
[2014/05/16 14:19:57 | 000,459,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DismApi.dll
[2014/05/16 14:19:57 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mdmregistration.dll
[2014/05/16 14:19:57 | 000,289,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sqmapi.dll
[2014/05/16 14:19:56 | 003,596,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpcore.dll
[2014/05/16 14:19:55 | 002,811,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\themeui.dll
[2014/05/16 14:19:55 | 000,518,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MrmIndexer.dll
[2014/05/16 14:19:55 | 000,210,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SndVol.exe
[2014/05/16 14:19:55 | 000,169,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WSClient.dll
[2014/05/16 14:19:55 | 000,105,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncryptsslp.dll
[2014/05/16 14:19:55 | 000,089,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ncryptsslp.dll
[2014/05/16 14:19:54 | 000,745,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\oleaut32.dll
[2014/05/16 14:19:54 | 000,655,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cscui.dll
[2014/05/16 14:19:54 | 000,559,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.Connectivity.dll
[2014/05/16 14:19:54 | 000,453,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtmsft.dll
[2014/05/16 14:19:54 | 000,211,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Dism.exe
[2014/05/16 14:19:53 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\InputSwitch.dll
[2014/05/16 14:19:53 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SkyDriveShell.dll
[2014/05/16 14:19:53 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppc.dll
[2014/05/16 14:19:52 | 000,473,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxPackaging.dll
[2014/05/16 14:19:52 | 000,152,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcrypt.dll
[2014/05/16 14:19:49 | 000,591,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aepdu.dll
[2014/05/16 14:19:49 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.HumanInterfaceDevice.dll
[2014/05/16 14:19:49 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\clrhost.dll
[2014/05/16 14:19:48 | 001,144,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanmm.dll
[2014/05/16 14:19:48 | 000,512,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wimserv.exe
[2014/05/16 14:19:48 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WLanConn.dll
[2014/05/16 14:19:48 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PkgMgr.exe
[2014/05/16 14:19:48 | 000,196,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSClient.dll
[2014/05/16 14:19:48 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sppc.dll
[2014/05/16 14:19:47 | 000,779,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\osk.exe
[2014/05/16 14:19:47 | 000,448,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VAN.dll
[2014/05/16 14:19:47 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\microsoft-windows-system-events.dll
[2014/05/16 14:19:47 | 000,236,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdbus.sys
[2014/05/16 14:19:47 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wscinterop.dll
[2014/05/16 14:19:46 | 000,797,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PurchaseWindowsLicense.dll
[2014/05/16 14:19:45 | 002,706,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gameux.dll
[2014/05/16 14:19:45 | 002,165,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SyncCenter.dll
[2014/05/16 14:19:45 | 000,693,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhcfg.dll
[2014/05/16 14:19:45 | 000,180,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SndVol.exe
[2014/05/16 14:19:45 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SkyDriveShell.dll
[2014/05/16 14:19:44 | 000,943,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WlanMM.dll
[2014/05/16 14:19:44 | 000,506,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WinTypes.dll
[2014/05/16 14:19:44 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwm.exe
[2014/05/16 14:19:44 | 000,083,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskhost.exe
[2014/05/16 14:19:43 | 000,935,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasgcw.dll
[2014/05/16 14:19:43 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winsrv.dll
[2014/05/16 14:19:42 | 000,273,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmdskmgr.dll
[2014/05/16 14:19:42 | 000,170,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wscapi.dll
[2014/05/16 14:19:41 | 003,085,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rdpcore.dll
[2014/05/16 14:19:41 | 000,350,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srchadmin.dll
[2014/05/16 14:19:41 | 000,139,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wermgr.exe
[2014/05/16 14:19:40 | 000,242,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mdmregistration.dll
[2014/05/16 14:19:40 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.HumanInterfaceDevice.dll
[2014/05/16 14:19:40 | 000,151,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dumpsd.sys
[2014/05/16 14:19:40 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\clrhost.dll
[2014/05/16 14:19:39 | 000,292,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ninput.dll
[2014/05/16 14:19:36 | 000,432,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanconn.dll
[2014/05/16 14:19:36 | 000,376,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wsqmcons.exe
[2014/05/16 14:19:36 | 000,316,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BioCredProv.dll
[2014/05/16 14:19:36 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SndVolSSO.dll
[2014/05/16 14:19:36 | 000,142,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\smss.exe
[2014/05/16 14:19:36 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AltTab.dll
[2014/05/16 14:19:35 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RASMM.dll
[2014/05/16 14:19:35 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vdsbas.dll
[2014/05/16 14:19:35 | 000,209,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\imm32.dll
[2014/05/16 14:19:35 | 000,188,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\systemreset.exe
[2014/05/16 14:19:34 | 000,322,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhcpl.dll
[2014/05/16 14:19:34 | 000,208,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToManager.dll
[2014/05/16 14:19:33 | 000,510,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\timedate.cpl
[2014/05/16 14:19:33 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxtrans.dll
[2014/05/16 14:19:33 | 000,232,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sqmapi.dll
[2014/05/16 14:19:33 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netid.dll
[2014/05/16 14:19:33 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fsutil.exe
[2014/05/16 14:19:33 | 000,080,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskhostex.exe
[2014/05/16 14:19:32 | 000,399,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\das.dll
[2014/05/16 14:19:32 | 000,397,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sharemediacpl.dll
[2014/05/16 14:19:32 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchFilterHost.exe
[2014/05/16 14:19:32 | 000,146,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\msgpioclx.sys
[2014/05/16 14:19:32 | 000,043,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudNotifications.exe
[2014/05/16 14:19:31 | 000,897,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sdclt.exe
[2014/05/16 14:19:31 | 000,619,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserLanguagesCpl.dll
[2014/05/16 14:19:31 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fsutil.exe
[2014/05/16 14:19:31 | 000,041,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CloudNotifications.exe
[2014/05/16 14:19:30 | 000,924,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\refs.sys
[2014/05/16 14:19:30 | 000,660,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Bluetooth.dll
[2014/05/16 14:19:30 | 000,275,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\powrprof.dll
[2014/05/16 14:19:30 | 000,140,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wscapi.dll
[2014/05/16 14:19:30 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssprxy.dll
[2014/05/16 14:19:29 | 001,392,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMPDMC.exe
[2014/05/16 14:19:29 | 000,432,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\zipfldr.dll
[2014/05/16 14:19:29 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.Connectivity.dll
[2014/05/16 14:19:29 | 000,331,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\newdev.dll
[2014/05/16 14:19:29 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\BasicRender.sys
[2014/05/16 14:19:28 | 002,537,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\gameux.dll
[2014/05/16 14:19:28 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SndVolSSO.dll
[2014/05/16 14:19:28 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aepic.dll
[2014/05/16 14:19:28 | 000,079,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdstor.sys
[2014/05/16 14:19:27 | 000,470,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\timedate.cpl
[2014/05/16 14:19:27 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dmvdsitf.dll
[2014/05/16 14:19:27 | 000,101,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RestoreOptIn.exe
[2014/05/16 14:19:26 | 000,444,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\spwizeng.dll
[2014/05/16 14:19:26 | 000,137,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wermgr.exe
[2014/05/16 14:19:25 | 000,413,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wow64win.dll
[2014/05/16 14:19:25 | 000,336,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MbaeApiPublic.dll
[2014/05/16 14:19:25 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\microsoft-windows-kernel-power-events.dll
[2014/05/16 14:19:25 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockScreenContent.dll
[2014/05/16 14:19:25 | 000,032,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserAccountBroker.exe
[2014/05/16 14:19:24 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MicrosoftAccountTokenProvider.dll
[2014/05/16 14:19:24 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToManager.dll
[2014/05/16 14:19:23 | 000,835,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rasgcw.dll
[2014/05/16 14:19:23 | 000,391,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WLanConn.dll
[2014/05/16 14:19:22 | 000,094,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcd.dll
[2014/05/16 14:19:22 | 000,089,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\RestoreOptIn.exe
[2014/05/16 14:19:22 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxSysprep.dll
[2014/05/16 14:19:21 | 000,308,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\srchadmin.dll
[2014/05/16 14:19:21 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\newdev.dll
[2014/05/16 14:19:21 | 000,141,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dot3mm.dll
[2014/05/16 14:19:21 | 000,029,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserAccountBroker.exe
[2014/05/16 14:19:20 | 000,131,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\easinvoker.exe
[2014/05/16 14:19:20 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wscinterop.dll
[2014/05/16 14:19:19 | 003,312,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bootux.dll
[2014/05/16 14:19:19 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DAMM.dll
[2014/05/16 14:19:19 | 000,079,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bcd.dll
[2014/05/16 14:19:18 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WiFiDisplay.dll
[2014/05/16 14:19:17 | 000,071,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dumpfve.sys
[2014/05/16 14:19:16 | 000,213,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cleanmgr.exe
[2014/05/16 14:19:15 | 000,325,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBXHCI.SYS
[2014/05/16 14:19:15 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cleanmgr.exe
[2014/05/16 14:19:15 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\samlib.dll
[2014/05/16 14:19:15 | 000,054,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wpcfltr.sys
[2014/05/16 14:19:12 | 000,189,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UCX01000.SYS
[2014/05/16 14:19:12 | 000,162,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AuthHost.exe
[2014/05/16 14:19:11 | 000,203,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netiohlp.dll
[2014/05/16 14:19:11 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\deviceaccess.dll
[2014/05/16 14:19:10 | 000,260,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\BioCredProv.dll
[2014/05/16 14:19:10 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\korwbrkr.dll
[2014/05/16 14:19:10 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netid.dll
[2014/05/16 14:19:10 | 000,036,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WerFaultSecure.exe
[2014/05/16 14:19:10 | 000,033,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WerFaultSecure.exe
[2014/05/16 14:19:09 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dmvdsitf.dll
[2014/05/16 14:19:08 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\scrrun.dll
[2014/05/16 14:19:07 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\easwrt.dll
[2014/05/16 14:19:07 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netiohlp.dll
[2014/05/16 14:19:06 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netplwiz.dll
[2014/05/16 14:19:06 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CloudStorageWizard.exe
[2014/05/16 14:19:06 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\acppage.dll
[2014/05/16 14:19:06 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\JavaScriptCollectionAgent.dll
[2014/05/16 14:19:05 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\scrobj.dll
[2014/05/16 14:19:05 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dmdskmgr.dll
[2014/05/16 14:19:05 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wcmcsp.dll
[2014/05/16 14:19:04 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\scrrun.dll
[2014/05/16 14:19:04 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AuthBroker.dll
[2014/05/16 14:19:04 | 000,038,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockScreenContentServer.exe
[2014/05/16 14:19:04 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winbrand.dll
[2014/05/16 14:19:03 | 001,152,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wscui.cpl
[2014/05/16 14:19:03 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DWWIN.EXE
[2014/05/16 14:19:03 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MicrosoftAccountTokenProvider.dll
[2014/05/16 14:19:03 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\slpts.dll
[2014/05/16 14:19:02 | 000,557,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PrintDialogs.dll
[2014/05/16 14:19:02 | 000,251,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MbaeApiPublic.dll
[2014/05/16 14:19:02 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\deviceaccess.dll
[2014/05/16 14:19:01 | 000,902,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\autoconv.exe
[2014/05/16 14:19:01 | 000,874,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\autofmt.exe
[2014/05/16 14:19:01 | 000,610,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sud.dll
[2014/05/16 14:19:01 | 000,349,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcdedit.exe
[2014/05/16 14:19:01 | 000,283,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wbadmin.exe
[2014/05/16 14:19:01 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpnprv.dll
[2014/05/16 14:19:01 | 000,154,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netplwiz.dll
[2014/05/16 14:19:01 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.Sockets.PushEnabledApplication.dll
[2014/05/16 14:19:01 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Renewal.dll
[2014/05/16 14:19:01 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\acppage.dll
[2014/05/16 14:19:00 | 001,057,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\printui.dll
[2014/05/16 14:19:00 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppnp.dll
[2014/05/16 14:19:00 | 000,027,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SysResetErr.exe
[2014/05/16 14:18:59 | 000,545,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\untfs.dll
[2014/05/16 14:18:59 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlidcredprov.dll
[2014/05/16 14:18:59 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\scrobj.dll
[2014/05/16 14:18:59 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcdboot.exe
[2014/05/16 14:18:58 | 000,890,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\autochk.exe
[2014/05/16 14:18:58 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PkgMgr.exe
[2014/05/16 14:18:58 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\migisol.dll
[2014/05/16 14:18:58 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\spbcd.dll
[2014/05/16 14:18:58 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\setbcdlocale.dll
[2014/05/16 14:18:58 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\JavaScriptCollectionAgent.dll
[2014/05/16 14:18:58 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\slpts.dll
[2014/05/16 14:18:57 | 000,800,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\autoconv.exe
[2014/05/16 14:18:57 | 000,792,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\autochk.exe
[2014/05/16 14:18:57 | 000,780,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\autofmt.exe
[2014/05/16 14:18:57 | 000,484,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\untfs.dll
[2014/05/16 14:18:57 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DAConn.dll
[2014/05/16 14:18:57 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winbrand.dll
[2014/05/16 14:18:56 | 000,439,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Bluetooth.dll
[2014/05/16 14:18:56 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\IdCtrls.dll
[2014/05/16 14:18:56 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafBth.dll
[2014/05/16 14:18:56 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WindowsAnytimeUpgradeResults.exe
[2014/05/16 14:18:56 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhevents.dll
[2014/05/16 14:18:56 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UXInit.dll
[2014/05/16 14:18:55 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DWWIN.EXE
[2014/05/16 14:18:55 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AuthBroker.dll
[2014/05/16 14:18:55 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\spcompat.dll
[2014/05/16 14:18:54 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cscript.exe
[2014/05/16 14:18:54 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vdsutil.dll
[2014/05/16 14:18:54 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.Sockets.PushEnabledApplication.dll
[2014/05/16 14:18:54 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\StorageContextHandler.dll
[2014/05/16 14:18:54 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\watchdog.sys
[2014/05/16 14:18:53 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\spwizeng.dll
[2014/05/16 14:18:53 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\diskpart.exe
[2014/05/16 14:18:53 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\spbcd.dll
[2014/05/16 14:18:53 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\energytask.dll
[2014/05/16 14:18:52 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\devinv.dll
[2014/05/16 14:18:52 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\werui.dll
[2014/05/16 14:18:52 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\powercfg.exe
[2014/05/16 14:18:49 | 000,592,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sud.dll
[2014/05/16 14:18:49 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RelPost.exe
[2014/05/16 14:18:48 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pnpclean.dll
[2014/05/16 14:18:47 | 000,544,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlidcli.dll
[2014/05/16 14:18:47 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingMonitor.dll
[2014/05/16 14:18:47 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\deviceassociation.dll
[2014/05/16 14:18:46 | 000,269,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PlayToDevice.dll
[2014/05/16 14:18:46 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingMonitor.dll
[2014/05/16 14:18:46 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dasHost.exe
[2014/05/16 14:18:45 | 001,136,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wscui.cpl
[2014/05/16 14:18:45 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\qedit.dll
[2014/05/16 14:18:45 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srrstr.dll
[2014/05/16 14:18:44 | 000,586,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\qedit.dll
[2014/05/16 14:18:44 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\offreg.dll
[2014/05/16 14:18:44 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ReAgentc.exe
[2014/05/16 14:18:43 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PrintDialogs.dll
[2014/05/16 14:18:43 | 000,299,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.dll
[2014/05/16 14:18:43 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winsku.dll
[2014/05/16 14:18:43 | 000,224,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ActionQueue.dll
[2014/05/16 14:18:43 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CloudStorageWizard.exe
[2014/05/16 14:18:43 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SSShim.dll
[2014/05/16 14:18:43 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\offreg.dll
[2014/05/16 14:18:42 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dfrgui.exe
[2014/05/16 14:18:42 | 000,203,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PlayToDevice.dll
[2014/05/16 14:18:42 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\IdCtrls.dll
[2014/05/16 14:18:42 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\deviceassociation.dll
[2014/05/16 14:18:42 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msshooks.dll
[2014/05/16 14:18:41 | 000,559,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserLanguagesCpl.dll
[2014/05/16 14:18:41 | 000,468,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemSettings.Handlers.dll
[2014/05/16 14:18:41 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\werui.dll
[2014/05/16 14:18:41 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\powercfg.exe
[2014/05/16 14:18:41 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mf3216.dll
[2014/05/16 14:18:40 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\migisol.dll
[2014/05/16 14:18:40 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\f3ahvoas.dll
[2014/05/16 14:18:39 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wshom.ocx
[2014/05/16 14:18:39 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SrTasks.exe
[2014/05/16 14:18:39 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ReAgentc.exe
[2014/05/16 14:18:38 | 000,589,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vdsdyn.dll
[2014/05/16 14:18:38 | 000,561,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dfrgui.exe
[2014/05/16 14:18:38 | 000,316,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winsku.dll
[2014/05/16 14:18:38 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\easwrt.dll
[2014/05/16 14:18:37 | 002,566,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\themecpl.dll
[2014/05/16 14:18:37 | 000,504,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DevicePairing.dll
[2014/05/16 14:18:37 | 000,183,808 | ---- | C] (Microsoft Corp.) -- C:\WINDOWS\SysNative\Defrag.exe
[2014/05/16 14:18:37 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AepRoam.dll
[2014/05/16 14:18:37 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LockScreenContentHost.dll
[2014/05/16 14:18:35 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\diskpart.exe
[2014/05/16 14:18:35 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cscript.exe
[2014/05/16 14:18:35 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sxshared.dll
[2014/05/16 14:18:34 | 000,208,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.dll
[2014/05/16 14:18:34 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ConfigureExpandedStorage.dll
[2014/05/16 14:18:34 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ConfigureExpandedStorage.dll
[2014/05/16 14:18:34 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msshooks.dll
[2014/05/16 14:18:33 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\scavengeui.dll
[2014/05/16 14:18:30 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iesetup.dll
[2014/05/16 14:18:29 | 000,355,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wincorlib.dll
[2014/05/16 14:18:28 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\setupugc.exe
[2014/05/16 14:18:28 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ext-ms-win-session-winsta-l1-1-0.dll
[2014/05/16 14:18:27 | 000,256,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wincorlib.dll
[2014/05/16 14:18:24 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BulkOperationHost.exe
[2014/05/16 14:18:24 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UXInit.dll
[2014/05/16 14:18:23 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\syncui.dll
[2014/05/16 14:18:22 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncPolicy.dll
[2014/05/16 14:18:21 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\finger.exe
[2014/05/16 14:18:20 | 002,544,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\themecpl.dll
[2014/05/16 14:18:20 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpdxm.dll
[2014/05/16 14:18:20 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncPolicy.dll
[2014/05/16 14:18:19 | 000,323,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GlobCollationHost.dll
[2014/05/16 14:18:19 | 000,162,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ocsetapi.dll
[2014/05/16 14:18:18 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GlobCollationHost.dll
[2014/05/16 14:18:18 | 000,163,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ocsetapi.dll
[2014/05/16 14:18:18 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StorageContextHandler.dll
[2014/05/16 14:18:18 | 000,005,632 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ext-ms-win-session-winsta-l1-1-0.dll
[2014/05/16 14:18:17 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aitagent.exe
[2014/05/16 14:18:17 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dataclen.dll
[2014/05/16 14:18:16 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\korwbrkr.dll
[2014/05/16 14:18:15 | 000,113,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shsetup.dll
[2014/05/16 14:18:15 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ext-ms-win-kernel32-package-l1-1-1.dll
[2014/05/16 14:18:15 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ext-ms-win-kernel32-package-l1-1-1.dll
[2014/05/16 14:18:13 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bthprops.cpl
[2014/05/16 14:18:13 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dataclen.dll
[2014/05/16 14:18:12 | 000,527,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aeinv.dll
[2014/05/16 14:18:12 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhsvcctl.dll
[2014/05/16 14:18:12 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lpksetupproxyserv.dll
[2014/05/16 14:18:12 | 000,008,192 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ext-ms-win-ntuser-private-l1-1-1.dll
[2014/05/16 14:18:12 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shimeng.dll
[2014/05/16 14:18:11 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msdxm.ocx
[2014/05/16 14:18:11 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxmasf.dll
[2014/05/16 14:18:11 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ext-ms-win-ntuser-private-l1-1-0.dll
[2014/05/16 14:18:10 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winbici.dll
[2014/05/16 14:18:10 | 000,008,192 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ext-ms-win-ntuser-private-l1-1-1.dll
[2014/05/16 14:18:10 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ext-ms-win-ntuser-private-l1-1-0.dll
[2014/05/16 14:18:09 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\occache.dll
[2014/05/16 14:18:09 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\occache.dll
[2014/05/16 14:18:09 | 000,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveskybackup.dll
[2014/05/16 14:18:09 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\finger.exe
[2014/05/16 14:18:09 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ext-ms-win-networking-wcmapi-l1-1-0.dll
Re: Otvíraní nechtěných webových stránek prosím kontrolu log
[2014/05/16 14:18:08 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\f3ahvoas.dll
[2014/05/16 14:16:23 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\uTorrent
[2014/05/16 13:58:10 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Skype
[2014/05/16 13:58:03 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\Skype
[2014/05/16 13:43:34 | 000,318,800 | ---- | C] (ELAN Microelectronics Corp.) -- C:\WINDOWS\SysNative\drivers\ETD.sys
[2014/05/16 13:40:25 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp
[2014/05/16 13:39:12 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneKey Recovery
[2014/05/16 13:39:11 | 000,102,376 | ---- | C] ("CyberLink) -- C:\WINDOWS\SysNative\drivers\wsvd.sys
[2014/05/16 13:39:11 | 000,000,000 | ---D | C] -- C:\ProgramData\OneKey Recovery
[2014/05/16 13:36:04 | 006,334,096 | ---- | C] (Realtek semiconductor) -- C:\WINDOWS\RTFTrack.exe
[2014/05/16 13:35:50 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2014/05/16 13:35:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2014/05/16 13:35:14 | 000,053,248 | R--- | C] (Windows XP Bundled build C-Centric Single User) -- C:\WINDOWS\SysWow64\CSVer.dll
[2014/05/16 13:32:33 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Shell.Search.UriHandler.dll
[2014/05/16 13:32:29 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Shell.Search.UriHandler.dll
[2014/05/16 13:32:27 | 002,900,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msftedit.dll
[2014/05/16 13:32:26 | 002,641,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll
[2014/05/16 13:32:26 | 002,373,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2014/05/16 13:32:26 | 001,306,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll
[2014/05/16 13:32:25 | 002,317,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll
[2014/05/16 13:32:25 | 002,141,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d11.dll
[2014/05/16 13:32:25 | 002,133,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll
[2014/05/16 13:32:25 | 002,088,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\explorer.exe
[2014/05/16 13:32:24 | 002,270,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msftedit.dll
[2014/05/16 13:32:24 | 001,542,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ole32.dll
[2014/05/16 13:32:24 | 001,112,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KernelBase.dll
[2014/05/16 13:32:23 | 001,779,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d11.dll
[2014/05/16 13:32:23 | 001,764,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dwmcore.dll
[2014/05/16 13:32:22 | 001,291,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kernel32.dll
[2014/05/16 13:32:22 | 000,950,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ReAgent.dll
[2014/05/16 13:32:22 | 000,918,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MrmCoreR.dll
[2014/05/16 13:32:22 | 000,512,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidprov.dll
[2014/05/16 13:32:21 | 001,339,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32.dll
[2014/05/16 13:32:21 | 000,800,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ReAgent.dll
[2014/05/16 13:32:21 | 000,655,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dnsapi.dll
[2014/05/16 13:32:21 | 000,629,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MrmCoreR.dll
[2014/05/16 13:32:21 | 000,518,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxgi.dll
[2014/05/16 13:32:21 | 000,356,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dcomp.dll
[2014/05/16 13:32:20 | 001,656,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GdiPlus.dll
[2014/05/16 13:32:20 | 000,834,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netlogon.dll
[2014/05/16 13:32:20 | 000,669,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasapi32.dll
[2014/05/16 13:32:20 | 000,379,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys
[2014/05/16 13:32:20 | 000,356,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlidprov.dll
[2014/05/16 13:32:20 | 000,157,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wof.sys
[2014/05/16 13:32:19 | 001,351,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GdiPlus.dll
[2014/05/16 13:32:19 | 000,720,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapi.dll
[2014/05/16 13:32:19 | 000,376,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\clfs.sys
[2014/05/16 13:32:19 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentClient.dll
[2014/05/16 13:32:19 | 000,247,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsApi.dll
[2014/05/16 13:32:19 | 000,222,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dcomp.dll
[2014/05/16 13:32:18 | 000,621,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDMAgent.exe
[2014/05/16 13:32:18 | 000,488,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netcfgx.dll
[2014/05/16 13:32:18 | 000,390,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netcfgx.dll
[2014/05/16 13:32:18 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppXDeploymentClient.dll
[2014/05/16 13:32:18 | 000,171,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SensorsApi.dll
[2014/05/16 13:32:17 | 001,015,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aclui.dll
[2014/05/16 13:32:17 | 000,924,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.dll
[2014/05/16 13:32:17 | 000,563,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AdmTmpl.dll
[2014/05/16 13:32:17 | 000,467,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBHUB3.SYS
[2014/05/16 13:32:17 | 000,462,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlangpui.dll
[2014/05/16 13:32:17 | 000,412,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FWPUCLNT.DLL
[2014/05/16 13:32:17 | 000,360,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfreadwrite.dll
[2014/05/16 13:32:17 | 000,355,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfreadwrite.dll
[2014/05/16 13:32:17 | 000,299,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pdh.dll
[2014/05/16 13:32:17 | 000,291,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Sensors.dll
[2014/05/16 13:32:17 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Sensors.dll
[2014/05/16 13:32:17 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdd.dll
[2014/05/16 13:32:17 | 000,201,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ReInfo.dll
[2014/05/16 13:32:17 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxAllUserStore.dll
[2014/05/16 13:32:17 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxAllUserStore.dll
[2014/05/16 13:32:17 | 000,113,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\userenv.dll
[2014/05/16 13:32:17 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\davclnt.dll
[2014/05/16 13:32:16 | 001,843,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Display.dll
[2014/05/16 13:32:16 | 001,816,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Display.dll
[2014/05/16 13:32:16 | 000,887,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\aclui.dll
[2014/05/16 13:32:16 | 000,731,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\adtschema.dll
[2014/05/16 13:32:16 | 000,731,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\adtschema.dll
[2014/05/16 13:32:16 | 000,542,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Graphics.Printing.dll
[2014/05/16 13:32:16 | 000,444,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AdmTmpl.dll
[2014/05/16 13:32:16 | 000,402,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Graphics.Printing.dll
[2014/05/16 13:32:16 | 000,386,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlangpui.dll
[2014/05/16 13:32:16 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LocationApi.dll
[2014/05/16 13:32:16 | 000,298,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSDMon.dll
[2014/05/16 13:32:16 | 000,271,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\spp.dll
[2014/05/16 13:32:16 | 000,264,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\FWPUCLNT.DLL
[2014/05/16 13:32:16 | 000,254,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\pdh.dll
[2014/05/16 13:32:16 | 000,210,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapibase.dll
[2014/05/16 13:32:16 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Scanners.dll
[2014/05/16 13:32:16 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafWfdProvider.dll
[2014/05/16 13:32:16 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ReInfo.dll
[2014/05/16 13:32:16 | 000,136,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wfplwfs.sys
[2014/05/16 13:32:16 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hidclass.sys
[2014/05/16 13:32:16 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drvinst.exe
[2014/05/16 13:32:16 | 000,100,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BitLockerDeviceEncryption.exe
[2014/05/16 13:32:16 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drvinst.exe
[2014/05/16 13:32:16 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RMapi.dll
[2014/05/16 13:32:16 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\w32tm.exe
[2014/05/16 13:32:16 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\w32tm.exe
[2014/05/16 13:32:16 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drvcfg.exe
[2014/05/16 13:32:16 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CredentialMigrationHandler.dll
[2014/05/16 13:32:16 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CredentialMigrationHandler.dll
[2014/05/16 13:32:15 | 000,794,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fvewiz.dll
[2014/05/16 13:32:15 | 000,717,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nshwfp.dll
[2014/05/16 13:32:15 | 000,567,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\nshwfp.dll
[2014/05/16 13:32:15 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WsmWmiPl.dll
[2014/05/16 13:32:15 | 000,262,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LocationApi.dll
[2014/05/16 13:32:15 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Scanners.dll
[2014/05/16 13:32:15 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BdeHdCfg.exe
[2014/05/16 13:32:15 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DevPropMgr.dll
[2014/05/16 13:32:15 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BdeHdCfgLib.dll
[2014/05/16 13:32:15 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sxproxy.dll
[2014/05/16 13:32:15 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\l2gpstore.dll
[2014/05/16 13:32:15 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\l2gpstore.dll
[2014/05/16 13:32:15 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SetNetworkLocation.dll
[2014/05/16 13:32:15 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sxproxy.dll
[2014/05/16 13:27:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\Embedded
[2014/05/16 12:58:57 | 000,000,000 | R--D | C] -- C:\WINDOWS\BrowserChoice
[2014/05/16 12:54:51 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\Apple Computer
[2014/05/16 12:54:51 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Apple Computer
[2014/05/16 12:54:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\DRVSTORE
[2014/05/16 12:54:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2014/05/16 12:52:50 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Apple
[2014/05/16 12:52:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2014/05/16 12:52:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2014/05/16 12:52:34 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2014/05/16 12:52:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bonjour
[2014/05/16 12:52:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2014/05/16 12:52:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
[2014/05/16 12:42:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\MRT
[2014/05/16 12:28:55 | 001,147,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAutomationCore.dll
[2014/05/16 12:28:54 | 001,067,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfasfsrcsnk.dll
[2014/05/16 12:28:54 | 000,920,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCore.dll
[2014/05/16 12:28:54 | 000,883,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfasfsrcsnk.dll
[2014/05/16 12:28:53 | 001,160,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Web.Http.dll
[2014/05/16 12:28:53 | 000,699,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d10level9.dll
[2014/05/16 12:28:53 | 000,578,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.BackgroundTransfer.dll
[2014/05/16 12:28:52 | 001,011,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TSWorkspace.dll
[2014/05/16 12:28:52 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Web.Http.dll
[2014/05/16 12:28:52 | 000,411,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.BackgroundTransfer.dll
[2014/05/16 12:28:50 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eapphost.dll
[2014/05/16 12:28:47 | 000,391,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tsmf.dll
[2014/05/16 12:28:47 | 000,171,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kd_02_8086.dll
[2014/05/16 12:28:46 | 000,795,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TSWorkspace.dll
[2014/05/16 12:28:46 | 000,345,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tsmf.dll
[2014/05/16 12:28:46 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eapp3hst.dll
[2014/05/16 12:28:45 | 000,286,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pcsvDevice.dll
[2014/05/16 12:28:45 | 000,262,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eapphost.dll
[2014/05/16 12:28:45 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msched.dll
[2014/05/16 12:28:45 | 000,096,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\embeddedapplauncher.exe
[2014/05/16 12:28:44 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TSWbPrxy.exe
[2014/05/16 12:28:44 | 000,057,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\stornvme.sys
[2014/05/16 12:28:44 | 000,044,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wldp.dll
[2014/05/16 12:28:43 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eappcfg.dll
[2014/05/16 12:28:43 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieetwcollector.exe
[2014/05/16 12:28:43 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\shsetup.dll
[2014/05/16 12:28:42 | 000,272,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eappcfg.dll
[2014/05/16 12:28:42 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eapp3hst.dll
[2014/05/16 12:28:42 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eappgnui.dll
[2014/05/16 12:28:42 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eappgnui.dll
[2014/05/16 12:28:41 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ftp.exe
[2014/05/16 12:28:40 | 000,338,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpclip.exe
[2014/05/16 12:28:40 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\miutils.dll
[2014/05/16 12:28:40 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\miutils.dll
[2014/05/16 12:28:40 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ftp.exe
[2014/05/16 12:27:19 | 003,210,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msmpeg2vdec.dll
[2014/05/16 12:27:19 | 002,804,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msmpeg2vdec.dll
[2014/05/16 12:27:15 | 000,282,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemEventsBrokerServer.dll
[2014/05/16 12:27:14 | 000,809,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll
[2014/05/16 12:27:14 | 000,470,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfds.dll
[2014/05/16 12:27:13 | 000,663,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll
[2014/05/16 12:27:13 | 000,433,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfds.dll
[2014/05/16 12:27:13 | 000,273,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Graphics.dll
[2014/05/16 12:27:12 | 000,589,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rastls.dll
[2014/05/16 12:27:12 | 000,306,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msieftp.dll
[2014/05/16 12:27:12 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Graphics.dll
[2014/05/16 12:27:11 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bi.dll
[2014/05/16 12:27:10 | 000,513,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rastls.dll
[2014/05/16 12:27:10 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msieftp.dll
[2014/05/16 12:27:10 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\deviceregistration.dll
[2014/05/16 12:27:10 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\BtaMPM.sys
[2014/05/16 12:23:17 | 000,842,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MsSpellCheckingFacility.dll
[2014/05/16 12:23:15 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MsSpellCheckingFacility.dll
[2014/05/16 12:23:15 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sti.dll
[2014/05/16 12:19:29 | 000,039,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\intelpep.sys
[2014/05/16 12:19:20 | 000,449,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\appmgr.dll
[2014/05/16 12:19:20 | 000,146,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\SerCx2.sys
[2014/05/16 12:19:20 | 000,086,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\pdc.sys
[2014/05/16 12:19:18 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\appmgr.dll
[2014/05/16 12:10:26 | 004,175,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dbgeng.dll
[2014/05/16 12:10:25 | 002,873,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dbgeng.dll
[2014/05/16 12:10:25 | 001,486,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dbghelp.dll
[2014/05/16 12:10:24 | 001,238,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dbghelp.dll
[2014/05/16 12:10:23 | 000,447,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppcomapi.dll
[2014/05/16 12:10:23 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tsgqec.dll
[2014/05/16 12:09:01 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSCollect.exe
[2014/05/16 12:05:58 | 000,570,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msdrm.dll
[2014/05/16 12:05:30 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\poqexec.exe
[2014/05/16 12:05:30 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\poqexec.exe
[2014/05/16 12:05:19 | 000,000,000 | ---D | C] -- C:\ProgramData\REPORTS
[2014/05/16 12:05:19 | 000,000,000 | ---D | C] -- C:\ProgramData\LOGFILES
[2014/05/16 12:05:19 | 000,000,000 | ---D | C] -- C:\ProgramData\INFECTED
[2014/05/16 12:04:43 | 004,604,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d2d1.dll
[2014/05/16 12:04:42 | 002,397,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d10warp.dll
[2014/05/16 12:04:41 | 000,075,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\imagehlp.dll
[2014/05/16 12:04:02 | 001,943,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\crypt32.dll
[2014/05/16 12:01:17 | 000,393,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMPhoto.dll
[2014/05/16 12:01:17 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMPhoto.dll
[2014/05/16 11:59:32 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pcaui.exe
[2014/05/16 11:59:32 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\pcaui.exe
[2014/05/16 11:26:00 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe
[2014/05/16 11:24:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe AIR
[2014/05/16 11:24:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2014/05/16 11:24:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2014/05/16 11:23:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2014/05/16 11:22:59 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Adobe
[2014/05/16 11:09:37 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\GHISLER
[2014/05/16 10:55:29 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
[2014/05/16 10:52:24 | 000,000,000 | ---D | C] -- C:\ProgramData\CDB
[2014/05/16 10:50:36 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2014/05/16 10:46:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel
[2014/05/16 10:46:01 | 000,064,000 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysNative\OpenCL.DLL
[2014/05/16 10:46:01 | 000,060,416 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysWow64\OpenCL.DLL
[2014/05/16 10:45:56 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2014/05/16 10:45:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel
[2014/05/16 10:41:49 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\Macromedia
[2014/05/16 10:34:49 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\Maxthon3
[2014/05/16 10:34:47 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2014/05/16 10:34:43 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2014/05/16 10:34:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2014/05/16 10:16:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico
[2014/05/16 10:16:02 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Programs
[2014/05/16 10:13:47 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\SkyDrive
[2014/05/16 10:12:11 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2014/05/16 10:12:11 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\Searches
[2014/05/16 10:12:11 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2014/05/16 10:12:10 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\Contacts
[2014/05/16 10:12:08 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\VirtualStore
[2014/05/16 10:12:08 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\Adobe
[2014/05/16 10:12:07 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Packages
[2014/05/16 10:11:19 | 000,000,000 | --SD | C] -- C:\Users\pabuk_000\AppData\Roaming\Microsoft
[2014/05/16 10:11:19 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
[2014/05/16 10:11:19 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\Saved Games
[2014/05/16 10:11:19 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\Links
[2014/05/16 10:11:19 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\Favorites
[2014/05/16 10:11:19 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\Downloads
[2014/05/16 10:11:19 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\Desktop
[2014/05/16 10:11:19 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2014/05/16 10:11:19 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\AppData\Local\Temporary Internet Files
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\Soubory cookie
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\SendTo
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\Šablony
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\Poslední
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\Okolní tiskárny
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\Okolní síť
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\Nabídka Start
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\Local Settings
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\AppData\Local\History
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\Dokumenty
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\Data aplikací
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\AppData\Local\Data aplikací
[2014/05/16 10:11:19 | 000,000,000 | -H-D | C] -- C:\Users\pabuk_000\AppData
[2014/05/16 10:11:19 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Temp
[2014/05/16 10:11:19 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Microsoft
[2014/05/16 10:11:19 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2014/05/16 09:49:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\Panther
[2014/05/16 09:48:07 | 000,000,000 | ---D | C] -- C:\Windows.old
[2014/05/16 09:47:11 | 000,000,000 | ---D | C] -- C:\Recovery
[2014/05/16 09:02:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\CSC
[2014/05/16 08:53:45 | 000,000,000 | -HSD | C] -- C:\ProgramData\Šablony
[2014/05/16 08:53:45 | 000,000,000 | -HSD | C] -- C:\ProgramData\Plocha
[2014/05/16 08:53:45 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Obrázky
[2014/05/16 08:53:45 | 000,000,000 | -HSD | C] -- C:\ProgramData\Nabídka Start
[2014/05/16 08:53:45 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Hudba
[2014/05/16 08:53:45 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Filmy
[2014/05/16 08:53:45 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2014/05/16 08:53:45 | 000,000,000 | -HSD | C] -- C:\ProgramData\Data aplikací
[2014/05/16 08:53:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2014/05/16 08:50:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2014/05/15 18:46:33 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2014/05/15 09:09:25 | 000,000,000 | -HSD | C] -- C:\Boot
[2014/05/14 16:07:53 | 000,000,000 | ---D | C] -- D:\Dokumenty\Virtualbox
========== Files - Modified Within 30 Days ==========
[2014/05/27 11:08:55 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014/05/27 11:05:57 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\pabuk_000\Desktop\OTL.exe
[2014/05/27 10:26:04 | 001,222,144 | ---- | M] () -- C:\Users\pabuk_000\Desktop\RSITx64.exe
[2014/05/27 10:20:41 | 001,745,984 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2014/05/27 10:20:41 | 000,744,206 | ---- | M] () -- C:\WINDOWS\SysNative\perfh005.dat
[2014/05/27 10:20:41 | 000,735,948 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2014/05/27 10:20:41 | 000,155,700 | ---- | M] () -- C:\WINDOWS\SysNative\perfc005.dat
[2014/05/27 10:20:41 | 000,139,812 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2014/05/27 10:19:32 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014/05/27 00:01:18 | 000,000,741 | R--- | M] () -- C:\WINDOWS\SysNative\drivers\etc\hosts
[2014/05/26 18:04:09 | 000,118,807 | ---- | M] () -- C:\Users\pabuk_000\Desktop\Letáček - nejnovější.pdf
[2014/05/26 16:53:37 | 003,972,608 | ---- | M] () -- C:\Users\pabuk_000\Desktop\RogueKiller.exe
[2014/05/26 15:47:36 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2014/05/26 15:47:35 | 3319,873,536 | -HS- | M] () -- C:\hiberfil.sys
[2014/05/26 15:36:45 | 001,327,971 | ---- | M] () -- C:\Users\pabuk_000\Desktop\adwcleaner_3.211.exe
[2014/05/26 15:31:26 | 000,000,075 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2014/05/23 15:40:18 | 000,001,088 | ---- | M] () -- C:\Users\pabuk_000\AppData\Local\MRDownloader.nast
[2014/05/23 15:39:38 | 000,000,805 | ---- | M] () -- C:\Users\pabuk_000\AppData\Local\MRDownloader.err
[2014/05/23 11:43:01 | 000,001,258 | ---- | M] () -- C:\Users\Public\Desktop\Play The Sims™ 3.lnk
[2014/05/22 10:56:14 | 000,335,784 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2014/05/21 17:13:51 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
[2014/05/18 16:25:04 | 000,400,204 | ---- | M] () -- C:\Users\pabuk_000\Desktop\24a9a8f683b6.pdf
[2014/05/18 07:37:13 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
[2014/05/18 07:33:49 | 000,000,941 | ---- | M] () -- C:\Users\Public\Desktop\TELL ME MORE Performance.lnk
[2014/05/18 07:33:49 | 000,000,011 | ---- | M] () -- C:\trace.ini
[2014/05/18 07:32:37 | 000,283,200 | ---- | M] (DT Soft Ltd) -- C:\WINDOWS\SysNative\drivers\dtsoftbus01.sys
[2014/05/17 20:09:32 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_User_LocationProvider_01_11_00.Wdf
[2014/05/16 14:51:17 | 000,018,656 | ---- | M] () -- C:\WINDOWS\SysNative\results.xml
[2014/05/16 14:40:53 | 002,356,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WudfUpdate_01011.dll
[2014/05/16 14:39:16 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
[2014/05/16 13:41:41 | 000,000,000 | -H-- | M] () -- C:\ProgramData\DP45977C.lfl
[2014/05/16 12:43:30 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
[2014/05/16 11:20:54 | 000,002,618 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\etc\hosts.20140525-022154.backup
[2014/05/16 11:20:54 | 000,002,618 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\etc\hosts.20140522-161312.backup
[2014/05/16 11:20:54 | 000,002,618 | ---- | M] () -- D:\Dokumenty\hosts
[2014/05/16 10:52:45 | 000,000,136 | ---- | M] () -- C:\WINDOWS\Reimage.ini
[2014/05/16 10:16:32 | 000,004,608 | ---- | M] () -- C:\WINDOWS\SECOH-QAD.exe
[2014/05/16 10:16:32 | 000,003,584 | ---- | M] () -- C:\WINDOWS\SECOH-QAD.dll
[2014/05/16 09:36:45 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2014/05/16 08:50:30 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2014/05/14 19:07:09 | 000,012,522 | ---- | M] () -- C:\WirelessDiagLog.csv
[2014/05/06 04:00:47 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mshtmled.dll
[2014/05/06 03:10:52 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mshtmled.dll
========== Files Created - No Company Name ==========
[2014/05/27 11:08:55 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014/05/27 10:26:04 | 001,222,144 | ---- | C] () -- C:\Users\pabuk_000\Desktop\RSITx64.exe
[2014/05/26 18:04:09 | 000,118,807 | ---- | C] () -- C:\Users\pabuk_000\Desktop\Letáček - nejnovější.pdf
[2014/05/26 16:53:37 | 003,972,608 | ---- | C] () -- C:\Users\pabuk_000\Desktop\RogueKiller.exe
[2014/05/26 15:36:45 | 001,327,971 | ---- | C] () -- C:\Users\pabuk_000\Desktop\adwcleaner_3.211.exe
[2014/05/26 15:31:23 | 000,000,075 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2014/05/25 10:37:01 | 000,000,778 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2014/05/24 22:45:31 | 000,605,496 | ---- | C] () -- C:\WINDOWS\SysNative\audioLibVc.dll
[2014/05/24 22:45:31 | 000,109,848 | ---- | C] () -- C:\WINDOWS\SysNative\AcpiServiceVnA64.dll
[2014/05/23 15:31:20 | 000,000,805 | ---- | C] () -- C:\Users\pabuk_000\AppData\Local\MRDownloader.err
[2014/05/23 11:43:01 | 000,001,258 | ---- | C] () -- C:\Users\Public\Desktop\Play The Sims™ 3.lnk
[2014/05/21 17:34:12 | 005,680,680 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\rtvienna.dat
[2014/05/21 17:34:09 | 000,638,209 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTAIODAT.DAT
[2014/05/21 17:13:51 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
[2014/05/18 16:25:04 | 000,400,204 | ---- | C] () -- C:\Users\pabuk_000\Desktop\24a9a8f683b6.pdf
[2014/05/18 07:37:13 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
[2014/05/18 07:33:49 | 000,000,941 | ---- | C] () -- C:\Users\Public\Desktop\TELL ME MORE Performance.lnk
[2014/05/18 07:33:49 | 000,000,011 | ---- | C] () -- C:\trace.ini
[2014/05/17 20:09:32 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_User_LocationProvider_01_11_00.Wdf
[2014/05/17 09:37:43 | 000,000,788 | ---- | C] () -- C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\KMPlayer.lnk
[2014/05/16 15:21:59 | 003,435,888 | ---- | C] () -- C:\WINDOWS\SysNative\nvcoproc.bin
[2014/05/16 14:51:17 | 000,018,656 | ---- | C] () -- C:\WINDOWS\SysNative\results.xml
[2014/05/16 14:39:16 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
[2014/05/16 14:34:47 | 000,002,980 | ---- | C] () -- C:\WINDOWS\SysNative\iglhxs64.vp
[2014/05/16 14:34:45 | 000,012,288 | ---- | C] ( ) -- C:\WINDOWS\SysNative\IGFXDEVLib.dll
[2014/05/16 14:34:44 | 000,365,568 | ---- | C] () -- C:\WINDOWS\SysNative\igdmd64.dll
[2014/05/16 14:34:44 | 000,303,104 | ---- | C] () -- C:\WINDOWS\SysWow64\igdmd32.dll
[2014/05/16 14:34:42 | 000,220,672 | ---- | C] () -- C:\WINDOWS\SysNative\igdde64.dll
[2014/05/16 14:34:42 | 000,180,736 | ---- | C] () -- C:\WINDOWS\SysWow64\igdde32.dll
[2014/05/16 14:34:42 | 000,160,256 | ---- | C] () -- C:\WINDOWS\SysNative\igdail64.dll
[2014/05/16 14:34:42 | 000,142,848 | ---- | C] () -- C:\WINDOWS\SysWow64\igdail32.dll
[2014/05/16 14:34:39 | 002,384,896 | ---- | C] () -- C:\WINDOWS\SysNative\GfxRes.dll
[2014/05/16 14:34:39 | 000,265,221 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.th-TH.resources
[2014/05/16 14:34:39 | 000,251,734 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.el-GR.resources
[2014/05/16 14:34:39 | 000,233,456 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.ru-RU.resources
[2014/05/16 14:34:39 | 000,199,353 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.ar-SA.resources
[2014/05/16 14:34:39 | 000,196,916 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.ja-JP.resources
[2014/05/16 14:34:39 | 000,190,958 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.he-IL.resources
[2014/05/16 14:34:39 | 000,179,225 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.ko-KR.resources
[2014/05/16 14:34:39 | 000,179,110 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.it-IT.resources
[2014/05/16 14:34:39 | 000,176,823 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.es-ES.resources
[2014/05/16 14:34:39 | 000,176,557 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.fr-FR.resources
[2014/05/16 14:34:39 | 000,176,510 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.de-DE.resources
[2014/05/16 14:34:39 | 000,175,131 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.ro-RO.resources
[2014/05/16 14:34:39 | 000,174,116 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.hu-HU.resources
[2014/05/16 14:34:39 | 000,173,825 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.tr-TR.resources
[2014/05/16 14:34:39 | 000,173,685 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.pl-PL.resources
[2014/05/16 14:34:39 | 000,173,366 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.nl-NL.resources
[2014/05/16 14:34:39 | 000,172,633 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.pt-BR.resources
[2014/05/16 14:34:39 | 000,171,913 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.fi-FI.resources
[2014/05/16 14:34:39 | 000,171,581 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.sk-SK.resources
[2014/05/16 14:34:39 | 000,171,419 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.sv-SE.resources
[2014/05/16 14:34:39 | 000,171,189 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.pt-PT.resources
[2014/05/16 14:34:39 | 000,170,868 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.cs-CZ.resources
[2014/05/16 14:34:39 | 000,170,047 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.hr-HR.resources
[2014/05/16 14:34:39 | 000,166,544 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.sl-SI.resources
[2014/05/16 14:34:39 | 000,165,246 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.nb-NO.resources
[2014/05/16 14:34:39 | 000,164,570 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.da-DK.resources
[2014/05/16 14:34:39 | 000,159,819 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.en-US.resources
[2014/05/16 14:34:39 | 000,153,121 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.zh-TW.resources
[2014/05/16 14:34:39 | 000,151,342 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.zh-CN.resources
[2014/05/16 14:21:54 | 000,139,600 | ---- | C] () -- C:\WINDOWS\SysNative\systemsf.ebd
[2014/05/16 14:20:28 | 000,262,335 | ---- | C] () -- C:\WINDOWS\SysNative\dfpinc.dat
[2014/05/16 14:18:53 | 000,002,255 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2014/05/16 14:18:52 | 000,002,255 | ---- | C] () -- C:\WINDOWS\SysNative\WimBootCompress.ini
[2014/05/16 14:18:20 | 000,100,197 | ---- | C] () -- C:\WINDOWS\SysWow64\RacRules.xml
[2014/05/16 14:18:19 | 000,100,197 | ---- | C] () -- C:\WINDOWS\SysNative\RacRules.xml
[2014/05/16 14:18:19 | 000,007,762 | ---- | C] () -- C:\WINDOWS\SysWow64\connectedsearch-suggestions.searchconnector-ms
[2014/05/16 14:18:19 | 000,007,130 | ---- | C] () -- C:\WINDOWS\SysWow64\connectedsearch-zeroinput.searchconnector-ms
[2014/05/16 14:18:19 | 000,007,130 | ---- | C] () -- C:\WINDOWS\SysNative\connectedsearch-zeroinput.searchconnector-ms
[2014/05/16 14:18:18 | 000,007,762 | ---- | C] () -- C:\WINDOWS\SysNative\connectedsearch-suggestions.searchconnector-ms
[2014/05/16 14:18:07 | 000,011,109 | ---- | C] () -- C:\WINDOWS\SysWow64\connectedsearch-results.searchconnector-ms
[2014/05/16 14:18:07 | 000,011,109 | ---- | C] () -- C:\WINDOWS\SysNative\connectedsearch-results.searchconnector-ms
[2014/05/16 14:18:02 | 000,050,053 | ---- | C] () -- C:\WINDOWS\SysNative\srms.dat
[2014/05/16 14:17:57 | 000,002,440 | R-S- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileManager.lnk
[2014/05/16 14:15:34 | 000,001,088 | ---- | C] () -- C:\Users\pabuk_000\AppData\Local\MRDownloader.nast
[2014/05/16 13:41:41 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2014/05/16 13:40:51 | 000,000,488 | R--- | C] () -- C:\WINDOWS\SysNative\drivers\SAMSfPa.dat
[2014/05/16 13:40:51 | 000,000,008 | R--- | C] () -- C:\WINDOWS\SysNative\drivers\rtkhdaud.dat
[2014/05/16 13:36:04 | 001,157,563 | ---- | C] () -- C:\WINDOWS\FTDataP.xml
[2014/05/16 13:36:04 | 000,946,032 | ---- | C] () -- C:\WINDOWS\FTData.xml
[2014/05/16 13:36:04 | 000,817,241 | ---- | C] () -- C:\WINDOWS\FTDataR1.xml
[2014/05/16 13:36:04 | 000,817,191 | ---- | C] () -- C:\WINDOWS\FTDataR0.xml
[2014/05/16 13:32:15 | 000,387,210 | ---- | C] () -- C:\WINDOWS\SysNative\ApnDatabase.xml
[2014/05/16 12:52:48 | 000,002,535 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2014/05/16 12:43:30 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
[2014/05/16 12:23:14 | 000,138,240 | ---- | C] () -- C:\WINDOWS\SysNative\OEMLicense.dll
[2014/05/16 12:23:14 | 000,103,936 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll
[2014/05/16 11:25:53 | 000,001,032 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Dreamweaver CS6.lnk
[2014/05/16 11:25:08 | 000,001,543 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS6.lnk
[2014/05/16 11:24:59 | 000,001,013 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
[2014/05/16 11:24:43 | 000,001,113 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Widget Browser.lnk
[2014/05/16 11:20:54 | 000,002,618 | ---- | C] () -- D:\Dokumenty\hosts
[2014/05/16 10:49:51 | 000,000,136 | ---- | C] () -- C:\WINDOWS\Reimage.ini
[2014/05/16 10:16:32 | 000,004,608 | ---- | C] () -- C:\WINDOWS\SECOH-QAD.exe
[2014/05/16 10:16:32 | 000,003,584 | ---- | C] () -- C:\WINDOWS\SECOH-QAD.dll
[2014/05/16 10:12:08 | 000,001,426 | ---- | C] () -- C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2014/05/16 09:36:45 | 000,008,192 | RHS- | C] () -- C:\BOOTSECT.BAK
[2014/05/16 08:50:30 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2014/05/14 19:07:09 | 000,012,522 | ---- | C] () -- C:\WirelessDiagLog.csv
[2013/08/22 16:36:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2013/08/22 16:36:42 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2013/08/22 15:46:23 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013/08/22 08:01:23 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2013/08/22 04:32:36 | 000,046,080 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2013/08/22 00:55:20 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2013/08/22 00:52:39 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2013/05/11 17:17:52 | 000,001,536 | ---- | C] () -- C:\WINDOWS\SysWow64\IusEventLog.dll
========== ZeroAccess Check ==========
[2014/05/22 22:04:38 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014/04/06 17:31:39 | 021,268,952 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/04/06 16:22:20 | 018,755,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2013/08/22 10:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2013/08/22 03:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2013/08/22 10:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2014/05/23 15:53:20 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\DAEMON Tools Lite
[2014/05/24 09:27:20 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\DiskDefrag
[2014/05/24 09:30:16 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\GlarySoft
[2014/05/16 10:36:02 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\Maxthon3
[2014/05/22 10:00:08 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\Mp3tag
[2014/05/26 09:10:38 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\uTorrent
========== Purity Check ==========
========== Custom Scans ==========
< >
[2013/08/22 15:45:54 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT
< >
< MD5 for: AGP440.SYS >
[2014/05/25 16:58:38 | 000,000,012 | ---- | M] () MD5=06C6E29A8643D00197E214F3AA26A4B9 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.16384_none_aad14d4692a7dfee\AGP440.sys
[2013/08/22 13:43:40 | 000,062,304 | ---- | M] (Microsoft Corporation) MD5=7DFAEBA9AD62D20102B576D5CAC45EC8 -- C:\WINDOWS\SysNative\drivers\AGP440.sys
[2013/08/22 13:43:40 | 000,062,304 | ---- | M] (Microsoft Corporation) MD5=7DFAEBA9AD62D20102B576D5CAC45EC8 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\machine.inf_amd64_1758c63a7f3ec2bf\AGP440.sys
[2013/08/22 13:43:40 | 000,062,304 | ---- | M] (Microsoft Corporation) MD5=7DFAEBA9AD62D20102B576D5CAC45EC8 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.17031_none_ab043f8a92822a60\AGP440.sys
< MD5 for: ATAPI.SYS >
[2013/08/22 13:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\WINDOWS\SysNative\drivers\atapi.sys
[2013/08/22 13:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\WINDOWS\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_64aa4354da84c2df\atapi.sys
[2013/08/22 13:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\Windows\WinSxS\amd64_mshdc.inf_31bf3856ad364e35_6.3.9600.16384_none_cdf68824f580d510\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2014/05/25 17:02:23 | 000,028,249 | ---- | M] () MD5=0CBDE27FB26761852F7B22AFB8C51ACB -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.16384_none_d2b24d5495b82963\autochk.exe
[2014/02/22 12:24:36 | 000,792,576 | ---- | M] (Microsoft Corporation) MD5=1D31E78ED5C40B5C6CC8D3DE713177A5 -- C:\Windows\SysWOW64\autochk.exe
[2014/02/22 12:24:36 | 000,792,576 | ---- | M] (Microsoft Corporation) MD5=1D31E78ED5C40B5C6CC8D3DE713177A5 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.17031_none_76c6a414dd35029f\autochk.exe
[2014/02/22 13:17:06 | 000,890,880 | ---- | M] (Microsoft Corporation) MD5=387A1E98BE548E4F199343CBA01E9D6D -- C:\WINDOWS\SysNative\autochk.exe
[2014/02/22 13:17:06 | 000,890,880 | ---- | M] (Microsoft Corporation) MD5=387A1E98BE548E4F199343CBA01E9D6D -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.17031_none_d2e53f98959273d5\autochk.exe
[2014/05/25 20:29:04 | 000,023,596 | ---- | M] () MD5=83A4C9BE342BC296EC09492FF7594F13 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.16384_none_7693b1d0dd5ab82d\autochk.exe
< MD5 for: CDROM.SYS >
[2013/08/22 09:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\WINDOWS\SysNative\drivers\cdrom.sys
[2013/08/22 09:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\WINDOWS\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_42e9c29f0affc440\cdrom.sys
[2013/08/22 09:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\Windows\WinSxS\amd64_cdrom.inf_31bf3856ad364e35_6.3.9600.16384_none_5067bbed77be70be\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2013/08/22 11:01:39 | 000,129,536 | ---- | M] (Microsoft Corporation) MD5=0EFE4B5884A8032617826A4D76F80969 -- C:\WINDOWS\SysNative\cryptsvc.dll
[2013/08/22 11:01:39 | 000,129,536 | ---- | M] (Microsoft Corporation) MD5=0EFE4B5884A8032617826A4D76F80969 -- C:\Windows\WinSxS\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.3.9600.16384_none_66bdf96f6ec6545d\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2014/03/04 12:16:50 | 002,088,160 | ---- | M] (Microsoft Corporation) MD5=119E091B5386379BC5AA598BE9440C75 -- C:\Windows\SysWOW64\explorer.exe
[2014/03/04 12:16:50 | 002,088,160 | ---- | M] (Microsoft Corporation) MD5=119E091B5386379BC5AA598BE9440C75 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17039_none_4d02a60381e74c58\explorer.exe
[2014/05/25 19:40:30 | 000,015,546 | ---- | M] () MD5=347EFF7EC89C3EB4F72F2408E1C4E16D -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17031_none_4cfaa3b381ee81a0\explorer.exe
[2014/05/25 19:40:26 | 000,238,918 | ---- | M] () MD5=5177BB4FECDDB9CDBCF10EF65916968D -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16441_none_4ceff22781f6788c\explorer.exe
[2014/05/25 17:47:47 | 000,169,957 | ---- | M] () MD5=6D919C26DCB567396CD2E119B8E4310E -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17031_none_42a5f9614d8dbfa5\explorer.exe
[2014/05/25 19:40:22 | 000,239,123 | ---- | M] () MD5=7B546CB045C2A84D26A8D2FE07F9F98C -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16408_none_4d2233dd81cfba29\explorer.exe
[2014/03/04 13:25:49 | 002,373,784 | ---- | M] (Microsoft Corporation) MD5=81394C91B7B5A7C799E249AE82491F13 -- C:\Windows\explorer.exe
[2014/03/04 13:25:49 | 002,373,784 | ---- | M] (Microsoft Corporation) MD5=81394C91B7B5A7C799E249AE82491F13 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17039_none_42adfbb14d868a5d\explorer.exe
[2014/05/25 17:47:40 | 000,284,534 | ---- | M] () MD5=D1EF5DE70183FB717B5FC4593A0E46BD -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16408_none_42cd898b4d6ef82e\explorer.exe
[2014/05/25 17:47:43 | 000,283,735 | ---- | M] () MD5=FA98C5D746E7C9E0912E88AC44FF9926 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16441_none_429b47d54d95b691\explorer.exe
< MD5 for: HAL.DLL >
[2014/02/22 16:44:06 | 000,424,280 | ---- | M] (Microsoft Corporation) MD5=4DFCE03EEB1BA325B8077A626B2F25F0 -- C:\WINDOWS\SysNative\hal.dll
[2014/02/22 16:44:06 | 000,424,280 | ---- | M] (Microsoft Corporation) MD5=4DFCE03EEB1BA325B8077A626B2F25F0 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.17031_none_9c1a44f32d7b883b\hal.dll
[2014/05/25 17:49:58 | 000,066,982 | ---- | M] () MD5=B940921BC888E9EE5E51D4B56970669B -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.16408_none_9c41d51d2d5cc0c4\hal.dll
[2014/05/25 17:49:59 | 000,066,843 | ---- | M] () MD5=D714202F057A317C8E31776EBEA0AEA2 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.16500_none_9c39d4b32d63f333\hal.dll
< MD5 for: IASTORV.SYS >
[2013/08/22 13:43:45 | 000,412,000 | ---- | M] (Intel Corporation) MD5=A2200C3033FA4EF249FC096A7A7D02A2 -- C:\WINDOWS\SysNative\drivers\iaStorV.sys
[2013/08/22 13:43:45 | 000,412,000 | ---- | M] (Intel Corporation) MD5=A2200C3033FA4EF249FC096A7A7D02A2 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_5069105fb236ae4b\iaStorV.sys
[2013/08/22 13:43:45 | 000,412,000 | ---- | M] (Intel Corporation) MD5=A2200C3033FA4EF249FC096A7A7D02A2 -- C:\Windows\WinSxS\amd64_iastorv.inf_31bf3856ad364e35_6.3.9600.16384_none_9fcfb2835bbf0103\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2014/05/25 16:58:39 | 000,000,012 | ---- | M] () MD5=06C6E29A8643D00197E214F3AA26A4B9 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.16384_none_aad14d4692a7dfee\isapnp.sys
[2013/08/22 13:43:45 | 000,021,856 | ---- | M] (Microsoft Corporation) MD5=8AFEEA3955AA43616A60F133B1D25F21 -- C:\WINDOWS\SysNative\drivers\isapnp.sys
[2013/08/22 13:43:45 | 000,021,856 | ---- | M] (Microsoft Corporation) MD5=8AFEEA3955AA43616A60F133B1D25F21 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\machine.inf_amd64_1758c63a7f3ec2bf\isapnp.sys
[2013/08/22 13:43:45 | 000,021,856 | ---- | M] (Microsoft Corporation) MD5=8AFEEA3955AA43616A60F133B1D25F21 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.17031_none_ab043f8a92822a60\isapnp.sys
< MD5 for: LSASS.EXE >
[2013/08/22 14:25:35 | 000,045,008 | ---- | M] (Microsoft Corporation) MD5=F6F209DDB94959BA104FC8FC87C53759 -- C:\WINDOWS\SysNative\lsass.exe
[2013/08/22 14:25:35 | 000,045,008 | ---- | M] (Microsoft Corporation) MD5=F6F209DDB94959BA104FC8FC87C53759 -- C:\Windows\WinSxS\amd64_microsoft-windows-lsa-minwin_31bf3856ad364e35_6.3.9600.16408_none_2e8484166600f08e\lsass.exe
< MD5 for: NDIS.SYS >
[2014/05/25 18:20:37 | 000,144,548 | ---- | M] () MD5=6FF1A14DC17A19F68C45B759E57F8F54 -- C:\Windows\WinSxS\amd64_microsoft-windows-ndis-minwin_31bf3856ad364e35_6.3.9600.16405_none_4a6b5fcffbc14927\ndis.sys
[2014/05/25 18:20:41 | 000,140,607 | ---- | M] () MD5=7B886741BDAE33AC4F116DF991D1E3CB -- C:\Windows\WinSxS\amd64_microsoft-windows-ndis-minwin_31bf3856ad364e35_6.3.9600.16475_none_4a1fb05bfbfa0cbe\ndis.sys
[2014/05/25 18:20:39 | 000,139,631 | ---- | M] () MD5=A4F977473222918A2BD275FB72DC4816 -- C:\Windows\WinSxS\amd64_microsoft-windows-ndis-minwin_31bf3856ad364e35_6.3.9600.16408_none_4a6e60adfbbe952c\ndis.sys
[2014/02/22 16:40:03 | 001,118,552 | ---- | M] (Microsoft Corporation) MD5=F21B77B4D74092A543807D3CEB711A88 -- C:\WINDOWS\SysNative\drivers\ndis.sys
[2014/02/22 16:40:03 | 001,118,552 | ---- | M] (Microsoft Corporation) MD5=F21B77B4D74092A543807D3CEB711A88 -- C:\Windows\WinSxS\amd64_microsoft-windows-ndis-minwin_31bf3856ad364e35_6.3.9600.17031_none_4a46d083fbdd5ca3\ndis.sys
< MD5 for: NETLOGON.DLL >
[2014/03/06 08:02:13 | 000,834,560 | ---- | M] (Microsoft Corporation) MD5=2468C21E34C49E4735B4BA430D448E91 -- C:\WINDOWS\SysNative\netlogon.dll
[2014/03/06 08:02:13 | 000,834,560 | ---- | M] (Microsoft Corporation) MD5=2468C21E34C49E4735B4BA430D448E91 -- C:\Windows\WinSxS\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.17041_none_ee9e39a60bd3552e\netlogon.dll
[2014/05/25 20:00:56 | 000,058,552 | ---- | M] () MD5=35048C9600694C3BF01D644D1AAE62BE -- C:\Windows\WinSxS\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.16384_none_f8cac1a04051b0c6\netlogon.dll
[2014/03/06 07:29:17 | 000,688,640 | ---- | M] (Microsoft Corporation) MD5=582918F96C2B7E1E3AE17D08DB6DAC41 -- C:\Windows\SysWOW64\netlogon.dll
[2014/03/06 07:29:17 | 000,688,640 | ---- | M] (Microsoft Corporation) MD5=582918F96C2B7E1E3AE17D08DB6DAC41 -- C:\Windows\WinSxS\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.17041_none_f8f2e3f840341729\netlogon.dll
[2014/05/25 18:35:40 | 000,108,975 | ---- | M] () MD5=D817ED82C2A0E1CED9B396826F52F7CB -- C:\Windows\WinSxS\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.16384_none_ee76174e0bf0eecb\netlogon.dll
< MD5 for: NVRAID.SYS >
[2013/08/22 13:43:31 | 000,150,368 | ---- | M] (NVIDIA Corporation) MD5=BC6B5942AFF25EBAF62DE43C3807EDF8 -- C:\WINDOWS\SysNative\drivers\nvraid.sys
[2013/08/22 13:43:31 | 000,150,368 | ---- | M] (NVIDIA Corporation) MD5=BC6B5942AFF25EBAF62DE43C3807EDF8 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_7ba65ba4b222e751\nvraid.sys
[2013/08/22 13:43:31 | 000,150,368 | ---- | M] (NVIDIA Corporation) MD5=BC6B5942AFF25EBAF62DE43C3807EDF8 -- C:\Windows\WinSxS\amd64_nvraid.inf_31bf3856ad364e35_6.3.9600.16384_none_2a99233292f5aadb\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2013/08/22 13:43:32 | 000,168,288 | ---- | M] (NVIDIA Corporation) MD5=1F43ABFFAC3D6CA356851D517392966E -- C:\WINDOWS\SysNative\drivers\nvstor.sys
[2013/08/22 13:43:32 | 000,168,288 | ---- | M] (NVIDIA Corporation) MD5=1F43ABFFAC3D6CA356851D517392966E -- C:\WINDOWS\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_7ba65ba4b222e751\nvstor.sys
[2013/08/22 13:43:32 | 000,168,288 | ---- | M] (NVIDIA Corporation) MD5=1F43ABFFAC3D6CA356851D517392966E -- C:\Windows\WinSxS\amd64_nvraid.inf_31bf3856ad364e35_6.3.9600.16384_none_2a99233292f5aadb\nvstor.sys
< MD5 for: SCECLI.DLL >
[2013/08/22 03:48:17 | 000,207,360 | ---- | M] (Microsoft Corporation) MD5=1F142D5BD1C3869C5D902779B6FEC3EF -- C:\Windows\SysWOW64\scecli.dll
[2013/08/22 03:48:17 | 000,207,360 | ---- | M] (Microsoft Corporation) MD5=1F142D5BD1C3869C5D902779B6FEC3EF -- C:\Windows\WinSxS\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.16384_none_3320ecb8e1733781\scecli.dll
[2013/08/22 10:55:43 | 000,271,360 | ---- | M] (Microsoft Corporation) MD5=1F1B8D07708E40E54C55B392C78ECCE2 -- C:\WINDOWS\SysNative\scecli.dll
[2013/08/22 10:55:43 | 000,271,360 | ---- | M] (Microsoft Corporation) MD5=1F1B8D07708E40E54C55B392C78ECCE2 -- C:\Windows\WinSxS\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.16384_none_28cc4266ad127586\scecli.dll
< MD5 for: SMSS.EXE >
[2014/05/25 18:46:31 | 000,019,120 | ---- | M] () MD5=5FBA1F5F9AA1E09595F015118AE83A36 -- C:\Windows\WinSxS\amd64_microsoft-windows-smss-minwin_31bf3856ad364e35_6.3.9600.16384_none_6f1f364dbcc273d3\smss.exe
[2014/02/22 16:43:03 | 000,142,576 | ---- | M] (Microsoft Corporation) MD5=D8564418BAC13776E43DB5F6B4FA775E -- C:\WINDOWS\SysNative\smss.exe
[2014/02/22 16:43:03 | 000,142,576 | ---- | M] (Microsoft Corporation) MD5=D8564418BAC13776E43DB5F6B4FA775E -- C:\Windows\WinSxS\amd64_microsoft-windows-smss-minwin_31bf3856ad364e35_6.3.9600.17031_none_6f522891bc9cbe45\smss.exe
[2014/05/16 14:16:23 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\uTorrent
[2014/05/16 13:58:10 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Skype
[2014/05/16 13:58:03 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\Skype
[2014/05/16 13:43:34 | 000,318,800 | ---- | C] (ELAN Microelectronics Corp.) -- C:\WINDOWS\SysNative\drivers\ETD.sys
[2014/05/16 13:40:25 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp
[2014/05/16 13:39:12 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneKey Recovery
[2014/05/16 13:39:11 | 000,102,376 | ---- | C] ("CyberLink) -- C:\WINDOWS\SysNative\drivers\wsvd.sys
[2014/05/16 13:39:11 | 000,000,000 | ---D | C] -- C:\ProgramData\OneKey Recovery
[2014/05/16 13:36:04 | 006,334,096 | ---- | C] (Realtek semiconductor) -- C:\WINDOWS\RTFTrack.exe
[2014/05/16 13:35:50 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2014/05/16 13:35:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2014/05/16 13:35:14 | 000,053,248 | R--- | C] (Windows XP Bundled build C-Centric Single User) -- C:\WINDOWS\SysWow64\CSVer.dll
[2014/05/16 13:32:33 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Shell.Search.UriHandler.dll
[2014/05/16 13:32:29 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Shell.Search.UriHandler.dll
[2014/05/16 13:32:27 | 002,900,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msftedit.dll
[2014/05/16 13:32:26 | 002,641,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll
[2014/05/16 13:32:26 | 002,373,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
[2014/05/16 13:32:26 | 001,306,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll
[2014/05/16 13:32:25 | 002,317,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll
[2014/05/16 13:32:25 | 002,141,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d11.dll
[2014/05/16 13:32:25 | 002,133,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll
[2014/05/16 13:32:25 | 002,088,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\explorer.exe
[2014/05/16 13:32:24 | 002,270,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msftedit.dll
[2014/05/16 13:32:24 | 001,542,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ole32.dll
[2014/05/16 13:32:24 | 001,112,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KernelBase.dll
[2014/05/16 13:32:23 | 001,779,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d11.dll
[2014/05/16 13:32:23 | 001,764,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dwmcore.dll
[2014/05/16 13:32:22 | 001,291,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kernel32.dll
[2014/05/16 13:32:22 | 000,950,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ReAgent.dll
[2014/05/16 13:32:22 | 000,918,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MrmCoreR.dll
[2014/05/16 13:32:22 | 000,512,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidprov.dll
[2014/05/16 13:32:21 | 001,339,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32.dll
[2014/05/16 13:32:21 | 000,800,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ReAgent.dll
[2014/05/16 13:32:21 | 000,655,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dnsapi.dll
[2014/05/16 13:32:21 | 000,629,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MrmCoreR.dll
[2014/05/16 13:32:21 | 000,518,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxgi.dll
[2014/05/16 13:32:21 | 000,356,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dcomp.dll
[2014/05/16 13:32:20 | 001,656,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\GdiPlus.dll
[2014/05/16 13:32:20 | 000,834,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netlogon.dll
[2014/05/16 13:32:20 | 000,669,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasapi32.dll
[2014/05/16 13:32:20 | 000,379,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys
[2014/05/16 13:32:20 | 000,356,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlidprov.dll
[2014/05/16 13:32:20 | 000,157,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wof.sys
[2014/05/16 13:32:19 | 001,351,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\GdiPlus.dll
[2014/05/16 13:32:19 | 000,720,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapi.dll
[2014/05/16 13:32:19 | 000,376,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\clfs.sys
[2014/05/16 13:32:19 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentClient.dll
[2014/05/16 13:32:19 | 000,247,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SensorsApi.dll
[2014/05/16 13:32:19 | 000,222,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dcomp.dll
[2014/05/16 13:32:18 | 000,621,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MDMAgent.exe
[2014/05/16 13:32:18 | 000,488,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\netcfgx.dll
[2014/05/16 13:32:18 | 000,390,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\netcfgx.dll
[2014/05/16 13:32:18 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppXDeploymentClient.dll
[2014/05/16 13:32:18 | 000,171,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SensorsApi.dll
[2014/05/16 13:32:17 | 001,015,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aclui.dll
[2014/05/16 13:32:17 | 000,924,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.dll
[2014/05/16 13:32:17 | 000,563,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AdmTmpl.dll
[2014/05/16 13:32:17 | 000,467,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBHUB3.SYS
[2014/05/16 13:32:17 | 000,462,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlangpui.dll
[2014/05/16 13:32:17 | 000,412,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FWPUCLNT.DLL
[2014/05/16 13:32:17 | 000,360,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfreadwrite.dll
[2014/05/16 13:32:17 | 000,355,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfreadwrite.dll
[2014/05/16 13:32:17 | 000,299,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pdh.dll
[2014/05/16 13:32:17 | 000,291,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Sensors.dll
[2014/05/16 13:32:17 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Sensors.dll
[2014/05/16 13:32:17 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdd.dll
[2014/05/16 13:32:17 | 000,201,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ReInfo.dll
[2014/05/16 13:32:17 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxAllUserStore.dll
[2014/05/16 13:32:17 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxAllUserStore.dll
[2014/05/16 13:32:17 | 000,113,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\userenv.dll
[2014/05/16 13:32:17 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\davclnt.dll
[2014/05/16 13:32:16 | 001,843,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Display.dll
[2014/05/16 13:32:16 | 001,816,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Display.dll
[2014/05/16 13:32:16 | 000,887,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\aclui.dll
[2014/05/16 13:32:16 | 000,731,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\adtschema.dll
[2014/05/16 13:32:16 | 000,731,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\adtschema.dll
[2014/05/16 13:32:16 | 000,542,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Graphics.Printing.dll
[2014/05/16 13:32:16 | 000,444,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AdmTmpl.dll
[2014/05/16 13:32:16 | 000,402,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Graphics.Printing.dll
[2014/05/16 13:32:16 | 000,386,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlangpui.dll
[2014/05/16 13:32:16 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LocationApi.dll
[2014/05/16 13:32:16 | 000,298,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSDMon.dll
[2014/05/16 13:32:16 | 000,271,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\spp.dll
[2014/05/16 13:32:16 | 000,264,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\FWPUCLNT.DLL
[2014/05/16 13:32:16 | 000,254,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\pdh.dll
[2014/05/16 13:32:16 | 000,210,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapibase.dll
[2014/05/16 13:32:16 | 000,192,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Devices.Scanners.dll
[2014/05/16 13:32:16 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafWfdProvider.dll
[2014/05/16 13:32:16 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ReInfo.dll
[2014/05/16 13:32:16 | 000,136,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wfplwfs.sys
[2014/05/16 13:32:16 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hidclass.sys
[2014/05/16 13:32:16 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drvinst.exe
[2014/05/16 13:32:16 | 000,100,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BitLockerDeviceEncryption.exe
[2014/05/16 13:32:16 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drvinst.exe
[2014/05/16 13:32:16 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RMapi.dll
[2014/05/16 13:32:16 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\w32tm.exe
[2014/05/16 13:32:16 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\w32tm.exe
[2014/05/16 13:32:16 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drvcfg.exe
[2014/05/16 13:32:16 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CredentialMigrationHandler.dll
[2014/05/16 13:32:16 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\CredentialMigrationHandler.dll
[2014/05/16 13:32:15 | 000,794,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fvewiz.dll
[2014/05/16 13:32:15 | 000,717,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nshwfp.dll
[2014/05/16 13:32:15 | 000,567,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\nshwfp.dll
[2014/05/16 13:32:15 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WsmWmiPl.dll
[2014/05/16 13:32:15 | 000,262,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\LocationApi.dll
[2014/05/16 13:32:15 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Devices.Scanners.dll
[2014/05/16 13:32:15 | 000,130,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BdeHdCfg.exe
[2014/05/16 13:32:15 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DevPropMgr.dll
[2014/05/16 13:32:15 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BdeHdCfgLib.dll
[2014/05/16 13:32:15 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sxproxy.dll
[2014/05/16 13:32:15 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\l2gpstore.dll
[2014/05/16 13:32:15 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\l2gpstore.dll
[2014/05/16 13:32:15 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SetNetworkLocation.dll
[2014/05/16 13:32:15 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sxproxy.dll
[2014/05/16 13:27:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\Embedded
[2014/05/16 12:58:57 | 000,000,000 | R--D | C] -- C:\WINDOWS\BrowserChoice
[2014/05/16 12:54:51 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\Apple Computer
[2014/05/16 12:54:51 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Apple Computer
[2014/05/16 12:54:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\DRVSTORE
[2014/05/16 12:54:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2014/05/16 12:52:50 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Apple
[2014/05/16 12:52:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2014/05/16 12:52:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2014/05/16 12:52:34 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2014/05/16 12:52:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bonjour
[2014/05/16 12:52:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2014/05/16 12:52:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
[2014/05/16 12:42:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\MRT
[2014/05/16 12:28:55 | 001,147,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UIAutomationCore.dll
[2014/05/16 12:28:54 | 001,067,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfasfsrcsnk.dll
[2014/05/16 12:28:54 | 000,920,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UIAutomationCore.dll
[2014/05/16 12:28:54 | 000,883,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfasfsrcsnk.dll
[2014/05/16 12:28:53 | 001,160,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Web.Http.dll
[2014/05/16 12:28:53 | 000,699,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d10level9.dll
[2014/05/16 12:28:53 | 000,578,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.BackgroundTransfer.dll
[2014/05/16 12:28:52 | 001,011,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TSWorkspace.dll
[2014/05/16 12:28:52 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Web.Http.dll
[2014/05/16 12:28:52 | 000,411,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.BackgroundTransfer.dll
[2014/05/16 12:28:50 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eapphost.dll
[2014/05/16 12:28:47 | 000,391,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tsmf.dll
[2014/05/16 12:28:47 | 000,171,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kd_02_8086.dll
[2014/05/16 12:28:46 | 000,795,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TSWorkspace.dll
[2014/05/16 12:28:46 | 000,345,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tsmf.dll
[2014/05/16 12:28:46 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eapp3hst.dll
[2014/05/16 12:28:45 | 000,286,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pcsvDevice.dll
[2014/05/16 12:28:45 | 000,262,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eapphost.dll
[2014/05/16 12:28:45 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msched.dll
[2014/05/16 12:28:45 | 000,096,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\embeddedapplauncher.exe
[2014/05/16 12:28:44 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TSWbPrxy.exe
[2014/05/16 12:28:44 | 000,057,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\stornvme.sys
[2014/05/16 12:28:44 | 000,044,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wldp.dll
[2014/05/16 12:28:43 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eappcfg.dll
[2014/05/16 12:28:43 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ieetwcollector.exe
[2014/05/16 12:28:43 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\shsetup.dll
[2014/05/16 12:28:42 | 000,272,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eappcfg.dll
[2014/05/16 12:28:42 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eapp3hst.dll
[2014/05/16 12:28:42 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eappgnui.dll
[2014/05/16 12:28:42 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eappgnui.dll
[2014/05/16 12:28:41 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ftp.exe
[2014/05/16 12:28:40 | 000,338,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpclip.exe
[2014/05/16 12:28:40 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\miutils.dll
[2014/05/16 12:28:40 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\miutils.dll
[2014/05/16 12:28:40 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ftp.exe
[2014/05/16 12:27:19 | 003,210,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msmpeg2vdec.dll
[2014/05/16 12:27:19 | 002,804,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msmpeg2vdec.dll
[2014/05/16 12:27:15 | 000,282,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemEventsBrokerServer.dll
[2014/05/16 12:27:14 | 000,809,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll
[2014/05/16 12:27:14 | 000,470,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfds.dll
[2014/05/16 12:27:13 | 000,663,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll
[2014/05/16 12:27:13 | 000,433,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfds.dll
[2014/05/16 12:27:13 | 000,273,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Graphics.dll
[2014/05/16 12:27:12 | 000,589,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rastls.dll
[2014/05/16 12:27:12 | 000,306,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msieftp.dll
[2014/05/16 12:27:12 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Graphics.dll
[2014/05/16 12:27:11 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bi.dll
[2014/05/16 12:27:10 | 000,513,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rastls.dll
[2014/05/16 12:27:10 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msieftp.dll
[2014/05/16 12:27:10 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\deviceregistration.dll
[2014/05/16 12:27:10 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\BtaMPM.sys
[2014/05/16 12:23:17 | 000,842,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MsSpellCheckingFacility.dll
[2014/05/16 12:23:15 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MsSpellCheckingFacility.dll
[2014/05/16 12:23:15 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sti.dll
[2014/05/16 12:19:29 | 000,039,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\intelpep.sys
[2014/05/16 12:19:20 | 000,449,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\appmgr.dll
[2014/05/16 12:19:20 | 000,146,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\SerCx2.sys
[2014/05/16 12:19:20 | 000,086,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\pdc.sys
[2014/05/16 12:19:18 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\appmgr.dll
[2014/05/16 12:10:26 | 004,175,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dbgeng.dll
[2014/05/16 12:10:25 | 002,873,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dbgeng.dll
[2014/05/16 12:10:25 | 001,486,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dbghelp.dll
[2014/05/16 12:10:24 | 001,238,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dbghelp.dll
[2014/05/16 12:10:23 | 000,447,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sppcomapi.dll
[2014/05/16 12:10:23 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tsgqec.dll
[2014/05/16 12:09:01 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSCollect.exe
[2014/05/16 12:05:58 | 000,570,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msdrm.dll
[2014/05/16 12:05:30 | 000,139,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\poqexec.exe
[2014/05/16 12:05:30 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\poqexec.exe
[2014/05/16 12:05:19 | 000,000,000 | ---D | C] -- C:\ProgramData\REPORTS
[2014/05/16 12:05:19 | 000,000,000 | ---D | C] -- C:\ProgramData\LOGFILES
[2014/05/16 12:05:19 | 000,000,000 | ---D | C] -- C:\ProgramData\INFECTED
[2014/05/16 12:04:43 | 004,604,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d2d1.dll
[2014/05/16 12:04:42 | 002,397,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d10warp.dll
[2014/05/16 12:04:41 | 000,075,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\imagehlp.dll
[2014/05/16 12:04:02 | 001,943,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\crypt32.dll
[2014/05/16 12:01:17 | 000,393,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMPhoto.dll
[2014/05/16 12:01:17 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WMPhoto.dll
[2014/05/16 11:59:32 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pcaui.exe
[2014/05/16 11:59:32 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\pcaui.exe
[2014/05/16 11:26:00 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe
[2014/05/16 11:24:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe AIR
[2014/05/16 11:24:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2014/05/16 11:24:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2014/05/16 11:23:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2014/05/16 11:22:59 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Adobe
[2014/05/16 11:09:37 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\GHISLER
[2014/05/16 10:55:29 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
[2014/05/16 10:52:24 | 000,000,000 | ---D | C] -- C:\ProgramData\CDB
[2014/05/16 10:50:36 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2014/05/16 10:46:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel
[2014/05/16 10:46:01 | 000,064,000 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysNative\OpenCL.DLL
[2014/05/16 10:46:01 | 000,060,416 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysWow64\OpenCL.DLL
[2014/05/16 10:45:56 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2014/05/16 10:45:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel
[2014/05/16 10:41:49 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\Macromedia
[2014/05/16 10:34:49 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\Maxthon3
[2014/05/16 10:34:47 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2014/05/16 10:34:43 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2014/05/16 10:34:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2014/05/16 10:16:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico
[2014/05/16 10:16:02 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Programs
[2014/05/16 10:13:47 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\SkyDrive
[2014/05/16 10:12:11 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2014/05/16 10:12:11 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\Searches
[2014/05/16 10:12:11 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2014/05/16 10:12:10 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\Contacts
[2014/05/16 10:12:08 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\VirtualStore
[2014/05/16 10:12:08 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\Adobe
[2014/05/16 10:12:07 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Packages
[2014/05/16 10:11:19 | 000,000,000 | --SD | C] -- C:\Users\pabuk_000\AppData\Roaming\Microsoft
[2014/05/16 10:11:19 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
[2014/05/16 10:11:19 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\Saved Games
[2014/05/16 10:11:19 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\Links
[2014/05/16 10:11:19 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\Favorites
[2014/05/16 10:11:19 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\Downloads
[2014/05/16 10:11:19 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\Desktop
[2014/05/16 10:11:19 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2014/05/16 10:11:19 | 000,000,000 | R--D | C] -- C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\AppData\Local\Temporary Internet Files
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\Soubory cookie
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\SendTo
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\Šablony
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\Poslední
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\Okolní tiskárny
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\Okolní síť
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\Nabídka Start
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\Local Settings
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\AppData\Local\History
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\Dokumenty
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\Data aplikací
[2014/05/16 10:11:19 | 000,000,000 | -HSD | C] -- C:\Users\pabuk_000\AppData\Local\Data aplikací
[2014/05/16 10:11:19 | 000,000,000 | -H-D | C] -- C:\Users\pabuk_000\AppData
[2014/05/16 10:11:19 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Temp
[2014/05/16 10:11:19 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Local\Microsoft
[2014/05/16 10:11:19 | 000,000,000 | ---D | C] -- C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2014/05/16 09:49:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\Panther
[2014/05/16 09:48:07 | 000,000,000 | ---D | C] -- C:\Windows.old
[2014/05/16 09:47:11 | 000,000,000 | ---D | C] -- C:\Recovery
[2014/05/16 09:02:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\CSC
[2014/05/16 08:53:45 | 000,000,000 | -HSD | C] -- C:\ProgramData\Šablony
[2014/05/16 08:53:45 | 000,000,000 | -HSD | C] -- C:\ProgramData\Plocha
[2014/05/16 08:53:45 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Obrázky
[2014/05/16 08:53:45 | 000,000,000 | -HSD | C] -- C:\ProgramData\Nabídka Start
[2014/05/16 08:53:45 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Hudba
[2014/05/16 08:53:45 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Filmy
[2014/05/16 08:53:45 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2014/05/16 08:53:45 | 000,000,000 | -HSD | C] -- C:\ProgramData\Data aplikací
[2014/05/16 08:53:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2014/05/16 08:50:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2014/05/15 18:46:33 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2014/05/15 09:09:25 | 000,000,000 | -HSD | C] -- C:\Boot
[2014/05/14 16:07:53 | 000,000,000 | ---D | C] -- D:\Dokumenty\Virtualbox
========== Files - Modified Within 30 Days ==========
[2014/05/27 11:08:55 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2014/05/27 11:05:57 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\pabuk_000\Desktop\OTL.exe
[2014/05/27 10:26:04 | 001,222,144 | ---- | M] () -- C:\Users\pabuk_000\Desktop\RSITx64.exe
[2014/05/27 10:20:41 | 001,745,984 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2014/05/27 10:20:41 | 000,744,206 | ---- | M] () -- C:\WINDOWS\SysNative\perfh005.dat
[2014/05/27 10:20:41 | 000,735,948 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2014/05/27 10:20:41 | 000,155,700 | ---- | M] () -- C:\WINDOWS\SysNative\perfc005.dat
[2014/05/27 10:20:41 | 000,139,812 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2014/05/27 10:19:32 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014/05/27 00:01:18 | 000,000,741 | R--- | M] () -- C:\WINDOWS\SysNative\drivers\etc\hosts
[2014/05/26 18:04:09 | 000,118,807 | ---- | M] () -- C:\Users\pabuk_000\Desktop\Letáček - nejnovější.pdf
[2014/05/26 16:53:37 | 003,972,608 | ---- | M] () -- C:\Users\pabuk_000\Desktop\RogueKiller.exe
[2014/05/26 15:47:36 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys
[2014/05/26 15:47:35 | 3319,873,536 | -HS- | M] () -- C:\hiberfil.sys
[2014/05/26 15:36:45 | 001,327,971 | ---- | M] () -- C:\Users\pabuk_000\Desktop\adwcleaner_3.211.exe
[2014/05/26 15:31:26 | 000,000,075 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2014/05/23 15:40:18 | 000,001,088 | ---- | M] () -- C:\Users\pabuk_000\AppData\Local\MRDownloader.nast
[2014/05/23 15:39:38 | 000,000,805 | ---- | M] () -- C:\Users\pabuk_000\AppData\Local\MRDownloader.err
[2014/05/23 11:43:01 | 000,001,258 | ---- | M] () -- C:\Users\Public\Desktop\Play The Sims™ 3.lnk
[2014/05/22 10:56:14 | 000,335,784 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2014/05/21 17:13:51 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
[2014/05/18 16:25:04 | 000,400,204 | ---- | M] () -- C:\Users\pabuk_000\Desktop\24a9a8f683b6.pdf
[2014/05/18 07:37:13 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
[2014/05/18 07:33:49 | 000,000,941 | ---- | M] () -- C:\Users\Public\Desktop\TELL ME MORE Performance.lnk
[2014/05/18 07:33:49 | 000,000,011 | ---- | M] () -- C:\trace.ini
[2014/05/18 07:32:37 | 000,283,200 | ---- | M] (DT Soft Ltd) -- C:\WINDOWS\SysNative\drivers\dtsoftbus01.sys
[2014/05/17 20:09:32 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_User_LocationProvider_01_11_00.Wdf
[2014/05/16 14:51:17 | 000,018,656 | ---- | M] () -- C:\WINDOWS\SysNative\results.xml
[2014/05/16 14:40:53 | 002,356,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WudfUpdate_01011.dll
[2014/05/16 14:39:16 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
[2014/05/16 13:41:41 | 000,000,000 | -H-- | M] () -- C:\ProgramData\DP45977C.lfl
[2014/05/16 12:43:30 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
[2014/05/16 11:20:54 | 000,002,618 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\etc\hosts.20140525-022154.backup
[2014/05/16 11:20:54 | 000,002,618 | ---- | M] () -- C:\WINDOWS\SysNative\drivers\etc\hosts.20140522-161312.backup
[2014/05/16 11:20:54 | 000,002,618 | ---- | M] () -- D:\Dokumenty\hosts
[2014/05/16 10:52:45 | 000,000,136 | ---- | M] () -- C:\WINDOWS\Reimage.ini
[2014/05/16 10:16:32 | 000,004,608 | ---- | M] () -- C:\WINDOWS\SECOH-QAD.exe
[2014/05/16 10:16:32 | 000,003,584 | ---- | M] () -- C:\WINDOWS\SECOH-QAD.dll
[2014/05/16 09:36:45 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2014/05/16 08:50:30 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2014/05/14 19:07:09 | 000,012,522 | ---- | M] () -- C:\WirelessDiagLog.csv
[2014/05/06 04:00:47 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mshtmled.dll
[2014/05/06 03:10:52 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mshtmled.dll
========== Files Created - No Company Name ==========
[2014/05/27 11:08:55 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2014/05/27 10:26:04 | 001,222,144 | ---- | C] () -- C:\Users\pabuk_000\Desktop\RSITx64.exe
[2014/05/26 18:04:09 | 000,118,807 | ---- | C] () -- C:\Users\pabuk_000\Desktop\Letáček - nejnovější.pdf
[2014/05/26 16:53:37 | 003,972,608 | ---- | C] () -- C:\Users\pabuk_000\Desktop\RogueKiller.exe
[2014/05/26 15:36:45 | 001,327,971 | ---- | C] () -- C:\Users\pabuk_000\Desktop\adwcleaner_3.211.exe
[2014/05/26 15:31:23 | 000,000,075 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2014/05/25 10:37:01 | 000,000,778 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2014/05/24 22:45:31 | 000,605,496 | ---- | C] () -- C:\WINDOWS\SysNative\audioLibVc.dll
[2014/05/24 22:45:31 | 000,109,848 | ---- | C] () -- C:\WINDOWS\SysNative\AcpiServiceVnA64.dll
[2014/05/23 15:31:20 | 000,000,805 | ---- | C] () -- C:\Users\pabuk_000\AppData\Local\MRDownloader.err
[2014/05/23 11:43:01 | 000,001,258 | ---- | C] () -- C:\Users\Public\Desktop\Play The Sims™ 3.lnk
[2014/05/21 17:34:12 | 005,680,680 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\rtvienna.dat
[2014/05/21 17:34:09 | 000,638,209 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTAIODAT.DAT
[2014/05/21 17:13:51 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
[2014/05/18 16:25:04 | 000,400,204 | ---- | C] () -- C:\Users\pabuk_000\Desktop\24a9a8f683b6.pdf
[2014/05/18 07:37:13 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
[2014/05/18 07:33:49 | 000,000,941 | ---- | C] () -- C:\Users\Public\Desktop\TELL ME MORE Performance.lnk
[2014/05/18 07:33:49 | 000,000,011 | ---- | C] () -- C:\trace.ini
[2014/05/17 20:09:32 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_User_LocationProvider_01_11_00.Wdf
[2014/05/17 09:37:43 | 000,000,788 | ---- | C] () -- C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\KMPlayer.lnk
[2014/05/16 15:21:59 | 003,435,888 | ---- | C] () -- C:\WINDOWS\SysNative\nvcoproc.bin
[2014/05/16 14:51:17 | 000,018,656 | ---- | C] () -- C:\WINDOWS\SysNative\results.xml
[2014/05/16 14:39:16 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
[2014/05/16 14:34:47 | 000,002,980 | ---- | C] () -- C:\WINDOWS\SysNative\iglhxs64.vp
[2014/05/16 14:34:45 | 000,012,288 | ---- | C] ( ) -- C:\WINDOWS\SysNative\IGFXDEVLib.dll
[2014/05/16 14:34:44 | 000,365,568 | ---- | C] () -- C:\WINDOWS\SysNative\igdmd64.dll
[2014/05/16 14:34:44 | 000,303,104 | ---- | C] () -- C:\WINDOWS\SysWow64\igdmd32.dll
[2014/05/16 14:34:42 | 000,220,672 | ---- | C] () -- C:\WINDOWS\SysNative\igdde64.dll
[2014/05/16 14:34:42 | 000,180,736 | ---- | C] () -- C:\WINDOWS\SysWow64\igdde32.dll
[2014/05/16 14:34:42 | 000,160,256 | ---- | C] () -- C:\WINDOWS\SysNative\igdail64.dll
[2014/05/16 14:34:42 | 000,142,848 | ---- | C] () -- C:\WINDOWS\SysWow64\igdail32.dll
[2014/05/16 14:34:39 | 002,384,896 | ---- | C] () -- C:\WINDOWS\SysNative\GfxRes.dll
[2014/05/16 14:34:39 | 000,265,221 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.th-TH.resources
[2014/05/16 14:34:39 | 000,251,734 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.el-GR.resources
[2014/05/16 14:34:39 | 000,233,456 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.ru-RU.resources
[2014/05/16 14:34:39 | 000,199,353 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.ar-SA.resources
[2014/05/16 14:34:39 | 000,196,916 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.ja-JP.resources
[2014/05/16 14:34:39 | 000,190,958 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.he-IL.resources
[2014/05/16 14:34:39 | 000,179,225 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.ko-KR.resources
[2014/05/16 14:34:39 | 000,179,110 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.it-IT.resources
[2014/05/16 14:34:39 | 000,176,823 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.es-ES.resources
[2014/05/16 14:34:39 | 000,176,557 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.fr-FR.resources
[2014/05/16 14:34:39 | 000,176,510 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.de-DE.resources
[2014/05/16 14:34:39 | 000,175,131 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.ro-RO.resources
[2014/05/16 14:34:39 | 000,174,116 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.hu-HU.resources
[2014/05/16 14:34:39 | 000,173,825 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.tr-TR.resources
[2014/05/16 14:34:39 | 000,173,685 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.pl-PL.resources
[2014/05/16 14:34:39 | 000,173,366 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.nl-NL.resources
[2014/05/16 14:34:39 | 000,172,633 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.pt-BR.resources
[2014/05/16 14:34:39 | 000,171,913 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.fi-FI.resources
[2014/05/16 14:34:39 | 000,171,581 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.sk-SK.resources
[2014/05/16 14:34:39 | 000,171,419 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.sv-SE.resources
[2014/05/16 14:34:39 | 000,171,189 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.pt-PT.resources
[2014/05/16 14:34:39 | 000,170,868 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.cs-CZ.resources
[2014/05/16 14:34:39 | 000,170,047 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.hr-HR.resources
[2014/05/16 14:34:39 | 000,166,544 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.sl-SI.resources
[2014/05/16 14:34:39 | 000,165,246 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.nb-NO.resources
[2014/05/16 14:34:39 | 000,164,570 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.da-DK.resources
[2014/05/16 14:34:39 | 000,159,819 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.en-US.resources
[2014/05/16 14:34:39 | 000,153,121 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.zh-TW.resources
[2014/05/16 14:34:39 | 000,151,342 | ---- | C] () -- C:\WINDOWS\SysNative\Gfxres.zh-CN.resources
[2014/05/16 14:21:54 | 000,139,600 | ---- | C] () -- C:\WINDOWS\SysNative\systemsf.ebd
[2014/05/16 14:20:28 | 000,262,335 | ---- | C] () -- C:\WINDOWS\SysNative\dfpinc.dat
[2014/05/16 14:18:53 | 000,002,255 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2014/05/16 14:18:52 | 000,002,255 | ---- | C] () -- C:\WINDOWS\SysNative\WimBootCompress.ini
[2014/05/16 14:18:20 | 000,100,197 | ---- | C] () -- C:\WINDOWS\SysWow64\RacRules.xml
[2014/05/16 14:18:19 | 000,100,197 | ---- | C] () -- C:\WINDOWS\SysNative\RacRules.xml
[2014/05/16 14:18:19 | 000,007,762 | ---- | C] () -- C:\WINDOWS\SysWow64\connectedsearch-suggestions.searchconnector-ms
[2014/05/16 14:18:19 | 000,007,130 | ---- | C] () -- C:\WINDOWS\SysWow64\connectedsearch-zeroinput.searchconnector-ms
[2014/05/16 14:18:19 | 000,007,130 | ---- | C] () -- C:\WINDOWS\SysNative\connectedsearch-zeroinput.searchconnector-ms
[2014/05/16 14:18:18 | 000,007,762 | ---- | C] () -- C:\WINDOWS\SysNative\connectedsearch-suggestions.searchconnector-ms
[2014/05/16 14:18:07 | 000,011,109 | ---- | C] () -- C:\WINDOWS\SysWow64\connectedsearch-results.searchconnector-ms
[2014/05/16 14:18:07 | 000,011,109 | ---- | C] () -- C:\WINDOWS\SysNative\connectedsearch-results.searchconnector-ms
[2014/05/16 14:18:02 | 000,050,053 | ---- | C] () -- C:\WINDOWS\SysNative\srms.dat
[2014/05/16 14:17:57 | 000,002,440 | R-S- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileManager.lnk
[2014/05/16 14:15:34 | 000,001,088 | ---- | C] () -- C:\Users\pabuk_000\AppData\Local\MRDownloader.nast
[2014/05/16 13:41:41 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2014/05/16 13:40:51 | 000,000,488 | R--- | C] () -- C:\WINDOWS\SysNative\drivers\SAMSfPa.dat
[2014/05/16 13:40:51 | 000,000,008 | R--- | C] () -- C:\WINDOWS\SysNative\drivers\rtkhdaud.dat
[2014/05/16 13:36:04 | 001,157,563 | ---- | C] () -- C:\WINDOWS\FTDataP.xml
[2014/05/16 13:36:04 | 000,946,032 | ---- | C] () -- C:\WINDOWS\FTData.xml
[2014/05/16 13:36:04 | 000,817,241 | ---- | C] () -- C:\WINDOWS\FTDataR1.xml
[2014/05/16 13:36:04 | 000,817,191 | ---- | C] () -- C:\WINDOWS\FTDataR0.xml
[2014/05/16 13:32:15 | 000,387,210 | ---- | C] () -- C:\WINDOWS\SysNative\ApnDatabase.xml
[2014/05/16 12:52:48 | 000,002,535 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2014/05/16 12:43:30 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
[2014/05/16 12:23:14 | 000,138,240 | ---- | C] () -- C:\WINDOWS\SysNative\OEMLicense.dll
[2014/05/16 12:23:14 | 000,103,936 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll
[2014/05/16 11:25:53 | 000,001,032 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Dreamweaver CS6.lnk
[2014/05/16 11:25:08 | 000,001,543 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS6.lnk
[2014/05/16 11:24:59 | 000,001,013 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
[2014/05/16 11:24:43 | 000,001,113 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Widget Browser.lnk
[2014/05/16 11:20:54 | 000,002,618 | ---- | C] () -- D:\Dokumenty\hosts
[2014/05/16 10:49:51 | 000,000,136 | ---- | C] () -- C:\WINDOWS\Reimage.ini
[2014/05/16 10:16:32 | 000,004,608 | ---- | C] () -- C:\WINDOWS\SECOH-QAD.exe
[2014/05/16 10:16:32 | 000,003,584 | ---- | C] () -- C:\WINDOWS\SECOH-QAD.dll
[2014/05/16 10:12:08 | 000,001,426 | ---- | C] () -- C:\Users\pabuk_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2014/05/16 09:36:45 | 000,008,192 | RHS- | C] () -- C:\BOOTSECT.BAK
[2014/05/16 08:50:30 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2014/05/14 19:07:09 | 000,012,522 | ---- | C] () -- C:\WirelessDiagLog.csv
[2013/08/22 16:36:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2013/08/22 16:36:42 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2013/08/22 15:46:23 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013/08/22 08:01:23 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2013/08/22 04:32:36 | 000,046,080 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2013/08/22 00:55:20 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2013/08/22 00:52:39 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat
[2013/05/11 17:17:52 | 000,001,536 | ---- | C] () -- C:\WINDOWS\SysWow64\IusEventLog.dll
========== ZeroAccess Check ==========
[2014/05/22 22:04:38 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014/04/06 17:31:39 | 021,268,952 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/04/06 16:22:20 | 018,755,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2013/08/22 10:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2013/08/22 03:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2013/08/22 10:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
========== LOP Check ==========
[2014/05/23 15:53:20 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\DAEMON Tools Lite
[2014/05/24 09:27:20 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\DiskDefrag
[2014/05/24 09:30:16 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\GlarySoft
[2014/05/16 10:36:02 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\Maxthon3
[2014/05/22 10:00:08 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\Mp3tag
[2014/05/26 09:10:38 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\uTorrent
========== Purity Check ==========
========== Custom Scans ==========
< >
[2013/08/22 15:45:54 | 000,000,006 | -H-- | C] () -- C:\WINDOWS\Tasks\SA.DAT
< >
< MD5 for: AGP440.SYS >
[2014/05/25 16:58:38 | 000,000,012 | ---- | M] () MD5=06C6E29A8643D00197E214F3AA26A4B9 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.16384_none_aad14d4692a7dfee\AGP440.sys
[2013/08/22 13:43:40 | 000,062,304 | ---- | M] (Microsoft Corporation) MD5=7DFAEBA9AD62D20102B576D5CAC45EC8 -- C:\WINDOWS\SysNative\drivers\AGP440.sys
[2013/08/22 13:43:40 | 000,062,304 | ---- | M] (Microsoft Corporation) MD5=7DFAEBA9AD62D20102B576D5CAC45EC8 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\machine.inf_amd64_1758c63a7f3ec2bf\AGP440.sys
[2013/08/22 13:43:40 | 000,062,304 | ---- | M] (Microsoft Corporation) MD5=7DFAEBA9AD62D20102B576D5CAC45EC8 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.17031_none_ab043f8a92822a60\AGP440.sys
< MD5 for: ATAPI.SYS >
[2013/08/22 13:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\WINDOWS\SysNative\drivers\atapi.sys
[2013/08/22 13:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\WINDOWS\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_64aa4354da84c2df\atapi.sys
[2013/08/22 13:43:41 | 000,026,464 | ---- | M] (Microsoft Corporation) MD5=74B14192CF79A72F7536B27CB8814FBD -- C:\Windows\WinSxS\amd64_mshdc.inf_31bf3856ad364e35_6.3.9600.16384_none_cdf68824f580d510\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2014/05/25 17:02:23 | 000,028,249 | ---- | M] () MD5=0CBDE27FB26761852F7B22AFB8C51ACB -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.16384_none_d2b24d5495b82963\autochk.exe
[2014/02/22 12:24:36 | 000,792,576 | ---- | M] (Microsoft Corporation) MD5=1D31E78ED5C40B5C6CC8D3DE713177A5 -- C:\Windows\SysWOW64\autochk.exe
[2014/02/22 12:24:36 | 000,792,576 | ---- | M] (Microsoft Corporation) MD5=1D31E78ED5C40B5C6CC8D3DE713177A5 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.17031_none_76c6a414dd35029f\autochk.exe
[2014/02/22 13:17:06 | 000,890,880 | ---- | M] (Microsoft Corporation) MD5=387A1E98BE548E4F199343CBA01E9D6D -- C:\WINDOWS\SysNative\autochk.exe
[2014/02/22 13:17:06 | 000,890,880 | ---- | M] (Microsoft Corporation) MD5=387A1E98BE548E4F199343CBA01E9D6D -- C:\Windows\WinSxS\amd64_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.17031_none_d2e53f98959273d5\autochk.exe
[2014/05/25 20:29:04 | 000,023,596 | ---- | M] () MD5=83A4C9BE342BC296EC09492FF7594F13 -- C:\Windows\WinSxS\x86_microsoft-windows-autochk_31bf3856ad364e35_6.3.9600.16384_none_7693b1d0dd5ab82d\autochk.exe
< MD5 for: CDROM.SYS >
[2013/08/22 09:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\WINDOWS\SysNative\drivers\cdrom.sys
[2013/08/22 09:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\WINDOWS\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_42e9c29f0affc440\cdrom.sys
[2013/08/22 09:46:35 | 000,164,352 | ---- | M] (Microsoft Corporation) MD5=C6796EA22B513E3457514D92DCDB1A3D -- C:\Windows\WinSxS\amd64_cdrom.inf_31bf3856ad364e35_6.3.9600.16384_none_5067bbed77be70be\cdrom.sys
< MD5 for: CRYPTSVC.DLL >
[2013/08/22 11:01:39 | 000,129,536 | ---- | M] (Microsoft Corporation) MD5=0EFE4B5884A8032617826A4D76F80969 -- C:\WINDOWS\SysNative\cryptsvc.dll
[2013/08/22 11:01:39 | 000,129,536 | ---- | M] (Microsoft Corporation) MD5=0EFE4B5884A8032617826A4D76F80969 -- C:\Windows\WinSxS\amd64_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.3.9600.16384_none_66bdf96f6ec6545d\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2014/03/04 12:16:50 | 002,088,160 | ---- | M] (Microsoft Corporation) MD5=119E091B5386379BC5AA598BE9440C75 -- C:\Windows\SysWOW64\explorer.exe
[2014/03/04 12:16:50 | 002,088,160 | ---- | M] (Microsoft Corporation) MD5=119E091B5386379BC5AA598BE9440C75 -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17039_none_4d02a60381e74c58\explorer.exe
[2014/05/25 19:40:30 | 000,015,546 | ---- | M] () MD5=347EFF7EC89C3EB4F72F2408E1C4E16D -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17031_none_4cfaa3b381ee81a0\explorer.exe
[2014/05/25 19:40:26 | 000,238,918 | ---- | M] () MD5=5177BB4FECDDB9CDBCF10EF65916968D -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16441_none_4ceff22781f6788c\explorer.exe
[2014/05/25 17:47:47 | 000,169,957 | ---- | M] () MD5=6D919C26DCB567396CD2E119B8E4310E -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17031_none_42a5f9614d8dbfa5\explorer.exe
[2014/05/25 19:40:22 | 000,239,123 | ---- | M] () MD5=7B546CB045C2A84D26A8D2FE07F9F98C -- C:\Windows\WinSxS\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16408_none_4d2233dd81cfba29\explorer.exe
[2014/03/04 13:25:49 | 002,373,784 | ---- | M] (Microsoft Corporation) MD5=81394C91B7B5A7C799E249AE82491F13 -- C:\Windows\explorer.exe
[2014/03/04 13:25:49 | 002,373,784 | ---- | M] (Microsoft Corporation) MD5=81394C91B7B5A7C799E249AE82491F13 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.17039_none_42adfbb14d868a5d\explorer.exe
[2014/05/25 17:47:40 | 000,284,534 | ---- | M] () MD5=D1EF5DE70183FB717B5FC4593A0E46BD -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16408_none_42cd898b4d6ef82e\explorer.exe
[2014/05/25 17:47:43 | 000,283,735 | ---- | M] () MD5=FA98C5D746E7C9E0912E88AC44FF9926 -- C:\Windows\WinSxS\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.3.9600.16441_none_429b47d54d95b691\explorer.exe
< MD5 for: HAL.DLL >
[2014/02/22 16:44:06 | 000,424,280 | ---- | M] (Microsoft Corporation) MD5=4DFCE03EEB1BA325B8077A626B2F25F0 -- C:\WINDOWS\SysNative\hal.dll
[2014/02/22 16:44:06 | 000,424,280 | ---- | M] (Microsoft Corporation) MD5=4DFCE03EEB1BA325B8077A626B2F25F0 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.17031_none_9c1a44f32d7b883b\hal.dll
[2014/05/25 17:49:58 | 000,066,982 | ---- | M] () MD5=B940921BC888E9EE5E51D4B56970669B -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.16408_none_9c41d51d2d5cc0c4\hal.dll
[2014/05/25 17:49:59 | 000,066,843 | ---- | M] () MD5=D714202F057A317C8E31776EBEA0AEA2 -- C:\Windows\WinSxS\amd64_microsoft-windows-hal_31bf3856ad364e35_6.3.9600.16500_none_9c39d4b32d63f333\hal.dll
< MD5 for: IASTORV.SYS >
[2013/08/22 13:43:45 | 000,412,000 | ---- | M] (Intel Corporation) MD5=A2200C3033FA4EF249FC096A7A7D02A2 -- C:\WINDOWS\SysNative\drivers\iaStorV.sys
[2013/08/22 13:43:45 | 000,412,000 | ---- | M] (Intel Corporation) MD5=A2200C3033FA4EF249FC096A7A7D02A2 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\iastorv.inf_amd64_5069105fb236ae4b\iaStorV.sys
[2013/08/22 13:43:45 | 000,412,000 | ---- | M] (Intel Corporation) MD5=A2200C3033FA4EF249FC096A7A7D02A2 -- C:\Windows\WinSxS\amd64_iastorv.inf_31bf3856ad364e35_6.3.9600.16384_none_9fcfb2835bbf0103\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2014/05/25 16:58:39 | 000,000,012 | ---- | M] () MD5=06C6E29A8643D00197E214F3AA26A4B9 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.16384_none_aad14d4692a7dfee\isapnp.sys
[2013/08/22 13:43:45 | 000,021,856 | ---- | M] (Microsoft Corporation) MD5=8AFEEA3955AA43616A60F133B1D25F21 -- C:\WINDOWS\SysNative\drivers\isapnp.sys
[2013/08/22 13:43:45 | 000,021,856 | ---- | M] (Microsoft Corporation) MD5=8AFEEA3955AA43616A60F133B1D25F21 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\machine.inf_amd64_1758c63a7f3ec2bf\isapnp.sys
[2013/08/22 13:43:45 | 000,021,856 | ---- | M] (Microsoft Corporation) MD5=8AFEEA3955AA43616A60F133B1D25F21 -- C:\Windows\WinSxS\amd64_machine.inf_31bf3856ad364e35_6.3.9600.17031_none_ab043f8a92822a60\isapnp.sys
< MD5 for: LSASS.EXE >
[2013/08/22 14:25:35 | 000,045,008 | ---- | M] (Microsoft Corporation) MD5=F6F209DDB94959BA104FC8FC87C53759 -- C:\WINDOWS\SysNative\lsass.exe
[2013/08/22 14:25:35 | 000,045,008 | ---- | M] (Microsoft Corporation) MD5=F6F209DDB94959BA104FC8FC87C53759 -- C:\Windows\WinSxS\amd64_microsoft-windows-lsa-minwin_31bf3856ad364e35_6.3.9600.16408_none_2e8484166600f08e\lsass.exe
< MD5 for: NDIS.SYS >
[2014/05/25 18:20:37 | 000,144,548 | ---- | M] () MD5=6FF1A14DC17A19F68C45B759E57F8F54 -- C:\Windows\WinSxS\amd64_microsoft-windows-ndis-minwin_31bf3856ad364e35_6.3.9600.16405_none_4a6b5fcffbc14927\ndis.sys
[2014/05/25 18:20:41 | 000,140,607 | ---- | M] () MD5=7B886741BDAE33AC4F116DF991D1E3CB -- C:\Windows\WinSxS\amd64_microsoft-windows-ndis-minwin_31bf3856ad364e35_6.3.9600.16475_none_4a1fb05bfbfa0cbe\ndis.sys
[2014/05/25 18:20:39 | 000,139,631 | ---- | M] () MD5=A4F977473222918A2BD275FB72DC4816 -- C:\Windows\WinSxS\amd64_microsoft-windows-ndis-minwin_31bf3856ad364e35_6.3.9600.16408_none_4a6e60adfbbe952c\ndis.sys
[2014/02/22 16:40:03 | 001,118,552 | ---- | M] (Microsoft Corporation) MD5=F21B77B4D74092A543807D3CEB711A88 -- C:\WINDOWS\SysNative\drivers\ndis.sys
[2014/02/22 16:40:03 | 001,118,552 | ---- | M] (Microsoft Corporation) MD5=F21B77B4D74092A543807D3CEB711A88 -- C:\Windows\WinSxS\amd64_microsoft-windows-ndis-minwin_31bf3856ad364e35_6.3.9600.17031_none_4a46d083fbdd5ca3\ndis.sys
< MD5 for: NETLOGON.DLL >
[2014/03/06 08:02:13 | 000,834,560 | ---- | M] (Microsoft Corporation) MD5=2468C21E34C49E4735B4BA430D448E91 -- C:\WINDOWS\SysNative\netlogon.dll
[2014/03/06 08:02:13 | 000,834,560 | ---- | M] (Microsoft Corporation) MD5=2468C21E34C49E4735B4BA430D448E91 -- C:\Windows\WinSxS\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.17041_none_ee9e39a60bd3552e\netlogon.dll
[2014/05/25 20:00:56 | 000,058,552 | ---- | M] () MD5=35048C9600694C3BF01D644D1AAE62BE -- C:\Windows\WinSxS\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.16384_none_f8cac1a04051b0c6\netlogon.dll
[2014/03/06 07:29:17 | 000,688,640 | ---- | M] (Microsoft Corporation) MD5=582918F96C2B7E1E3AE17D08DB6DAC41 -- C:\Windows\SysWOW64\netlogon.dll
[2014/03/06 07:29:17 | 000,688,640 | ---- | M] (Microsoft Corporation) MD5=582918F96C2B7E1E3AE17D08DB6DAC41 -- C:\Windows\WinSxS\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.17041_none_f8f2e3f840341729\netlogon.dll
[2014/05/25 18:35:40 | 000,108,975 | ---- | M] () MD5=D817ED82C2A0E1CED9B396826F52F7CB -- C:\Windows\WinSxS\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.3.9600.16384_none_ee76174e0bf0eecb\netlogon.dll
< MD5 for: NVRAID.SYS >
[2013/08/22 13:43:31 | 000,150,368 | ---- | M] (NVIDIA Corporation) MD5=BC6B5942AFF25EBAF62DE43C3807EDF8 -- C:\WINDOWS\SysNative\drivers\nvraid.sys
[2013/08/22 13:43:31 | 000,150,368 | ---- | M] (NVIDIA Corporation) MD5=BC6B5942AFF25EBAF62DE43C3807EDF8 -- C:\WINDOWS\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_7ba65ba4b222e751\nvraid.sys
[2013/08/22 13:43:31 | 000,150,368 | ---- | M] (NVIDIA Corporation) MD5=BC6B5942AFF25EBAF62DE43C3807EDF8 -- C:\Windows\WinSxS\amd64_nvraid.inf_31bf3856ad364e35_6.3.9600.16384_none_2a99233292f5aadb\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2013/08/22 13:43:32 | 000,168,288 | ---- | M] (NVIDIA Corporation) MD5=1F43ABFFAC3D6CA356851D517392966E -- C:\WINDOWS\SysNative\drivers\nvstor.sys
[2013/08/22 13:43:32 | 000,168,288 | ---- | M] (NVIDIA Corporation) MD5=1F43ABFFAC3D6CA356851D517392966E -- C:\WINDOWS\SysNative\DriverStore\FileRepository\nvraid.inf_amd64_7ba65ba4b222e751\nvstor.sys
[2013/08/22 13:43:32 | 000,168,288 | ---- | M] (NVIDIA Corporation) MD5=1F43ABFFAC3D6CA356851D517392966E -- C:\Windows\WinSxS\amd64_nvraid.inf_31bf3856ad364e35_6.3.9600.16384_none_2a99233292f5aadb\nvstor.sys
< MD5 for: SCECLI.DLL >
[2013/08/22 03:48:17 | 000,207,360 | ---- | M] (Microsoft Corporation) MD5=1F142D5BD1C3869C5D902779B6FEC3EF -- C:\Windows\SysWOW64\scecli.dll
[2013/08/22 03:48:17 | 000,207,360 | ---- | M] (Microsoft Corporation) MD5=1F142D5BD1C3869C5D902779B6FEC3EF -- C:\Windows\WinSxS\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.16384_none_3320ecb8e1733781\scecli.dll
[2013/08/22 10:55:43 | 000,271,360 | ---- | M] (Microsoft Corporation) MD5=1F1B8D07708E40E54C55B392C78ECCE2 -- C:\WINDOWS\SysNative\scecli.dll
[2013/08/22 10:55:43 | 000,271,360 | ---- | M] (Microsoft Corporation) MD5=1F1B8D07708E40E54C55B392C78ECCE2 -- C:\Windows\WinSxS\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.3.9600.16384_none_28cc4266ad127586\scecli.dll
< MD5 for: SMSS.EXE >
[2014/05/25 18:46:31 | 000,019,120 | ---- | M] () MD5=5FBA1F5F9AA1E09595F015118AE83A36 -- C:\Windows\WinSxS\amd64_microsoft-windows-smss-minwin_31bf3856ad364e35_6.3.9600.16384_none_6f1f364dbcc273d3\smss.exe
[2014/02/22 16:43:03 | 000,142,576 | ---- | M] (Microsoft Corporation) MD5=D8564418BAC13776E43DB5F6B4FA775E -- C:\WINDOWS\SysNative\smss.exe
[2014/02/22 16:43:03 | 000,142,576 | ---- | M] (Microsoft Corporation) MD5=D8564418BAC13776E43DB5F6B4FA775E -- C:\Windows\WinSxS\amd64_microsoft-windows-smss-minwin_31bf3856ad364e35_6.3.9600.17031_none_6f522891bc9cbe45\smss.exe
Re: Otvíraní nechtěných webových stránek prosím kontrolu log
< MD5 for: SVCHOST.EXE >
[2013/08/22 06:30:58 | 000,031,552 | ---- | M] (Microsoft Corporation) MD5=425E22D9F5C01616AFC92987791B19E9 -- C:\Windows\SysWOW64\svchost.exe
[2013/08/22 06:30:58 | 000,031,552 | ---- | M] (Microsoft Corporation) MD5=425E22D9F5C01616AFC92987791B19E9 -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.16384_none_4a5b1e2820e75323\svchost.exe
[2013/08/22 13:45:17 | 000,037,768 | ---- | M] (Microsoft Corporation) MD5=E4CA434F251681590D0538BC21C32D2F -- C:\WINDOWS\SysNative\svchost.exe
[2013/08/22 13:45:17 | 000,037,768 | ---- | M] (Microsoft Corporation) MD5=E4CA434F251681590D0538BC21C32D2F -- C:\Windows\WinSxS\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.16384_none_a679b9abd944c459\svchost.exe
< MD5 for: TCPIP.SYS >
[2014/05/25 18:54:31 | 000,488,491 | ---- | M] () MD5=1C2CED1BCB56D838ADBF7C62ACD78D30 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16423_none_a41c53813a2d8394\tcpip.sys
[2014/05/25 18:54:40 | 000,482,313 | ---- | M] () MD5=77F50ABB176C978A6B8AB736508D75F0 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16521_none_a41a54d33a2f4e0d\tcpip.sys
[2014/05/25 18:54:36 | 000,487,702 | ---- | M] () MD5=9EA86ED4774451FDD4BCD641F38EEB00 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16456_none_a3fee49b3a43236c\tcpip.sys
[2014/05/25 18:54:44 | 000,234,906 | ---- | M] () MD5=CB44BD6971455D2A4E3C1AF65AB60377 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17039_none_a41766f13a305c94\tcpip.sys
[2014/05/25 18:54:27 | 000,489,004 | ---- | M] () MD5=CF4007F9C7D2228387D952BCDBFC0627 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16408_none_a436f4cb3a18ca65\tcpip.sys
[2014/03/31 06:35:34 | 002,518,360 | ---- | M] (Microsoft Corporation) MD5=D7566BE560B040C47F6F35EB980D8377 -- C:\WINDOWS\SysNative\drivers\tcpip.sys
[2014/03/31 06:35:34 | 002,518,360 | ---- | M] (Microsoft Corporation) MD5=D7566BE560B040C47F6F35EB980D8377 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17085_none_a3dd562d3a5c82ed\tcpip.sys
< MD5 for: USERINIT.EXE >
[2013/08/22 11:03:12 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=08C191B2917862BE90C33E31CB6B6D79 -- C:\WINDOWS\SysNative\userinit.exe
[2013/08/22 11:03:12 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=08C191B2917862BE90C33E31CB6B6D79 -- C:\Windows\WinSxS\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.16384_none_cce71a20a5a6fe7f\userinit.exe
[2013/08/22 03:54:12 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=41636F77AD6D9A396EA34E4786B96F2B -- C:\Windows\SysWOW64\userinit.exe
[2013/08/22 03:54:12 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=41636F77AD6D9A396EA34E4786B96F2B -- C:\Windows\WinSxS\x86_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.16384_none_70c87e9ced498d49\userinit.exe
< MD5 for: WINLOGON.EXE >
[2014/02/22 10:45:48 | 000,562,176 | ---- | M] (Microsoft Corporation) MD5=306EB21E5B480AE9065EA55AC8C35936 -- C:\WINDOWS\SysNative\winlogon.exe
[2014/02/22 10:45:48 | 000,562,176 | ---- | M] (Microsoft Corporation) MD5=306EB21E5B480AE9065EA55AC8C35936 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.17031_none_60b45365a8c2ccdb\winlogon.exe
[2014/05/25 19:05:39 | 000,089,459 | ---- | M] () MD5=E40DC8DF924E02F04F3620DBAC1ACE31 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.16384_none_60816121a8e88269\winlogon.exe
< MD5 for: WS2_32.DLL >
[2013/08/22 06:17:54 | 000,313,488 | ---- | M] (Microsoft Corporation) MD5=428AF7FA03FF09CE1CD373ABFEBAD8A3 -- C:\Windows\SysWOW64\ws2_32.dll
[2013/08/22 06:17:54 | 000,313,488 | ---- | M] (Microsoft Corporation) MD5=428AF7FA03FF09CE1CD373ABFEBAD8A3 -- C:\Windows\WinSxS\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.3.9600.16384_none_87577549e9ef9b02\ws2_32.dll
[2013/08/22 14:25:35 | 000,355,872 | ---- | M] (Microsoft Corporation) MD5=6F997D98C6A30D79C622811FBAB9119E -- C:\WINDOWS\SysNative\ws2_32.dll
[2013/08/22 14:25:35 | 000,355,872 | ---- | M] (Microsoft Corporation) MD5=6F997D98C6A30D79C622811FBAB9119E -- C:\Windows\WinSxS\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.3.9600.16384_none_e37610cda24d0c38\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[14 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[1 C:\WINDOWS\Panther\*.tmp files -> C:\WINDOWS\Panther\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2014/05/23 15:47:13 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\Adobe
[2014/05/22 08:40:21 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\Apple Computer
[2014/05/23 15:53:20 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\DAEMON Tools Lite
[2014/05/24 09:27:20 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\DiskDefrag
[2014/05/24 09:30:16 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\GlarySoft
[2014/05/16 14:39:03 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\InstallShield
[2014/05/25 02:05:31 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\LavasoftStatistics
[2014/05/16 10:41:49 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\Macromedia
[2014/05/16 10:36:02 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\Maxthon3
[2014/05/21 16:50:30 | 000,000,000 | --SD | M] -- C:\Users\pabuk_000\AppData\Roaming\Microsoft
[2014/05/25 10:37:11 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\Mozilla
[2014/05/22 10:00:08 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\Mp3tag
[2014/05/21 18:30:21 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\NVIDIA
[2014/05/18 07:31:51 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\Skype
[2014/05/26 09:10:38 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\uTorrent
[2014/05/17 09:19:19 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\vlc
< %APPDATA%\*.exe /s >
[2014/05/23 15:42:14 | 000,054,432 | ---- | M] (Adobe Systems Inc.) -- C:\Users\pabuk_000\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[2014/05/22 09:33:43 | 001,272,400 | ---- | M] (BitTorrent Inc.) -- C:\Users\pabuk_000\AppData\Roaming\uTorrent\uTorrent.exe
[2014/05/22 09:33:08 | 001,272,400 | ---- | M] (BitTorrent Inc.) -- C:\Users\pabuk_000\AppData\Roaming\uTorrent\updates\3.4.1_31139.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"iCloudServices" = C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe -- [2013/11/20 15:43:26 | 000,059,720 | ---- | M] (Apple Inc.)
"ApplePhotoStreams" = C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe -- [2013/11/20 15:43:14 | 000,059,720 | ---- | M] (Apple Inc.)
"AppleIEDAV" = C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe -- [2013/11/15 12:01:12 | 001,326,408 | ---- | M] (Apple Inc.)
"uTorrent" = "C:\Users\pabuk_000\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED -- [2014/05/22 09:33:43 | 001,272,400 | ---- | M] (BitTorrent Inc.)
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014/05/27 11:08:55 | 000,000,512 | ---- | M] () MD5=50DD076ABB50AAACF78378789B22A1CC -- C:\PhysicalMBR.bin
< >
< *crack* /s >
< *keygen* /s >
[2014/04/17 01:52:20 | 000,971,064 | ---- | M] () -- \Windows.old\$Recycle.Bin\S-1-5-21-972540561-1704939325-1529438176-1001\$RLQCHDI\Keygen Installer\Keygen Installer.rar
< *AntiWPA* /s >
< *loader* /s >
[2014/02/12 20:58:20 | 000,007,281 | ---- | M] () -- \Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit.resources\inspector\HeapSnapshotLoader.js
[2013/11/20 15:43:14 | 000,059,720 | ---- | M] () -- \Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader.exe
[2013/11/20 15:43:14 | 001,116,488 | ---- | M] () -- \Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader_main.dll
[2013/09/14 01:50:46 | 000,008,827 | ---- | M] () -- \Program Files (x86)\Common Files\Apple\Internet Services\WebKit.resources\inspector\HeapSnapshotLoader.js
[2013/06/04 10:57:24 | 000,057,224 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2013/06/04 10:57:24 | 000,065,416 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2013/06/04 10:57:24 | 000,083,848 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2013/06/04 10:57:24 | 000,088,968 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader64.dll
[2013/09/30 05:05:40 | 000,000,930 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.BingTravel_3.0.1.174_x64__8wekyb3d8bbwe\js\HtmlFileLoader.js
[2014/05/16 12:31:00 | 000,000,856 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.BingTravel_3.0.2.258_x64__8wekyb3d8bbwe\js\HtmlFileLoader.js
[2013/09/30 05:01:41 | 000,001,160 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.4.9600.16384_x64__8wekyb3d8bbwe\modernpeople\appframe\backgroundloader.js
[2013/09/30 05:01:41 | 000,004,996 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.4.9600.16384_x64__8wekyb3d8bbwe\modernshareanything\sharedataloader.js
[2013/09/30 05:01:41 | 000,002,125 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.4.9600.16384_x64__8wekyb3d8bbwe\modernsharetarget\sharemaildataloader.js
[2013/09/30 05:01:41 | 000,001,160 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\modernpeople\appframe\backgroundloader.js
[2013/09/30 05:01:41 | 000,004,996 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\modernshareanything\sharedataloader.js
[2013/09/30 05:01:41 | 000,002,125 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\modernsharetarget\sharemaildataloader.js
[2013/09/30 05:06:00 | 000,043,128 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2013/09/30 05:06:00 | 000,043,128 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.20.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2013/09/30 05:04:53 | 000,053,822 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneMusic_2.2.41.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2013/09/30 05:05:15 | 000,053,822 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneVideo_2.2.41.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2014/05/16 12:41:43 | 000,101,046 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneVideo_2.2.886.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2014/05/23 11:43:01 | 000,001,234 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts\The Sims™ 3\Install Origin Loader.lnk
[2014/05/23 11:43:01 | 000,001,234 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Electronic Arts\The Sims™ 3\Install Origin Loader.lnk
[2014/05/23 15:39:38 | 000,000,805 | ---- | M] () -- \Users\pabuk_000\AppData\Local\MRDownloader.err
[2014/05/23 15:40:18 | 000,001,088 | ---- | M] () -- \Users\pabuk_000\AppData\Local\MRDownloader.nast
[2014/01/28 19:35:56 | 000,072,638 | ---- | M] () -- \Users\pabuk_000\AppData\Local\Skype\Apps\login\images\loader.gif
[2014/01/28 19:35:56 | 000,003,032 | ---- | M] () -- \Users\pabuk_000\AppData\Local\Skype\Apps\login\images\loader.png
[2014/01/28 19:35:56 | 000,006,012 | ---- | M] () -- \Users\pabuk_000\AppData\Local\Skype\Apps\login\images\normal\loader_15fps.gif
[2014/01/28 19:35:56 | 000,021,956 | ---- | M] () -- \Users\pabuk_000\AppData\Local\Skype\Apps\login\images\normal\loader_30fps.gif
[2014/01/28 19:35:56 | 000,009,772 | ---- | M] () -- \Users\pabuk_000\AppData\Local\Skype\Apps\login\images\retina\loader@2x.png
[2014/05/16 14:15:28 | 000,000,709 | ---- | M] () -- \Users\pabuk_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\MRDownloader.lnk
[2014/05/23 15:29:48 | 000,074,696 | ---- | M] () -- \Windows\Prefetch\MRDOWNLOADER.EXE-BF3A120C.pf
[2013/08/22 05:17:27 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 05:17:25 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 05:17:24 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 05:17:20 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 05:17:34 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 05:17:33 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 04:55:19 | 000,036,352 | ---- | M] () -- \Windows\System32\dmloader.dll
[2013/08/22 14:25:39 | 000,003,584 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 14:25:39 | 000,003,072 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 14:25:38 | 000,002,560 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 05:17:27 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 05:17:25 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 05:17:24 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 05:17:20 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 05:17:34 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 05:17:33 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 04:55:19 | 000,036,352 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2013/08/22 14:25:39 | 000,003,584 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 14:25:39 | 000,003,072 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 14:25:38 | 000,002,560 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-stringloader-l1-1-1.dll
[2014/05/25 16:58:50 | 000,592,677 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.16384_none_210fb36c397c4e2b\hvloader.efi
[2014/05/25 16:58:49 | 000,536,051 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.16384_none_210fb36c397c4e2b\hvloader.exe
[2014/05/25 16:58:55 | 000,598,463 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17031_none_2142a5b03956989d\hvloader.efi
[2014/05/25 16:58:53 | 000,542,292 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17031_none_2142a5b03956989d\hvloader.exe
[2014/05/25 16:58:59 | 000,598,454 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17039_none_214aa800394f6355\hvloader.efi
[2014/05/25 16:58:58 | 000,542,288 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17039_none_214aa800394f6355\hvloader.exe
[2013/08/22 12:21:30 | 000,046,592 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.3.9600.16384_none_36b27bfc6399d5ce\dmloader.dll
[2013/08/22 14:25:37 | 000,003,584 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 14:25:37 | 000,003,072 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 14:25:36 | 000,002,560 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 12:45:31 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 12:45:33 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 12:45:35 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 12:45:30 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 12:45:40 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 12:45:44 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-stringloader-l1-1-1.dll
[2014/05/16 15:41:03 | 000,000,465 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb.manifest
[2014/05/25 21:08:26 | 000,009,588 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb_winload.efi.mui_35ee487d
[2014/05/25 21:08:26 | 000,009,604 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb_winload.exe.mui_3bc5b827
[2014/05/25 21:08:26 | 000,007,885 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb_winresume.efi.mui_f412814e
[2014/05/25 21:08:26 | 000,007,900 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb_winresume.exe.mui_ff8b5358
[2014/05/16 15:41:25 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e.manifest
[2014/05/25 21:08:30 | 000,724,144 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e_winload.efi_75834aa0
[2014/05/25 21:08:31 | 000,660,345 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e_winload.exe_75835076
[2014/05/25 21:08:33 | 000,646,217 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e_winresume.efi_85cd069f
[2014/05/25 21:08:34 | 000,586,798 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e_winresume.exe_85cd1215
[2013/08/22 16:34:52 | 000,000,596 | ---- | M] () -- \Windows\WinSxS\FileMaps\programdata_microsoft_network_downloader_7fafaef6d33e4371.cdf-ms
[2013/09/30 04:55:42 | 000,000,463 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_2400ceb4d1008089.manifest
[2014/05/16 13:13:41 | 000,000,465 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb.manifest
[2013/08/22 16:22:38 | 000,000,542 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16384_none_4be51a3d409de6bc.manifest
[2013/09/30 05:17:23 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16411_none_4c2dcab94067d447.manifest
[2013/09/30 05:21:44 | 000,000,546 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16415_none_4c31cbe1406439a3.manifest
[2014/05/16 12:01:36 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16452_none_4c038b5340875d62.manifest
[2014/05/16 11:59:07 | 000,000,550 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16496_none_4bdc4ccb40a43282.manifest
[2014/05/16 13:13:44 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e.manifest
[2013/08/22 04:55:19 | 000,036,352 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.3.9600.16384_none_da93e078ab3c6498\dmloader.dll
[2013/08/22 14:25:39 | 000,003,584 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 14:25:39 | 000,003,072 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 14:25:38 | 000,002,560 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 05:17:27 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 05:17:25 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 05:17:24 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 05:17:20 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 05:17:34 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 05:17:33 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-stringloader-l1-1-1.dll
< *minodlogin* /s >
< *tnod* /s >
[2014/05/23 12:49:34 | 000,054,144 | ---- | M] () -- \Windows\Prefetch\TNOD ACTIVATOR.EXE-04CE2093.pf
[2014/05/23 12:57:19 | 000,065,870 | ---- | M] () -- \Windows\Prefetch\TNOD ACTIVATOR.EXE-C24A3A06.pf
< *AutoKMS* /s >
< *activator* /s >
[2014/05/23 12:49:34 | 000,054,144 | ---- | M] () -- \Windows\Prefetch\TNOD ACTIVATOR.EXE-04CE2093.pf
[2014/05/23 12:57:19 | 000,065,870 | ---- | M] () -- \Windows\Prefetch\TNOD ACTIVATOR.EXE-C24A3A06.pf
< *serial* /s >
[2013/08/03 05:41:46 | 000,970,752 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2014/05/22 14:35:58 | 000,847,872 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2014/05/22 14:36:02 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2014/05/25 16:48:22 | 000,022,528 | ---- | M] () -- \Users\pabuk_000\AppData\Roaming\Maxthon3\Users\pabu.kupka@seznam.cz\LocalStorage\http_www.sledujuserialy.cz_0.localstorage
[2014/05/25 16:48:22 | 000,003,608 | ---- | M] () -- \Users\pabuk_000\AppData\Roaming\Maxthon3\Users\pabu.kupka@seznam.cz\LocalStorage\http_www.sledujuserialy.cz_0.localstorage-journal
[2013/08/17 01:06:37 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/17 01:06:31 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2014/05/22 14:36:01 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2014/05/22 14:36:00 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014/05/16 16:37:32 | 002,804,736 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\183eaaded316165bfbd32a991e4e8c8a\System.Runtime.Serialization.ni.dll
[2014/05/16 16:37:32 | 000,000,980 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\183eaaded316165bfbd32a991e4e8c8a\System.Runtime.Serialization.ni.dll.aux
[2014/05/16 16:40:16 | 003,530,752 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\209aa0718fe1f200de5ea360d5d4de25\System.Runtime.Serialization.ni.dll
[2014/05/16 16:40:16 | 000,000,980 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\209aa0718fe1f200de5ea360d5d4de25\System.Runtime.Serialization.ni.dll.aux
[2013/08/22 16:32:39 | 000,001,032 | ---- | M] () -- \Windows\Inf\c_multiportserial.inf
[2013/09/30 04:56:38 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/10 01:55:16 | 000,142,104 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 01:55:16 | 000,029,392 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Json\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Json.dll
[2013/08/10 01:55:16 | 000,029,432 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Primitives\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Primitives.dll
[2013/09/30 04:56:38 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2013/08/10 01:55:16 | 000,029,896 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Xml\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Xml.dll
[2013/08/10 01:55:16 | 001,060,528 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013/08/10 01:55:49 | 000,045,720 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2013/08/10 01:55:49 | 000,029,848 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.XmlSerializer\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Xml.XmlSerializer.dll
[2013/08/17 01:06:31 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/17 01:06:37 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/05/22 14:36:02 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013/08/10 01:55:16 | 001,060,528 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2013/08/10 01:55:16 | 000,142,104 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 01:55:16 | 000,029,392 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Json.dll
[2013/08/10 01:55:16 | 000,029,432 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2013/08/10 01:55:16 | 000,029,896 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2013/08/10 01:55:49 | 000,045,720 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2013/08/10 01:55:49 | 000,029,848 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.XmlSerializer.dll
[2013/09/30 04:56:38 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/09/30 04:56:38 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2013/08/17 01:06:27 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/17 01:06:37 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2014/05/22 14:36:02 | 000,847,872 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013/08/10 01:41:27 | 001,060,528 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.dll
[2013/08/10 01:41:27 | 000,142,104 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 01:41:27 | 000,029,392 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Json.dll
[2013/08/10 01:41:28 | 000,029,432 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2013/08/10 01:41:28 | 000,029,896 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2013/08/10 01:42:08 | 000,045,720 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.Serialization.dll
[2013/08/10 01:42:08 | 000,029,848 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.XmlSerializer.dll
[2013/09/30 04:56:37 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/09/30 04:56:38 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2013/08/22 21:12:22 | 000,008,827 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~cs-CZ~6.3.9600.16384.cat
[2013/08/22 20:40:12 | 000,000,781 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~cs-CZ~6.3.9600.16384.mum
[2013/08/22 13:55:01 | 000,008,827 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~~6.3.9600.16384.cat
[2013/08/22 07:47:48 | 000,000,511 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~~6.3.9600.16384.mum
[2013/08/22 04:48:16 | 000,015,872 | ---- | M] () -- \Windows\System32\serialui.dll
[2013/08/22 21:12:22 | 000,008,827 | ---- | M] () -- \Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~cs-CZ~6.3.9600.16384.cat
[2013/08/22 13:55:01 | 000,008,827 | ---- | M] () -- \Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~~6.3.9600.16384.cat
[2013/09/30 04:56:23 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2013/09/30 04:56:14 | 000,000,232 | ---- | M] () -- \Windows\System32\DriverStore\en-US\c_multiportserial.inf_loc
[2013/08/22 07:57:38 | 000,001,032 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\c_multiportserial.inf_amd64_7875073d426d59a6\c_multiportserial.inf
[2013/08/22 12:40:08 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_amd64_1be60ad3a61e5531\serial.sys
[2013/08/22 04:48:16 | 000,015,872 | ---- | M] () -- \Windows\SysWOW64\serialui.dll
[2013/09/30 04:56:23 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\cs-CZ\serialui.dll.mui
[2013/09/30 04:56:14 | 000,000,232 | ---- | M] () -- \Windows\WinSxS\amd64_c_multiportserial.inf.resources_31bf3856ad364e35_6.3.9600.16384_en-us_35eaebe6834354eb\c_multiportserial.inf_loc
[2013/08/22 07:57:38 | 000,001,032 | ---- | M] () -- \Windows\WinSxS\amd64_c_multiportserial.inf_31bf3856ad364e35_6.3.9600.16384_none_91b10a007e43beff\c_multiportserial.inf
[2013/08/17 01:06:37 | 000,011,776 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_b0eacafe7f4d1992\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2013/09/30 04:56:23 | 000,005,120 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_3f29419cb7a1caf0\serialui.dll.mui
[2013/08/22 12:13:54 | 000,017,920 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.3.9600.16384_none_e5c00198f2a1c32d\serialui.dll
[2014/05/22 14:36:02 | 000,090,112 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_4e32729c2675dfcf\System.RunTime.Serialization.Resources.dll
[2013/09/30 04:56:14 | 000,009,728 | ---- | M] () -- \Windows\WinSxS\amd64_msports.inf.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_b574829120336a99\serial.sys.mui
[2013/08/22 12:40:08 | 000,083,456 | ---- | M] () -- \Windows\WinSxS\amd64_msports.inf_31bf3856ad364e35_6.3.9600.16384_none_e95610bc8c554aa7\serial.sys
[2013/09/30 04:56:38 | 000,113,864 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..alization.resources_b03f5f7f11d50a3a_4.0.9600.16384_cs-cz_1da5c476c59b0e5b\System.RunTime.Serialization.resources.dll
[2013/08/10 01:41:27 | 000,142,104 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..ion.formatters.soap_b03f5f7f11d50a3a_4.0.9600.16384_none_f73c7de0bb1de286\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 01:41:28 | 000,029,432 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..lization.primitives_b03f5f7f11d50a3a_4.0.9600.16384_none_64635c6af076b012\System.Runtime.Serialization.Primitives.dll
[2013/09/30 04:56:37 | 000,027,920 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..ters.soap.resources_b03f5f7f11d50a3a_4.0.9600.16384_cs-cz_65f374ee29342685\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/10 01:41:27 | 000,029,392 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_031841e9b021a288\System.Runtime.Serialization.Json.dll
[2013/08/10 01:41:28 | 000,029,896 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_ea3019bcd508d7f5\System.Runtime.Serialization.Xml.dll
[2013/08/10 01:41:27 | 001,060,528 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runtime.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_afcfdcce0af8e4ba\System.Runtime.Serialization.dll
[2013/08/10 01:42:08 | 000,045,720 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.xml.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_1f92ce7ac9b9f399\System.Xml.Serialization.dll
[2013/08/10 01:42:08 | 000,029,848 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_0b1c65bd7b1ef04c\System.Xml.XmlSerializer.dll
[2013/08/17 01:06:27 | 000,131,072 | ---- | M] () -- \Windows\WinSxS\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.16384_none_f057a9271ce694b1\System.Runtime.Serialization.Formatters.Soap.dll
[2014/05/22 14:36:02 | 000,847,872 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.16384_none_9fc99c9c7c4c05c7\System.Runtime.Serialization.dll
[2014/05/22 14:35:58 | 000,847,872 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_daa0a966d0440060\System.Runtime.Serialization.dll
[2013/09/30 04:54:49 | 000,000,276 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_c_multiportserial.inf-languagepack_31bf3856ad364e35_6.3.9600.16384_cs-cz_c3036df581d2c4e4.manifest
[2013/09/30 04:55:08 | 000,000,249 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_c_multiportserial.inf.resources_31bf3856ad364e35_6.3.9600.16384_en-us_35eaebe6834354eb.manifest
[2013/08/22 16:20:14 | 000,000,210 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_c_multiportserial.inf_31bf3856ad364e35_6.3.9600.16384_none_91b10a007e43beff.manifest
[2013/08/22 14:25:34 | 000,000,297 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.3.9600.16384_none_0273ed2980a1f589.manifest
[2013/08/22 16:22:11 | 000,001,512 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-serial-classextension_31bf3856ad364e35_6.3.9600.16384_none_26d3123b2d2a9360.manifest
[2013/08/22 16:22:07 | 000,000,110 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.3.9600.16384_none_1d7b32f2da6cfe0c.manifest
[2013/08/22 16:24:27 | 000,000,402 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_031841e9b021a288.manifest
[2013/08/22 16:24:29 | 000,000,401 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_ea3019bcd508d7f5.manifest
[2013/08/22 16:24:24 | 000,000,420 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.runtime.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_afcfdcce0af8e4ba.manifest
[2013/08/22 16:24:28 | 000,000,397 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.xml.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_1f92ce7ac9b9f399.manifest
[2013/08/22 16:24:27 | 000,000,403 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_0b1c65bd7b1ef04c.manifest
[2013/08/22 16:24:13 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.16384_none_9fc99c9c7c4c05c7.manifest
[2013/08/22 16:24:13 | 000,000,416 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_daa0a966d0440060.manifest
[2013/08/22 16:24:29 | 000,000,418 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_61eedd30ec040245.manifest
[2013/08/22 16:24:24 | 000,000,430 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.primitives_b03f5f7f11d50a3a_4.0.9600.16384_none_dde82ee214ba2d3d.manifest
[2013/08/22 16:24:13 | 000,000,400 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.16384_none_ed2ffed67c428df1.manifest
[2013/09/30 04:55:53 | 000,000,448 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.16384_cs-cz_25789e4d6d93f144.manifest
[2013/09/30 04:55:51 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.16384_cs-cz_7adb458f8b8eae0b.manifest
[2013/08/22 16:24:24 | 000,000,419 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_0d0d9cf22bac10f4.manifest
[2013/08/22 16:24:27 | 000,000,471 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.16384_none_c8108d2e85eed25d.manifest
[2013/08/22 16:24:13 | 000,000,422 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.16384_none_1d733470a3e98f24.manifest
[2013/08/22 16:24:28 | 000,000,447 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.xml.serialization_b77a5c561934e089_4.0.9600.16384_none_5aaf0d34c0033202.manifest
[2013/08/22 16:24:24 | 000,000,420 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_3cc4c9f9340d8755.manifest
[2013/08/22 16:24:56 | 000,000,411 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_224de03de4c02966.manifest
[2013/08/10 01:55:16 | 000,142,104 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_4.0.9600.16384_none_0dbd81c1c9e100df\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/17 01:06:31 | 000,131,072 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.16384_none_63202903e7dbbda6\System.Runtime.Serialization.Formatters.Soap.dll
[2013/09/30 04:56:38 | 000,027,920 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_4.0.9600.16384_cs-cz_c6e6982dc37909d8\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/17 01:06:37 | 000,011,776 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.3.9600.16384_cs-cz_1c493f6fe173c69f\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/10 01:55:16 | 000,029,392 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_61eedd30ec040245\System.Runtime.Serialization.Json.dll
[2013/08/10 01:55:16 | 000,029,432 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.primitives_b03f5f7f11d50a3a_4.0.9600.16384_none_dde82ee214ba2d3d\System.Runtime.Serialization.Primitives.dll
[2014/05/22 14:36:02 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.16384_none_ed2ffed67c428df1\System.Runtime.Serialization.dll
[2013/09/30 04:56:38 | 000,113,864 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.16384_cs-cz_25789e4d6d93f144\System.RunTime.Serialization.resources.dll
[2014/05/22 14:36:01 | 000,090,112 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.16384_cs-cz_7adb458f8b8eae0b\System.RunTime.Serialization.Resources.dll
[2013/08/10 01:55:16 | 000,029,896 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_0d0d9cf22bac10f4\System.Runtime.Serialization.Xml.dll
[2013/08/10 01:55:16 | 001,060,528 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.16384_none_c8108d2e85eed25d\System.Runtime.Serialization.dll
[2014/05/22 14:36:00 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.16384_none_1d733470a3e98f24\System.Runtime.Serialization.dll
[2013/08/10 01:55:49 | 000,045,720 | ---- | M] () -- \Windows\WinSxS\msil_system.xml.serialization_b77a5c561934e089_4.0.9600.16384_none_5aaf0d34c0033202\System.Xml.Serialization.dll
[2013/08/10 01:55:49 | 000,029,848 | ---- | M] () -- \Windows\WinSxS\msil_system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_3cc4c9f9340d8755\System.Xml.XmlSerializer.dll
[2013/08/17 01:06:37 | 000,011,776 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_54cc2f7ac6efa85c\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/09/30 04:56:23 | 000,005,120 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_e30aa618ff4459ba\serialui.dll.mui
[2013/08/22 04:48:16 | 000,015,872 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.3.9600.16384_none_89a166153a4451f7\serialui.dll
[2013/08/03 05:41:46 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_224de03de4c02966\System.Runtime.Serialization.dll
< *w7lxe* /s >
========== Alternate Data Streams ==========
@Alternate Data Stream - 183 bytes -> C:\Users\pabuk_000\SkyDrive:ms-properties
< End of report >
[2013/08/22 06:30:58 | 000,031,552 | ---- | M] (Microsoft Corporation) MD5=425E22D9F5C01616AFC92987791B19E9 -- C:\Windows\SysWOW64\svchost.exe
[2013/08/22 06:30:58 | 000,031,552 | ---- | M] (Microsoft Corporation) MD5=425E22D9F5C01616AFC92987791B19E9 -- C:\Windows\WinSxS\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.16384_none_4a5b1e2820e75323\svchost.exe
[2013/08/22 13:45:17 | 000,037,768 | ---- | M] (Microsoft Corporation) MD5=E4CA434F251681590D0538BC21C32D2F -- C:\WINDOWS\SysNative\svchost.exe
[2013/08/22 13:45:17 | 000,037,768 | ---- | M] (Microsoft Corporation) MD5=E4CA434F251681590D0538BC21C32D2F -- C:\Windows\WinSxS\amd64_microsoft-windows-services-svchost_31bf3856ad364e35_6.3.9600.16384_none_a679b9abd944c459\svchost.exe
< MD5 for: TCPIP.SYS >
[2014/05/25 18:54:31 | 000,488,491 | ---- | M] () MD5=1C2CED1BCB56D838ADBF7C62ACD78D30 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16423_none_a41c53813a2d8394\tcpip.sys
[2014/05/25 18:54:40 | 000,482,313 | ---- | M] () MD5=77F50ABB176C978A6B8AB736508D75F0 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16521_none_a41a54d33a2f4e0d\tcpip.sys
[2014/05/25 18:54:36 | 000,487,702 | ---- | M] () MD5=9EA86ED4774451FDD4BCD641F38EEB00 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16456_none_a3fee49b3a43236c\tcpip.sys
[2014/05/25 18:54:44 | 000,234,906 | ---- | M] () MD5=CB44BD6971455D2A4E3C1AF65AB60377 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17039_none_a41766f13a305c94\tcpip.sys
[2014/05/25 18:54:27 | 000,489,004 | ---- | M] () MD5=CF4007F9C7D2228387D952BCDBFC0627 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.16408_none_a436f4cb3a18ca65\tcpip.sys
[2014/03/31 06:35:34 | 002,518,360 | ---- | M] (Microsoft Corporation) MD5=D7566BE560B040C47F6F35EB980D8377 -- C:\WINDOWS\SysNative\drivers\tcpip.sys
[2014/03/31 06:35:34 | 002,518,360 | ---- | M] (Microsoft Corporation) MD5=D7566BE560B040C47F6F35EB980D8377 -- C:\Windows\WinSxS\amd64_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.3.9600.17085_none_a3dd562d3a5c82ed\tcpip.sys
< MD5 for: USERINIT.EXE >
[2013/08/22 11:03:12 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=08C191B2917862BE90C33E31CB6B6D79 -- C:\WINDOWS\SysNative\userinit.exe
[2013/08/22 11:03:12 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=08C191B2917862BE90C33E31CB6B6D79 -- C:\Windows\WinSxS\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.16384_none_cce71a20a5a6fe7f\userinit.exe
[2013/08/22 03:54:12 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=41636F77AD6D9A396EA34E4786B96F2B -- C:\Windows\SysWOW64\userinit.exe
[2013/08/22 03:54:12 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=41636F77AD6D9A396EA34E4786B96F2B -- C:\Windows\WinSxS\x86_microsoft-windows-userinit_31bf3856ad364e35_6.3.9600.16384_none_70c87e9ced498d49\userinit.exe
< MD5 for: WINLOGON.EXE >
[2014/02/22 10:45:48 | 000,562,176 | ---- | M] (Microsoft Corporation) MD5=306EB21E5B480AE9065EA55AC8C35936 -- C:\WINDOWS\SysNative\winlogon.exe
[2014/02/22 10:45:48 | 000,562,176 | ---- | M] (Microsoft Corporation) MD5=306EB21E5B480AE9065EA55AC8C35936 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.17031_none_60b45365a8c2ccdb\winlogon.exe
[2014/05/25 19:05:39 | 000,089,459 | ---- | M] () MD5=E40DC8DF924E02F04F3620DBAC1ACE31 -- C:\Windows\WinSxS\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.3.9600.16384_none_60816121a8e88269\winlogon.exe
< MD5 for: WS2_32.DLL >
[2013/08/22 06:17:54 | 000,313,488 | ---- | M] (Microsoft Corporation) MD5=428AF7FA03FF09CE1CD373ABFEBAD8A3 -- C:\Windows\SysWOW64\ws2_32.dll
[2013/08/22 06:17:54 | 000,313,488 | ---- | M] (Microsoft Corporation) MD5=428AF7FA03FF09CE1CD373ABFEBAD8A3 -- C:\Windows\WinSxS\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.3.9600.16384_none_87577549e9ef9b02\ws2_32.dll
[2013/08/22 14:25:35 | 000,355,872 | ---- | M] (Microsoft Corporation) MD5=6F997D98C6A30D79C622811FBAB9119E -- C:\WINDOWS\SysNative\ws2_32.dll
[2013/08/22 14:25:35 | 000,355,872 | ---- | M] (Microsoft Corporation) MD5=6F997D98C6A30D79C622811FBAB9119E -- C:\Windows\WinSxS\amd64_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.3.9600.16384_none_e37610cda24d0c38\ws2_32.dll
< >
< %systemroot%*.* /U /s >
[14 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[1 C:\WINDOWS\Panther\*.tmp files -> C:\WINDOWS\Panther\*.tmp -> ]
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2014/05/23 15:47:13 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\Adobe
[2014/05/22 08:40:21 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\Apple Computer
[2014/05/23 15:53:20 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\DAEMON Tools Lite
[2014/05/24 09:27:20 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\DiskDefrag
[2014/05/24 09:30:16 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\GlarySoft
[2014/05/16 14:39:03 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\InstallShield
[2014/05/25 02:05:31 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\LavasoftStatistics
[2014/05/16 10:41:49 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\Macromedia
[2014/05/16 10:36:02 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\Maxthon3
[2014/05/21 16:50:30 | 000,000,000 | --SD | M] -- C:\Users\pabuk_000\AppData\Roaming\Microsoft
[2014/05/25 10:37:11 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\Mozilla
[2014/05/22 10:00:08 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\Mp3tag
[2014/05/21 18:30:21 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\NVIDIA
[2014/05/18 07:31:51 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\Skype
[2014/05/26 09:10:38 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\uTorrent
[2014/05/17 09:19:19 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\vlc
< %APPDATA%\*.exe /s >
[2014/05/23 15:42:14 | 000,054,432 | ---- | M] (Adobe Systems Inc.) -- C:\Users\pabuk_000\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[2014/05/22 09:33:43 | 001,272,400 | ---- | M] (BitTorrent Inc.) -- C:\Users\pabuk_000\AppData\Roaming\uTorrent\uTorrent.exe
[2014/05/22 09:33:08 | 001,272,400 | ---- | M] (BitTorrent Inc.) -- C:\Users\pabuk_000\AppData\Roaming\uTorrent\updates\3.4.1_31139.exe
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
< %SYSTEMDRIVE%\*.exe >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"iCloudServices" = C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe -- [2013/11/20 15:43:26 | 000,059,720 | ---- | M] (Apple Inc.)
"ApplePhotoStreams" = C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe -- [2013/11/20 15:43:14 | 000,059,720 | ---- | M] (Apple Inc.)
"AppleIEDAV" = C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe -- [2013/11/15 12:01:12 | 001,326,408 | ---- | M] (Apple Inc.)
"uTorrent" = "C:\Users\pabuk_000\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED -- [2014/05/22 09:33:43 | 001,272,400 | ---- | M] (BitTorrent Inc.)
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs
< >
< type c:\boot.ini >> test.txt /c >
< %SystemDrive%\PhysicalMBR.bin /md5 >
[2014/05/27 11:08:55 | 000,000,512 | ---- | M] () MD5=50DD076ABB50AAACF78378789B22A1CC -- C:\PhysicalMBR.bin
< >
< *crack* /s >
< *keygen* /s >
[2014/04/17 01:52:20 | 000,971,064 | ---- | M] () -- \Windows.old\$Recycle.Bin\S-1-5-21-972540561-1704939325-1529438176-1001\$RLQCHDI\Keygen Installer\Keygen Installer.rar
< *AntiWPA* /s >
< *loader* /s >
[2014/02/12 20:58:20 | 000,007,281 | ---- | M] () -- \Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit.resources\inspector\HeapSnapshotLoader.js
[2013/11/20 15:43:14 | 000,059,720 | ---- | M] () -- \Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader.exe
[2013/11/20 15:43:14 | 001,116,488 | ---- | M] () -- \Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader_main.dll
[2013/09/14 01:50:46 | 000,008,827 | ---- | M] () -- \Program Files (x86)\Common Files\Apple\Internet Services\WebKit.resources\inspector\HeapSnapshotLoader.js
[2013/06/04 10:57:24 | 000,057,224 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2013/06/04 10:57:24 | 000,065,416 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXLoader64.dll
[2013/06/04 10:57:24 | 000,083,848 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader.dll
[2013/06/04 10:57:24 | 000,088,968 | ---- | M] () -- \Program Files (x86)\NVIDIA Corporation\PhysX\Common\PhysXUpdateLoader64.dll
[2013/09/30 05:05:40 | 000,000,930 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.BingTravel_3.0.1.174_x64__8wekyb3d8bbwe\js\HtmlFileLoader.js
[2014/05/16 12:31:00 | 000,000,856 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.BingTravel_3.0.2.258_x64__8wekyb3d8bbwe\js\HtmlFileLoader.js
[2013/09/30 05:01:41 | 000,001,160 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.4.9600.16384_x64__8wekyb3d8bbwe\modernpeople\appframe\backgroundloader.js
[2013/09/30 05:01:41 | 000,004,996 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.4.9600.16384_x64__8wekyb3d8bbwe\modernshareanything\sharedataloader.js
[2013/09/30 05:01:41 | 000,002,125 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.4.9600.16384_x64__8wekyb3d8bbwe\modernsharetarget\sharemaildataloader.js
[2013/09/30 05:01:41 | 000,001,160 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\modernpeople\appframe\backgroundloader.js
[2013/09/30 05:01:41 | 000,004,996 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\modernshareanything\sharedataloader.js
[2013/09/30 05:01:41 | 000,002,125 | ---- | M] () -- \Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe\modernsharetarget\sharemaildataloader.js
[2013/09/30 05:06:00 | 000,043,128 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.139.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2013/09/30 05:06:00 | 000,043,128 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.XboxLIVEGames_2.0.20.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2013/09/30 05:04:53 | 000,053,822 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneMusic_2.2.41.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2013/09/30 05:05:15 | 000,053,822 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneVideo_2.2.41.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2014/05/16 12:41:43 | 000,101,046 | ---- | M] () -- \Program Files\WindowsApps\Microsoft.ZuneVideo_2.2.886.0_x64__8wekyb3d8bbwe\Framework\imageLoader.js
[2014/05/23 11:43:01 | 000,001,234 | ---- | M] () -- \ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts\The Sims™ 3\Install Origin Loader.lnk
[2014/05/23 11:43:01 | 000,001,234 | ---- | M] () -- \Users\All Users\Microsoft\Windows\Start Menu\Programs\Electronic Arts\The Sims™ 3\Install Origin Loader.lnk
[2014/05/23 15:39:38 | 000,000,805 | ---- | M] () -- \Users\pabuk_000\AppData\Local\MRDownloader.err
[2014/05/23 15:40:18 | 000,001,088 | ---- | M] () -- \Users\pabuk_000\AppData\Local\MRDownloader.nast
[2014/01/28 19:35:56 | 000,072,638 | ---- | M] () -- \Users\pabuk_000\AppData\Local\Skype\Apps\login\images\loader.gif
[2014/01/28 19:35:56 | 000,003,032 | ---- | M] () -- \Users\pabuk_000\AppData\Local\Skype\Apps\login\images\loader.png
[2014/01/28 19:35:56 | 000,006,012 | ---- | M] () -- \Users\pabuk_000\AppData\Local\Skype\Apps\login\images\normal\loader_15fps.gif
[2014/01/28 19:35:56 | 000,021,956 | ---- | M] () -- \Users\pabuk_000\AppData\Local\Skype\Apps\login\images\normal\loader_30fps.gif
[2014/01/28 19:35:56 | 000,009,772 | ---- | M] () -- \Users\pabuk_000\AppData\Local\Skype\Apps\login\images\retina\loader@2x.png
[2014/05/16 14:15:28 | 000,000,709 | ---- | M] () -- \Users\pabuk_000\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\MRDownloader.lnk
[2014/05/23 15:29:48 | 000,074,696 | ---- | M] () -- \Windows\Prefetch\MRDOWNLOADER.EXE-BF3A120C.pf
[2013/08/22 05:17:27 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 05:17:25 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 05:17:24 | 000,003,584 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 05:17:20 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 05:17:34 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 05:17:33 | 000,002,560 | -H-- | M] () -- \Windows\System32\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 04:55:19 | 000,036,352 | ---- | M] () -- \Windows\System32\dmloader.dll
[2013/08/22 14:25:39 | 000,003,584 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 14:25:39 | 000,003,072 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 14:25:38 | 000,002,560 | ---- | M] () -- \Windows\System32\downlevel\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 05:17:27 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 05:17:25 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 05:17:24 | 000,003,584 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 05:17:20 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 05:17:34 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 05:17:33 | 000,002,560 | -H-- | M] () -- \Windows\SysWOW64\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 04:55:19 | 000,036,352 | ---- | M] () -- \Windows\SysWOW64\dmloader.dll
[2013/08/22 14:25:39 | 000,003,584 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 14:25:39 | 000,003,072 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 14:25:38 | 000,002,560 | ---- | M] () -- \Windows\SysWOW64\downlevel\api-ms-win-core-stringloader-l1-1-1.dll
[2014/05/25 16:58:50 | 000,592,677 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.16384_none_210fb36c397c4e2b\hvloader.efi
[2014/05/25 16:58:49 | 000,536,051 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.16384_none_210fb36c397c4e2b\hvloader.exe
[2014/05/25 16:58:55 | 000,598,463 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17031_none_2142a5b03956989d\hvloader.efi
[2014/05/25 16:58:53 | 000,542,292 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17031_none_2142a5b03956989d\hvloader.exe
[2014/05/25 16:58:59 | 000,598,454 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17039_none_214aa800394f6355\hvloader.efi
[2014/05/25 16:58:58 | 000,542,288 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-hyper-v-drivers-hypervisor_31bf3856ad364e35_6.3.9600.17039_none_214aa800394f6355\hvloader.exe
[2013/08/22 12:21:30 | 000,046,592 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.3.9600.16384_none_36b27bfc6399d5ce\dmloader.dll
[2013/08/22 14:25:37 | 000,003,584 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 14:25:37 | 000,003,072 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 14:25:36 | 000,002,560 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_b8233abb5511544f\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 12:45:31 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 12:45:33 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 12:45:35 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 12:45:30 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 12:45:40 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 12:45:44 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_fb7050014fc6f9b0\api-ms-win-core-stringloader-l1-1-1.dll
[2014/05/16 15:41:03 | 000,000,465 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb.manifest
[2014/05/25 21:08:26 | 000,009,588 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb_winload.efi.mui_35ee487d
[2014/05/25 21:08:26 | 000,009,604 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb_winload.exe.mui_3bc5b827
[2014/05/25 21:08:26 | 000,007,885 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb_winresume.efi.mui_f412814e
[2014/05/25 21:08:26 | 000,007,900 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb_winresume.exe.mui_ff8b5358
[2014/05/16 15:41:25 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e.manifest
[2014/05/25 21:08:30 | 000,724,144 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e_winload.efi_75834aa0
[2014/05/25 21:08:31 | 000,660,345 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e_winload.exe_75835076
[2014/05/25 21:08:33 | 000,646,217 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e_winresume.efi_85cd069f
[2014/05/25 21:08:34 | 000,586,798 | ---- | M] () -- \Windows\WinSxS\Backup\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e_winresume.exe_85cd1215
[2013/08/22 16:34:52 | 000,000,596 | ---- | M] () -- \Windows\WinSxS\FileMaps\programdata_microsoft_network_downloader_7fafaef6d33e4371.cdf-ms
[2013/09/30 04:55:42 | 000,000,463 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_2400ceb4d1008089.manifest
[2014/05/16 13:13:41 | 000,000,465 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.3.9600.17031_cs-cz_2433c0f8d0dacafb.manifest
[2013/08/22 16:22:38 | 000,000,542 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16384_none_4be51a3d409de6bc.manifest
[2013/09/30 05:17:23 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16411_none_4c2dcab94067d447.manifest
[2013/09/30 05:21:44 | 000,000,546 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16415_none_4c31cbe1406439a3.manifest
[2014/05/16 12:01:36 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16452_none_4c038b5340875d62.manifest
[2014/05/16 11:59:07 | 000,000,550 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.16496_none_4bdc4ccb40a43282.manifest
[2014/05/16 13:13:44 | 000,000,545 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.3.9600.17031_none_4c180c814078312e.manifest
[2013/08/22 04:55:19 | 000,036,352 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.3.9600.16384_none_da93e078ab3c6498\dmloader.dll
[2013/08/22 14:25:39 | 000,003,584 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 14:25:39 | 000,003,072 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 14:25:38 | 000,002,560 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-m..namespace-downlevel_31bf3856ad364e35_6.3.9600.16384_none_5c049f379cb3e319\api-ms-win-core-stringloader-l1-1-1.dll
[2013/08/22 05:17:27 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-1-0.dll
[2013/08/22 05:17:25 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-1-1.dll
[2013/08/22 05:17:24 | 000,003,584 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-l1-2-0.dll
[2013/08/22 05:17:20 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-libraryloader-private-l1-1-0.dll
[2013/08/22 05:17:34 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-stringloader-l1-1-0.dll
[2013/08/22 05:17:33 | 000,002,560 | -H-- | M] () -- \Windows\WinSxS\x86_microsoft-windows-minkernelapinamespace_31bf3856ad364e35_6.3.9600.16384_none_9f51b47d9769887a\api-ms-win-core-stringloader-l1-1-1.dll
< *minodlogin* /s >
< *tnod* /s >
[2014/05/23 12:49:34 | 000,054,144 | ---- | M] () -- \Windows\Prefetch\TNOD ACTIVATOR.EXE-04CE2093.pf
[2014/05/23 12:57:19 | 000,065,870 | ---- | M] () -- \Windows\Prefetch\TNOD ACTIVATOR.EXE-C24A3A06.pf
< *AutoKMS* /s >
< *activator* /s >
[2014/05/23 12:49:34 | 000,054,144 | ---- | M] () -- \Windows\Prefetch\TNOD ACTIVATOR.EXE-04CE2093.pf
[2014/05/23 12:57:19 | 000,065,870 | ---- | M] () -- \Windows\Prefetch\TNOD ACTIVATOR.EXE-C24A3A06.pf
< *serial* /s >
[2013/08/03 05:41:46 | 000,970,752 | ---- | M] () -- \Program Files (x86)\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2014/05/22 14:35:58 | 000,847,872 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\System.Runtime.Serialization.dll
[2014/05/22 14:36:02 | 000,090,112 | ---- | M] () -- \Program Files\Reference Assemblies\Microsoft\Framework\v3.0\cs\System.RunTime.Serialization.Resources.dll
[2014/05/25 16:48:22 | 000,022,528 | ---- | M] () -- \Users\pabuk_000\AppData\Roaming\Maxthon3\Users\pabu.kupka@seznam.cz\LocalStorage\http_www.sledujuserialy.cz_0.localstorage
[2014/05/25 16:48:22 | 000,003,608 | ---- | M] () -- \Users\pabuk_000\AppData\Roaming\Maxthon3\Users\pabu.kupka@seznam.cz\LocalStorage\http_www.sledujuserialy.cz_0.localstorage-journal
[2013/08/17 01:06:37 | 000,011,776 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\2.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/17 01:06:31 | 000,131,072 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2014/05/22 14:36:01 | 000,090,112 | ---- | M] () -- \Windows\assembly\GAC_MSIL\system.runtime.serialization.resources\3.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.Resources.dll
[2014/05/22 14:36:00 | 000,970,752 | ---- | M] () -- \Windows\assembly\GAC_MSIL\System.Runtime.Serialization\3.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2014/05/16 16:37:32 | 002,804,736 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\183eaaded316165bfbd32a991e4e8c8a\System.Runtime.Serialization.ni.dll
[2014/05/16 16:37:32 | 000,000,980 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\183eaaded316165bfbd32a991e4e8c8a\System.Runtime.Serialization.ni.dll.aux
[2014/05/16 16:40:16 | 003,530,752 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\209aa0718fe1f200de5ea360d5d4de25\System.Runtime.Serialization.ni.dll
[2014/05/16 16:40:16 | 000,000,980 | ---- | M] () -- \Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\209aa0718fe1f200de5ea360d5d4de25\System.Runtime.Serialization.ni.dll.aux
[2013/08/22 16:32:39 | 000,001,032 | ---- | M] () -- \Windows\Inf\c_multiportserial.inf
[2013/09/30 04:56:38 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap.resources\v4.0_4.0.0.0_cs_b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/10 01:55:16 | 000,142,104 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 01:55:16 | 000,029,392 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Json\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Json.dll
[2013/08/10 01:55:16 | 000,029,432 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Primitives\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Primitives.dll
[2013/09/30 04:56:38 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.RunTime.Serialization.resources\v4.0_4.0.0.0_cs_b77a5c561934e089\System.RunTime.Serialization.resources.dll
[2013/08/10 01:55:16 | 000,029,896 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Xml\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Xml.dll
[2013/08/10 01:55:16 | 001,060,528 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
[2013/08/10 01:55:49 | 000,045,720 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Xml.Serialization.dll
[2013/08/10 01:55:49 | 000,029,848 | ---- | M] () -- \Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml.XmlSerializer\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Xml.XmlSerializer.dll
[2013/08/17 01:06:31 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/17 01:06:37 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2014/05/22 14:36:02 | 000,970,752 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013/08/10 01:55:16 | 001,060,528 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.dll
[2013/08/10 01:55:16 | 000,142,104 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 01:55:16 | 000,029,392 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Json.dll
[2013/08/10 01:55:16 | 000,029,432 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2013/08/10 01:55:16 | 000,029,896 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2013/08/10 01:55:49 | 000,045,720 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.Serialization.dll
[2013/08/10 01:55:49 | 000,029,848 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\System.Xml.XmlSerializer.dll
[2013/09/30 04:56:38 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/09/30 04:56:38 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\Framework\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2013/08/17 01:06:27 | 000,131,072 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/17 01:06:37 | 000,011,776 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v2.0.50727\cs\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2014/05/22 14:36:02 | 000,847,872 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\System.Runtime.Serialization.dll
[2013/08/10 01:41:27 | 001,060,528 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.dll
[2013/08/10 01:41:27 | 000,142,104 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 01:41:27 | 000,029,392 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Json.dll
[2013/08/10 01:41:28 | 000,029,432 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Primitives.dll
[2013/08/10 01:41:28 | 000,029,896 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Runtime.Serialization.Xml.dll
[2013/08/10 01:42:08 | 000,045,720 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.Serialization.dll
[2013/08/10 01:42:08 | 000,029,848 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\System.Xml.XmlSerializer.dll
[2013/09/30 04:56:37 | 000,027,920 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/09/30 04:56:38 | 000,113,864 | ---- | M] () -- \Windows\Microsoft.NET\Framework64\v4.0.30319\cs\System.RunTime.Serialization.resources.dll
[2013/08/22 21:12:22 | 000,008,827 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~cs-CZ~6.3.9600.16384.cat
[2013/08/22 20:40:12 | 000,000,781 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~cs-CZ~6.3.9600.16384.mum
[2013/08/22 13:55:01 | 000,008,827 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~~6.3.9600.16384.cat
[2013/08/22 07:47:48 | 000,000,511 | ---- | M] () -- \Windows\servicing\Packages\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~~6.3.9600.16384.mum
[2013/08/22 04:48:16 | 000,015,872 | ---- | M] () -- \Windows\System32\serialui.dll
[2013/08/22 21:12:22 | 000,008,827 | ---- | M] () -- \Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~cs-CZ~6.3.9600.16384.cat
[2013/08/22 13:55:01 | 000,008,827 | ---- | M] () -- \Windows\System32\catroot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Serial-UartClass-package~31bf3856ad364e35~amd64~~6.3.9600.16384.cat
[2013/09/30 04:56:23 | 000,005,120 | ---- | M] () -- \Windows\System32\cs-CZ\serialui.dll.mui
[2013/09/30 04:56:14 | 000,000,232 | ---- | M] () -- \Windows\System32\DriverStore\en-US\c_multiportserial.inf_loc
[2013/08/22 07:57:38 | 000,001,032 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\c_multiportserial.inf_amd64_7875073d426d59a6\c_multiportserial.inf
[2013/08/22 12:40:08 | 000,083,456 | ---- | M] () -- \Windows\System32\DriverStore\FileRepository\msports.inf_amd64_1be60ad3a61e5531\serial.sys
[2013/08/22 04:48:16 | 000,015,872 | ---- | M] () -- \Windows\SysWOW64\serialui.dll
[2013/09/30 04:56:23 | 000,005,120 | ---- | M] () -- \Windows\SysWOW64\cs-CZ\serialui.dll.mui
[2013/09/30 04:56:14 | 000,000,232 | ---- | M] () -- \Windows\WinSxS\amd64_c_multiportserial.inf.resources_31bf3856ad364e35_6.3.9600.16384_en-us_35eaebe6834354eb\c_multiportserial.inf_loc
[2013/08/22 07:57:38 | 000,001,032 | ---- | M] () -- \Windows\WinSxS\amd64_c_multiportserial.inf_31bf3856ad364e35_6.3.9600.16384_none_91b10a007e43beff\c_multiportserial.inf
[2013/08/17 01:06:37 | 000,011,776 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_b0eacafe7f4d1992\System.Runtime.Serialization.Formatters.Soap.Resources.dll
[2013/09/30 04:56:23 | 000,005,120 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_3f29419cb7a1caf0\serialui.dll.mui
[2013/08/22 12:13:54 | 000,017,920 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-unimodem-config_31bf3856ad364e35_6.3.9600.16384_none_e5c00198f2a1c32d\serialui.dll
[2014/05/22 14:36:02 | 000,090,112 | ---- | M] () -- \Windows\WinSxS\amd64_microsoft-windows-wcfcorecomp.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_4e32729c2675dfcf\System.RunTime.Serialization.Resources.dll
[2013/09/30 04:56:14 | 000,009,728 | ---- | M] () -- \Windows\WinSxS\amd64_msports.inf.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_b574829120336a99\serial.sys.mui
[2013/08/22 12:40:08 | 000,083,456 | ---- | M] () -- \Windows\WinSxS\amd64_msports.inf_31bf3856ad364e35_6.3.9600.16384_none_e95610bc8c554aa7\serial.sys
[2013/09/30 04:56:38 | 000,113,864 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..alization.resources_b03f5f7f11d50a3a_4.0.9600.16384_cs-cz_1da5c476c59b0e5b\System.RunTime.Serialization.resources.dll
[2013/08/10 01:41:27 | 000,142,104 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..ion.formatters.soap_b03f5f7f11d50a3a_4.0.9600.16384_none_f73c7de0bb1de286\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/10 01:41:28 | 000,029,432 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..lization.primitives_b03f5f7f11d50a3a_4.0.9600.16384_none_64635c6af076b012\System.Runtime.Serialization.Primitives.dll
[2013/09/30 04:56:37 | 000,027,920 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runti..ters.soap.resources_b03f5f7f11d50a3a_4.0.9600.16384_cs-cz_65f374ee29342685\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/10 01:41:27 | 000,029,392 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_031841e9b021a288\System.Runtime.Serialization.Json.dll
[2013/08/10 01:41:28 | 000,029,896 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_ea3019bcd508d7f5\System.Runtime.Serialization.Xml.dll
[2013/08/10 01:41:27 | 001,060,528 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.runtime.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_afcfdcce0af8e4ba\System.Runtime.Serialization.dll
[2013/08/10 01:42:08 | 000,045,720 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.xml.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_1f92ce7ac9b9f399\System.Xml.Serialization.dll
[2013/08/10 01:42:08 | 000,029,848 | ---- | M] () -- \Windows\WinSxS\amd64_netfx4-system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_0b1c65bd7b1ef04c\System.Xml.XmlSerializer.dll
[2013/08/17 01:06:27 | 000,131,072 | ---- | M] () -- \Windows\WinSxS\amd64_netfx-system.runtim..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.16384_none_f057a9271ce694b1\System.Runtime.Serialization.Formatters.Soap.dll
[2014/05/22 14:36:02 | 000,847,872 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.16384_none_9fc99c9c7c4c05c7\System.Runtime.Serialization.dll
[2014/05/22 14:35:58 | 000,847,872 | ---- | M] () -- \Windows\WinSxS\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_daa0a966d0440060\System.Runtime.Serialization.dll
[2013/09/30 04:54:49 | 000,000,276 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_c_multiportserial.inf-languagepack_31bf3856ad364e35_6.3.9600.16384_cs-cz_c3036df581d2c4e4.manifest
[2013/09/30 04:55:08 | 000,000,249 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_c_multiportserial.inf.resources_31bf3856ad364e35_6.3.9600.16384_en-us_35eaebe6834354eb.manifest
[2013/08/22 16:20:14 | 000,000,210 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_c_multiportserial.inf_31bf3856ad364e35_6.3.9600.16384_none_91b10a007e43beff.manifest
[2013/08/22 14:25:34 | 000,000,297 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-b..gertransport-serial_31bf3856ad364e35_6.3.9600.16384_none_0273ed2980a1f589.manifest
[2013/08/22 16:22:11 | 000,001,512 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft-windows-serial-classextension_31bf3856ad364e35_6.3.9600.16384_none_26d3123b2d2a9360.manifest
[2013/08/22 16:22:07 | 000,000,110 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_microsoft.windows.h..tserial-driverclass_31bf3856ad364e35_6.3.9600.16384_none_1d7b32f2da6cfe0c.manifest
[2013/08/22 16:24:27 | 000,000,402 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_031841e9b021a288.manifest
[2013/08/22 16:24:29 | 000,000,401 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_ea3019bcd508d7f5.manifest
[2013/08/22 16:24:24 | 000,000,420 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.runtime.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_afcfdcce0af8e4ba.manifest
[2013/08/22 16:24:28 | 000,000,397 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.xml.serialization_b03f5f7f11d50a3a_4.0.9600.16384_none_1f92ce7ac9b9f399.manifest
[2013/08/22 16:24:27 | 000,000,403 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_netfx4-system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_0b1c65bd7b1ef04c.manifest
[2013/08/22 16:24:13 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization.ref_b03f5f7f11d50a3a_6.3.9600.16384_none_9fc99c9c7c4c05c7.manifest
[2013/08/22 16:24:13 | 000,000,416 | ---- | M] () -- \Windows\WinSxS\Manifests\amd64_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_daa0a966d0440060.manifest
[2013/08/22 16:24:29 | 000,000,418 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_61eedd30ec040245.manifest
[2013/08/22 16:24:24 | 000,000,430 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.primitives_b03f5f7f11d50a3a_4.0.9600.16384_none_dde82ee214ba2d3d.manifest
[2013/08/22 16:24:13 | 000,000,400 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.16384_none_ed2ffed67c428df1.manifest
[2013/09/30 04:55:53 | 000,000,448 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.16384_cs-cz_25789e4d6d93f144.manifest
[2013/09/30 04:55:51 | 000,000,408 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.16384_cs-cz_7adb458f8b8eae0b.manifest
[2013/08/22 16:24:24 | 000,000,419 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_0d0d9cf22bac10f4.manifest
[2013/08/22 16:24:27 | 000,000,471 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.16384_none_c8108d2e85eed25d.manifest
[2013/08/22 16:24:13 | 000,000,422 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.16384_none_1d733470a3e98f24.manifest
[2013/08/22 16:24:28 | 000,000,447 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.xml.serialization_b77a5c561934e089_4.0.9600.16384_none_5aaf0d34c0033202.manifest
[2013/08/22 16:24:24 | 000,000,420 | ---- | M] () -- \Windows\WinSxS\Manifests\msil_system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_3cc4c9f9340d8755.manifest
[2013/08/22 16:24:56 | 000,000,411 | ---- | M] () -- \Windows\WinSxS\Manifests\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_224de03de4c02966.manifest
[2013/08/10 01:55:16 | 000,142,104 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_4.0.9600.16384_none_0dbd81c1c9e100df\System.Runtime.Serialization.Formatters.Soap.dll
[2013/08/17 01:06:31 | 000,131,072 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ion.formatters.soap_b03f5f7f11d50a3a_6.3.9600.16384_none_63202903e7dbbda6\System.Runtime.Serialization.Formatters.Soap.dll
[2013/09/30 04:56:38 | 000,027,920 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_4.0.9600.16384_cs-cz_c6e6982dc37909d8\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/17 01:06:37 | 000,011,776 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.seri..ters.soap.resources_b03f5f7f11d50a3a_6.3.9600.16384_cs-cz_1c493f6fe173c69f\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/08/10 01:55:16 | 000,029,392 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.json_b03f5f7f11d50a3a_4.0.9600.16384_none_61eedd30ec040245\System.Runtime.Serialization.Json.dll
[2013/08/10 01:55:16 | 000,029,432 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.primitives_b03f5f7f11d50a3a_4.0.9600.16384_none_dde82ee214ba2d3d\System.Runtime.Serialization.Primitives.dll
[2014/05/22 14:36:02 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.ref_b77a5c561934e089_6.3.9600.16384_none_ed2ffed67c428df1\System.Runtime.Serialization.dll
[2013/09/30 04:56:38 | 000,113,864 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_4.0.9600.16384_cs-cz_25789e4d6d93f144\System.RunTime.Serialization.resources.dll
[2014/05/22 14:36:01 | 000,090,112 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.resources_b77a5c561934e089_6.3.9600.16384_cs-cz_7adb458f8b8eae0b\System.RunTime.Serialization.Resources.dll
[2013/08/10 01:55:16 | 000,029,896 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization.xml_b03f5f7f11d50a3a_4.0.9600.16384_none_0d0d9cf22bac10f4\System.Runtime.Serialization.Xml.dll
[2013/08/10 01:55:16 | 001,060,528 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_4.0.9600.16384_none_c8108d2e85eed25d\System.Runtime.Serialization.dll
[2014/05/22 14:36:00 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\msil_system.runtime.serialization_b77a5c561934e089_6.3.9600.16384_none_1d733470a3e98f24\System.Runtime.Serialization.dll
[2013/08/10 01:55:49 | 000,045,720 | ---- | M] () -- \Windows\WinSxS\msil_system.xml.serialization_b77a5c561934e089_4.0.9600.16384_none_5aaf0d34c0033202\System.Xml.Serialization.dll
[2013/08/10 01:55:49 | 000,029,848 | ---- | M] () -- \Windows\WinSxS\msil_system.xml.xmlserializer_b03f5f7f11d50a3a_4.0.9600.16384_none_3cc4c9f9340d8755\System.Xml.XmlSerializer.dll
[2013/08/17 01:06:37 | 000,011,776 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-n..xcorecomp.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_54cc2f7ac6efa85c\System.Runtime.Serialization.Formatters.Soap.resources.dll
[2013/09/30 04:56:23 | 000,005,120 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-u..em-config.resources_31bf3856ad364e35_6.3.9600.16384_cs-cz_e30aa618ff4459ba\serialui.dll.mui
[2013/08/22 04:48:16 | 000,015,872 | ---- | M] () -- \Windows\WinSxS\x86_microsoft-windows-unimodem-config_31bf3856ad364e35_6.3.9600.16384_none_89a166153a4451f7\serialui.dll
[2013/08/03 05:41:46 | 000,970,752 | ---- | M] () -- \Windows\WinSxS\x86_wcf-system.runtime.serialization_b03f5f7f11d50a3a_6.3.9600.16384_none_224de03de4c02966\System.Runtime.Serialization.dll
< *w7lxe* /s >
========== Alternate Data Streams ==========
@Alternate Data Stream - 183 bytes -> C:\Users\pabuk_000\SkyDrive:ms-properties
< End of report >
Re: Otvíraní nechtěných webových stránek prosím kontrolu log
Extras log:
OTL Extras logfile created on: 27/05/2014 11:07:43 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\pabuk_000\Desktop
64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17031)
Locale: 00000809 | Country: Spojené království | Language: ENG | Date Format: dd/MM/yyyy
3.86 Gb Total Physical Memory | 2.06 Gb Available Physical Memory | 53.29% Memory free
5.99 Gb Paging File | 4.10 Gb Available in Paging File | 68.40% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 78.63 Gb Total Space | 53.19 Gb Free Space | 67.65% Space Free | Partition Type: NTFS
Drive D: | 596.49 Gb Total Space | 78.49 Gb Free Space | 13.16% Space Free | Partition Type: NTFS
Drive F: | 350.00 Mb Total Space | 292.49 Mb Free Space | 83.57% Space Free | Partition Type: NTFS
Drive G: | 256.04 Gb Total Space | 137.37 Gb Free Space | 53.65% Space Free | Partition Type: NTFS
Computer Name: LENOVO-Z500 | User Name: pabuk_000 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = Max3.Association.HTML] -- D:\Programky\Maxthon\Bin\Maxthon.exe (Maxthon International ltd.)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = AC 1C AE C5 46 9F CE 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 1
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{52D13D27-743D-4313-AAAC-386F0E348B95}" = lport=1688 | protocol=6 | dir=in | name=kms emulator port |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{005514CA-BC08-45A8-A329-EA8A5CBD3851}" = dir=out | name=skype |
"{047D7BE3-7094-42ED-B19B-4C2353889153}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.2.258_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{0DA28567-6873-4920-A57E-1C2AD1B593EF}" = protocol=17 | dir=in | app=c:\users\pabuk_000\appdata\roaming\utorrent\utorrent.exe |
"{0F109ABA-7B38-4015-8993-3FA762EE78B1}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.1.176_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{1927C0CD-B3D7-4F21-9E46-C3E201FEB184}" = dir=out | name=@{microsoft.bingweather_3.0.2.258_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{21EB7FAB-A4C8-4726-88F9-C906AEFC0CBD}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{28BD73CD-9F91-477E-AD46-F120D3B94B6D}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{33FB7E69-5EAE-44BA-996A-B7E695844B6F}" = dir=out | name=@{microsoft.bingnews_3.0.2.261_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/brandedapptitle} |
"{3A4A452C-596F-445E-A402-4D32D28FEA24}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{3B608A58-411B-458E-A583-A1853A42FE6C}" = dir=out | name=@{microsoft.bingmaps_2.0.2009.2356_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{3B89FFBE-C322-45B7-BD7C-30EFAB088966}" = dir=out | name=@{microsoft.xboxlivegames_2.0.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{41A7B5A3-AC77-4EB2-9074-79812FE10C09}" = dir=out | name=@{microsoft.xboxlivegames_2.0.20.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{4282FE99-8560-4BC7-9576-5F3ED84E263F}" = dir=in | name=checkpoint.vpn |
"{4C8932B1-6D9C-4316-B542-2833A32E9584}" = protocol=17 | dir=in | app=d:\programky\kmspico\kmseldi.exe |
"{50BB0766-708D-40EC-8A1B-F9AD1FC4D478}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{524A6F35-7F3F-406C-A316-AB0DCDDD1F3B}" = dir=out | name=@{microsoft.bingsports_3.0.2.258_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/brandedapptitle} |
"{52D3EC90-C6FC-45FF-8DCF-13B4321EAA08}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{548DCF8C-BFF2-4BA4-AA88-FBAF9AC8BCC6}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{560448D6-095C-4907-B046-AC7F710701A7}" = dir=in | name=sonicwall.mobileconnect |
"{5757CC81-80E6-4656-9CA6-D6E418D2BFAA}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9654.20349_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{599F0EE1-37FD-4F13-ACD0-353668D24CBA}" = protocol=6 | dir=in | app=c:\users\pabuk_000\appdata\roaming\utorrent\utorrent.exe |
"{5F4632C0-D5B1-40C3-B0D9-E3A759C81B9E}" = dir=out | name=sonicwall.mobileconnect |
"{62A0A928-D471-46E2-A159-144BB6936875}" = dir=out | name=@{microsoft.bingtravel_3.0.2.258_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/brandedapptitle} |
"{67A45134-4161-4248-9C3E-504D555C3EDF}" = protocol=6 | dir=in | app=d:\programky\kmspico\service_kms.exe |
"{69EC156C-64C3-4AF5-A534-55A879482B29}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.2.258_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{69FFF848-8D8A-47B6-AA32-C244C729F30E}" = dir=in | app=d:\programky\itunes\itunes.exe |
"{6A81EC5F-434F-4054-B256-18B4D862BF75}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{6AAFF6D7-131A-4AAE-B577-7E5F0870E6AF}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9600.16384_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{6EAE40BA-54AB-4AB7-8041-89C875E0EC5C}" = dir=out | name=@{microsoft.bingnews_3.0.1.174_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{7658D5C7-A8C1-4F8D-9DBB-6BA4AFD536E7}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.4.9600.16384_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{7CA47916-2887-49E1-B057-99C995B459FE}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{7E611FFB-2B81-4922-8612-1356C503BAFB}" = protocol=17 | dir=in | app=d:\programky\kmspico\service_kms.exe |
"{818FF3C1-D2F4-41F5-B4CD-19DE55194F63}" = protocol=17 | dir=in | app=d:\programky\kmspico\autopico.exe |
"{8B57D579-514E-4632-BA2E-73F486C8D444}" = dir=out | name=skype |
"{8EFFD6FC-186B-464F-801E-D13D5D61A2B5}" = protocol=6 | dir=in | app=d:\programky\kmspico\autopico.exe |
"{8FE6876F-4273-4F85-9582-173C3D3B48E3}" = protocol=6 | dir=in | app=d:\programky\kmspico\autopico.exe |
"{90D7E813-AFBA-4E3E-9A8E-C85BDCC54173}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{913BB09C-FA9D-49CC-B506-BB3631DD2778}" = dir=out | name=@{microsoft.bingfinance_3.0.1.174_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{96FF55C8-EB4E-4E17-9590-89231635740C}" = dir=out | name=@{microsoft.zunemusic_2.2.41.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{992FA64D-87AB-434A-A8C6-3F00F1278E5B}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.4.9600.16384_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{9C6BAA79-4787-4B8B-BB18-4DFA17CFC37A}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.1.177_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{9CD67429-6570-4876-AD13-BA2309341F88}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9600.16384_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{9E3D57FC-7C37-4424-9352-4831E97D029D}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{A0C14165-5298-482A-BE92-B8B375682FD2}" = dir=out | name=@{microsoft.zunemusic_2.2.886.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{A39D2044-7A90-4311-9327-EBEDA77D26B0}" = dir=in | name=skype |
"{A875955F-2AD3-4196-ADDB-09EAE19B3DAF}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9654.20349_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{A92BE81D-A8E2-4AD4-A3B0-99ECA43190C1}" = dir=out | name=@{microsoft.bingfinance_3.0.2.258_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/brandedapptitle} |
"{C0E867B9-5F93-4791-9BFC-CAE09B5D00CD}" = dir=out | name=@{microsoft.bingweather_3.0.1.174_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{C6E4E15E-6EAA-4E9A-9EA0-CAE877CBB8CA}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{CD734278-E4B5-4F3E-B4E5-9FF54DC791EF}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{D0DD7A59-4755-4470-AEE3-4C2726574AEB}" = dir=out | name=windows_ie_ac_001 |
"{D6980480-941A-4DF6-AB81-3734ECD3D779}" = dir=out | name=junipernetworks.junospulsevpn |
"{D6BB86E9-B111-4C5D-877D-DC713E15A44E}" = dir=out | name=@{microsoft.zunevideo_2.2.41.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{DB59588E-ED90-4C47-A7B5-7929DD0C0BD2}" = dir=out | name=checkpoint.vpn |
"{DC720DFA-1537-49D4-9440-CCF4D1AB8FE9}" = dir=in | name=skype |
"{E6C24A46-4814-4731-B705-049D6D297DD1}" = dir=out | name=@{microsoft.bingtravel_3.0.1.174_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{E9238116-71FA-491B-ACE9-D66616630FEE}" = protocol=17 | dir=in | app=d:\programky\kmspico\service_kms.exe |
"{EC799E33-72BA-42D7-9127-DEFE68F9799D}" = dir=in | name=junipernetworks.junospulsevpn |
"{F297A466-5756-4B24-A8D8-608927F27742}" = dir=out | name=@{microsoft.bingmaps_2.0.2530.2317_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{F339CAEF-A48F-4877-92F9-0A687068A437}" = protocol=17 | dir=in | app=d:\programky\kmspico\autopico.exe |
"{F3848C36-1725-4887-A32C-EEE1D6A93119}" = protocol=6 | dir=in | app=d:\programky\kmspico\service_kms.exe |
"{F5465E30-B3C3-486E-B9F0-1EF5D6431F0B}" = protocol=6 | dir=in | app=d:\programky\kmspico\kmseldi.exe |
"{F64300AD-D559-4000-BD45-0997BCC8E70A}" = dir=out | name=f5.vpn.client |
"{F77E5446-4378-4E99-8B7A-7061AAAEA193}" = dir=in | name=f5.vpn.client |
"{F91F6A55-9623-4E7B-B020-2CAC96127B84}" = dir=out | name=@{microsoft.bingsports_3.0.1.174_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{FA564164-5DA3-44B7-9545-D35B038FB16A}" = dir=out | name=@{microsoft.zunevideo_2.2.886.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"TCP Query User{4485B0E4-B901-490F-AD5F-17F483779624}D:\programky\maxthon\bin\maxthon.exe" = protocol=6 | dir=in | app=d:\programky\maxthon\bin\maxthon.exe |
"TCP Query User{BF0CE577-4156-4BD2-8525-300514FC6296}D:\programky\skype\phone\skype.exe" = protocol=6 | dir=in | app=d:\programky\skype\phone\skype.exe |
"TCP Query User{C5D714A1-FC07-4122-A599-95991AB65047}D:\programky\maxthon\bin\maxthon.exe" = protocol=6 | dir=in | app=d:\programky\maxthon\bin\maxthon.exe |
"UDP Query User{60823EA1-B17E-4EBD-B58C-61D1C51D164A}D:\programky\skype\phone\skype.exe" = protocol=17 | dir=in | app=d:\programky\skype\phone\skype.exe |
"UDP Query User{6B16F8F9-C730-439C-BB75-1E6DC00A465A}D:\programky\maxthon\bin\maxthon.exe" = protocol=17 | dir=in | app=d:\programky\maxthon\bin\maxthon.exe |
"UDP Query User{AA2BF963-D66D-4747-B038-95C4EAD07AB9}D:\programky\maxthon\bin\maxthon.exe" = protocol=17 | dir=in | app=d:\programky\maxthon\bin\maxthon.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable - x64 8.0.56336 False
"{1CF5754A-545B-4360-BFDE-2847BC728DFC}" = iTunes
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{2DFD8316-9EF1-3210-908C-4CB61961C1AC}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 False
"{302600C1-6BDF-4FD1-1309-148929CC1385}" = Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022.0 False
"{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 False
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable - x64 8.0.59192 False
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}" = Microsoft Visual C++ 2005 Redistributable - x64 8.0.50727.42 False
"{787136D2-F0F8-4625-AA3F-72D7795AC842}" = Apple Mobile Device Support
"{81E20D41-C277-4526-934D-F2380AF91B78}" = iCloud
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 False
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.5570 False
"{89AFB053-A343-46EF-97E4-D593AD7184E6}" = Intel® Trusted Connect Service Client
"{89B0ECE0-A41F-4A45-98D9-D54C74338117}" = ESET NOD32 Antivirus
"{8C0E96BB-93E5-4EAE-9947-69A68C4B7799}" = Dolby Tuning and Profile Creator
"{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}" = Microsoft Visual C++ 2005 Redistributable - x64 8.0.51011 False
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 327.62
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus 7.2.17
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.13.0604
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{BBBE35B2-9349-3C48-BD3D-F574B17C7924}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022.218 False
"{D04659D1-EB2D-3DE5-A833-837A623CCCF7}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 False
"{D93AC9C8-B6CF-391E-BD2F-48AF4727476C}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30411 False
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 Redistributable - x64 10.0.30319 False
"35DD26BE48DAF4A9F35F969F3CB1E3E1435E661E" = Balíček ovladače systému Windows - Lenovo (ACPIVPC) System (02/17/2013 9.52.0.776)
"6BCA401E9CBEED970D75F55FA5320F60D11984E9" = Balíček ovladače systému Windows - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288)
"CCleaner" = CCleaner
"Defraggler" = Defraggler
"KMSpico_is1" = KMSpico v9.2.3
"Recuva" = Recuva
"Speccy" = Speccy
"Totalcmd64" = Total Commander 64-bit (Remove or Repair)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{08A25478-C5DD-4EA7-B168-3D687CA987FF}" = The Sims™ 3 Master Suite Stuff
"{0A3925EA-5B0E-401B-A189-7419149747B2}" = Adobe AIR
"{111EE7DF-FC45-40C7-98A7-753AC46B12FB}" = QuickTime 7
"{117B6BF6-82C3-420C-B284-9247C8568E53}" = The Sims™ 3 Outdoor Living Stuff
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 Redistributable - x86 10.0.30319 False
"{1C9B6173-6DC9-4EEE-9EFC-6BA115CFBE43}" = The Sims™ 3 Diesel Stuff
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 False
"{3282FBE1-35FC-48D8-98CA-115A5EF1F9B4}" = NVIDIA PhysX
"{3BBFD444-5FAB-49F6-98B1-A1954E831399}" = The Sims™ 3 Showtime
"{3DE92282-CB49-434F-81BF-94E5B380E889}" = The Sims™ 3 Seasons
"{45057FCE-5784-48BE-8176-D9D00AF56C3C}" = The Sims™ 3 Late Night
"{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 False
"{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}" = Realtek Card Reader
"{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 False
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001
"{71828142-5A24-4BD0-97E7-976DA08CE6CF}" = The Sims™ 3 High-End Loft Stuff
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable - x86 8.0.56336 False
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7B11296A-F894-449C-8DF6-6AAAA7D4D118}" = The Sims™ 3 Town Life Stuff
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable - x86 8.0.59193 False
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.5570 False
"{910F4A29-1134-49E0-AD8B-56E4A3152BD1}" = The Sims™ 3 Ambitions
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 False
"{9B2506E3-9A3F-45B5-96BF-509CAD584650}" = The Sims™ 3 Katy Perry Sweet Treats
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - x86 8.0.51011 False
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable - x86 8.0.50727.42 False
"{A4ED5E53-7AA0-11E1-BF04-B2D4D4A5360E}" = Adobe Dreamweaver CS6
"{AF37176A-78CA-545B-34EF-8B6A21514DD1}" = Adobe Help Manager
"{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}" = The Sims™ 3 Supernatural
"{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}" = The Sims™ 3 World Adventures
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = The Sims™ 3
"{C12631C6-804D-4B32-B0DD-8A496462F106}" = The Sims™ 3 Pets
"{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
"{D9DAD0FF-495A-472B-9F10-BAE430A26682}" = Apple Application Support
"{DCB46B42-723F-350E-B18A-449BC6C21636}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 False
"{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}" = Lenovo EasyCamera
"{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 False
"{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}" = The Sims™ 3 Generations
"{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}" = The Sims™ 3 Fast Lane Stuff
"{EFBE6DD5-B224-96E5-72B9-68D328CB12A6}" = Adobe Widget Browser
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.0 False
"7-Zip" = 7-Zip 9.22beta
"Adobe AIR" = Adobe AIR
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Help Manager
"com.adobe.WidgetBrowser" = Adobe Widget Browser
"InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
"Mozilla Firefox 29.0 (x86 cs)" = Mozilla Firefox 29.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"The KMPlayer" = The KMPlayer (remove only)
"TMM90" = TELL ME MORE
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"uTorrent" = µTorrent
"XBMC" = XBMC
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 24/05/2014 20:06:27 | Computer Name = Lenovo-Z500 | Source = Application Hang | ID = 1002
Description = Program SDScan.exe verze 2.2.18.177 prestal spolupracovat se systémem
Windows a byl ukoncen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
12f0 Cas spuštení: 01cf77ac2e1c257f Cas ukoncení: 4 Cesta k aplikaci: D:\Programky\Spybot
- Search & Destroy 2\SDScan.exe ID hlášení: 5fa5095f-e3a0-11e3-8263-2089849ae681
Úplný
název chybujícího balícku: ID aplikace související s chybujícím balíckem:
Error - 24/05/2014 20:07:59 | Computer Name = Lenovo-Z500 | Source = Application Hang | ID = 1002
Description = Program SDScan.exe verze 2.2.18.177 prestal spolupracovat se systémem
Windows a byl ukoncen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
1b30 Cas spuštení: 01cf77ad3c677422 Cas ukoncení: 3 Cesta k aplikaci: D:\Programky\Spybot
- Search & Destroy 2\SDScan.exe ID hlášení: 9df495fe-e3a0-11e3-8263-2089849ae681
Úplný
název chybujícího balícku: ID aplikace související s chybujícím balíckem:
Error - 24/05/2014 20:38:34 | Computer Name = Lenovo-Z500 | Source = Application Hang | ID = 1002
Description = Program SDScan.exe verze 2.2.18.177 prestal spolupracovat se systémem
Windows a byl ukoncen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
10b4 Cas spuštení: 01cf77ad8a7e899d Cas ukoncení: 2 Cesta k aplikaci: D:\Programky\Spybot
- Search & Destroy 2\SDScan.exe ID hlášení: cc1acaa0-e3a4-11e3-8263-2089849ae681
Úplný
název chybujícího balícku: ID aplikace související s chybujícím balíckem:
Error - 24/05/2014 20:57:34 | Computer Name = Lenovo-Z500 | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Ad-aware.exe, verze: 6.0.1.181, casové razítko:
0x2a420000 Název chybujícího modulu: unknown, verze: 0.0.0.0, casové razítko: 0x00000000
Kód
výjimky: 0xc0000005 Posun chyby: 0x7e5cec1e ID chybujícího procesu: 0x18dc Cas spuštení
chybující aplikace: 0x01cf77b45028edfb Cesta k chybující aplikaci: D:\Programky\Ad-aware
6\Ad-aware.exe Cesta k chybujícímu modulu: unknown ID zprávy: 8df4aee6-e3a7-11e3-8263-2089849ae681
Úplný
název chybujícího balícku: ID aplikace související s chybujícím balíckem:
Error - 24/05/2014 21:14:56 | Computer Name = Lenovo-Z500 | Source = Application Hang | ID = 1002
Description = Program SDScan.exe verze 2.2.18.177 prestal spolupracovat se systémem
Windows a byl ukoncen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
a90 Cas spuštení: 01cf77b1b390d237 Cas ukoncení: 3 Cesta k aplikaci: D:\Programky\Spybot
- Search & Destroy 2\SDScan.exe ID hlášení: f6e02c7a-e3a9-11e3-8263-2089849ae681
Úplný
název chybujícího balícku: ID aplikace související s chybujícím balíckem:
Error - 25/05/2014 05:07:33 | Computer Name = Lenovo-Z500 | Source = Application Hang | ID = 1002
Description = Program SDScan.exe verze 2.2.18.177 prestal spolupracovat se systémem
Windows a byl ukoncen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
19fc Cas spuštení: 01cf77f51169c2da Cas ukoncení: 0 Cesta k aplikaci: D:\Programky\Spybot
- Search & Destroy 2\SDScan.exe ID hlášení: fdb8274b-e3eb-11e3-8264-2089849ae681
Úplný
název chybujícího balícku: ID aplikace související s chybujícím balíckem:
Error - 25/05/2014 10:22:29 | Computer Name = Lenovo-Z500 | Source = Application Error | ID = 1000
Description = Název chybující aplikace: TS3W.exe, verze: 0.2.0.190, casové razítko:
0x50653464 Název chybujícího modulu: d3d9.dll, verze: 6.3.9600.17085, casové razítko:
0x5338b882 Kód výjimky: 0xc0000005 Posun chyby: 0x00112271 ID chybujícího procesu:
0x8a8 Cas spuštení chybující aplikace: 0x01cf780fe2597316 Cesta k chybující aplikaci:
D:\Games\Electronic Arts\The Sims 3\Game\Bin\TS3W.exe Cesta k chybujícímu modulu:
C:\WINDOWS\SYSTEM32\d3d9.dll ID zprávy: 0044ef36-e418-11e3-8264-2089849ae681 Úplný
název chybujícího balícku: ID aplikace související s chybujícím balíckem:
Error - 26/05/2014 10:48:19 | Computer Name = Lenovo-Z500 | Source = .NET Runtime | ID = 1026
Description =
Error - 26/05/2014 10:48:19 | Computer Name = Lenovo-Z500 | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Service_KMS.exe, verze: 13.1.0.0, casové
razítko: 0x5313ef48 Název chybujícího modulu: KERNELBASE.dll, verze: 6.3.9600.17055,
casové razítko: 0x532954fb Kód výjimky: 0xe0434352 Posun chyby: 0x0000000000005bf8
ID
chybujícího procesu: 0x430 Cas spuštení chybující aplikace: 0x01cf78f1852c17e5 Cesta
k chybující aplikaci: D:\Programky\KMSpico\Service_KMS.exe Cesta k chybujícímu modulu:
C:\WINDOWS\system32\KERNELBASE.dll ID zprávy: c6be0f0c-e4e4-11e3-8265-2089849ae681
Úplný
název chybujícího balícku: ID aplikace související s chybujícím balíckem:
Error - 27/05/2014 06:08:51 | Computer Name = Lenovo-Z500 | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Služba Šifrování selhala pri volání OnIdentity() v objektu System
Writer. Details: AddCoreCsiFiles : GetNextFileMapContent() failed. System Error: Parametr
není správný. .
[ System Events ]
Error - 24/05/2014 13:22:12 | Computer Name = Lenovo-Z500 | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Instalace se nezdarila: Instalování následující aktualizace se nezdarilo
z duvodu chyby (0x80242fff): Aktualizace zabezpecení pro rozhraní Microsoft .NET
Framework 3.5 v systémech Windows 8.1 a Windows Server 2012 R2 platformy x64 (KB2931358).
Error - 24/05/2014 14:51:24 | Computer Name = Lenovo-Z500 | Source = Service Control Manager | ID = 7034
Description = Služba MBAMService byla neocekávane ukoncena. Tento stav nastal již
1krát.
Error - 24/05/2014 17:12:55 | Computer Name = Lenovo-Z500 | Source = Service Control Manager | ID = 7009
Description = Pri cekání na pripojení služby SW_Sustainer bylo dosaženo casového
limitu (30000 ms).
Error - 24/05/2014 17:13:05 | Computer Name = Lenovo-Z500 | Source = Service Control Manager | ID = 7034
Description = Služba Service KMSELDI byla neocekávane ukoncena. Tento stav nastal
již 1krát.
Error - 24/05/2014 17:22:21 | Computer Name = Lenovo-Z500 | Source = Service Control Manager | ID = 7034
Description = Služba MBAMService byla neocekávane ukoncena. Tento stav nastal již
1krát.
Error - 24/05/2014 21:20:10 | Computer Name = Lenovo-Z500 | Source = Service Control Manager | ID = 7009
Description = Pri cekání na pripojení služby SW_Sustainer bylo dosaženo casového
limitu (30000 ms).
Error - 24/05/2014 21:20:16 | Computer Name = Lenovo-Z500 | Source = Service Control Manager | ID = 7000
Description = Služba Service KMSELDI neuspela pri spuštení v dusledku následující
chyby: %%5
Error - 26/05/2014 10:48:12 | Computer Name = Lenovo-Z500 | Source = Service Control Manager | ID = 7009
Description = Pri cekání na pripojení služby SW_Sustainer bylo dosaženo casového
limitu (30000 ms).
Error - 26/05/2014 10:48:19 | Computer Name = Lenovo-Z500 | Source = DCOM | ID = 10000
Description =
Error - 26/05/2014 10:48:24 | Computer Name = Lenovo-Z500 | Source = Service Control Manager | ID = 7034
Description = Služba Service KMSELDI byla neocekávane ukoncena. Tento stav nastal
již 1krát.
< End of report >
OTL Extras logfile created on: 27/05/2014 11:07:43 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\pabuk_000\Desktop
64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17031)
Locale: 00000809 | Country: Spojené království | Language: ENG | Date Format: dd/MM/yyyy
3.86 Gb Total Physical Memory | 2.06 Gb Available Physical Memory | 53.29% Memory free
5.99 Gb Paging File | 4.10 Gb Available in Paging File | 68.40% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 78.63 Gb Total Space | 53.19 Gb Free Space | 67.65% Space Free | Partition Type: NTFS
Drive D: | 596.49 Gb Total Space | 78.49 Gb Free Space | 13.16% Space Free | Partition Type: NTFS
Drive F: | 350.00 Mb Total Space | 292.49 Mb Free Space | 83.57% Space Free | Partition Type: NTFS
Drive G: | 256.04 Gb Total Space | 137.37 Gb Free Space | 53.65% Space Free | Partition Type: NTFS
Computer Name: LENOVO-Z500 | User Name: pabuk_000 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = Max3.Association.HTML] -- D:\Programky\Maxthon\Bin\Maxthon.exe (Maxthon International ltd.)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = AC 1C AE C5 46 9F CE 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 1
"DoNotAllowExceptions" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{52D13D27-743D-4313-AAAC-386F0E348B95}" = lport=1688 | protocol=6 | dir=in | name=kms emulator port |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{005514CA-BC08-45A8-A329-EA8A5CBD3851}" = dir=out | name=skype |
"{047D7BE3-7094-42ED-B19B-4C2353889153}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.2.258_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{0DA28567-6873-4920-A57E-1C2AD1B593EF}" = protocol=17 | dir=in | app=c:\users\pabuk_000\appdata\roaming\utorrent\utorrent.exe |
"{0F109ABA-7B38-4015-8993-3FA762EE78B1}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.1.176_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{1927C0CD-B3D7-4F21-9E46-C3E201FEB184}" = dir=out | name=@{microsoft.bingweather_3.0.2.258_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{21EB7FAB-A4C8-4726-88F9-C906AEFC0CBD}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{28BD73CD-9F91-477E-AD46-F120D3B94B6D}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{33FB7E69-5EAE-44BA-996A-B7E695844B6F}" = dir=out | name=@{microsoft.bingnews_3.0.2.261_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/brandedapptitle} |
"{3A4A452C-596F-445E-A402-4D32D28FEA24}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{3B608A58-411B-458E-A583-A1853A42FE6C}" = dir=out | name=@{microsoft.bingmaps_2.0.2009.2356_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{3B89FFBE-C322-45B7-BD7C-30EFAB088966}" = dir=out | name=@{microsoft.xboxlivegames_2.0.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{41A7B5A3-AC77-4EB2-9074-79812FE10C09}" = dir=out | name=@{microsoft.xboxlivegames_2.0.20.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{4282FE99-8560-4BC7-9576-5F3ED84E263F}" = dir=in | name=checkpoint.vpn |
"{4C8932B1-6D9C-4316-B542-2833A32E9584}" = protocol=17 | dir=in | app=d:\programky\kmspico\kmseldi.exe |
"{50BB0766-708D-40EC-8A1B-F9AD1FC4D478}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{524A6F35-7F3F-406C-A316-AB0DCDDD1F3B}" = dir=out | name=@{microsoft.bingsports_3.0.2.258_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/brandedapptitle} |
"{52D3EC90-C6FC-45FF-8DCF-13B4321EAA08}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{548DCF8C-BFF2-4BA4-AA88-FBAF9AC8BCC6}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{560448D6-095C-4907-B046-AC7F710701A7}" = dir=in | name=sonicwall.mobileconnect |
"{5757CC81-80E6-4656-9CA6-D6E418D2BFAA}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9654.20349_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{599F0EE1-37FD-4F13-ACD0-353668D24CBA}" = protocol=6 | dir=in | app=c:\users\pabuk_000\appdata\roaming\utorrent\utorrent.exe |
"{5F4632C0-D5B1-40C3-B0D9-E3A759C81B9E}" = dir=out | name=sonicwall.mobileconnect |
"{62A0A928-D471-46E2-A159-144BB6936875}" = dir=out | name=@{microsoft.bingtravel_3.0.2.258_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/brandedapptitle} |
"{67A45134-4161-4248-9C3E-504D555C3EDF}" = protocol=6 | dir=in | app=d:\programky\kmspico\service_kms.exe |
"{69EC156C-64C3-4AF5-A534-55A879482B29}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.2.258_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{69FFF848-8D8A-47B6-AA32-C244C729F30E}" = dir=in | app=d:\programky\itunes\itunes.exe |
"{6A81EC5F-434F-4054-B256-18B4D862BF75}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{6AAFF6D7-131A-4AAE-B577-7E5F0870E6AF}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9600.16384_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{6EAE40BA-54AB-4AB7-8041-89C875E0EC5C}" = dir=out | name=@{microsoft.bingnews_3.0.1.174_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{7658D5C7-A8C1-4F8D-9DBB-6BA4AFD536E7}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.4.9600.16384_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{7CA47916-2887-49E1-B057-99C995B459FE}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{7E611FFB-2B81-4922-8612-1356C503BAFB}" = protocol=17 | dir=in | app=d:\programky\kmspico\service_kms.exe |
"{818FF3C1-D2F4-41F5-B4CD-19DE55194F63}" = protocol=17 | dir=in | app=d:\programky\kmspico\autopico.exe |
"{8B57D579-514E-4632-BA2E-73F486C8D444}" = dir=out | name=skype |
"{8EFFD6FC-186B-464F-801E-D13D5D61A2B5}" = protocol=6 | dir=in | app=d:\programky\kmspico\autopico.exe |
"{8FE6876F-4273-4F85-9582-173C3D3B48E3}" = protocol=6 | dir=in | app=d:\programky\kmspico\autopico.exe |
"{90D7E813-AFBA-4E3E-9A8E-C85BDCC54173}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{913BB09C-FA9D-49CC-B506-BB3631DD2778}" = dir=out | name=@{microsoft.bingfinance_3.0.1.174_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{96FF55C8-EB4E-4E17-9590-89231635740C}" = dir=out | name=@{microsoft.zunemusic_2.2.41.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{992FA64D-87AB-434A-A8C6-3F00F1278E5B}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.4.9600.16384_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{9C6BAA79-4787-4B8B-BB18-4DFA17CFC37A}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.1.177_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{9CD67429-6570-4876-AD13-BA2309341F88}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9600.16384_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{9E3D57FC-7C37-4424-9352-4831E97D029D}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{A0C14165-5298-482A-BE92-B8B375682FD2}" = dir=out | name=@{microsoft.zunemusic_2.2.886.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{A39D2044-7A90-4311-9327-EBEDA77D26B0}" = dir=in | name=skype |
"{A875955F-2AD3-4196-ADDB-09EAE19B3DAF}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9654.20349_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{A92BE81D-A8E2-4AD4-A3B0-99ECA43190C1}" = dir=out | name=@{microsoft.bingfinance_3.0.2.258_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/brandedapptitle} |
"{C0E867B9-5F93-4791-9BFC-CAE09B5D00CD}" = dir=out | name=@{microsoft.bingweather_3.0.1.174_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{C6E4E15E-6EAA-4E9A-9EA0-CAE877CBB8CA}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.5.9600.20498_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{CD734278-E4B5-4F3E-B4E5-9FF54DC791EF}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{D0DD7A59-4755-4470-AEE3-4C2726574AEB}" = dir=out | name=windows_ie_ac_001 |
"{D6980480-941A-4DF6-AB81-3734ECD3D779}" = dir=out | name=junipernetworks.junospulsevpn |
"{D6BB86E9-B111-4C5D-877D-DC713E15A44E}" = dir=out | name=@{microsoft.zunevideo_2.2.41.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{DB59588E-ED90-4C47-A7B5-7929DD0C0BD2}" = dir=out | name=checkpoint.vpn |
"{DC720DFA-1537-49D4-9440-CCF4D1AB8FE9}" = dir=in | name=skype |
"{E6C24A46-4814-4731-B705-049D6D297DD1}" = dir=out | name=@{microsoft.bingtravel_3.0.1.174_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{E9238116-71FA-491B-ACE9-D66616630FEE}" = protocol=17 | dir=in | app=d:\programky\kmspico\service_kms.exe |
"{EC799E33-72BA-42D7-9127-DEFE68F9799D}" = dir=in | name=junipernetworks.junospulsevpn |
"{F297A466-5756-4B24-A8D8-608927F27742}" = dir=out | name=@{microsoft.bingmaps_2.0.2530.2317_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{F339CAEF-A48F-4877-92F9-0A687068A437}" = protocol=17 | dir=in | app=d:\programky\kmspico\autopico.exe |
"{F3848C36-1725-4887-A32C-EEE1D6A93119}" = protocol=6 | dir=in | app=d:\programky\kmspico\service_kms.exe |
"{F5465E30-B3C3-486E-B9F0-1EF5D6431F0B}" = protocol=6 | dir=in | app=d:\programky\kmspico\kmseldi.exe |
"{F64300AD-D559-4000-BD45-0997BCC8E70A}" = dir=out | name=f5.vpn.client |
"{F77E5446-4378-4E99-8B7A-7061AAAEA193}" = dir=in | name=f5.vpn.client |
"{F91F6A55-9623-4E7B-B020-2CAC96127B84}" = dir=out | name=@{microsoft.bingsports_3.0.1.174_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{FA564164-5DA3-44B7-9545-D35B038FB16A}" = dir=out | name=@{microsoft.zunevideo_2.2.886.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"TCP Query User{4485B0E4-B901-490F-AD5F-17F483779624}D:\programky\maxthon\bin\maxthon.exe" = protocol=6 | dir=in | app=d:\programky\maxthon\bin\maxthon.exe |
"TCP Query User{BF0CE577-4156-4BD2-8525-300514FC6296}D:\programky\skype\phone\skype.exe" = protocol=6 | dir=in | app=d:\programky\skype\phone\skype.exe |
"TCP Query User{C5D714A1-FC07-4122-A599-95991AB65047}D:\programky\maxthon\bin\maxthon.exe" = protocol=6 | dir=in | app=d:\programky\maxthon\bin\maxthon.exe |
"UDP Query User{60823EA1-B17E-4EBD-B58C-61D1C51D164A}D:\programky\skype\phone\skype.exe" = protocol=17 | dir=in | app=d:\programky\skype\phone\skype.exe |
"UDP Query User{6B16F8F9-C730-439C-BB75-1E6DC00A465A}D:\programky\maxthon\bin\maxthon.exe" = protocol=17 | dir=in | app=d:\programky\maxthon\bin\maxthon.exe |
"UDP Query User{AA2BF963-D66D-4747-B038-95C4EAD07AB9}D:\programky\maxthon\bin\maxthon.exe" = protocol=17 | dir=in | app=d:\programky\maxthon\bin\maxthon.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable - x64 8.0.56336 False
"{1CF5754A-545B-4360-BFDE-2847BC728DFC}" = iTunes
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{2DFD8316-9EF1-3210-908C-4CB61961C1AC}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 False
"{302600C1-6BDF-4FD1-1309-148929CC1385}" = Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022.0 False
"{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 False
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable - x64 8.0.59192 False
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}" = Microsoft Visual C++ 2005 Redistributable - x64 8.0.50727.42 False
"{787136D2-F0F8-4625-AA3F-72D7795AC842}" = Apple Mobile Device Support
"{81E20D41-C277-4526-934D-F2380AF91B78}" = iCloud
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 False
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.5570 False
"{89AFB053-A343-46EF-97E4-D593AD7184E6}" = Intel® Trusted Connect Service Client
"{89B0ECE0-A41F-4A45-98D9-D54C74338117}" = ESET NOD32 Antivirus
"{8C0E96BB-93E5-4EAE-9947-69A68C4B7799}" = Dolby Tuning and Profile Creator
"{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}" = Microsoft Visual C++ 2005 Redistributable - x64 8.0.51011 False
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 327.62
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus 7.2.17
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 9.13.0604
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{BBBE35B2-9349-3C48-BD3D-F574B17C7924}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022.218 False
"{D04659D1-EB2D-3DE5-A833-837A623CCCF7}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 False
"{D93AC9C8-B6CF-391E-BD2F-48AF4727476C}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30411 False
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 Redistributable - x64 10.0.30319 False
"35DD26BE48DAF4A9F35F969F3CB1E3E1435E661E" = Balíček ovladače systému Windows - Lenovo (ACPIVPC) System (02/17/2013 9.52.0.776)
"6BCA401E9CBEED970D75F55FA5320F60D11984E9" = Balíček ovladače systému Windows - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288)
"CCleaner" = CCleaner
"Defraggler" = Defraggler
"KMSpico_is1" = KMSpico v9.2.3
"Recuva" = Recuva
"Speccy" = Speccy
"Totalcmd64" = Total Commander 64-bit (Remove or Repair)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{08A25478-C5DD-4EA7-B168-3D687CA987FF}" = The Sims™ 3 Master Suite Stuff
"{0A3925EA-5B0E-401B-A189-7419149747B2}" = Adobe AIR
"{111EE7DF-FC45-40C7-98A7-753AC46B12FB}" = QuickTime 7
"{117B6BF6-82C3-420C-B284-9247C8568E53}" = The Sims™ 3 Outdoor Living Stuff
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 Redistributable - x86 10.0.30319 False
"{1C9B6173-6DC9-4EEE-9EFC-6BA115CFBE43}" = The Sims™ 3 Diesel Stuff
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 False
"{3282FBE1-35FC-48D8-98CA-115A5EF1F9B4}" = NVIDIA PhysX
"{3BBFD444-5FAB-49F6-98B1-A1954E831399}" = The Sims™ 3 Showtime
"{3DE92282-CB49-434F-81BF-94E5B380E889}" = The Sims™ 3 Seasons
"{45057FCE-5784-48BE-8176-D9D00AF56C3C}" = The Sims™ 3 Late Night
"{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 False
"{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}" = Realtek Card Reader
"{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 False
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001
"{71828142-5A24-4BD0-97E7-976DA08CE6CF}" = The Sims™ 3 High-End Loft Stuff
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable - x86 8.0.56336 False
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7B11296A-F894-449C-8DF6-6AAAA7D4D118}" = The Sims™ 3 Town Life Stuff
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable - x86 8.0.59193 False
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.5570 False
"{910F4A29-1134-49E0-AD8B-56E4A3152BD1}" = The Sims™ 3 Ambitions
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 False
"{9B2506E3-9A3F-45B5-96BF-509CAD584650}" = The Sims™ 3 Katy Perry Sweet Treats
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - x86 8.0.51011 False
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable - x86 8.0.50727.42 False
"{A4ED5E53-7AA0-11E1-BF04-B2D4D4A5360E}" = Adobe Dreamweaver CS6
"{AF37176A-78CA-545B-34EF-8B6A21514DD1}" = Adobe Help Manager
"{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}" = The Sims™ 3 Supernatural
"{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}" = The Sims™ 3 World Adventures
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = The Sims™ 3
"{C12631C6-804D-4B32-B0DD-8A496462F106}" = The Sims™ 3 Pets
"{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
"{D9DAD0FF-495A-472B-9F10-BAE430A26682}" = Apple Application Support
"{DCB46B42-723F-350E-B18A-449BC6C21636}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 False
"{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}" = Lenovo EasyCamera
"{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 False
"{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}" = The Sims™ 3 Generations
"{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}" = The Sims™ 3 Fast Lane Stuff
"{EFBE6DD5-B224-96E5-72B9-68D328CB12A6}" = Adobe Widget Browser
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.0 False
"7-Zip" = 7-Zip 9.22beta
"Adobe AIR" = Adobe AIR
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Help Manager
"com.adobe.WidgetBrowser" = Adobe Widget Browser
"InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
"Mozilla Firefox 29.0 (x86 cs)" = Mozilla Firefox 29.0 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"The KMPlayer" = The KMPlayer (remove only)
"TMM90" = TELL ME MORE
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"uTorrent" = µTorrent
"XBMC" = XBMC
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 24/05/2014 20:06:27 | Computer Name = Lenovo-Z500 | Source = Application Hang | ID = 1002
Description = Program SDScan.exe verze 2.2.18.177 prestal spolupracovat se systémem
Windows a byl ukoncen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
12f0 Cas spuštení: 01cf77ac2e1c257f Cas ukoncení: 4 Cesta k aplikaci: D:\Programky\Spybot
- Search & Destroy 2\SDScan.exe ID hlášení: 5fa5095f-e3a0-11e3-8263-2089849ae681
Úplný
název chybujícího balícku: ID aplikace související s chybujícím balíckem:
Error - 24/05/2014 20:07:59 | Computer Name = Lenovo-Z500 | Source = Application Hang | ID = 1002
Description = Program SDScan.exe verze 2.2.18.177 prestal spolupracovat se systémem
Windows a byl ukoncen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
1b30 Cas spuštení: 01cf77ad3c677422 Cas ukoncení: 3 Cesta k aplikaci: D:\Programky\Spybot
- Search & Destroy 2\SDScan.exe ID hlášení: 9df495fe-e3a0-11e3-8263-2089849ae681
Úplný
název chybujícího balícku: ID aplikace související s chybujícím balíckem:
Error - 24/05/2014 20:38:34 | Computer Name = Lenovo-Z500 | Source = Application Hang | ID = 1002
Description = Program SDScan.exe verze 2.2.18.177 prestal spolupracovat se systémem
Windows a byl ukoncen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
10b4 Cas spuštení: 01cf77ad8a7e899d Cas ukoncení: 2 Cesta k aplikaci: D:\Programky\Spybot
- Search & Destroy 2\SDScan.exe ID hlášení: cc1acaa0-e3a4-11e3-8263-2089849ae681
Úplný
název chybujícího balícku: ID aplikace související s chybujícím balíckem:
Error - 24/05/2014 20:57:34 | Computer Name = Lenovo-Z500 | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Ad-aware.exe, verze: 6.0.1.181, casové razítko:
0x2a420000 Název chybujícího modulu: unknown, verze: 0.0.0.0, casové razítko: 0x00000000
Kód
výjimky: 0xc0000005 Posun chyby: 0x7e5cec1e ID chybujícího procesu: 0x18dc Cas spuštení
chybující aplikace: 0x01cf77b45028edfb Cesta k chybující aplikaci: D:\Programky\Ad-aware
6\Ad-aware.exe Cesta k chybujícímu modulu: unknown ID zprávy: 8df4aee6-e3a7-11e3-8263-2089849ae681
Úplný
název chybujícího balícku: ID aplikace související s chybujícím balíckem:
Error - 24/05/2014 21:14:56 | Computer Name = Lenovo-Z500 | Source = Application Hang | ID = 1002
Description = Program SDScan.exe verze 2.2.18.177 prestal spolupracovat se systémem
Windows a byl ukoncen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
a90 Cas spuštení: 01cf77b1b390d237 Cas ukoncení: 3 Cesta k aplikaci: D:\Programky\Spybot
- Search & Destroy 2\SDScan.exe ID hlášení: f6e02c7a-e3a9-11e3-8263-2089849ae681
Úplný
název chybujícího balícku: ID aplikace související s chybujícím balíckem:
Error - 25/05/2014 05:07:33 | Computer Name = Lenovo-Z500 | Source = Application Hang | ID = 1002
Description = Program SDScan.exe verze 2.2.18.177 prestal spolupracovat se systémem
Windows a byl ukoncen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Centrum akcí. ID procesu:
19fc Cas spuštení: 01cf77f51169c2da Cas ukoncení: 0 Cesta k aplikaci: D:\Programky\Spybot
- Search & Destroy 2\SDScan.exe ID hlášení: fdb8274b-e3eb-11e3-8264-2089849ae681
Úplný
název chybujícího balícku: ID aplikace související s chybujícím balíckem:
Error - 25/05/2014 10:22:29 | Computer Name = Lenovo-Z500 | Source = Application Error | ID = 1000
Description = Název chybující aplikace: TS3W.exe, verze: 0.2.0.190, casové razítko:
0x50653464 Název chybujícího modulu: d3d9.dll, verze: 6.3.9600.17085, casové razítko:
0x5338b882 Kód výjimky: 0xc0000005 Posun chyby: 0x00112271 ID chybujícího procesu:
0x8a8 Cas spuštení chybující aplikace: 0x01cf780fe2597316 Cesta k chybující aplikaci:
D:\Games\Electronic Arts\The Sims 3\Game\Bin\TS3W.exe Cesta k chybujícímu modulu:
C:\WINDOWS\SYSTEM32\d3d9.dll ID zprávy: 0044ef36-e418-11e3-8264-2089849ae681 Úplný
název chybujícího balícku: ID aplikace související s chybujícím balíckem:
Error - 26/05/2014 10:48:19 | Computer Name = Lenovo-Z500 | Source = .NET Runtime | ID = 1026
Description =
Error - 26/05/2014 10:48:19 | Computer Name = Lenovo-Z500 | Source = Application Error | ID = 1000
Description = Název chybující aplikace: Service_KMS.exe, verze: 13.1.0.0, casové
razítko: 0x5313ef48 Název chybujícího modulu: KERNELBASE.dll, verze: 6.3.9600.17055,
casové razítko: 0x532954fb Kód výjimky: 0xe0434352 Posun chyby: 0x0000000000005bf8
ID
chybujícího procesu: 0x430 Cas spuštení chybující aplikace: 0x01cf78f1852c17e5 Cesta
k chybující aplikaci: D:\Programky\KMSpico\Service_KMS.exe Cesta k chybujícímu modulu:
C:\WINDOWS\system32\KERNELBASE.dll ID zprávy: c6be0f0c-e4e4-11e3-8265-2089849ae681
Úplný
název chybujícího balícku: ID aplikace související s chybujícím balíckem:
Error - 27/05/2014 06:08:51 | Computer Name = Lenovo-Z500 | Source = Microsoft-Windows-CAPI2 | ID = 513
Description = Služba Šifrování selhala pri volání OnIdentity() v objektu System
Writer. Details: AddCoreCsiFiles : GetNextFileMapContent() failed. System Error: Parametr
není správný. .
[ System Events ]
Error - 24/05/2014 13:22:12 | Computer Name = Lenovo-Z500 | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Instalace se nezdarila: Instalování následující aktualizace se nezdarilo
z duvodu chyby (0x80242fff): Aktualizace zabezpecení pro rozhraní Microsoft .NET
Framework 3.5 v systémech Windows 8.1 a Windows Server 2012 R2 platformy x64 (KB2931358).
Error - 24/05/2014 14:51:24 | Computer Name = Lenovo-Z500 | Source = Service Control Manager | ID = 7034
Description = Služba MBAMService byla neocekávane ukoncena. Tento stav nastal již
1krát.
Error - 24/05/2014 17:12:55 | Computer Name = Lenovo-Z500 | Source = Service Control Manager | ID = 7009
Description = Pri cekání na pripojení služby SW_Sustainer bylo dosaženo casového
limitu (30000 ms).
Error - 24/05/2014 17:13:05 | Computer Name = Lenovo-Z500 | Source = Service Control Manager | ID = 7034
Description = Služba Service KMSELDI byla neocekávane ukoncena. Tento stav nastal
již 1krát.
Error - 24/05/2014 17:22:21 | Computer Name = Lenovo-Z500 | Source = Service Control Manager | ID = 7034
Description = Služba MBAMService byla neocekávane ukoncena. Tento stav nastal již
1krát.
Error - 24/05/2014 21:20:10 | Computer Name = Lenovo-Z500 | Source = Service Control Manager | ID = 7009
Description = Pri cekání na pripojení služby SW_Sustainer bylo dosaženo casového
limitu (30000 ms).
Error - 24/05/2014 21:20:16 | Computer Name = Lenovo-Z500 | Source = Service Control Manager | ID = 7000
Description = Služba Service KMSELDI neuspela pri spuštení v dusledku následující
chyby: %%5
Error - 26/05/2014 10:48:12 | Computer Name = Lenovo-Z500 | Source = Service Control Manager | ID = 7009
Description = Pri cekání na pripojení služby SW_Sustainer bylo dosaženo casového
limitu (30000 ms).
Error - 26/05/2014 10:48:19 | Computer Name = Lenovo-Z500 | Source = DCOM | ID = 10000
Description =
Error - 26/05/2014 10:48:24 | Computer Name = Lenovo-Z500 | Source = Service Control Manager | ID = 7034
Description = Služba Service KMSELDI byla neocekávane ukoncena. Tento stav nastal
již 1krát.
< End of report >
Re: Otvíraní nechtěných webových stránek prosím kontrolu log
No, tak ten nod asi koupeny nebude, ze? 
Napiste mi velikost adresare plochy (C:\Users\pabuk_000\Desktop)
Vypnete antivir, at nebrani programu v praci. Znovu spustte OTL jako spravceDo spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)
Kód: Vybrat vše
:commands
[EMPTYTEMP]
[EMPTYFLASH]
[Purity]
[CreateRestorePoint]
:services
MBAMSwissArmy
WinRing0_1_2_0
3e9deaca
:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\Program Files (x86)\Spybot - Search & Destroy 2
C:\ProgramData\Spybot - Search & Destroy
C:\Program Files\SW-Booster
C:\Program Files (x86)\SW-Booster
:otl
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://t.uk.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-GB
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 36 31 C3 09 1A 72 CF 01 [binary data]
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
[14 C:\WINDOWS\Installer\*.tmp files -> C:\WINDOWS\Installer\*.tmp -> ]
[1 C:\WINDOWS\Panther\*.tmp files -> C:\WINDOWS\Panther\*.tmp -> ]
[2014/05/25 02:05:31 | 000,000,000 | ---D | M] -- C:\Users\pabuk_000\AppData\Roaming\LavasoftStatistics
[2014/04/17 01:52:20 | 000,971,064 | ---- | M] () -- \Windows.old\$Recycle.Bin\S-1-5-21-972540561-1704939325-1529438176-1001\$RLQCHDI\Keygen Installer\Keygen Installer.rar
@Alternate Data Stream - 183 bytes -> C:\Users\pabuk_000\SkyDrive:ms-properties
:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=-
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"AdobeCS6ServiceManager"=-
Po restartu se objevi novy log, ten sem dejte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Otvíraní nechtěných webových stránek prosím kontrolu log
není 
ale už sepisuji objednávku a budu precházet na zkušební verzi..
a pak zvažuji zda jít do rovnou famili pack nebo jen na jeden pc.
Omlouvám se.
Jsem student a na vše prostě peníze nejsou.
ale už sepisuji objednávku a budu precházet na zkušební verzi..a pak zvažuji zda jít do rovnou famili pack nebo jen na jeden pc.
Omlouvám se.
Jsem student a na vše prostě peníze nejsou.
Re: Otvíraní nechtěných webových stránek prosím kontrolu log
All processes killed
========== COMMANDS ==========
[EMPTYTEMP]
User: Administrator
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 57311 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Guest
User: ni-ku_000
->Temp folder emptied: 6297796 bytes
->Temporary Internet Files folder emptied: 350333 bytes
->Flash cache emptied: 56475 bytes
User: pabuk_000
->Temp folder emptied: 395840164 bytes
->Temporary Internet Files folder emptied: 5782296 bytes
->FireFox cache emptied: 14577863 bytes
->Flash cache emptied: 59536 bytes
User: Public
User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56475 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 11084528 bytes
RecycleBin emptied: 1623879 bytes
Total Files Cleaned = 416.00 mb
[EMPTYFLASH]
User: Administrator
User: All Users
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: Guest
User: ni-ku_000
->Flash cache emptied: 0 bytes
User: pabuk_000
->Flash cache emptied: 0 bytes
User: Public
User: UpdatusUser
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0.00 mb
Restore point Set: OTL Restore Point
========== SERVICES/DRIVERS ==========
Service MBAMSwissArmy stopped successfully!
Service MBAMSwissArmy deleted successfully!
Service WinRing0_1_2_0 stopped successfully!
Service WinRing0_1_2_0 deleted successfully!
Service 3e9deaca stopped successfully!
Service 3e9deaca deleted successfully!
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
C:\Program Files (x86)\Spybot - Search & Destroy 2\av folder moved successfully.
C:\Program Files (x86)\Spybot - Search & Destroy 2 folder moved successfully.
C:\ProgramData\Spybot - Search & Destroy\System Configuration Snapshots folder moved successfully.
C:\ProgramData\Spybot - Search & Destroy\Quarantine folder moved successfully.
C:\ProgramData\Spybot - Search & Destroy\Logs folder moved successfully.
C:\ProgramData\Spybot - Search & Destroy\Ignore folder moved successfully.
C:\ProgramData\Spybot - Search & Destroy\Cleaning folder moved successfully.
C:\ProgramData\Spybot - Search & Destroy folder moved successfully.
File\Folder C:\Program Files\SW-Booster not found.
File\Folder C:\Program Files (x86)\SW-Booster not found.
========== OTL ==========
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache AcceptLangs| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache_TIMESTAMP| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\WINDOWS\Installer\MSI178.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSI8A56.tmp deleted successfully.
C:\WINDOWS\Installer\MSIB736.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIC002.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIC217.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIC2A4.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIC303.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIF0B4.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIF306.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIF3C4.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIF58A.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIF608.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIF696.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIFB3A.tmp- folder deleted successfully.
C:\WINDOWS\Panther\_s_ABD5.tmp deleted successfully.
C:\Users\pabuk_000\AppData\Roaming\LavasoftStatistics folder moved successfully.
File move failed. \Windows.old\$Recycle.Bin\S-1-5-21-972540561-1704939325-1529438176-1001\$RLQCHDI\Keygen Installer\Keygen Installer.rar scheduled to be moved on reboot.
Unable to delete ADS C:\Users\pabuk_000\SkyDrive:ms-properties .
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\uTorrent deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\AdobeCS6ServiceManager deleted successfully.
OTL by OldTimer - Version 3.2.69.0 log created on 05272014_124224
Files\Folders moved on Reboot...
C:\Users\pabuk_000\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.
File move failed. \Windows.old\$Recycle.Bin\S-1-5-21-972540561-1704939325-1529438176-1001\$RLQCHDI\Keygen Installer\Keygen Installer.rar scheduled to be moved on reboot.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
========== COMMANDS ==========
[EMPTYTEMP]
User: Administrator
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 57311 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Guest
User: ni-ku_000
->Temp folder emptied: 6297796 bytes
->Temporary Internet Files folder emptied: 350333 bytes
->Flash cache emptied: 56475 bytes
User: pabuk_000
->Temp folder emptied: 395840164 bytes
->Temporary Internet Files folder emptied: 5782296 bytes
->FireFox cache emptied: 14577863 bytes
->Flash cache emptied: 59536 bytes
User: Public
User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56475 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 11084528 bytes
RecycleBin emptied: 1623879 bytes
Total Files Cleaned = 416.00 mb
[EMPTYFLASH]
User: Administrator
User: All Users
User: Default
->Flash cache emptied: 0 bytes
User: Default User
->Flash cache emptied: 0 bytes
User: Guest
User: ni-ku_000
->Flash cache emptied: 0 bytes
User: pabuk_000
->Flash cache emptied: 0 bytes
User: Public
User: UpdatusUser
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0.00 mb
Restore point Set: OTL Restore Point
========== SERVICES/DRIVERS ==========
Service MBAMSwissArmy stopped successfully!
Service MBAMSwissArmy deleted successfully!
Service WinRing0_1_2_0 stopped successfully!
Service WinRing0_1_2_0 deleted successfully!
Service 3e9deaca stopped successfully!
Service 3e9deaca deleted successfully!
========== FILES ==========
File/Folder C:\WINDOWS\system32\*.tmp.dll not found.
File/Folder C:\WINDOWS\system32\SET*.tmp not found.
File/Folder C:\WINDOWS\*.tmp not found.
C:\Program Files (x86)\Spybot - Search & Destroy 2\av folder moved successfully.
C:\Program Files (x86)\Spybot - Search & Destroy 2 folder moved successfully.
C:\ProgramData\Spybot - Search & Destroy\System Configuration Snapshots folder moved successfully.
C:\ProgramData\Spybot - Search & Destroy\Quarantine folder moved successfully.
C:\ProgramData\Spybot - Search & Destroy\Logs folder moved successfully.
C:\ProgramData\Spybot - Search & Destroy\Ignore folder moved successfully.
C:\ProgramData\Spybot - Search & Destroy\Cleaning folder moved successfully.
C:\ProgramData\Spybot - Search & Destroy folder moved successfully.
File\Folder C:\Program Files\SW-Booster not found.
File\Folder C:\Program Files (x86)\SW-Booster not found.
========== OTL ==========
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache AcceptLangs| /E : value set successfully!
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache_TIMESTAMP| /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\WINDOWS\Installer\MSI178.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSI8A56.tmp deleted successfully.
C:\WINDOWS\Installer\MSIB736.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIC002.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIC217.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIC2A4.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIC303.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIF0B4.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIF306.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIF3C4.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIF58A.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIF608.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIF696.tmp- folder deleted successfully.
C:\WINDOWS\Installer\MSIFB3A.tmp- folder deleted successfully.
C:\WINDOWS\Panther\_s_ABD5.tmp deleted successfully.
C:\Users\pabuk_000\AppData\Roaming\LavasoftStatistics folder moved successfully.
File move failed. \Windows.old\$Recycle.Bin\S-1-5-21-972540561-1704939325-1529438176-1001\$RLQCHDI\Keygen Installer\Keygen Installer.rar scheduled to be moved on reboot.
Unable to delete ADS C:\Users\pabuk_000\SkyDrive:ms-properties .
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\uTorrent deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\AdobeCS6ServiceManager deleted successfully.
OTL by OldTimer - Version 3.2.69.0 log created on 05272014_124224
Files\Folders moved on Reboot...
C:\Users\pabuk_000\AppData\Local\Microsoft\Windows\INetCache\counters.dat moved successfully.
File move failed. \Windows.old\$Recycle.Bin\S-1-5-21-972540561-1704939325-1529438176-1001\$RLQCHDI\Keygen Installer\Keygen Installer.rar scheduled to be moved on reboot.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
Re: Otvíraní nechtěných webových stránek prosím kontrolu log
Ja akorat nechapu, proc crackovat neco, co muzu mit lepsi (nebo srovnatelne) uplne zadarmo a legalne
Pokud tam bude cracknuty antivir i priste, bude pomoc rovnou odmitnuta.
Co velikost te plochy?
Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)
Stahnete OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.
Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc.
Stahnete TFC http://oldtimer.geekstogo.com/TFC.exe , ulozte a spustte
Kliknete na START a pote OK - Po uklidu dojde k restartu pc.
Po pouziti muzete programek smazat
Stahnete Ccleaner http://www.piriform.com/ccleaner/download/slim a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
Defragmentujte disk(y)
Stahnete program Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
Pri instalaci opet pozor na toolbar
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.
Pak napiste, jak je na tom pc.
Pokud tam bude cracknuty antivir i priste, bude pomoc rovnou odmitnuta.
Co velikost te plochy? Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce) vyosek píše:
- Stahnete a spustte
- Pro potvrzeni volby mackejte A, Enter
- Po pouziti utilitu smazte
- Antiviry mohou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
Stahnete OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc.
Stahnete TFC http://oldtimer.geekstogo.com/TFC.exe , ulozte a spustteKliknete na START a pote OK - Po uklidu dojde k restartu pc.
Po pouziti muzete programek smazat
Stahnete Ccleaner http://www.piriform.com/ccleaner/download/slim a spustte.Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
Defragmentujte disk(y)Stahnete program Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
Pri instalaci opet pozor na toolbar
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.
Pak napiste, jak je na tom pc.Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Otvíraní nechtěných webových stránek prosím kontrolu log
Velikost Plochy : 1.60 GB (1,720,471,552 bajtů)
Tak defragmentace právě skončila a výsledek kondice disku Dobrý.
Stav otevíraní oken trvá..
Tak defragmentace právě skončila a výsledek kondice disku Dobrý.
Stav otevíraní oken trvá
..Re: Otvíraní nechtěných webových stránek prosím kontrolu log
Plochu bych trochu uklidil. Nemela by presahovat 200 - 300 MB
Dela to ve vsech prohlizecich?
Dejte novy log z RSIT
Dela to ve vsech prohlizecich?
Dejte novy log z RSIT
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: Otvíraní nechtěných webových stránek prosím kontrolu log
Měl jsem tam složku do školy ted ma jen 12.0 MB (12,595,200 bajtů)
zkušel jsem to ve vice prohlížečích a asi blb jen maxthon po jeho odinstalovania znova nainstalovani se nic už samo neotevíra.
Ale nejdou otvírat .PDF soubory.
k otevíraní používam aplikaci od Microsoftu - Reader, jenom to blikne
nefunguje ani Store.
info.txt logfile of random's system information tool 1.10 2014-05-27 14:44:57
======MBR======
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
======Uninstall list======
-->"C:\Program Files (x86)\InstallShield Installation Information\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}\setup.exe" /z-uninstall
-->MsiExec /X{3282FBE1-35FC-48D8-98CA-115A5EF1F9B4}
7-Zip 9.20 (x64 edition)-->MsiExec.exe /I{23170F69-40C1-2702-0920-000001000000}
7-Zip 9.22beta-->"D:\Programky\7-Zip\Uninstall.exe"
Adobe AIR-->c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{0A3925EA-5B0E-401B-A189-7419149747B2}
Adobe Dreamweaver CS6-->C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDApp.exe --appletID="DWA_UI" --appletVersion="2.0" --mode="Uninstall" --mediaSignature="{A4ED5E53-7AA0-11E1-BF04-B2D4D4A5360E}"
Adobe Help Manager-->msiexec /qb /x {AF37176A-78CA-545B-34EF-8B6A21514DD1}
Adobe Help Manager-->MsiExec.exe /I{AF37176A-78CA-545B-34EF-8B6A21514DD1}
Adobe Widget Browser-->msiexec /qb /x {EFBE6DD5-B224-96E5-72B9-68D328CB12A6}
Adobe Widget Browser-->MsiExec.exe /I{EFBE6DD5-B224-96E5-72B9-68D328CB12A6}
Apple Application Support-->MsiExec.exe /I{D9DAD0FF-495A-472B-9F10-BAE430A26682}
Apple Mobile Device Support-->MsiExec.exe /I{787136D2-F0F8-4625-AA3F-72D7795AC842}
Apple Software Update-->MsiExec.exe /I{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
Balíček ovladače systému Windows - Lenovo (ACPIVPC) System (02/17/2013 9.52.0.776)-->C:\PROGRA~1\DIFX\8C657473004ED4CD\DPInst.exe /u C:\WINDOWS\System32\DriverStore\FileRepository\vpc.inf_amd64_0801388e5591ee6b\vpc.inf
Balíček ovladače systému Windows - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288)-->C:\PROGRA~1\DIFX\8C657473004ED4CD\DPInst.exe /u C:\WINDOWS\System32\DriverStore\FileRepository\wudfvhidmini.inf_amd64_7d883db511b20660\wudfvhidmini.inf
Bonjour-->MsiExec.exe /X{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
CCleaner-->"D:\Programky\CCleaner\uninst.exe"
Defraggler-->"C:\Program Files\Defraggler\uninst.exe"
Dolby Tuning and Profile Creator-->MsiExec.exe /X{8C0E96BB-93E5-4EAE-9947-69A68C4B7799}
Energy Management-->"C:\Program Files (x86)\InstallShield Installation Information\{D0956C11-0F60-43FE-99AD-524E833471BB}\setup.exe" -runfromtemp -l0x0409 -removeonly
Energy Management-->MsiExec.exe /I{D0956C11-0F60-43FE-99AD-524E833471BB}
ESET Smart Security-->MsiExec.exe /I{750374DE-064B-403F-8F3E-252760CE6381}
Intel(R) Management Engine Components-->C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\Uninstall\setup.exe -uninstall
Intel(R) Processor Graphics-->C:\Program Files (x86)\Intel\Intel(R) Processor Graphics\Uninstall\setup.exe -uninstall
Intel® Trusted Connect Service Client-->MsiExec.exe /I{89AFB053-A343-46EF-97E4-D593AD7184E6}
iTunes-->MsiExec.exe /I{1CF5754A-545B-4360-BFDE-2847BC728DFC}
KMSpico v9.2.3-->"D:\Programky\KMSpico\unins000.exe"
Lenovo EasyCamera-->"C:\Program Files (x86)\InstallShield Installation Information\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}\setup.exe" -runfromtemp -removeonly
Lenovo OneKey Recovery-->"C:\Program Files (x86)\InstallShield Installation Information\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}\setup.exe" /z-uninstall
Lenovo OneKey Recovery-->"C:\Program Files (x86)\InstallShield Installation Information\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}\setup.exe" /z-uninstall
Maxthon Cloud Browser-->D:\Programky\Maxthon\Bin\Mx3Uninstall.exe
Microsoft Visual C++ 2005 Redistributable - x64 8.0.50727.42 False-->MsiExec.exe /X{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}
Microsoft Visual C++ 2005 Redistributable - x64 8.0.51011 False-->MsiExec.exe /X{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}
Microsoft Visual C++ 2005 Redistributable - x64 8.0.56336 False-->MsiExec.exe /X{071c9b48-7c32-4621-a0ac-3f809523288f}
Microsoft Visual C++ 2005 Redistributable - x64 8.0.59192 False-->MsiExec.exe /X{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}
Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000-->MsiExec.exe /X{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}
Microsoft Visual C++ 2005 Redistributable - x86 8.0.50727.42 False-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Visual C++ 2005 Redistributable - x86 8.0.51011 False-->MsiExec.exe /X{a0fe116e-9a8a-466f-aee0-625cb7c207e3}
Microsoft Visual C++ 2005 Redistributable - x86 8.0.56336 False-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable - x86 8.0.59193 False-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 False-->MsiExec.exe /X{D04659D1-EB2D-3DE5-A833-837A623CCCF7}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022.0 False-->MsiExec.exe /X{350AA351-21FA-3270-8B7A-835434E766AD}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022.218 False-->MsiExec.exe /X{BBBE35B2-9349-3C48-BD3D-F574B17C7924}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30411 False-->MsiExec.exe /X{D93AC9C8-B6CF-391E-BD2F-48AF4727476C}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 False-->MsiExec.exe /X{2DFD8316-9EF1-3210-908C-4CB61961C1AC}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 False-->MsiExec.exe /X{8220EEFE-38CD-377E-8595-13398D740ACE}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 False-->MsiExec.exe /X{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.5570 False-->MsiExec.exe /X{8338783A-0968-3B85-AFC7-BAAE0A63DC50}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161-->MsiExec.exe /X{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 False-->MsiExec.exe /X{DCB46B42-723F-350E-B18A-449BC6C21636}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.0 False-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 False-->MsiExec.exe /X{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 False-->MsiExec.exe /X{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 False-->MsiExec.exe /X{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 False-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 False-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.5570 False-->MsiExec.exe /X{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 Redistributable - x64 10.0.30319 False-->MsiExec.exe /X{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219-->MsiExec.exe /X{1D8E6291-B0D5-35EC-8441-6616F567A0F7}
Microsoft Visual C++ 2010 Redistributable - x86 10.0.30319 False-->MsiExec.exe /X{196BB40D-1578-3D01-B289-BEFC77A11A1E}
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Mozilla Firefox 29.0.1 (x86 cs)-->"D:\Programky\Mozilla Firefox\uninstall\helper.exe"
Mozilla Maintenance Service-->"C:\Program Files (x86)\Mozilla Maintenance Service\uninstall.exe"
NVIDIA PhysX-->MsiExec.exe /I{3282FBE1-35FC-48D8-98CA-115A5EF1F9B4}
NVIDIA Systémový software PhysX 9.13.0604-->"C:\WINDOWS\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.{F8BFA7C2-42DA-432A-9D62-C4C9EF4EE7EA}\NVI2.DLL",UninstallPackage Display.PhysX
QuickTime 7-->MsiExec.exe /I{111EE7DF-FC45-40C7-98A7-753AC46B12FB}
Realtek Card Reader-->"C:\Program Files (x86)\InstallShield Installation Information\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}\setup.exe" -runfromtemp -removeonly
Realtek High Definition Audio Driver-->C:\Program Files\Realtek\Audio\HDA\RtlUpd64.exe -r -m -nrg2709
TELL ME MORE-->"D:\Programky\Tell me more\Bin\unsetup.exe" -file "D:\Programky\Tell me more\unsetup.aui"
The KMPlayer (remove only)-->"D:\Programky\The KMPlayer\uninstall.exe"
The Sims™ 3 Ambitions-->"C:\Program Files (x86)\InstallShield Installation Information\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}\setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Diesel Stuff-->"C:\Program Files (x86)\InstallShield Installation Information\{1C9B6173-6DC9-4EEE-9EFC-6BA115CFBE43}\Sims3SP07Setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Fast Lane Stuff-->"C:\Program Files (x86)\InstallShield Installation Information\{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}\setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Generations-->"C:\Program Files (x86)\InstallShield Installation Information\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}\Sims3EP04Setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 High-End Loft Stuff-->"C:\Program Files (x86)\InstallShield Installation Information\{71828142-5A24-4BD0-97E7-976DA08CE6CF}\setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Katy Perry Sweet Treats-->"C:\Program Files (x86)\InstallShield Installation Information\{9B2506E3-9A3F-45B5-96BF-509CAD584650}\Sims3SP06Setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Late Night-->"C:\Program Files (x86)\InstallShield Installation Information\{45057FCE-5784-48BE-8176-D9D00AF56C3C}\setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Master Suite Stuff-->"C:\Program Files (x86)\InstallShield Installation Information\{08A25478-C5DD-4EA7-B168-3D687CA987FF}\Sims3SP05Setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Outdoor Living Stuff-->"C:\Program Files (x86)\InstallShield Installation Information\{117B6BF6-82C3-420C-B284-9247C8568E53}\setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Pets-->"C:\Program Files (x86)\InstallShield Installation Information\{C12631C6-804D-4B32-B0DD-8A496462F106}\Sims3EP05Setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Seasons-->"C:\Program Files (x86)\InstallShield Installation Information\{3DE92282-CB49-434F-81BF-94E5B380E889}\setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Showtime-->"C:\Program Files (x86)\InstallShield Installation Information\{3BBFD444-5FAB-49F6-98B1-A1954E831399}\Sims3EP06Setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Supernatural-->"C:\Program Files (x86)\InstallShield Installation Information\{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}\setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Town Life Stuff-->"C:\Program Files (x86)\InstallShield Installation Information\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}\Sims3SP04Setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 World Adventures-->"C:\Program Files (x86)\InstallShield Installation Information\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}\setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3-->"C:\Program Files (x86)\InstallShield Installation Information\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}\setup.exe" -runfromtemp -l0x0019 -removeonly
Total Commander 64-bit (Remove or Repair)-->D:\Programky\totalcmd\tcunin64.exe
======Hosts File======
127.0.0.1 localhost
======System event log======
Computer Name: WIN-NT5FBED5LEN
Event Code: 13
Message: Operační systém se vypíná v systémovém čase 2013-09-30T04:29:36.307781900Z.
Record Number: 5
Source Name: Microsoft-Windows-Kernel-General
Time Written: 20130930042936.307781-000
Event Type: Informace
User:
Computer Name: WIN-NT5FBED5LEN
Event Code: 109
Message: Správce napájení jádra inicioval přechod do režimu vypnutí.
Record Number: 4
Source Name: Microsoft-Windows-Kernel-Power
Time Written: 20130930042935.542156-000
Event Type: Informace
User:
Computer Name: WIN-NT5FBED5LEN
Event Code: 6005
Message: Služba Event Log byla spuštěna.
Record Number: 3
Source Name: EventLog
Time Written: 20140516075008.000000-000
Event Type: Informace
User:
Computer Name: WIN-NT5FBED5LEN
Event Code: 6009
Message: Microsoft (R) Windows (R) 6.03. 9600 Multiprocessor Free.
Record Number: 2
Source Name: EventLog
Time Written: 20140516075008.000000-000
Event Type: Informace
User:
Computer Name: WIN-NT5FBED5LEN
Event Code: 6011
Message: Název tohoto počítače v systémech DNS a NetBIOS byl změněn z WIN-NT5FBED5LEN na WIN-EMPJU8QGRVR.
Record Number: 1
Source Name: EventLog
Time Written: 20140516075008.000000-000
Event Type: Informace
User:
=====Application event log=====
Computer Name: WIN-NT5FBED5LEN
Event Code: 5617
Message: Subsystémy služby WMI (Windows Management Instrumentation) byly úspěšně inicializovány.
Record Number: 5
Source Name: Microsoft-Windows-WMI
Time Written: 20140516075045.901491-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: WIN-NT5FBED5LEN
Event Code: 9002
Message: Nepodařilo se spustit Správce oken plochy.
Record Number: 4
Source Name: Desktop Window Manager
Time Written: 20140516075028.000000-000
Event Type: Informace
User:
Computer Name: WIN-NT5FBED5LEN
Event Code: 5615
Message: Služba WMI (Windows Management Instrumentation) byla úspěšně spuštěna.
Record Number: 3
Source Name: Microsoft-Windows-WMI
Time Written: 20140516075013.857637-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: WIN-NT5FBED5LEN
Event Code: 1531
Message: Služba Profil uživatele byla úspěšně spuštěna.
Record Number: 2
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20140516075009.107418-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: WIN-NT5FBED5LEN
Event Code: 4625
Message: Subsystém EventSystem zabraňuje vytváření duplicitních záznamů v protokolu událostí po dobu 86400 sekund. Tuto dobu lze změnit pomocí hodnoty REG_DWORD s názvem SuppressDuplicateDuration v následujícím klíči registru: HKLM\Software\Microsoft\EventSystem\EventLog.
Record Number: 1
Source Name: Microsoft-Windows-EventSystem
Time Written: 20140516075009.000000-000
Event Type: Informace
User:
=====Security event log=====
Computer Name: WIN-NT5FBED5LEN
Event Code: 4672
Message: Novému přihlášení byla přiřazena zvláštní oprávnění.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E7
Oprávnění: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 5
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140516074951.840974-000
Event Type: Úspěšný audit
User:
Computer Name: WIN-NT5FBED5LEN
Event Code: 4624
Message: Účet byl úspěšně přihlášen.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: WIN-NT5FBED5LEN$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Typ přihlášení: 5
Úroveň zosobnění: Zosobnění
Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}
Informace o procesu:
ID procesu: 0x228
Název procesu: C:\Windows\System32\services.exe
Informace o síti:
Název pracovní stanice:
Adresa zdrojové sítě -
Zdrojový port: -
Podrobné informace o ověření:
Proces přihlášení: Advapi
Balíček ověření: Negotiate
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0
Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.
Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.
Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).
Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.
Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.
Pole úrovně zosobnění označuje rozsah, ve kterém může být proces v přihlašovací relaci zosobněn.
Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 4
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140516074951.840974-000
Event Type: Úspěšný audit
User:
Computer Name: WIN-NT5FBED5LEN
Event Code: 4902
Message: Tabulka zásad auditu pro jednotlivé uživatele byla vytvořena.
Počet prvků: 0
ID zásady: 0x3C75D
Record Number: 3
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140516074950.965934-000
Event Type: Úspěšný audit
User:
Computer Name: WIN-NT5FBED5LEN
Event Code: 4624
Message: Účet byl úspěšně přihlášen.
Předmět:
ID zabezpečení: S-1-0-0
Název účtu: -
Doména účtu: -
ID přihlášení: 0x0
Typ přihlášení: 0
Úroveň zosobnění: -
Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}
Informace o procesu:
ID procesu: 0x4
Název procesu:
Informace o síti:
Název pracovní stanice: -
Adresa zdrojové sítě -
Zdrojový port: -
Podrobné informace o ověření:
Proces přihlášení: -
Balíček ověření: -
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0
Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.
Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.
Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).
Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.
Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.
Pole úrovně zosobnění označuje rozsah, ve kterém může být proces v přihlašovací relaci zosobněn.
Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 2
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140516074948.965876-000
Event Type: Úspěšný audit
User:
Computer Name: WIN-NT5FBED5LEN
Event Code: 4608
Message: Spouští se systém Windows.
Tato událost je zaznamenána při spuštění procesu LSASS.EXE a inicializaci kontrolního podsystému.
Record Number: 1
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140516074948.918999-000
Event Type: Úspěšný audit
User:
======Environment variables======
"FP_NO_HOST_CHECK"=NO
"USERNAME"=SYSTEM
"Path"=C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\QuickTime\QTSystem\
"ComSpec"=%SystemRoot%\system32\cmd.exe
"TMP"=%SystemRoot%\TEMP
"OS"=Windows_NT
"windir"=%SystemRoot%
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=8
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
"PROCESSOR_REVISION"=3a09
"asl.log"=Destination=file
-----------------EOF-----------------
zkušel jsem to ve vice prohlížečích a asi blb jen maxthon po jeho odinstalovania znova nainstalovani se nic už samo neotevíra.
Ale nejdou otvírat .PDF soubory.
k otevíraní používam aplikaci od Microsoftu - Reader, jenom to blikne
nefunguje ani Store.
info.txt logfile of random's system information tool 1.10 2014-05-27 14:44:57
======MBR======
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
======Uninstall list======
-->"C:\Program Files (x86)\InstallShield Installation Information\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}\setup.exe" /z-uninstall
-->MsiExec /X{3282FBE1-35FC-48D8-98CA-115A5EF1F9B4}
7-Zip 9.20 (x64 edition)-->MsiExec.exe /I{23170F69-40C1-2702-0920-000001000000}
7-Zip 9.22beta-->"D:\Programky\7-Zip\Uninstall.exe"
Adobe AIR-->c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{0A3925EA-5B0E-401B-A189-7419149747B2}
Adobe Dreamweaver CS6-->C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDApp.exe --appletID="DWA_UI" --appletVersion="2.0" --mode="Uninstall" --mediaSignature="{A4ED5E53-7AA0-11E1-BF04-B2D4D4A5360E}"
Adobe Help Manager-->msiexec /qb /x {AF37176A-78CA-545B-34EF-8B6A21514DD1}
Adobe Help Manager-->MsiExec.exe /I{AF37176A-78CA-545B-34EF-8B6A21514DD1}
Adobe Widget Browser-->msiexec /qb /x {EFBE6DD5-B224-96E5-72B9-68D328CB12A6}
Adobe Widget Browser-->MsiExec.exe /I{EFBE6DD5-B224-96E5-72B9-68D328CB12A6}
Apple Application Support-->MsiExec.exe /I{D9DAD0FF-495A-472B-9F10-BAE430A26682}
Apple Mobile Device Support-->MsiExec.exe /I{787136D2-F0F8-4625-AA3F-72D7795AC842}
Apple Software Update-->MsiExec.exe /I{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
Balíček ovladače systému Windows - Lenovo (ACPIVPC) System (02/17/2013 9.52.0.776)-->C:\PROGRA~1\DIFX\8C657473004ED4CD\DPInst.exe /u C:\WINDOWS\System32\DriverStore\FileRepository\vpc.inf_amd64_0801388e5591ee6b\vpc.inf
Balíček ovladače systému Windows - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288)-->C:\PROGRA~1\DIFX\8C657473004ED4CD\DPInst.exe /u C:\WINDOWS\System32\DriverStore\FileRepository\wudfvhidmini.inf_amd64_7d883db511b20660\wudfvhidmini.inf
Bonjour-->MsiExec.exe /X{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
CCleaner-->"D:\Programky\CCleaner\uninst.exe"
Defraggler-->"C:\Program Files\Defraggler\uninst.exe"
Dolby Tuning and Profile Creator-->MsiExec.exe /X{8C0E96BB-93E5-4EAE-9947-69A68C4B7799}
Energy Management-->"C:\Program Files (x86)\InstallShield Installation Information\{D0956C11-0F60-43FE-99AD-524E833471BB}\setup.exe" -runfromtemp -l0x0409 -removeonly
Energy Management-->MsiExec.exe /I{D0956C11-0F60-43FE-99AD-524E833471BB}
ESET Smart Security-->MsiExec.exe /I{750374DE-064B-403F-8F3E-252760CE6381}
Intel(R) Management Engine Components-->C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\Uninstall\setup.exe -uninstall
Intel(R) Processor Graphics-->C:\Program Files (x86)\Intel\Intel(R) Processor Graphics\Uninstall\setup.exe -uninstall
Intel® Trusted Connect Service Client-->MsiExec.exe /I{89AFB053-A343-46EF-97E4-D593AD7184E6}
iTunes-->MsiExec.exe /I{1CF5754A-545B-4360-BFDE-2847BC728DFC}
KMSpico v9.2.3-->"D:\Programky\KMSpico\unins000.exe"
Lenovo EasyCamera-->"C:\Program Files (x86)\InstallShield Installation Information\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}\setup.exe" -runfromtemp -removeonly
Lenovo OneKey Recovery-->"C:\Program Files (x86)\InstallShield Installation Information\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}\setup.exe" /z-uninstall
Lenovo OneKey Recovery-->"C:\Program Files (x86)\InstallShield Installation Information\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}\setup.exe" /z-uninstall
Maxthon Cloud Browser-->D:\Programky\Maxthon\Bin\Mx3Uninstall.exe
Microsoft Visual C++ 2005 Redistributable - x64 8.0.50727.42 False-->MsiExec.exe /X{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}
Microsoft Visual C++ 2005 Redistributable - x64 8.0.51011 False-->MsiExec.exe /X{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}
Microsoft Visual C++ 2005 Redistributable - x64 8.0.56336 False-->MsiExec.exe /X{071c9b48-7c32-4621-a0ac-3f809523288f}
Microsoft Visual C++ 2005 Redistributable - x64 8.0.59192 False-->MsiExec.exe /X{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}
Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000-->MsiExec.exe /X{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}
Microsoft Visual C++ 2005 Redistributable - x86 8.0.50727.42 False-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Visual C++ 2005 Redistributable - x86 8.0.51011 False-->MsiExec.exe /X{a0fe116e-9a8a-466f-aee0-625cb7c207e3}
Microsoft Visual C++ 2005 Redistributable - x86 8.0.56336 False-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable - x86 8.0.59193 False-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 False-->MsiExec.exe /X{D04659D1-EB2D-3DE5-A833-837A623CCCF7}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022.0 False-->MsiExec.exe /X{350AA351-21FA-3270-8B7A-835434E766AD}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022.218 False-->MsiExec.exe /X{BBBE35B2-9349-3C48-BD3D-F574B17C7924}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30411 False-->MsiExec.exe /X{D93AC9C8-B6CF-391E-BD2F-48AF4727476C}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 False-->MsiExec.exe /X{2DFD8316-9EF1-3210-908C-4CB61961C1AC}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 False-->MsiExec.exe /X{8220EEFE-38CD-377E-8595-13398D740ACE}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 False-->MsiExec.exe /X{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.5570 False-->MsiExec.exe /X{8338783A-0968-3B85-AFC7-BAAE0A63DC50}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161-->MsiExec.exe /X{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 False-->MsiExec.exe /X{DCB46B42-723F-350E-B18A-449BC6C21636}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.0 False-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 False-->MsiExec.exe /X{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 False-->MsiExec.exe /X{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 False-->MsiExec.exe /X{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 False-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 False-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.5570 False-->MsiExec.exe /X{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 Redistributable - x64 10.0.30319 False-->MsiExec.exe /X{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219-->MsiExec.exe /X{1D8E6291-B0D5-35EC-8441-6616F567A0F7}
Microsoft Visual C++ 2010 Redistributable - x86 10.0.30319 False-->MsiExec.exe /X{196BB40D-1578-3D01-B289-BEFC77A11A1E}
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Mozilla Firefox 29.0.1 (x86 cs)-->"D:\Programky\Mozilla Firefox\uninstall\helper.exe"
Mozilla Maintenance Service-->"C:\Program Files (x86)\Mozilla Maintenance Service\uninstall.exe"
NVIDIA PhysX-->MsiExec.exe /I{3282FBE1-35FC-48D8-98CA-115A5EF1F9B4}
NVIDIA Systémový software PhysX 9.13.0604-->"C:\WINDOWS\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.{F8BFA7C2-42DA-432A-9D62-C4C9EF4EE7EA}\NVI2.DLL",UninstallPackage Display.PhysX
QuickTime 7-->MsiExec.exe /I{111EE7DF-FC45-40C7-98A7-753AC46B12FB}
Realtek Card Reader-->"C:\Program Files (x86)\InstallShield Installation Information\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}\setup.exe" -runfromtemp -removeonly
Realtek High Definition Audio Driver-->C:\Program Files\Realtek\Audio\HDA\RtlUpd64.exe -r -m -nrg2709
TELL ME MORE-->"D:\Programky\Tell me more\Bin\unsetup.exe" -file "D:\Programky\Tell me more\unsetup.aui"
The KMPlayer (remove only)-->"D:\Programky\The KMPlayer\uninstall.exe"
The Sims™ 3 Ambitions-->"C:\Program Files (x86)\InstallShield Installation Information\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}\setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Diesel Stuff-->"C:\Program Files (x86)\InstallShield Installation Information\{1C9B6173-6DC9-4EEE-9EFC-6BA115CFBE43}\Sims3SP07Setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Fast Lane Stuff-->"C:\Program Files (x86)\InstallShield Installation Information\{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}\setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Generations-->"C:\Program Files (x86)\InstallShield Installation Information\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}\Sims3EP04Setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 High-End Loft Stuff-->"C:\Program Files (x86)\InstallShield Installation Information\{71828142-5A24-4BD0-97E7-976DA08CE6CF}\setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Katy Perry Sweet Treats-->"C:\Program Files (x86)\InstallShield Installation Information\{9B2506E3-9A3F-45B5-96BF-509CAD584650}\Sims3SP06Setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Late Night-->"C:\Program Files (x86)\InstallShield Installation Information\{45057FCE-5784-48BE-8176-D9D00AF56C3C}\setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Master Suite Stuff-->"C:\Program Files (x86)\InstallShield Installation Information\{08A25478-C5DD-4EA7-B168-3D687CA987FF}\Sims3SP05Setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Outdoor Living Stuff-->"C:\Program Files (x86)\InstallShield Installation Information\{117B6BF6-82C3-420C-B284-9247C8568E53}\setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Pets-->"C:\Program Files (x86)\InstallShield Installation Information\{C12631C6-804D-4B32-B0DD-8A496462F106}\Sims3EP05Setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Seasons-->"C:\Program Files (x86)\InstallShield Installation Information\{3DE92282-CB49-434F-81BF-94E5B380E889}\setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Showtime-->"C:\Program Files (x86)\InstallShield Installation Information\{3BBFD444-5FAB-49F6-98B1-A1954E831399}\Sims3EP06Setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Supernatural-->"C:\Program Files (x86)\InstallShield Installation Information\{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}\setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 Town Life Stuff-->"C:\Program Files (x86)\InstallShield Installation Information\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}\Sims3SP04Setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3 World Adventures-->"C:\Program Files (x86)\InstallShield Installation Information\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}\setup.exe" -runfromtemp -l0x0019 -removeonly
The Sims™ 3-->"C:\Program Files (x86)\InstallShield Installation Information\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}\setup.exe" -runfromtemp -l0x0019 -removeonly
Total Commander 64-bit (Remove or Repair)-->D:\Programky\totalcmd\tcunin64.exe
======Hosts File======
127.0.0.1 localhost
======System event log======
Computer Name: WIN-NT5FBED5LEN
Event Code: 13
Message: Operační systém se vypíná v systémovém čase 2013-09-30T04:29:36.307781900Z.
Record Number: 5
Source Name: Microsoft-Windows-Kernel-General
Time Written: 20130930042936.307781-000
Event Type: Informace
User:
Computer Name: WIN-NT5FBED5LEN
Event Code: 109
Message: Správce napájení jádra inicioval přechod do režimu vypnutí.
Record Number: 4
Source Name: Microsoft-Windows-Kernel-Power
Time Written: 20130930042935.542156-000
Event Type: Informace
User:
Computer Name: WIN-NT5FBED5LEN
Event Code: 6005
Message: Služba Event Log byla spuštěna.
Record Number: 3
Source Name: EventLog
Time Written: 20140516075008.000000-000
Event Type: Informace
User:
Computer Name: WIN-NT5FBED5LEN
Event Code: 6009
Message: Microsoft (R) Windows (R) 6.03. 9600 Multiprocessor Free.
Record Number: 2
Source Name: EventLog
Time Written: 20140516075008.000000-000
Event Type: Informace
User:
Computer Name: WIN-NT5FBED5LEN
Event Code: 6011
Message: Název tohoto počítače v systémech DNS a NetBIOS byl změněn z WIN-NT5FBED5LEN na WIN-EMPJU8QGRVR.
Record Number: 1
Source Name: EventLog
Time Written: 20140516075008.000000-000
Event Type: Informace
User:
=====Application event log=====
Computer Name: WIN-NT5FBED5LEN
Event Code: 5617
Message: Subsystémy služby WMI (Windows Management Instrumentation) byly úspěšně inicializovány.
Record Number: 5
Source Name: Microsoft-Windows-WMI
Time Written: 20140516075045.901491-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: WIN-NT5FBED5LEN
Event Code: 9002
Message: Nepodařilo se spustit Správce oken plochy.
Record Number: 4
Source Name: Desktop Window Manager
Time Written: 20140516075028.000000-000
Event Type: Informace
User:
Computer Name: WIN-NT5FBED5LEN
Event Code: 5615
Message: Služba WMI (Windows Management Instrumentation) byla úspěšně spuštěna.
Record Number: 3
Source Name: Microsoft-Windows-WMI
Time Written: 20140516075013.857637-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: WIN-NT5FBED5LEN
Event Code: 1531
Message: Služba Profil uživatele byla úspěšně spuštěna.
Record Number: 2
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20140516075009.107418-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: WIN-NT5FBED5LEN
Event Code: 4625
Message: Subsystém EventSystem zabraňuje vytváření duplicitních záznamů v protokolu událostí po dobu 86400 sekund. Tuto dobu lze změnit pomocí hodnoty REG_DWORD s názvem SuppressDuplicateDuration v následujícím klíči registru: HKLM\Software\Microsoft\EventSystem\EventLog.
Record Number: 1
Source Name: Microsoft-Windows-EventSystem
Time Written: 20140516075009.000000-000
Event Type: Informace
User:
=====Security event log=====
Computer Name: WIN-NT5FBED5LEN
Event Code: 4672
Message: Novému přihlášení byla přiřazena zvláštní oprávnění.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E7
Oprávnění: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 5
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140516074951.840974-000
Event Type: Úspěšný audit
User:
Computer Name: WIN-NT5FBED5LEN
Event Code: 4624
Message: Účet byl úspěšně přihlášen.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: WIN-NT5FBED5LEN$
Doména účtu: WORKGROUP
ID přihlášení: 0x3E7
Typ přihlášení: 5
Úroveň zosobnění: Zosobnění
Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}
Informace o procesu:
ID procesu: 0x228
Název procesu: C:\Windows\System32\services.exe
Informace o síti:
Název pracovní stanice:
Adresa zdrojové sítě -
Zdrojový port: -
Podrobné informace o ověření:
Proces přihlášení: Advapi
Balíček ověření: Negotiate
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0
Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.
Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.
Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).
Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.
Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.
Pole úrovně zosobnění označuje rozsah, ve kterém může být proces v přihlašovací relaci zosobněn.
Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 4
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140516074951.840974-000
Event Type: Úspěšný audit
User:
Computer Name: WIN-NT5FBED5LEN
Event Code: 4902
Message: Tabulka zásad auditu pro jednotlivé uživatele byla vytvořena.
Počet prvků: 0
ID zásady: 0x3C75D
Record Number: 3
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140516074950.965934-000
Event Type: Úspěšný audit
User:
Computer Name: WIN-NT5FBED5LEN
Event Code: 4624
Message: Účet byl úspěšně přihlášen.
Předmět:
ID zabezpečení: S-1-0-0
Název účtu: -
Doména účtu: -
ID přihlášení: 0x0
Typ přihlášení: 0
Úroveň zosobnění: -
Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3E7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}
Informace o procesu:
ID procesu: 0x4
Název procesu:
Informace o síti:
Název pracovní stanice: -
Adresa zdrojové sítě -
Zdrojový port: -
Podrobné informace o ověření:
Proces přihlášení: -
Balíček ověření: -
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0
Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.
Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.
Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).
Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.
Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.
Pole úrovně zosobnění označuje rozsah, ve kterém může být proces v přihlašovací relaci zosobněn.
Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 2
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140516074948.965876-000
Event Type: Úspěšný audit
User:
Computer Name: WIN-NT5FBED5LEN
Event Code: 4608
Message: Spouští se systém Windows.
Tato událost je zaznamenána při spuštění procesu LSASS.EXE a inicializaci kontrolního podsystému.
Record Number: 1
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20140516074948.918999-000
Event Type: Úspěšný audit
User:
======Environment variables======
"FP_NO_HOST_CHECK"=NO
"USERNAME"=SYSTEM
"Path"=C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\QuickTime\QTSystem\
"ComSpec"=%SystemRoot%\system32\cmd.exe
"TMP"=%SystemRoot%\TEMP
"OS"=Windows_NT
"windir"=%SystemRoot%
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=8
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
"PROCESSOR_REVISION"=3a09
"asl.log"=Destination=file
-----------------EOF-----------------
Naposledy upravil(a) Pajinek88 dne 27 kvě 2014 14:55, celkem upraveno 1 x.
Re: Otvíraní nechtěných webových stránek prosím kontrolu log
Logfile of random's system information tool 1.10 (written by random/random)
Run by pabuk_000 at 2014-05-27 14:44:50
Microsoft Windows 8.1 Pro
System drive C: has 53 GB (66%) free of 81 GB
Total RAM: 3958 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:44:55, on 27/05/2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17037)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
D:\Programky\Maxthon\Bin\Maxthon.exe
D:\Programky\Maxthon\Bin\Maxthon.exe
D:\Programky\Maxthon\Bin\Maxthon.exe
D:\Programky\Maxthon\Bin\Maxthon.exe
D:\Programky\Maxthon\Bin\Maxthon.exe
D:\Programky\Maxthon\Bin\Maxthon.exe
D:\Programky\Maxthon\Bin\Maxthon.exe
C:\Program Files\trend micro\pabuk_000.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [AppleIEDAV] C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
O4 - HKUS\S-1-5-21-4198513396-2015855654-1252095031-1003\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-4198513396-2015855654-1252095031-1003\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-4198513396-2015855654-1252095031-1003\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-4198513396-2015855654-1252095031-1003\..\Run: [AppleIEDAV] C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-4198513396-2015855654-1252095031-1003\..\Run: [uTorrent] "C:\Users\pabuk_000\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED (User 'UpdatusUser')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: c:\windows\syswow64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - D:\Programky\B\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - D:\Programky\B\obexsrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Wireless Bluetooth(R) 4.0 Radio Management - Intel Corporation - D:\Programky\B\ibtrksrv.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Service KMSELDI - Unknown owner - D:\Programky\KMSpico\Service_KMS.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8414 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"D:\Programky\B\ibtrksrv.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-f5ad7fcc-5fb8-49f5-bd8d-090434b125fb -SystemEventPortName:HostProcess-ad650790-4738-4ddf-961a-43141162f1ec -IoCancelEventPortName:HostProcess-34781e3a-b8c5-4727-a61c-0a78c057db4c -NonStateChangingEventPortName:HostProcess-9d98a81d-a739-4a3d-90fd-cfcf1b22b954 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:9a31db71-fe54-4e72-95be-e32fac437a52 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
dashost.exe {5f3fb4bb-e0d4-44ff-a58e173dd4240397}
taskhostex.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\skydrive.exe -Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Windows\System32\igfxpers.exe"
"C:\WINDOWS\system32\igfxsrvc.exe" -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Windows\System32\rundll32.exe" "D:\Programky\B\btmshellex.dll",TrayApp
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"D:\Programky\B\devmonsrv.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"D:\Programky\B\obexsrv.exe"
"C:\Program Files\Dolby Tuning and Profile Creator\pcee4.exe" -autostart
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe" -Embedding
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"D:\Programky\Maxthon\Bin\Maxthon.exe"
D:\Programky\Maxthon\Bin\Maxthon.exe -PID:"4248" -RunMxAddonsMgr -UserName:"pabu.kupka@seznam.cz" -AppDataPath:"C:\Users\pabuk_000\AppData\Roaming\Maxthon3\" -ProductType:"intl" -LangIni:"D:\Programky\Maxthon\Language\cs-cz.ini" /prefetch:87E4E14A
D:\Programky\Maxthon\Bin\Maxthon.exe -RunResMgr -MainFrmIpc:"IPC_M_R_00001098" -UsersFolder:"C:\Users\pabuk_000\AppData\Roaming\Maxthon3\Users\" -UserName:"pabu.kupka@seznam.cz" -AppDataPath:"C:\Users\pabuk_000\AppData\Roaming\Maxthon3\" -ProductType:"intl" -LangIni:"D:\Programky\Maxthon\Language\cs-cz.ini" /prefetch:A9C14CE7
D:\Programky\Maxthon\Bin\Maxthon.exe -RunCore -CoreType:"webkit-normal-0-sp-00001098-0" -MainFrmIpc:"IPC_M_C_00001098" -ResMgrIpc:"IPC_R_C_00001098" -UserName:"pabu.kupka@seznam.cz" -CustomCacheFolder:"%TEMP%\Maxthon3Cache\Temp\Webkit\Cache" -SyEvent:"mxevent_IPC_R_C_00001098" -AppDataPath:"C:\Users\pabuk_000\AppData\Roaming\Maxthon3\" -ProductType:"intl" -LangIni:"D:\Programky\Maxthon\Language\cs-cz.ini" /prefetch:6DC8A9CE
D:\Programky\Maxthon\Bin\Maxthon.exe -RunMxDl -IPC_M_D_NAME:"IPC_M_D_00001098" -IPC_C_D_NAME:"IPC_C_D_00000B88" -IPC_R_D_NAME:"IPC_R_D_00001098" -UpConf:"2" -UpTypes:"WyJibXAiLCAianBlZyIsICJqcGciLCAiZ2lmIiwgInBuZyIsICJ3YXYiLCAicm1hIiwgIm1pZGkiLCAibXAzIiwgIndtYSIsICJhYWMiLCAibXBhIiwgImRvYyIsICJkb2N4IiwgInhscyIsICJ4bHN4IiwgInBwdCIsICJwcHR4IiwgInBwcyIsICJwcHN4IiwgInR4dCIsICJwZGYiLCAid3BzIiwgImVwdWIiLCAib2RmIiwgImFwayJd" -SyEvent:"mxevent_IPC_R_D_00001098" -MxdlConfigFolder:"C:\Users\pabuk_000\AppData\Roaming\Maxthon3\Public\Downloader\" -AppDataPath:"C:\Users\pabuk_000\AppData\Roaming\Maxthon3\" -ProductType:"intl" -LangIni:"D:\Programky\Maxthon\Language\cs-cz.ini" /prefetch:27C674F9
D:\Programky\Maxthon\Bin\Maxthon.exe -RunCore -CoreType:"webkit-normal-0-sp-00001098-4" -MainFrmIpc:"IPC_M_C_00001098_0003" -ResMgrIpc:"IPC_R_C_00001098_0003" -UserName:"pabu.kupka@seznam.cz" -CustomCacheFolder:"%TEMP%\Maxthon3Cache\Temp\Webkit\Cache" -SyEvent:"mxevent_IPC_R_C_00001098_0003" -AppDataPath:"C:\Users\pabuk_000\AppData\Roaming\Maxthon3\" -ProductType:"intl" -LangIni:"D:\Programky\Maxthon\Language\cs-cz.ini" /prefetch:6DC8A9CE
C:\WINDOWS\system32\AUDIODG.EXE 0xd10
D:\Programky\Maxthon\Bin\Maxthon.exe -RunCore -CoreType:"webkit-normal-0-sp-00001098-1" -MainFrmIpc:"IPC_M_C_00001098_0005" -ResMgrIpc:"IPC_R_C_00001098_0005" -UserName:"pabu.kupka@seznam.cz" -CustomCacheFolder:"%TEMP%\Maxthon3Cache\Temp\Webkit\Cache" -SyEvent:"mxevent_IPC_R_C_00001098_0005" -AppDataPath:"C:\Users\pabuk_000\AppData\Roaming\Maxthon3\" -ProductType:"intl" -LangIni:"D:\Programky\Maxthon\Language\cs-cz.ini" /prefetch:6DC8A9CE
"C:\Program Files\Internet Explorer\IELowutil.exe" -PID:123
"C:\Users\pabuk_000\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\pabuk_000\AppData\Roaming\Mozilla\Firefox\Profiles\dv3ave8e.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=D:\Programky\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2013-08-23 769496]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2014-05-16 17111056]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2014-05-16 193008]
"BTMTrayAgent"=D:\Programky\B\btmshellex.dll [2013-09-19 7818040]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-08-27 13647576]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-08-07 1321688]
"Dolby Tuning and Profile Creator"=C:\Program Files\Dolby Tuning and Profile Creator\pcee4.exe [2011-02-03 506712]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2014-02-24 5581888]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2013-11-20 59720]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2013-11-20 59720]
"AppleIEDAV"=C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [2013-11-15 1326408]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\WINDOWS\system32\nvinitx.dll "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2013-08-23 622080]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ESETOlmarikOlmascoCleaner]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ESETOlmarikOlmascoCleaner.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ESETOlmarikOlmascoCleaner]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ESETOlmarikOlmascoCleaner.sys]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - "D:\Programky\Adobe\Adobe Dreamweaver CS6\Adobe Dreamweaver CS6\Dreamweaver.exe","%1"
======List of files/folders created in the last 1 month======
2014-05-27 14:44:50 ----D---- C:\rsit
2014-05-27 14:20:39 ----D---- C:\Users\pabuk_000\AppData\Roaming\Maxthon3
2014-05-27 13:04:34 ----D---- C:\Users\pabuk_000\AppData\Roaming\ESET
2014-05-27 12:59:55 ----A---- C:\WINDOWS\system32\drivers\ESETOlmarikOlmascoCleaner.sys
2014-05-27 12:59:05 ----D---- C:\ProgramData\ESET
2014-05-27 12:59:05 ----D---- C:\Program Files\ESET
2014-05-27 10:26:17 ----D---- C:\Program Files\trend micro
2014-05-26 15:39:04 ----A---- C:\WINDOWS\SYSWOW64\sqlite3.dll
2014-05-26 15:31:23 ----A---- C:\WINDOWS\wininit.ini
2014-05-25 18:07:34 ----D---- C:\ProgramData\BitDefender
2014-05-25 10:37:05 ----D---- C:\Users\pabuk_000\AppData\Roaming\Mozilla
2014-05-25 10:37:01 ----D---- C:\ProgramData\Mozilla
2014-05-25 10:37:01 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-25 02:02:04 ----D---- C:\ProgramData\Lavasoft
2014-05-24 22:47:31 ----D---- C:\Program Files\Dolby Tuning and Profile Creator
2014-05-24 22:45:36 ----A---- C:\WINDOWS\system32\tossaeapo64.dll
2014-05-24 22:45:36 ----A---- C:\WINDOWS\system32\toseaeapo64.dll
2014-05-24 22:45:36 ----A---- C:\WINDOWS\system32\tosasfapo64.dll
2014-05-24 22:45:36 ----A---- C:\WINDOWS\system32\tosade.dll
2014-05-24 22:45:36 ----A---- C:\WINDOWS\system32\tepeqapo64.dll
2014-05-24 22:45:36 ----A---- C:\WINDOWS\system32\tadefxapo264.dll
2014-05-24 22:45:36 ----A---- C:\WINDOWS\system32\tadefxapo.dll
2014-05-24 22:45:36 ----A---- C:\WINDOWS\system32\sltech64.dll
2014-05-24 22:45:36 ----A---- C:\WINDOWS\system32\slprp64.dll
2014-05-24 22:45:36 ----A---- C:\WINDOWS\system32\slcnt64.dll
2014-05-24 22:45:36 ----A---- C:\WINDOWS\system32\sl3apo64.dll
2014-05-24 22:45:35 ----A---- C:\WINDOWS\system32\RTKSMSettingsIPC.dll
2014-05-24 22:45:35 ----A---- C:\WINDOWS\system32\RTKSMlfx.dll
2014-05-24 22:45:34 ----A---- C:\WINDOWS\system32\MISS_APO.dll
2014-05-24 22:45:33 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2014-05-24 22:45:33 ----A---- C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2014-05-24 22:45:33 ----A---- C:\WINDOWS\system32\MaxxAudioVnN64.dll
2014-05-24 22:45:33 ----A---- C:\WINDOWS\system32\MaxxAudioVnA64.dll
2014-05-24 22:45:33 ----A---- C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2014-05-24 22:45:33 ----A---- C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2014-05-24 22:45:33 ----A---- C:\WINDOWS\system32\KAAPORT64.dll
2014-05-24 22:45:31 ----A---- C:\WINDOWS\system32\DTSU2PREC64.dll
2014-05-24 22:45:31 ----A---- C:\WINDOWS\system32\DTSU2PLFX64.dll
2014-05-24 22:45:31 ----A---- C:\WINDOWS\system32\DTSU2PGFX64.dll
2014-05-24 22:45:31 ----A---- C:\WINDOWS\system32\audioLibVc.dll
2014-05-24 22:45:31 ----A---- C:\WINDOWS\system32\AcpiServiceVnA64.dll
2014-05-24 20:15:12 ----D---- C:\Program Files\7-Zip
2014-05-24 09:16:21 ----D---- C:\ProgramData\Malwarebytes
2014-05-23 15:44:04 ----D---- C:\Program Files\Defraggler
2014-05-23 15:39:48 ----D---- C:\ProgramData\GlarySoft
2014-05-23 15:30:16 ----D---- C:\Users\pabuk_000\AppData\Roaming\GlarySoft
2014-05-23 15:30:16 ----D---- C:\Users\pabuk_000\AppData\Roaming\DiskDefrag
2014-05-23 15:28:59 ----D---- C:\ProgramData\Razer
2014-05-23 15:23:31 ----D---- C:\WINDOWS\system32\appmgmt
2014-05-23 15:21:16 ----A---- C:\WINDOWS\ETDUninst.dll
2014-05-23 11:55:15 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2014-05-23 11:55:15 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2014-05-23 11:55:15 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2014-05-23 11:55:15 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2014-05-23 11:55:15 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2014-05-23 11:55:15 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2014-05-23 11:55:15 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_7.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_43.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_43.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_43.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2014-05-23 11:55:13 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_5.dll
2014-05-23 11:55:13 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2014-05-23 11:55:13 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2014-05-23 11:55:13 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2014-05-23 11:55:12 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2014-05-23 11:55:12 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_42.dll
2014-05-23 11:55:12 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2014-05-23 11:55:12 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2014-05-23 11:55:12 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2014-05-23 11:55:12 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2014-05-23 11:55:12 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2014-05-23 11:55:12 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_3.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_42.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_41.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_41.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_2.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_1.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_39.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_39.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_39.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2014-05-23 11:55:08 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2014-05-23 11:55:08 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2014-05-23 11:55:08 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2014-05-23 11:55:08 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2014-05-23 11:55:08 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2014-05-23 11:55:08 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2014-05-23 11:55:08 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2014-05-23 11:55:08 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2014-05-23 11:55:06 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2014-05-23 11:55:06 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2014-05-23 11:55:06 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2014-05-23 11:55:06 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_32.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_31.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\system32\d3dx10.dll
2014-05-23 11:55:01 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2014-05-23 11:55:01 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2014-05-23 11:55:01 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2014-05-23 11:55:01 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2014-05-23 11:55:01 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2014-05-23 11:55:01 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2014-05-23 11:55:01 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2014-05-23 11:55:01 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2014-05-23 11:55:00 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2014-05-23 11:55:00 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2014-05-23 11:55:00 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2014-05-23 11:55:00 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2014-05-23 11:54:59 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2014-05-23 11:54:59 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2014-05-23 11:54:59 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2014-05-23 11:54:59 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2014-05-23 11:54:59 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2014-05-23 11:54:59 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2014-05-23 11:54:59 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2014-05-23 11:54:59 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2014-05-23 11:54:59 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2014-05-23 11:54:59 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2014-05-23 11:54:58 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2014-05-23 11:54:58 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2014-05-23 11:47:08 ----D---- C:\WINDOWS\SYSWOW64\directx
2014-05-23 11:29:51 ----D---- C:\ProgramData\TopApp software
2014-05-23 11:28:52 ----D---- C:\ProgramData\f16340a543df4ef4
2014-05-23 11:27:32 ----D---- C:\ProgramData\InstallMate
2014-05-22 15:18:48 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_43.dll
2014-05-22 15:18:48 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_43.dll
2014-05-22 14:36:10 ----D---- C:\Program Files (x86)\Reference Assemblies
2014-05-22 14:36:10 ----D---- C:\Program Files (x86)\MSBuild
2014-05-22 14:36:06 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2014-05-22 14:36:06 ----D---- C:\Program Files\Reference Assemblies
2014-05-22 14:36:06 ----D---- C:\Program Files\MSBuild
2014-05-22 14:34:10 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2014-05-22 14:34:10 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2014-05-22 14:34:09 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-05-22 14:34:07 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2014-05-22 14:34:07 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-05-22 14:34:07 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-05-22 09:44:45 ----D---- C:\Users\pabuk_000\AppData\Roaming\Mp3tag
2014-05-21 18:44:22 ----D---- C:\WINDOWS\SYSWOW64\NV
2014-05-21 18:44:22 ----D---- C:\WINDOWS\system32\NV
2014-05-21 18:42:25 ----A---- C:\WINDOWS\system32\shell32.dll
2014-05-21 18:42:24 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-05-21 18:42:24 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-05-21 18:42:24 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-05-21 18:42:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2014-05-21 18:42:23 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-05-21 18:42:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-05-21 18:42:20 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-05-21 18:42:20 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-05-21 18:42:20 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-05-21 18:42:18 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-05-21 18:42:18 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-05-21 18:42:17 ----A---- C:\WINDOWS\system32\twinui.dll
2014-05-21 18:42:17 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-05-21 18:42:16 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-05-21 18:42:16 ----A---- C:\WINDOWS\system32\d3d9.dll
2014-05-21 18:42:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-05-21 18:42:15 ----A---- C:\WINDOWS\system32\win32k.sys
2014-05-21 18:42:14 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-05-21 18:42:14 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-05-21 18:42:14 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-05-21 18:42:13 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2014-05-21 18:42:13 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-05-21 18:42:13 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2014-05-21 18:42:13 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-05-21 18:42:13 ----A---- C:\WINDOWS\system32\wmpmde.dll
2014-05-21 18:42:13 ----A---- C:\WINDOWS\system32\winmde.dll
2014-05-21 18:42:13 ----A---- C:\WINDOWS\system32\services.exe
2014-05-21 18:42:12 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
2014-05-21 18:42:12 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-05-21 18:42:12 ----A---- C:\WINDOWS\system32\srvsvc.dll
2014-05-21 18:42:12 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-05-21 18:42:12 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-05-21 18:42:12 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-05-21 18:42:12 ----A---- C:\WINDOWS\system32\localspl.dll
2014-05-21 18:42:12 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-05-21 18:42:12 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-05-21 18:42:12 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-05-21 18:42:12 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2014-05-21 18:42:12 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-05-21 18:42:11 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-05-21 18:42:11 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2014-05-21 18:42:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2014-05-21 18:42:11 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-05-21 18:42:11 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-05-21 18:42:11 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-05-21 18:42:11 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2014-05-21 18:42:11 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-05-21 18:42:11 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-05-21 18:42:11 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-05-21 18:42:11 ----A---- C:\WINDOWS\system32\mfsvr.dll
2014-05-21 18:42:11 ----A---- C:\WINDOWS\system32\MDEServer.exe
2014-05-21 18:42:11 ----A---- C:\WINDOWS\system32\gpprefcl.dll
2014-05-21 18:42:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-05-21 18:42:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-05-21 18:42:10 ----AC---- C:\WINDOWS\system32\drivers\msiscsi.sys
2014-05-21 18:42:10 ----AC---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-05-21 18:42:10 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\SYSWOW64\gpprefcl.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\swprv.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\resutils.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\rdpencom.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\ploptin.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\gpapi.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-05-21 18:42:09 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-05-21 18:42:09 ----AC---- C:\WINDOWS\system32\drivers\bthport.sys
2014-05-21 18:42:09 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\wscsvc.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\wintrust.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\VSSVC.exe
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\srcore.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\rpchttp.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\propsys.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\mfps.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\mfpmp.exe
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\mf.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\energyprov.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-05-21 18:42:08 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\SYSWOW64\tlscsp.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\tlscsp.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\mispace.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-05-21 18:42:07 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2014-05-21 18:42:07 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-05-21 18:42:07 ----A---- C:\WINDOWS\SYSWOW64\srclient.dll
2014-05-21 18:42:07 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2014-05-21 18:42:07 ----A---- C:\WINDOWS\system32\tsgqec.dll
2014-05-21 18:42:07 ----A---- C:\WINDOWS\system32\srclient.dll
2014-05-21 18:42:07 ----A---- C:\WINDOWS\system32\rstrui.exe
2014-05-21 18:30:21 ----D---- C:\Users\pabuk_000\AppData\Roaming\NVIDIA
2014-05-21 17:35:03 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2014-05-21 17:35:03 ----D---- C:\Program Files\Realtek
2014-05-21 17:34:14 ----A---- C:\WINDOWS\system32\WavesGUILib64.dll
2014-05-21 17:34:14 ----A---- C:\WINDOWS\system32\SRSWOW64.dll
2014-05-21 17:34:13 ----A---- C:\WINDOWS\system32\SRSTSX64.dll
2014-05-21 17:34:13 ----A---- C:\WINDOWS\system32\SRSTSH64.dll
2014-05-21 17:34:13 ----A---- C:\WINDOWS\system32\SRSHP64.dll
2014-05-21 17:34:12 ----A---- C:\WINDOWS\SYSWOW64\SFCOM.dll
2014-05-21 17:34:12 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2014-05-21 17:34:12 ----A---- C:\WINDOWS\system32\SFNHK64.dll
2014-05-21 17:34:12 ----A---- C:\WINDOWS\system32\SFCOM64.dll
2014-05-21 17:34:12 ----A---- C:\WINDOWS\system32\SFAPO64.dll
2014-05-21 17:34:12 ----A---- C:\WINDOWS\system32\RtPgEx64.dll
2014-05-21 17:34:12 ----A---- C:\WINDOWS\system32\drivers\rtvienna.dat
2014-05-21 17:34:11 ----A---- C:\WINDOWS\system32\RtlCPAPI64.dll
2014-05-21 17:34:11 ----A---- C:\WINDOWS\system32\drivers\RTKVHD64.sys
2014-05-21 17:34:10 ----A---- C:\WINDOWS\system32\RtkGuiCompLib.dll
2014-05-21 17:34:10 ----A---- C:\WINDOWS\system32\RtkCoLDR64.dll
2014-05-21 17:34:10 ----A---- C:\WINDOWS\system32\RtkCfg64.dll
2014-05-21 17:34:10 ----A---- C:\WINDOWS\system32\RtkAPO64.dll
2014-05-21 17:34:10 ----A---- C:\WINDOWS\system32\RtkApi64.dll
2014-05-21 17:34:10 ----A---- C:\WINDOWS\system32\RTEEP64A.dll
2014-05-21 17:34:10 ----A---- C:\WINDOWS\system32\RTEEL64A.dll
2014-05-21 17:34:10 ----A---- C:\WINDOWS\system32\RTEEG64A.dll
2014-05-21 17:34:10 ----A---- C:\WINDOWS\system32\RTEED64A.dll
2014-05-21 17:34:10 ----A---- C:\WINDOWS\system32\RtDataProc64.dll
2014-05-21 17:34:09 ----A---- C:\WINDOWS\system32\RTCOM64.dll
2014-05-21 17:34:09 ----A---- C:\WINDOWS\system32\RP3DHT64.dll
2014-05-21 17:34:09 ----A---- C:\WINDOWS\system32\RP3DAA64.dll
2014-05-21 17:34:09 ----A---- C:\WINDOWS\system32\RCoRes64.dat
2014-05-21 17:34:09 ----A---- C:\WINDOWS\system32\RCoInstII64.dll
2014-05-21 17:34:09 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2014-05-21 17:34:08 ----A---- C:\WINDOWS\system32\R4EEP64A.dll
2014-05-21 17:34:08 ----A---- C:\WINDOWS\system32\R4EEL64A.dll
2014-05-21 17:34:08 ----A---- C:\WINDOWS\system32\R4EEG64A.dll
2014-05-21 17:34:08 ----A---- C:\WINDOWS\system32\R4EED64A.dll
2014-05-21 17:34:08 ----A---- C:\WINDOWS\system32\R4EEA64A.dll
2014-05-21 17:34:08 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2014-05-21 17:34:07 ----A---- C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2014-05-21 17:34:06 ----A---- C:\WINDOWS\system32\MaxxAudioRealtek264.dll
2014-05-21 17:34:06 ----A---- C:\WINDOWS\system32\MaxxAudioEQ64.dll
2014-05-21 17:34:06 ----A---- C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2014-05-21 17:34:06 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2014-05-21 17:34:06 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2014-05-21 17:34:03 ----A---- C:\WINDOWS\system32\FMAPO64.dll
2014-05-21 17:34:03 ----A---- C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2014-05-21 17:34:03 ----A---- C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2014-05-21 17:34:03 ----A---- C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2014-05-21 17:34:03 ----A---- C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2014-05-21 17:34:03 ----A---- C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2014-05-21 17:34:03 ----A---- C:\WINDOWS\system32\DTSLimiterDLL64.dll
2014-05-21 17:34:03 ----A---- C:\WINDOWS\system32\DTSLFXAPO64.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\DTSGFXAPONS64.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\DTSGFXAPO64.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\DTSBoostDLL64.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\DDPA64.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\AERTAR64.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\AERTAC64.dll
2014-05-21 17:14:15 ----D---- C:\ProgramData\Synaptics
2014-05-21 17:13:51 ----D---- C:\Program Files\Synaptics
2014-05-20 22:28:06 ----D---- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-20 22:28:06 ----D---- C:\Program Files\iTunes
2014-05-20 22:28:06 ----D---- C:\Program Files\iPod
2014-05-20 22:24:20 ----D---- C:\Program Files (x86)\QuickTime
2014-05-18 07:33:49 ----A---- C:\trace.ini
2014-05-18 07:33:05 ----A---- C:\WINDOWS\err.txt
2014-05-18 07:32:34 ----D---- C:\Users\pabuk_000\AppData\Roaming\DAEMON Tools Lite
2014-05-18 07:32:34 ----D---- C:\ProgramData\DAEMON Tools Lite
2014-05-17 09:32:57 ----A---- C:\WINDOWS\SYSWOW64\wusa.exe
2014-05-17 09:32:57 ----A---- C:\WINDOWS\system32\wusa.exe
2014-05-17 09:32:55 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-05-17 09:32:54 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-05-17 09:32:53 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-05-17 09:32:26 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-05-17 09:32:25 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-05-17 09:32:25 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-05-17 09:32:24 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-05-17 09:32:24 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2014-05-17 09:32:24 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-05-17 09:32:24 ----A---- C:\WINDOWS\system32\ubpm.dll
2014-05-17 09:32:24 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2014-05-17 09:32:24 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2014-05-17 09:32:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-17 09:32:23 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2014-05-17 09:32:23 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-05-17 09:32:23 ----A---- C:\WINDOWS\system32\wups.dll
2014-05-17 09:32:23 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-05-17 09:32:23 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-05-17 09:32:23 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-17 09:32:23 ----A---- C:\WINDOWS\system32\storewuauth.dll
2014-05-17 09:32:22 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-05-17 09:32:22 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-05-17 09:32:22 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-05-17 09:32:22 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-05-17 09:32:22 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-05-17 09:32:22 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-05-17 09:32:22 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-05-17 09:32:22 ----A---- C:\WINDOWS\system32\WSReset.exe
2014-05-17 09:31:23 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-05-17 09:31:23 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-05-17 09:31:22 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-05-17 09:31:22 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-05-17 09:31:01 ----A---- C:\WINDOWS\SYSWOW64\mrt100.dll
2014-05-17 09:31:01 ----A---- C:\WINDOWS\SYSWOW64\mrt_map.dll
2014-05-17 09:31:01 ----A---- C:\WINDOWS\system32\mrt100.dll
2014-05-17 09:31:01 ----A---- C:\WINDOWS\system32\mrt_map.dll
2014-05-17 09:19:10 ----D---- C:\Users\pabuk_000\AppData\Roaming\vlc
2014-05-16 15:22:24 ----D---- C:\Program Files (x86)\AGEIA Technologies
2014-05-16 15:22:06 ----D---- C:\ProgramData\NVIDIA
2014-05-16 15:21:59 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2014-05-16 15:21:59 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2014-05-16 15:21:59 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2014-05-16 15:21:59 ----A---- C:\WINDOWS\system32\nvshext.dll
2014-05-16 15:21:59 ----A---- C:\WINDOWS\system32\nvmctray.dll
2014-05-16 15:21:59 ----A---- C:\WINDOWS\system32\nvcpl.dll
2014-05-16 15:21:59 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2014-05-16 15:21:59 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2014-05-16 15:21:57 ----A---- C:\WINDOWS\SYSWOW64\oemdspif.dll
2014-05-16 15:20:43 ----A---- C:\WINDOWS\system32\nvdispgenco6432649.dll
2014-05-16 15:20:43 ----A---- C:\WINDOWS\system32\nvdispco6432649.dll
2014-05-16 15:20:43 ----A---- C:\WINDOWS\system32\nvapi64.dll
2014-05-16 14:41:48 ----D---- C:\WINDOWS\SYSWOW64\sda
2014-05-16 14:41:46 ----A---- C:\WINDOWS\SYSWOW64\RtsUVStoricon.dll
2014-05-16 14:41:46 ----A---- C:\WINDOWS\system32\drivers\RtsUVStor.sys
2014-05-16 14:41:20 ----D---- C:\Program Files\DIFX
2014-05-16 14:41:19 ----D---- C:\Program Files\Lenovo
2014-05-16 14:41:19 ----A---- C:\WINDOWS\system32\LenovoSDKEmSubSystem.dll
2014-05-16 14:41:19 ----A---- C:\WINDOWS\system32\drivers\LhdX64.sys
2014-05-16 14:41:00 ----D---- C:\Program Files (x86)\Lenovo
2014-05-16 14:40:42 ----D---- C:\ProgramData\Downloaded Installations
2014-05-16 14:39:49 ----A---- C:\WINDOWS\system32\drivers\IntelMEFWVer.dll
2014-05-16 14:39:44 ----D---- C:\ProgramData\Intel
2014-05-16 14:39:06 ----A---- C:\WINDOWS\system32\WdfCoInstaller01011.dll
2014-05-16 14:39:06 ----A---- C:\WINDOWS\system32\drivers\TeeDriverx64.sys
2014-05-16 14:39:03 ----D---- C:\Users\pabuk_000\AppData\Roaming\InstallShield
2014-05-16 14:34:50 ----A---- C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2014-05-16 14:34:48 ----A---- C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2014-05-16 14:34:48 ----A---- C:\WINDOWS\system32\IntelWiDiVAD64.exe
2014-05-16 14:34:48 ----A---- C:\WINDOWS\system32\IntelWiDiUtils64.dll
2014-05-16 14:34:48 ----A---- C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2014-05-16 14:34:48 ----A---- C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2014-05-16 14:34:48 ----A---- C:\WINDOWS\system32\IntelWiDiMux64.dll
2014-05-16 14:34:48 ----A---- C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2014-05-16 14:34:48 ----A---- C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2014-05-16 14:34:48 ----A---- C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2014-05-16 14:34:48 ----A---- C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2014-05-16 14:34:47 ----A---- C:\WINDOWS\SYSWOW64\IntelOpenCL32.dll
2014-05-16 14:34:47 ----A---- C:\WINDOWS\system32\IntelWiDiAAC64.dll
2014-05-16 14:34:47 ----A---- C:\WINDOWS\system32\IntelOpenCL64.dll
2014-05-16 14:34:47 ----A---- C:\WINDOWS\system32\igfxtray.exe
2014-05-16 14:34:47 ----A---- C:\WINDOWS\system32\igfxTMM.dll
2014-05-16 14:34:47 ----A---- C:\WINDOWS\system32\igfxsrvc.exe
2014-05-16 14:34:47 ----A---- C:\WINDOWS\system32\igfxCoIn_v3277.dll
2014-05-16 14:34:46 ----A---- C:\WINDOWS\system32\igfxpph.dll
2014-05-16 14:34:45 ----A---- C:\WINDOWS\SYSWOW64\igfxexps32.dll
2014-05-16 14:34:45 ----A---- C:\WINDOWS\SYSWOW64\igfxdv32.dll
2014-05-16 14:34:45 ----A---- C:\WINDOWS\SYSWOW64\igfxcmrt32.dll
2014-05-16 14:34:45 ----A---- C:\WINDOWS\SYSWOW64\igfxcmjit32.dll
2014-05-16 14:34:45 ----A---- C:\WINDOWS\SYSWOW64\igfx11cmrt32.dll
2014-05-16 14:34:45 ----A---- C:\WINDOWS\system32\igfxpers.exe
2014-05-16 14:34:45 ----A---- C:\WINDOWS\system32\igfxext.exe
2014-05-16 14:34:45 ----A---- C:\WINDOWS\system32\igfxexps.dll
2014-05-16 14:34:45 ----A---- C:\WINDOWS\system32\igfxdo.dll
2014-05-16 14:34:45 ----A---- C:\WINDOWS\system32\IGFXDEVLib.dll
2014-05-16 14:34:45 ----A---- C:\WINDOWS\system32\igfxcmrt64.dll
2014-05-16 14:34:45 ----A---- C:\WINDOWS\system32\igfxcmjit64.dll
2014-05-16 14:34:45 ----A---- C:\WINDOWS\system32\igfx11cmrt64.dll
2014-05-16 14:34:44 ----A---- C:\WINDOWS\SYSWOW64\igdrcl32.dll
2014-05-16 14:34:44 ----A---- C:\WINDOWS\SYSWOW64\igdmd32.dll
2014-05-16 14:34:44 ----A---- C:\WINDOWS\system32\igdumdim64.dll
2014-05-16 14:34:44 ----A---- C:\WINDOWS\system32\igdrcl64.dll
2014-05-16 14:34:44 ----A---- C:\WINDOWS\system32\igdmd64.dll
2014-05-16 14:34:43 ----A---- C:\WINDOWS\system32\igdfcl64.dll
2014-05-16 14:34:43 ----A---- C:\WINDOWS\system32\drivers\igdkmd64.sys
2014-05-16 14:34:42 ----A---- C:\WINDOWS\SYSWOW64\igdfcl32.dll
2014-05-16 14:34:42 ----A---- C:\WINDOWS\SYSWOW64\igdde32.dll
2014-05-16 14:34:42 ----A---- C:\WINDOWS\SYSWOW64\igdbcl32.dll
2014-05-16 14:34:42 ----A---- C:\WINDOWS\SYSWOW64\igdail32.dll
2014-05-16 14:34:42 ----A---- C:\WINDOWS\system32\igdde64.dll
2014-05-16 14:34:42 ----A---- C:\WINDOWS\system32\igdbcl64.dll
2014-05-16 14:34:42 ----A---- C:\WINDOWS\system32\igdail64.dll
2014-05-16 14:34:41 ----A---- C:\WINDOWS\SYSWOW64\igd10iumd32.dll
2014-05-16 14:34:41 ----A---- C:\WINDOWS\SYSWOW64\ig7icd32.dll
2014-05-16 14:34:41 ----A---- C:\WINDOWS\system32\ig7icd64.dll
2014-05-16 14:34:40 ----A---- C:\WINDOWS\system32\hkcmd.exe
2014-05-16 14:34:40 ----A---- C:\WINDOWS\system32\GfxUIHotKeyMenu.exe
2014-05-16 14:34:39 ----A---- C:\WINDOWS\system32\GfxUIEx.exe
2014-05-16 14:34:39 ----A---- C:\WINDOWS\system32\gfxSrvc.dll
2014-05-16 14:34:39 ----A---- C:\WINDOWS\system32\GfxRes.dll
2014-05-16 14:34:39 ----A---- C:\WINDOWS\system32\DPTopologyApp.exe
2014-05-16 14:34:39 ----A---- C:\WINDOWS\system32\difx64.exe
2014-05-16 14:34:38 ----A---- C:\WINDOWS\system32\drivers\IntcDAud.sys
2014-05-16 14:34:38 ----A---- C:\WINDOWS\system32\CustomModeApp.exe
2014-05-16 14:33:40 ----A---- C:\WINDOWS\system32\drivers\Smb_driver_Intel.sys
2014-05-16 14:21:37 ----A---- C:\WINDOWS\system32\glcndFilter.dll
2014-05-16 14:21:36 ----A---- C:\WINDOWS\SYSWOW64\OobeFldr.dll
2014-05-16 14:21:36 ----A---- C:\WINDOWS\system32\WSService.dll
2014-05-16 14:21:36 ----A---- C:\WINDOWS\system32\OobeFldr.dll
2014-05-16 14:21:32 ----A---- C:\WINDOWS\SYSWOW64\glcndFilter.dll
2014-05-16 14:21:30 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-05-16 14:21:28 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-05-16 14:21:24 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-05-16 14:21:21 ----A---- C:\WINDOWS\system32\wmp.dll
2014-05-16 14:21:20 ----A---- C:\WINDOWS\system32\sppobjs.dll
2014-05-16 14:21:17 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-05-16 14:21:15 ----A---- C:\WINDOWS\system32\tquery.dll
2014-05-16 14:21:14 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2014-05-16 14:21:13 ----A---- C:\WINDOWS\system32\sysmain.dll
2014-05-16 14:21:11 ----A---- C:\WINDOWS\system32\combase.dll
2014-05-16 14:21:10 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2014-05-16 14:21:10 ----A---- C:\WINDOWS\system32\wininet.dll
2014-05-16 14:21:10 ----A---- C:\WINDOWS\system32\mssrch.dll
2014-05-16 14:21:08 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2014-05-16 14:21:08 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2014-05-16 14:21:06 ----A---- C:\WINDOWS\system32\Wpc.dll
2014-05-16 14:21:06 ----A---- C:\WINDOWS\system32\dui70.dll
2014-05-16 14:21:05 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-05-16 14:21:05 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2014-05-16 14:21:04 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2014-05-16 14:21:03 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-05-16 14:21:02 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2014-05-16 14:21:02 ----A---- C:\WINDOWS\system32\webservices.dll
2014-05-16 14:21:02 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-05-16 14:21:00 ----A---- C:\WINDOWS\system32\WpcMon.exe
2014-05-16 14:20:59 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2014-05-16 14:20:59 ----A---- C:\WINDOWS\SYSWOW64\dui70.dll
2014-05-16 14:20:59 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2014-05-16 14:20:59 ----A---- C:\WINDOWS\system32\msctf.dll
2014-05-16 14:20:58 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-05-16 14:20:58 ----A---- C:\WINDOWS\system32\msTextPrediction.dll
2014-05-16 14:20:57 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2014-05-16 14:20:57 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2014-05-16 14:20:56 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-05-16 14:20:56 ----A---- C:\WINDOWS\system32\ntdll.dll
2014-05-16 14:20:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2014-05-16 14:20:54 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2014-05-16 14:20:54 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2014-05-16 14:20:54 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2014-05-16 14:20:54 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2014-05-16 14:20:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2014-05-16 14:20:53 ----A---- C:\WINDOWS\SYSWOW64\webservices.dll
2014-05-16 14:20:53 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2014-05-16 14:20:53 ----A---- C:\WINDOWS\system32\WinTypes.dll
2014-05-16 14:20:52 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2014-05-16 14:20:52 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2014-05-16 14:20:51 ----A---- C:\WINDOWS\system32\WofTasks.dll
2014-05-16 14:20:51 ----A---- C:\WINDOWS\system32\wer.dll
2014-05-16 14:20:51 ----A---- C:\WINDOWS\system32\uDWM.dll
2014-05-16 14:20:51 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2014-05-16 14:20:51 ----A---- C:\WINDOWS\system32\DfpCommon.dll
2014-05-16 14:20:50 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2014-05-16 14:20:50 ----A---- C:\WINDOWS\system32\setupapi.dll
2014-05-16 14:20:50 ----A---- C:\WINDOWS\system32\rpcss.dll
2014-05-16 14:20:49 ----A---- C:\WINDOWS\system32\twinapi.dll
2014-05-16 14:20:48 ----A---- C:\WINDOWS\system32\RacEngn.dll
2014-05-16 14:20:47 ----AC---- C:\WINDOWS\system32\drivers\acpi.sys
2014-05-16 14:20:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2014-05-16 14:20:47 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2014-05-16 14:20:46 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-05-16 14:20:46 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2014-05-16 14:20:45 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2014-05-16 14:20:43 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2014-05-16 14:20:43 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2014-05-16 14:20:43 ----A---- C:\WINDOWS\system32\SHCore.dll
2014-05-16 14:20:43 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-05-16 14:20:42 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2014-05-16 14:20:42 ----A---- C:\WINDOWS\system32\wpccpl.dll
2014-05-16 14:20:41 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2014-05-16 14:20:41 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2014-05-16 14:20:41 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2014-05-16 14:20:40 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2014-05-16 14:20:40 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2014-05-16 14:20:40 ----A---- C:\WINDOWS\system32\uxtheme.dll
2014-05-16 14:20:40 ----A---- C:\WINDOWS\system32\samsrv.dll
2014-05-16 14:20:39 ----A---- C:\WINDOWS\system32\user32.dll
2014-05-16 14:20:38 ----A---- C:\WINDOWS\system32\SettingSync.dll
2014-05-16 14:20:37 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2014-05-16 14:20:37 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2014-05-16 14:20:37 ----A---- C:\WINDOWS\system32\hal.dll
2014-05-16 14:20:36 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-05-16 14:20:36 ----A---- C:\WINDOWS\system32\WofUtil.dll
2014-05-16 14:20:36 ----A---- C:\WINDOWS\system32\storagewmi.dll
2014-05-16 14:20:35 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2014-05-16 14:20:35 ----A---- C:\WINDOWS\system32\wimgapi.dll
2014-05-16 14:20:34 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2014-05-16 14:20:34 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2014-05-16 14:20:34 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-05-16 14:20:33 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2014-05-16 14:20:33 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2014-05-16 14:20:32 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2014-05-16 14:20:32 ----A---- C:\WINDOWS\system32\schannel.dll
2014-05-16 14:20:32 ----A---- C:\WINDOWS\system32\reseteng.dll
2014-05-16 14:20:32 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys
2014-05-16 14:20:31 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2014-05-16 14:20:31 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2014-05-16 14:20:31 ----A---- C:\WINDOWS\SYSWOW64\RacEngn.dll
2014-05-16 14:20:30 ----A---- C:\WINDOWS\system32\wpncore.dll
2014-05-16 14:20:30 ----A---- C:\WINDOWS\system32\recimg.exe
2014-05-16 14:20:30 ----A---- C:\WINDOWS\system32\dfp.exe
2014-05-16 14:20:29 ----A---- C:\WINDOWS\system32\usercpl.dll
2014-05-16 14:20:29 ----A---- C:\WINDOWS\system32\perftrack.dll
2014-05-16 14:20:28 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2014-05-16 14:20:28 ----A---- C:\WINDOWS\system32\WWAHost.exe
2014-05-16 14:20:28 ----A---- C:\WINDOWS\system32\WerFault.exe
2014-05-16 14:20:28 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-05-16 14:20:28 ----A---- C:\WINDOWS\system32\dfpinc.dat
2014-05-16 14:20:28 ----A---- C:\WINDOWS\system32\advapi32.dll
2014-05-16 14:20:27 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2014-05-16 14:20:27 ----A---- C:\WINDOWS\system32\lsm.dll
2014-05-16 14:20:27 ----A---- C:\WINDOWS\system32\bisrv.dll
2014-05-16 14:20:26 ----A---- C:\WINDOWS\system32\mssvp.dll
2014-05-16 14:20:26 ----A---- C:\WINDOWS\system32\energy.dll
2014-05-16 14:20:26 ----A---- C:\WINDOWS\system32\apphelp.dll
2014-05-16 14:20:25 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2014-05-16 14:20:25 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2014-05-16 14:20:25 ----A---- C:\WINDOWS\system32\tdh.dll
2014-05-16 14:20:24 ----AC---- C:\WINDOWS\system32\drivers\pci.sys
2014-05-16 14:20:23 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-05-16 14:20:23 ----A---- C:\WINDOWS\system32\DismApi.dll
2014-05-16 14:20:22 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2014-05-16 14:20:22 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2014-05-16 14:20:22 ----A---- C:\WINDOWS\system32\winlogon.exe
2014-05-16 14:20:22 ----A---- C:\WINDOWS\system32\winload.exe
2014-05-16 14:20:21 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2014-05-16 14:20:20 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2014-05-16 14:20:20 ----A---- C:\WINDOWS\system32\winresume.exe
2014-05-16 14:20:20 ----A---- C:\WINDOWS\system32\mssph.dll
2014-05-16 14:20:19 ----A---- C:\WINDOWS\system32\msvproc.dll
2014-05-16 14:20:19 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2014-05-16 14:20:19 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2014-05-16 14:20:18 ----A---- C:\WINDOWS\system32\werconcpl.dll
2014-05-16 14:20:18 ----A---- C:\WINDOWS\system32\thumbcache.dll
2014-05-16 14:20:17 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-05-16 14:20:17 ----A---- C:\WINDOWS\system32\stobject.dll
2014-05-16 14:20:16 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2014-05-16 14:20:16 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2014-05-16 14:20:16 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2014-05-16 14:20:16 ----A---- C:\WINDOWS\system32\msctfuimanager.dll
2014-05-16 14:20:15 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2014-05-16 14:20:15 ----A---- C:\WINDOWS\system32\Faultrep.dll
2014-05-16 14:20:15 ----A---- C:\WINDOWS\system32\ci.dll
2014-05-16 14:20:13 ----AC---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2014-05-16 14:20:12 ----A---- C:\WINDOWS\system32\sppwinob.dll
2014-05-16 14:20:11 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2014-05-16 14:20:11 ----A---- C:\WINDOWS\SYSWOW64\msctfuimanager.dll
2014-05-16 14:20:11 ----A---- C:\WINDOWS\system32\ntshrui.dll
2014-05-16 14:20:11 ----A---- C:\WINDOWS\system32\iuilp.dll
2014-05-16 14:20:10 ----A---- C:\WINDOWS\SYSWOW64\ActionCenter.dll
2014-05-16 14:20:10 ----A---- C:\WINDOWS\system32\wlidcli.dll
2014-05-16 14:20:10 ----A---- C:\WINDOWS\system32\printui.dll
2014-05-16 14:20:09 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2014-05-16 14:20:09 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2014-05-16 14:20:09 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2014-05-16 14:20:09 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2014-05-16 14:20:09 ----A---- C:\WINDOWS\system32\aelupsvc.dll
2014-05-16 14:20:08 ----A---- C:\WINDOWS\SYSWOW64\slc.dll
2014-05-16 14:20:08 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-05-16 14:20:08 ----A---- C:\WINDOWS\system32\slc.dll
2014-05-16 14:20:08 ----A---- C:\WINDOWS\system32\MrmIndexer.dll
2014-05-16 14:20:07 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2014-05-16 14:20:07 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2014-05-16 14:20:07 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2014-05-16 14:20:07 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2014-05-16 14:20:07 ----A---- C:\WINDOWS\system32\nettrace.dll
2014-05-16 14:20:07 ----A---- C:\WINDOWS\system32\Dism.exe
2014-05-16 14:20:07 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2014-05-16 14:20:06 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2014-05-16 14:20:06 ----A---- C:\WINDOWS\system32\pnidui.dll
2014-05-16 14:20:06 ----A---- C:\WINDOWS\system32\comdlg32.dll
2014-05-16 14:20:05 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2014-05-16 14:20:05 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2014-05-16 14:20:05 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2014-05-16 14:20:05 ----A---- C:\WINDOWS\system32\dwmredir.dll
2014-05-16 14:20:04 ----A---- C:\WINDOWS\system32\psmsrv.dll
2014-05-16 14:20:03 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2014-05-16 14:20:03 ----A---- C:\WINDOWS\system32\WlanMM.dll
2014-05-16 14:20:02 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-05-16 14:20:02 ----A---- C:\WINDOWS\system32\VAN.dll
2014-05-16 14:20:02 ----A---- C:\WINDOWS\system32\osk.exe
2014-05-16 14:20:02 ----A---- C:\WINDOWS\system32\ninput.dll
2014-05-16 14:20:02 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2014-05-16 14:20:01 ----A---- C:\WINDOWS\system32\authz.dll
2014-05-16 14:20:00 ----AC---- C:\WINDOWS\system32\drivers\portcls.sys
2014-05-16 14:20:00 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-05-16 14:19:59 ----AC---- C:\WINDOWS\system32\drivers\vhdmp.sys
2014-05-16 14:19:59 ----A---- C:\WINDOWS\system32\taskeng.exe
2014-05-16 14:19:59 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2014-05-16 14:19:59 ----A---- C:\WINDOWS\system32\rascustom.dll
2014-05-16 14:19:59 ----A---- C:\WINDOWS\system32\conhost.exe
2014-05-16 14:19:58 ----A---- C:\WINDOWS\system32\wlidcredprov.dll
2014-05-16 14:19:58 ----A---- C:\WINDOWS\system32\wersvc.dll
2014-05-16 14:19:58 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-05-16 14:19:58 ----A---- C:\WINDOWS\system32\themeui.dll
2014-05-16 14:19:58 ----A---- C:\WINDOWS\system32\rdbui.dll
2014-05-16 14:19:58 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-05-16 14:19:57 ----A---- C:\WINDOWS\SYSWOW64\DismApi.dll
2014-05-16 14:19:57 ----A---- C:\WINDOWS\system32\sqmapi.dll
2014-05-16 14:19:57 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2014-05-16 14:19:56 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2014-05-16 14:19:56 ----A---- C:\WINDOWS\system32\wbengine.exe
2014-05-16 14:19:56 ----A---- C:\WINDOWS\system32\rdpcore.dll
2014-05-16 14:19:55 ----A---- C:\WINDOWS\SYSWOW64\WSClient.dll
2014-05-16 14:19:55 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll
2014-05-16 14:19:55 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2014-05-16 14:19:55 ----A---- C:\WINDOWS\SYSWOW64\MrmIndexer.dll
2014-05-16 14:19:55 ----A---- C:\WINDOWS\system32\SndVol.exe
2014-05-16 14:19:55 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-05-16 14:19:54 ----A---- C:\WINDOWS\SYSWOW64\Dism.exe
2014-05-16 14:19:54 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2014-05-16 14:19:54 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-05-16 14:19:54 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-05-16 14:19:54 ----A---- C:\WINDOWS\system32\cscui.dll
Run by pabuk_000 at 2014-05-27 14:44:50
Microsoft Windows 8.1 Pro
System drive C: has 53 GB (66%) free of 81 GB
Total RAM: 3958 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:44:55, on 27/05/2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17037)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
D:\Programky\Maxthon\Bin\Maxthon.exe
D:\Programky\Maxthon\Bin\Maxthon.exe
D:\Programky\Maxthon\Bin\Maxthon.exe
D:\Programky\Maxthon\Bin\Maxthon.exe
D:\Programky\Maxthon\Bin\Maxthon.exe
D:\Programky\Maxthon\Bin\Maxthon.exe
D:\Programky\Maxthon\Bin\Maxthon.exe
C:\Program Files\trend micro\pabuk_000.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [AppleIEDAV] C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
O4 - HKUS\S-1-5-21-4198513396-2015855654-1252095031-1003\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-4198513396-2015855654-1252095031-1003\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-4198513396-2015855654-1252095031-1003\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-4198513396-2015855654-1252095031-1003\..\Run: [AppleIEDAV] C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-4198513396-2015855654-1252095031-1003\..\Run: [uTorrent] "C:\Users\pabuk_000\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED (User 'UpdatusUser')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: c:\windows\syswow64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bluetooth Device Monitor - Motorola Solutions, Inc. - D:\Programky\B\devmonsrv.exe
O23 - Service: Bluetooth OBEX Service - Motorola Solutions, Inc. - D:\Programky\B\obexsrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) Wireless Bluetooth(R) 4.0 Radio Management - Intel Corporation - D:\Programky\B\ibtrksrv.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Service KMSELDI - Unknown owner - D:\Programky\KMSpico\Service_KMS.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 8414 bytes
======Listing Processes======
wininit.exe
winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"D:\Programky\B\ibtrksrv.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-f5ad7fcc-5fb8-49f5-bd8d-090434b125fb -SystemEventPortName:HostProcess-ad650790-4738-4ddf-961a-43141162f1ec -IoCancelEventPortName:HostProcess-34781e3a-b8c5-4727-a61c-0a78c057db4c -NonStateChangingEventPortName:HostProcess-9d98a81d-a739-4a3d-90fd-cfcf1b22b954 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:9a31db71-fe54-4e72-95be-e32fac437a52 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
dashost.exe {5f3fb4bb-e0d4-44ff-a58e173dd4240397}
taskhostex.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\skydrive.exe -Embedding
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Windows\System32\igfxpers.exe"
"C:\WINDOWS\system32\igfxsrvc.exe" -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Windows\System32\rundll32.exe" "D:\Programky\B\btmshellex.dll",TrayApp
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"D:\Programky\B\devmonsrv.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"D:\Programky\B\obexsrv.exe"
"C:\Program Files\Dolby Tuning and Profile Creator\pcee4.exe" -autostart
"C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
"C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe"
"C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe" -Embedding
"C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
"D:\Programky\Maxthon\Bin\Maxthon.exe"
D:\Programky\Maxthon\Bin\Maxthon.exe -PID:"4248" -RunMxAddonsMgr -UserName:"pabu.kupka@seznam.cz" -AppDataPath:"C:\Users\pabuk_000\AppData\Roaming\Maxthon3\" -ProductType:"intl" -LangIni:"D:\Programky\Maxthon\Language\cs-cz.ini" /prefetch:87E4E14A
D:\Programky\Maxthon\Bin\Maxthon.exe -RunResMgr -MainFrmIpc:"IPC_M_R_00001098" -UsersFolder:"C:\Users\pabuk_000\AppData\Roaming\Maxthon3\Users\" -UserName:"pabu.kupka@seznam.cz" -AppDataPath:"C:\Users\pabuk_000\AppData\Roaming\Maxthon3\" -ProductType:"intl" -LangIni:"D:\Programky\Maxthon\Language\cs-cz.ini" /prefetch:A9C14CE7
D:\Programky\Maxthon\Bin\Maxthon.exe -RunCore -CoreType:"webkit-normal-0-sp-00001098-0" -MainFrmIpc:"IPC_M_C_00001098" -ResMgrIpc:"IPC_R_C_00001098" -UserName:"pabu.kupka@seznam.cz" -CustomCacheFolder:"%TEMP%\Maxthon3Cache\Temp\Webkit\Cache" -SyEvent:"mxevent_IPC_R_C_00001098" -AppDataPath:"C:\Users\pabuk_000\AppData\Roaming\Maxthon3\" -ProductType:"intl" -LangIni:"D:\Programky\Maxthon\Language\cs-cz.ini" /prefetch:6DC8A9CE
D:\Programky\Maxthon\Bin\Maxthon.exe -RunMxDl -IPC_M_D_NAME:"IPC_M_D_00001098" -IPC_C_D_NAME:"IPC_C_D_00000B88" -IPC_R_D_NAME:"IPC_R_D_00001098" -UpConf:"2" -UpTypes:"WyJibXAiLCAianBlZyIsICJqcGciLCAiZ2lmIiwgInBuZyIsICJ3YXYiLCAicm1hIiwgIm1pZGkiLCAibXAzIiwgIndtYSIsICJhYWMiLCAibXBhIiwgImRvYyIsICJkb2N4IiwgInhscyIsICJ4bHN4IiwgInBwdCIsICJwcHR4IiwgInBwcyIsICJwcHN4IiwgInR4dCIsICJwZGYiLCAid3BzIiwgImVwdWIiLCAib2RmIiwgImFwayJd" -SyEvent:"mxevent_IPC_R_D_00001098" -MxdlConfigFolder:"C:\Users\pabuk_000\AppData\Roaming\Maxthon3\Public\Downloader\" -AppDataPath:"C:\Users\pabuk_000\AppData\Roaming\Maxthon3\" -ProductType:"intl" -LangIni:"D:\Programky\Maxthon\Language\cs-cz.ini" /prefetch:27C674F9
D:\Programky\Maxthon\Bin\Maxthon.exe -RunCore -CoreType:"webkit-normal-0-sp-00001098-4" -MainFrmIpc:"IPC_M_C_00001098_0003" -ResMgrIpc:"IPC_R_C_00001098_0003" -UserName:"pabu.kupka@seznam.cz" -CustomCacheFolder:"%TEMP%\Maxthon3Cache\Temp\Webkit\Cache" -SyEvent:"mxevent_IPC_R_C_00001098_0003" -AppDataPath:"C:\Users\pabuk_000\AppData\Roaming\Maxthon3\" -ProductType:"intl" -LangIni:"D:\Programky\Maxthon\Language\cs-cz.ini" /prefetch:6DC8A9CE
C:\WINDOWS\system32\AUDIODG.EXE 0xd10
D:\Programky\Maxthon\Bin\Maxthon.exe -RunCore -CoreType:"webkit-normal-0-sp-00001098-1" -MainFrmIpc:"IPC_M_C_00001098_0005" -ResMgrIpc:"IPC_R_C_00001098_0005" -UserName:"pabu.kupka@seznam.cz" -CustomCacheFolder:"%TEMP%\Maxthon3Cache\Temp\Webkit\Cache" -SyEvent:"mxevent_IPC_R_C_00001098_0005" -AppDataPath:"C:\Users\pabuk_000\AppData\Roaming\Maxthon3\" -ProductType:"intl" -LangIni:"D:\Programky\Maxthon\Language\cs-cz.ini" /prefetch:6DC8A9CE
"C:\Program Files\Internet Explorer\IELowutil.exe" -PID:123
"C:\Users\pabuk_000\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\pabuk_000\AppData\Roaming\Mozilla\Firefox\Profiles\dv3ave8e.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=D:\Programky\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2013-08-23 769496]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2014-05-16 17111056]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2014-05-16 193008]
"BTMTrayAgent"=D:\Programky\B\btmshellex.dll [2013-09-19 7818040]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2013-08-27 13647576]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-08-07 1321688]
"Dolby Tuning and Profile Creator"=C:\Program Files\Dolby Tuning and Profile Creator\pcee4.exe [2011-02-03 506712]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2014-02-24 5581888]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"iCloudServices"=C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [2013-11-20 59720]
"ApplePhotoStreams"=C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [2013-11-20 59720]
"AppleIEDAV"=C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [2013-11-15 1326408]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\WINDOWS\system32\nvinitx.dll "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2013-08-23 622080]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ESETOlmarikOlmascoCleaner]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ESETOlmarikOlmascoCleaner.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ESETOlmarikOlmascoCleaner]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ESETOlmarikOlmascoCleaner.sys]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - "D:\Programky\Adobe\Adobe Dreamweaver CS6\Adobe Dreamweaver CS6\Dreamweaver.exe","%1"
======List of files/folders created in the last 1 month======
2014-05-27 14:44:50 ----D---- C:\rsit
2014-05-27 14:20:39 ----D---- C:\Users\pabuk_000\AppData\Roaming\Maxthon3
2014-05-27 13:04:34 ----D---- C:\Users\pabuk_000\AppData\Roaming\ESET
2014-05-27 12:59:55 ----A---- C:\WINDOWS\system32\drivers\ESETOlmarikOlmascoCleaner.sys
2014-05-27 12:59:05 ----D---- C:\ProgramData\ESET
2014-05-27 12:59:05 ----D---- C:\Program Files\ESET
2014-05-27 10:26:17 ----D---- C:\Program Files\trend micro
2014-05-26 15:39:04 ----A---- C:\WINDOWS\SYSWOW64\sqlite3.dll
2014-05-26 15:31:23 ----A---- C:\WINDOWS\wininit.ini
2014-05-25 18:07:34 ----D---- C:\ProgramData\BitDefender
2014-05-25 10:37:05 ----D---- C:\Users\pabuk_000\AppData\Roaming\Mozilla
2014-05-25 10:37:01 ----D---- C:\ProgramData\Mozilla
2014-05-25 10:37:01 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-25 02:02:04 ----D---- C:\ProgramData\Lavasoft
2014-05-24 22:47:31 ----D---- C:\Program Files\Dolby Tuning and Profile Creator
2014-05-24 22:45:36 ----A---- C:\WINDOWS\system32\tossaeapo64.dll
2014-05-24 22:45:36 ----A---- C:\WINDOWS\system32\toseaeapo64.dll
2014-05-24 22:45:36 ----A---- C:\WINDOWS\system32\tosasfapo64.dll
2014-05-24 22:45:36 ----A---- C:\WINDOWS\system32\tosade.dll
2014-05-24 22:45:36 ----A---- C:\WINDOWS\system32\tepeqapo64.dll
2014-05-24 22:45:36 ----A---- C:\WINDOWS\system32\tadefxapo264.dll
2014-05-24 22:45:36 ----A---- C:\WINDOWS\system32\tadefxapo.dll
2014-05-24 22:45:36 ----A---- C:\WINDOWS\system32\sltech64.dll
2014-05-24 22:45:36 ----A---- C:\WINDOWS\system32\slprp64.dll
2014-05-24 22:45:36 ----A---- C:\WINDOWS\system32\slcnt64.dll
2014-05-24 22:45:36 ----A---- C:\WINDOWS\system32\sl3apo64.dll
2014-05-24 22:45:35 ----A---- C:\WINDOWS\system32\RTKSMSettingsIPC.dll
2014-05-24 22:45:35 ----A---- C:\WINDOWS\system32\RTKSMlfx.dll
2014-05-24 22:45:34 ----A---- C:\WINDOWS\system32\MISS_APO.dll
2014-05-24 22:45:33 ----A---- C:\WINDOWS\system32\MaxxVoiceAPO2064.dll
2014-05-24 22:45:33 ----A---- C:\WINDOWS\system32\MaxxSpeechAPO64.dll
2014-05-24 22:45:33 ----A---- C:\WINDOWS\system32\MaxxAudioVnN64.dll
2014-05-24 22:45:33 ----A---- C:\WINDOWS\system32\MaxxAudioVnA64.dll
2014-05-24 22:45:33 ----A---- C:\WINDOWS\system32\MaxxAudioAPO5064.dll
2014-05-24 22:45:33 ----A---- C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2014-05-24 22:45:33 ----A---- C:\WINDOWS\system32\KAAPORT64.dll
2014-05-24 22:45:31 ----A---- C:\WINDOWS\system32\DTSU2PREC64.dll
2014-05-24 22:45:31 ----A---- C:\WINDOWS\system32\DTSU2PLFX64.dll
2014-05-24 22:45:31 ----A---- C:\WINDOWS\system32\DTSU2PGFX64.dll
2014-05-24 22:45:31 ----A---- C:\WINDOWS\system32\audioLibVc.dll
2014-05-24 22:45:31 ----A---- C:\WINDOWS\system32\AcpiServiceVnA64.dll
2014-05-24 20:15:12 ----D---- C:\Program Files\7-Zip
2014-05-24 09:16:21 ----D---- C:\ProgramData\Malwarebytes
2014-05-23 15:44:04 ----D---- C:\Program Files\Defraggler
2014-05-23 15:39:48 ----D---- C:\ProgramData\GlarySoft
2014-05-23 15:30:16 ----D---- C:\Users\pabuk_000\AppData\Roaming\GlarySoft
2014-05-23 15:30:16 ----D---- C:\Users\pabuk_000\AppData\Roaming\DiskDefrag
2014-05-23 15:28:59 ----D---- C:\ProgramData\Razer
2014-05-23 15:23:31 ----D---- C:\WINDOWS\system32\appmgmt
2014-05-23 15:21:16 ----A---- C:\WINDOWS\ETDUninst.dll
2014-05-23 11:55:15 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_7.dll
2014-05-23 11:55:15 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_5.dll
2014-05-23 11:55:15 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_7.dll
2014-05-23 11:55:15 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2014-05-23 11:55:15 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2014-05-23 11:55:15 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2014-05-23 11:55:15 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_6.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_4.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_6.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_7.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_43.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_43.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_43.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2014-05-23 11:55:14 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2014-05-23 11:55:13 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_5.dll
2014-05-23 11:55:13 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_5.dll
2014-05-23 11:55:13 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2014-05-23 11:55:13 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2014-05-23 11:55:12 ----A---- C:\WINDOWS\SYSWOW64\d3dx11_42.dll
2014-05-23 11:55:12 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_42.dll
2014-05-23 11:55:12 ----A---- C:\WINDOWS\SYSWOW64\d3dcsx_42.dll
2014-05-23 11:55:12 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_42.dll
2014-05-23 11:55:12 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2014-05-23 11:55:12 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2014-05-23 11:55:12 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2014-05-23 11:55:12 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_4.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_3.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_4.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_6.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_42.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_41.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_41.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_41.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2014-05-23 11:55:11 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_3.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_2.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_3.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_5.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_40.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_40.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_40.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2014-05-23 11:55:10 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_2.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_1.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_1.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\SYSWOW64\XAPOFX1_0.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_2.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_39.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_39.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_39.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2014-05-23 11:55:09 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2014-05-23 11:55:08 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_1.dll
2014-05-23 11:55:08 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_4.dll
2014-05-23 11:55:08 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_38.dll
2014-05-23 11:55:08 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_38.dll
2014-05-23 11:55:08 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2014-05-23 11:55:08 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2014-05-23 11:55:08 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2014-05-23 11:55:08 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\SYSWOW64\XAudio2_0.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\SYSWOW64\xactengine3_0.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_3.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_38.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_37.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_37.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2014-05-23 11:55:07 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2014-05-23 11:55:06 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_10.dll
2014-05-23 11:55:06 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_37.dll
2014-05-23 11:55:06 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2014-05-23 11:55:06 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_9.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_36.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_36.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_35.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_36.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_35.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2014-05-23 11:55:05 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_8.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\SYSWOW64\X3DAudio1_2.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_35.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_34.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_34.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_34.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2014-05-23 11:55:04 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\SYSWOW64\xinput1_3.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_7.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_6.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_33.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\SYSWOW64\d3dx10_33.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_33.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2014-05-23 11:55:03 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\SYSWOW64\xinput1_2.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_5.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_4.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_3.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_1.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_32.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_31.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\SYSWOW64\d3dx10.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2014-05-23 11:55:02 ----A---- C:\WINDOWS\system32\d3dx10.dll
2014-05-23 11:55:01 ----A---- C:\WINDOWS\SYSWOW64\xinput1_1.dll
2014-05-23 11:55:01 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_2.dll
2014-05-23 11:55:01 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_1.dll
2014-05-23 11:55:01 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_30.dll
2014-05-23 11:55:01 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2014-05-23 11:55:01 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2014-05-23 11:55:01 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2014-05-23 11:55:01 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2014-05-23 11:55:00 ----A---- C:\WINDOWS\SYSWOW64\xactengine2_0.dll
2014-05-23 11:55:00 ----A---- C:\WINDOWS\SYSWOW64\x3daudio1_0.dll
2014-05-23 11:55:00 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2014-05-23 11:55:00 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2014-05-23 11:54:59 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_29.dll
2014-05-23 11:54:59 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_28.dll
2014-05-23 11:54:59 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_27.dll
2014-05-23 11:54:59 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_26.dll
2014-05-23 11:54:59 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_25.dll
2014-05-23 11:54:59 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2014-05-23 11:54:59 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2014-05-23 11:54:59 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2014-05-23 11:54:59 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2014-05-23 11:54:59 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2014-05-23 11:54:58 ----A---- C:\WINDOWS\SYSWOW64\d3dx9_24.dll
2014-05-23 11:54:58 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2014-05-23 11:47:08 ----D---- C:\WINDOWS\SYSWOW64\directx
2014-05-23 11:29:51 ----D---- C:\ProgramData\TopApp software
2014-05-23 11:28:52 ----D---- C:\ProgramData\f16340a543df4ef4
2014-05-23 11:27:32 ----D---- C:\ProgramData\InstallMate
2014-05-22 15:18:48 ----A---- C:\WINDOWS\SYSWOW64\D3DX9_43.dll
2014-05-22 15:18:48 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_43.dll
2014-05-22 14:36:10 ----D---- C:\Program Files (x86)\Reference Assemblies
2014-05-22 14:36:10 ----D---- C:\Program Files (x86)\MSBuild
2014-05-22 14:36:06 ----D---- C:\WINDOWS\SYSWOW64\XPSViewer
2014-05-22 14:36:06 ----D---- C:\Program Files\Reference Assemblies
2014-05-22 14:36:06 ----D---- C:\Program Files\MSBuild
2014-05-22 14:34:10 ----A---- C:\WINDOWS\SYSWOW64\TsWpfWrp.exe
2014-05-22 14:34:10 ----A---- C:\WINDOWS\SYSWOW64\PresentationNative_v0300.dll
2014-05-22 14:34:09 ----A---- C:\WINDOWS\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-05-22 14:34:07 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2014-05-22 14:34:07 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-05-22 14:34:07 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-05-22 09:44:45 ----D---- C:\Users\pabuk_000\AppData\Roaming\Mp3tag
2014-05-21 18:44:22 ----D---- C:\WINDOWS\SYSWOW64\NV
2014-05-21 18:44:22 ----D---- C:\WINDOWS\system32\NV
2014-05-21 18:42:25 ----A---- C:\WINDOWS\system32\shell32.dll
2014-05-21 18:42:24 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-05-21 18:42:24 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-05-21 18:42:24 ----A---- C:\WINDOWS\system32\mstscax.dll
2014-05-21 18:42:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2014-05-21 18:42:23 ----A---- C:\WINDOWS\system32\Windows.UI.Search.dll
2014-05-21 18:42:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2014-05-21 18:42:20 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-05-21 18:42:20 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2014-05-21 18:42:20 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-05-21 18:42:18 ----A---- C:\WINDOWS\system32\SyncEngine.dll
2014-05-21 18:42:18 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-05-21 18:42:17 ----A---- C:\WINDOWS\system32\twinui.dll
2014-05-21 18:42:17 ----A---- C:\WINDOWS\system32\gpsvc.dll
2014-05-21 18:42:16 ----A---- C:\WINDOWS\system32\mfcore.dll
2014-05-21 18:42:16 ----A---- C:\WINDOWS\system32\d3d9.dll
2014-05-21 18:42:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Search.dll
2014-05-21 18:42:15 ----A---- C:\WINDOWS\system32\win32k.sys
2014-05-21 18:42:14 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-05-21 18:42:14 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-05-21 18:42:14 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-05-21 18:42:13 ----A---- C:\WINDOWS\SYSWOW64\mfmpeg2srcsnk.dll
2014-05-21 18:42:13 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2014-05-21 18:42:13 ----A---- C:\WINDOWS\SYSWOW64\d3d9.dll
2014-05-21 18:42:13 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2014-05-21 18:42:13 ----A---- C:\WINDOWS\system32\wmpmde.dll
2014-05-21 18:42:13 ----A---- C:\WINDOWS\system32\winmde.dll
2014-05-21 18:42:13 ----A---- C:\WINDOWS\system32\services.exe
2014-05-21 18:42:12 ----A---- C:\WINDOWS\SYSWOW64\GeofenceMonitorService.dll
2014-05-21 18:42:12 ----A---- C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-05-21 18:42:12 ----A---- C:\WINDOWS\system32\srvsvc.dll
2014-05-21 18:42:12 ----A---- C:\WINDOWS\system32\SearchFolder.dll
2014-05-21 18:42:12 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-05-21 18:42:12 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-05-21 18:42:12 ----A---- C:\WINDOWS\system32\localspl.dll
2014-05-21 18:42:12 ----A---- C:\WINDOWS\system32\GeofenceMonitorService.dll
2014-05-21 18:42:12 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2014-05-21 18:42:12 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2014-05-21 18:42:12 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2014-05-21 18:42:12 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-05-21 18:42:11 ----AC---- C:\WINDOWS\system32\drivers\volsnap.sys
2014-05-21 18:42:11 ----A---- C:\WINDOWS\SYSWOW64\winmde.dll
2014-05-21 18:42:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Streaming.dll
2014-05-21 18:42:11 ----A---- C:\WINDOWS\SYSWOW64\SearchFolder.dll
2014-05-21 18:42:11 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-05-21 18:42:11 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-05-21 18:42:11 ----A---- C:\WINDOWS\system32\XpsGdiConverter.dll
2014-05-21 18:42:11 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2014-05-21 18:42:11 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-05-21 18:42:11 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-05-21 18:42:11 ----A---- C:\WINDOWS\system32\mfsvr.dll
2014-05-21 18:42:11 ----A---- C:\WINDOWS\system32\MDEServer.exe
2014-05-21 18:42:11 ----A---- C:\WINDOWS\system32\gpprefcl.dll
2014-05-21 18:42:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2014-05-21 18:42:11 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2014-05-21 18:42:10 ----AC---- C:\WINDOWS\system32\drivers\msiscsi.sys
2014-05-21 18:42:10 ----AC---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2014-05-21 18:42:10 ----A---- C:\WINDOWS\SYSWOW64\XpsGdiConverter.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\SYSWOW64\rdpencom.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\SYSWOW64\mfsvr.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\SYSWOW64\MFCaptureEngine.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\SYSWOW64\gpprefcl.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\SYSWOW64\dwmapi.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\swprv.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\resutils.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\rdpencom.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\ploptin.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\MSVideoDSP.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\MFCaptureEngine.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\gpapi.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\dwmapi.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\defragsvc.dll
2014-05-21 18:42:10 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-05-21 18:42:09 ----AC---- C:\WINDOWS\system32\drivers\spaceport.sys
2014-05-21 18:42:09 ----AC---- C:\WINDOWS\system32\drivers\bthport.sys
2014-05-21 18:42:09 ----A---- C:\WINDOWS\SYSWOW64\wintrust.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\SYSWOW64\rpchttp.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\SYSWOW64\MSVideoDSP.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\SYSWOW64\mfplat.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\SYSWOW64\mf.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\SYSWOW64\gpapi.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\wscsvc.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\wintrust.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\VSSVC.exe
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\srcore.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\rpchttp.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\propsys.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\mfps.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\mfpmp.exe
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\mfplat.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\mf.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\energyprov.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\clusapi.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-05-21 18:42:09 ----A---- C:\WINDOWS\system32\audiodg.exe
2014-05-21 18:42:08 ----A---- C:\WINDOWS\SYSWOW64\wlanmsm.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\SYSWOW64\tlscsp.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\SYSWOW64\rdvidcrl.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\SYSWOW64\d3d8thk.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\wlansvc.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\wlansec.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\wlanapi.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\tlscsp.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\SkyDrive.exe
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\rdvidcrl.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\mispace.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\BootMenuUX.dll
2014-05-21 18:42:08 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-05-21 18:42:07 ----A---- C:\WINDOWS\SYSWOW64\wlanhlp.dll
2014-05-21 18:42:07 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2014-05-21 18:42:07 ----A---- C:\WINDOWS\SYSWOW64\srclient.dll
2014-05-21 18:42:07 ----A---- C:\WINDOWS\system32\wlanhlp.dll
2014-05-21 18:42:07 ----A---- C:\WINDOWS\system32\tsgqec.dll
2014-05-21 18:42:07 ----A---- C:\WINDOWS\system32\srclient.dll
2014-05-21 18:42:07 ----A---- C:\WINDOWS\system32\rstrui.exe
2014-05-21 18:30:21 ----D---- C:\Users\pabuk_000\AppData\Roaming\NVIDIA
2014-05-21 17:35:03 ----D---- C:\WINDOWS\SYSWOW64\RTCOM
2014-05-21 17:35:03 ----D---- C:\Program Files\Realtek
2014-05-21 17:34:14 ----A---- C:\WINDOWS\system32\WavesGUILib64.dll
2014-05-21 17:34:14 ----A---- C:\WINDOWS\system32\SRSWOW64.dll
2014-05-21 17:34:13 ----A---- C:\WINDOWS\system32\SRSTSX64.dll
2014-05-21 17:34:13 ----A---- C:\WINDOWS\system32\SRSTSH64.dll
2014-05-21 17:34:13 ----A---- C:\WINDOWS\system32\SRSHP64.dll
2014-05-21 17:34:12 ----A---- C:\WINDOWS\SYSWOW64\SFCOM.dll
2014-05-21 17:34:12 ----A---- C:\WINDOWS\system32\SFSS_APO.dll
2014-05-21 17:34:12 ----A---- C:\WINDOWS\system32\SFNHK64.dll
2014-05-21 17:34:12 ----A---- C:\WINDOWS\system32\SFCOM64.dll
2014-05-21 17:34:12 ----A---- C:\WINDOWS\system32\SFAPO64.dll
2014-05-21 17:34:12 ----A---- C:\WINDOWS\system32\RtPgEx64.dll
2014-05-21 17:34:12 ----A---- C:\WINDOWS\system32\drivers\rtvienna.dat
2014-05-21 17:34:11 ----A---- C:\WINDOWS\system32\RtlCPAPI64.dll
2014-05-21 17:34:11 ----A---- C:\WINDOWS\system32\drivers\RTKVHD64.sys
2014-05-21 17:34:10 ----A---- C:\WINDOWS\system32\RtkGuiCompLib.dll
2014-05-21 17:34:10 ----A---- C:\WINDOWS\system32\RtkCoLDR64.dll
2014-05-21 17:34:10 ----A---- C:\WINDOWS\system32\RtkCfg64.dll
2014-05-21 17:34:10 ----A---- C:\WINDOWS\system32\RtkAPO64.dll
2014-05-21 17:34:10 ----A---- C:\WINDOWS\system32\RtkApi64.dll
2014-05-21 17:34:10 ----A---- C:\WINDOWS\system32\RTEEP64A.dll
2014-05-21 17:34:10 ----A---- C:\WINDOWS\system32\RTEEL64A.dll
2014-05-21 17:34:10 ----A---- C:\WINDOWS\system32\RTEEG64A.dll
2014-05-21 17:34:10 ----A---- C:\WINDOWS\system32\RTEED64A.dll
2014-05-21 17:34:10 ----A---- C:\WINDOWS\system32\RtDataProc64.dll
2014-05-21 17:34:09 ----A---- C:\WINDOWS\system32\RTCOM64.dll
2014-05-21 17:34:09 ----A---- C:\WINDOWS\system32\RP3DHT64.dll
2014-05-21 17:34:09 ----A---- C:\WINDOWS\system32\RP3DAA64.dll
2014-05-21 17:34:09 ----A---- C:\WINDOWS\system32\RCoRes64.dat
2014-05-21 17:34:09 ----A---- C:\WINDOWS\system32\RCoInstII64.dll
2014-05-21 17:34:09 ----A---- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2014-05-21 17:34:08 ----A---- C:\WINDOWS\system32\R4EEP64A.dll
2014-05-21 17:34:08 ----A---- C:\WINDOWS\system32\R4EEL64A.dll
2014-05-21 17:34:08 ----A---- C:\WINDOWS\system32\R4EEG64A.dll
2014-05-21 17:34:08 ----A---- C:\WINDOWS\system32\R4EED64A.dll
2014-05-21 17:34:08 ----A---- C:\WINDOWS\system32\R4EEA64A.dll
2014-05-21 17:34:08 ----A---- C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2014-05-21 17:34:07 ----A---- C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2014-05-21 17:34:06 ----A---- C:\WINDOWS\system32\MaxxAudioRealtek264.dll
2014-05-21 17:34:06 ----A---- C:\WINDOWS\system32\MaxxAudioEQ64.dll
2014-05-21 17:34:06 ----A---- C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2014-05-21 17:34:06 ----A---- C:\WINDOWS\system32\MaxxAudioAPO30.dll
2014-05-21 17:34:06 ----A---- C:\WINDOWS\system32\MaxxAudioAPO20.dll
2014-05-21 17:34:03 ----A---- C:\WINDOWS\system32\FMAPO64.dll
2014-05-21 17:34:03 ----A---- C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2014-05-21 17:34:03 ----A---- C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2014-05-21 17:34:03 ----A---- C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2014-05-21 17:34:03 ----A---- C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2014-05-21 17:34:03 ----A---- C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2014-05-21 17:34:03 ----A---- C:\WINDOWS\system32\DTSLimiterDLL64.dll
2014-05-21 17:34:03 ----A---- C:\WINDOWS\system32\DTSLFXAPO64.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\DTSGFXAPONS64.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\DTSGFXAPO64.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\DTSBoostDLL64.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\DDPP64A.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\DDPO64A.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\DDPD64A.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\DDPA64.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\AERTAR64.dll
2014-05-21 17:34:02 ----A---- C:\WINDOWS\system32\AERTAC64.dll
2014-05-21 17:14:15 ----D---- C:\ProgramData\Synaptics
2014-05-21 17:13:51 ----D---- C:\Program Files\Synaptics
2014-05-20 22:28:06 ----D---- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-20 22:28:06 ----D---- C:\Program Files\iTunes
2014-05-20 22:28:06 ----D---- C:\Program Files\iPod
2014-05-20 22:24:20 ----D---- C:\Program Files (x86)\QuickTime
2014-05-18 07:33:49 ----A---- C:\trace.ini
2014-05-18 07:33:05 ----A---- C:\WINDOWS\err.txt
2014-05-18 07:32:34 ----D---- C:\Users\pabuk_000\AppData\Roaming\DAEMON Tools Lite
2014-05-18 07:32:34 ----D---- C:\ProgramData\DAEMON Tools Lite
2014-05-17 09:32:57 ----A---- C:\WINDOWS\SYSWOW64\wusa.exe
2014-05-17 09:32:57 ----A---- C:\WINDOWS\system32\wusa.exe
2014-05-17 09:32:55 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-05-17 09:32:54 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-05-17 09:32:53 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-05-17 09:32:26 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-05-17 09:32:25 ----A---- C:\WINDOWS\SYSWOW64\WSShared.dll
2014-05-17 09:32:25 ----A---- C:\WINDOWS\system32\WSShared.dll
2014-05-17 09:32:24 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-05-17 09:32:24 ----A---- C:\WINDOWS\SYSWOW64\twinapi.appcore.dll
2014-05-17 09:32:24 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-05-17 09:32:24 ----A---- C:\WINDOWS\system32\ubpm.dll
2014-05-17 09:32:24 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2014-05-17 09:32:24 ----A---- C:\WINDOWS\system32\twinapi.appcore.dll
2014-05-17 09:32:23 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-17 09:32:23 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2014-05-17 09:32:23 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-05-17 09:32:23 ----A---- C:\WINDOWS\system32\wups.dll
2014-05-17 09:32:23 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-05-17 09:32:23 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-05-17 09:32:23 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-05-17 09:32:23 ----A---- C:\WINDOWS\system32\storewuauth.dll
2014-05-17 09:32:22 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-05-17 09:32:22 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-05-17 09:32:22 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-05-17 09:32:22 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-05-17 09:32:22 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-05-17 09:32:22 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-05-17 09:32:22 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-05-17 09:32:22 ----A---- C:\WINDOWS\system32\WSReset.exe
2014-05-17 09:31:23 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-05-17 09:31:23 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-05-17 09:31:22 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-05-17 09:31:22 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-05-17 09:31:01 ----A---- C:\WINDOWS\SYSWOW64\mrt100.dll
2014-05-17 09:31:01 ----A---- C:\WINDOWS\SYSWOW64\mrt_map.dll
2014-05-17 09:31:01 ----A---- C:\WINDOWS\system32\mrt100.dll
2014-05-17 09:31:01 ----A---- C:\WINDOWS\system32\mrt_map.dll
2014-05-17 09:19:10 ----D---- C:\Users\pabuk_000\AppData\Roaming\vlc
2014-05-16 15:22:24 ----D---- C:\Program Files (x86)\AGEIA Technologies
2014-05-16 15:22:06 ----D---- C:\ProgramData\NVIDIA
2014-05-16 15:21:59 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2014-05-16 15:21:59 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2014-05-16 15:21:59 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2014-05-16 15:21:59 ----A---- C:\WINDOWS\system32\nvshext.dll
2014-05-16 15:21:59 ----A---- C:\WINDOWS\system32\nvmctray.dll
2014-05-16 15:21:59 ----A---- C:\WINDOWS\system32\nvcpl.dll
2014-05-16 15:21:59 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2014-05-16 15:21:59 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2014-05-16 15:21:57 ----A---- C:\WINDOWS\SYSWOW64\oemdspif.dll
2014-05-16 15:20:43 ----A---- C:\WINDOWS\system32\nvdispgenco6432649.dll
2014-05-16 15:20:43 ----A---- C:\WINDOWS\system32\nvdispco6432649.dll
2014-05-16 15:20:43 ----A---- C:\WINDOWS\system32\nvapi64.dll
2014-05-16 14:41:48 ----D---- C:\WINDOWS\SYSWOW64\sda
2014-05-16 14:41:46 ----A---- C:\WINDOWS\SYSWOW64\RtsUVStoricon.dll
2014-05-16 14:41:46 ----A---- C:\WINDOWS\system32\drivers\RtsUVStor.sys
2014-05-16 14:41:20 ----D---- C:\Program Files\DIFX
2014-05-16 14:41:19 ----D---- C:\Program Files\Lenovo
2014-05-16 14:41:19 ----A---- C:\WINDOWS\system32\LenovoSDKEmSubSystem.dll
2014-05-16 14:41:19 ----A---- C:\WINDOWS\system32\drivers\LhdX64.sys
2014-05-16 14:41:00 ----D---- C:\Program Files (x86)\Lenovo
2014-05-16 14:40:42 ----D---- C:\ProgramData\Downloaded Installations
2014-05-16 14:39:49 ----A---- C:\WINDOWS\system32\drivers\IntelMEFWVer.dll
2014-05-16 14:39:44 ----D---- C:\ProgramData\Intel
2014-05-16 14:39:06 ----A---- C:\WINDOWS\system32\WdfCoInstaller01011.dll
2014-05-16 14:39:06 ----A---- C:\WINDOWS\system32\drivers\TeeDriverx64.sys
2014-05-16 14:39:03 ----D---- C:\Users\pabuk_000\AppData\Roaming\InstallShield
2014-05-16 14:34:50 ----A---- C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2014-05-16 14:34:48 ----A---- C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2014-05-16 14:34:48 ----A---- C:\WINDOWS\system32\IntelWiDiVAD64.exe
2014-05-16 14:34:48 ----A---- C:\WINDOWS\system32\IntelWiDiUtils64.dll
2014-05-16 14:34:48 ----A---- C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2014-05-16 14:34:48 ----A---- C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2014-05-16 14:34:48 ----A---- C:\WINDOWS\system32\IntelWiDiMux64.dll
2014-05-16 14:34:48 ----A---- C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2014-05-16 14:34:48 ----A---- C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2014-05-16 14:34:48 ----A---- C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2014-05-16 14:34:48 ----A---- C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2014-05-16 14:34:47 ----A---- C:\WINDOWS\SYSWOW64\IntelOpenCL32.dll
2014-05-16 14:34:47 ----A---- C:\WINDOWS\system32\IntelWiDiAAC64.dll
2014-05-16 14:34:47 ----A---- C:\WINDOWS\system32\IntelOpenCL64.dll
2014-05-16 14:34:47 ----A---- C:\WINDOWS\system32\igfxtray.exe
2014-05-16 14:34:47 ----A---- C:\WINDOWS\system32\igfxTMM.dll
2014-05-16 14:34:47 ----A---- C:\WINDOWS\system32\igfxsrvc.exe
2014-05-16 14:34:47 ----A---- C:\WINDOWS\system32\igfxCoIn_v3277.dll
2014-05-16 14:34:46 ----A---- C:\WINDOWS\system32\igfxpph.dll
2014-05-16 14:34:45 ----A---- C:\WINDOWS\SYSWOW64\igfxexps32.dll
2014-05-16 14:34:45 ----A---- C:\WINDOWS\SYSWOW64\igfxdv32.dll
2014-05-16 14:34:45 ----A---- C:\WINDOWS\SYSWOW64\igfxcmrt32.dll
2014-05-16 14:34:45 ----A---- C:\WINDOWS\SYSWOW64\igfxcmjit32.dll
2014-05-16 14:34:45 ----A---- C:\WINDOWS\SYSWOW64\igfx11cmrt32.dll
2014-05-16 14:34:45 ----A---- C:\WINDOWS\system32\igfxpers.exe
2014-05-16 14:34:45 ----A---- C:\WINDOWS\system32\igfxext.exe
2014-05-16 14:34:45 ----A---- C:\WINDOWS\system32\igfxexps.dll
2014-05-16 14:34:45 ----A---- C:\WINDOWS\system32\igfxdo.dll
2014-05-16 14:34:45 ----A---- C:\WINDOWS\system32\IGFXDEVLib.dll
2014-05-16 14:34:45 ----A---- C:\WINDOWS\system32\igfxcmrt64.dll
2014-05-16 14:34:45 ----A---- C:\WINDOWS\system32\igfxcmjit64.dll
2014-05-16 14:34:45 ----A---- C:\WINDOWS\system32\igfx11cmrt64.dll
2014-05-16 14:34:44 ----A---- C:\WINDOWS\SYSWOW64\igdrcl32.dll
2014-05-16 14:34:44 ----A---- C:\WINDOWS\SYSWOW64\igdmd32.dll
2014-05-16 14:34:44 ----A---- C:\WINDOWS\system32\igdumdim64.dll
2014-05-16 14:34:44 ----A---- C:\WINDOWS\system32\igdrcl64.dll
2014-05-16 14:34:44 ----A---- C:\WINDOWS\system32\igdmd64.dll
2014-05-16 14:34:43 ----A---- C:\WINDOWS\system32\igdfcl64.dll
2014-05-16 14:34:43 ----A---- C:\WINDOWS\system32\drivers\igdkmd64.sys
2014-05-16 14:34:42 ----A---- C:\WINDOWS\SYSWOW64\igdfcl32.dll
2014-05-16 14:34:42 ----A---- C:\WINDOWS\SYSWOW64\igdde32.dll
2014-05-16 14:34:42 ----A---- C:\WINDOWS\SYSWOW64\igdbcl32.dll
2014-05-16 14:34:42 ----A---- C:\WINDOWS\SYSWOW64\igdail32.dll
2014-05-16 14:34:42 ----A---- C:\WINDOWS\system32\igdde64.dll
2014-05-16 14:34:42 ----A---- C:\WINDOWS\system32\igdbcl64.dll
2014-05-16 14:34:42 ----A---- C:\WINDOWS\system32\igdail64.dll
2014-05-16 14:34:41 ----A---- C:\WINDOWS\SYSWOW64\igd10iumd32.dll
2014-05-16 14:34:41 ----A---- C:\WINDOWS\SYSWOW64\ig7icd32.dll
2014-05-16 14:34:41 ----A---- C:\WINDOWS\system32\ig7icd64.dll
2014-05-16 14:34:40 ----A---- C:\WINDOWS\system32\hkcmd.exe
2014-05-16 14:34:40 ----A---- C:\WINDOWS\system32\GfxUIHotKeyMenu.exe
2014-05-16 14:34:39 ----A---- C:\WINDOWS\system32\GfxUIEx.exe
2014-05-16 14:34:39 ----A---- C:\WINDOWS\system32\gfxSrvc.dll
2014-05-16 14:34:39 ----A---- C:\WINDOWS\system32\GfxRes.dll
2014-05-16 14:34:39 ----A---- C:\WINDOWS\system32\DPTopologyApp.exe
2014-05-16 14:34:39 ----A---- C:\WINDOWS\system32\difx64.exe
2014-05-16 14:34:38 ----A---- C:\WINDOWS\system32\drivers\IntcDAud.sys
2014-05-16 14:34:38 ----A---- C:\WINDOWS\system32\CustomModeApp.exe
2014-05-16 14:33:40 ----A---- C:\WINDOWS\system32\drivers\Smb_driver_Intel.sys
2014-05-16 14:21:37 ----A---- C:\WINDOWS\system32\glcndFilter.dll
2014-05-16 14:21:36 ----A---- C:\WINDOWS\SYSWOW64\OobeFldr.dll
2014-05-16 14:21:36 ----A---- C:\WINDOWS\system32\WSService.dll
2014-05-16 14:21:36 ----A---- C:\WINDOWS\system32\OobeFldr.dll
2014-05-16 14:21:32 ----A---- C:\WINDOWS\SYSWOW64\glcndFilter.dll
2014-05-16 14:21:30 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-05-16 14:21:28 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-05-16 14:21:24 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-05-16 14:21:21 ----A---- C:\WINDOWS\system32\wmp.dll
2014-05-16 14:21:20 ----A---- C:\WINDOWS\system32\sppobjs.dll
2014-05-16 14:21:17 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-05-16 14:21:15 ----A---- C:\WINDOWS\system32\tquery.dll
2014-05-16 14:21:14 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2014-05-16 14:21:13 ----A---- C:\WINDOWS\system32\sysmain.dll
2014-05-16 14:21:11 ----A---- C:\WINDOWS\system32\combase.dll
2014-05-16 14:21:10 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2014-05-16 14:21:10 ----A---- C:\WINDOWS\system32\wininet.dll
2014-05-16 14:21:10 ----A---- C:\WINDOWS\system32\mssrch.dll
2014-05-16 14:21:08 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2014-05-16 14:21:08 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2014-05-16 14:21:06 ----A---- C:\WINDOWS\system32\Wpc.dll
2014-05-16 14:21:06 ----A---- C:\WINDOWS\system32\dui70.dll
2014-05-16 14:21:05 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-05-16 14:21:05 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2014-05-16 14:21:04 ----A---- C:\WINDOWS\system32\WMVDECOD.DLL
2014-05-16 14:21:03 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-05-16 14:21:02 ----A---- C:\WINDOWS\system32\Windows.Globalization.dll
2014-05-16 14:21:02 ----A---- C:\WINDOWS\system32\webservices.dll
2014-05-16 14:21:02 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-05-16 14:21:00 ----A---- C:\WINDOWS\system32\WpcMon.exe
2014-05-16 14:20:59 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2014-05-16 14:20:59 ----A---- C:\WINDOWS\SYSWOW64\dui70.dll
2014-05-16 14:20:59 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2014-05-16 14:20:59 ----A---- C:\WINDOWS\system32\msctf.dll
2014-05-16 14:20:58 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-05-16 14:20:58 ----A---- C:\WINDOWS\system32\msTextPrediction.dll
2014-05-16 14:20:57 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2014-05-16 14:20:57 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2014-05-16 14:20:56 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-05-16 14:20:56 ----A---- C:\WINDOWS\system32\ntdll.dll
2014-05-16 14:20:55 ----A---- C:\WINDOWS\SYSWOW64\Windows.Globalization.dll
2014-05-16 14:20:54 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2014-05-16 14:20:54 ----A---- C:\WINDOWS\system32\mfnetsrc.dll
2014-05-16 14:20:54 ----A---- C:\WINDOWS\system32\mfnetcore.dll
2014-05-16 14:20:54 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2014-05-16 14:20:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2014-05-16 14:20:53 ----A---- C:\WINDOWS\SYSWOW64\webservices.dll
2014-05-16 14:20:53 ----A---- C:\WINDOWS\system32\WpcWebSync.dll
2014-05-16 14:20:53 ----A---- C:\WINDOWS\system32\WinTypes.dll
2014-05-16 14:20:52 ----A---- C:\WINDOWS\SYSWOW64\WMVDECOD.DLL
2014-05-16 14:20:52 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2014-05-16 14:20:51 ----A---- C:\WINDOWS\system32\WofTasks.dll
2014-05-16 14:20:51 ----A---- C:\WINDOWS\system32\wer.dll
2014-05-16 14:20:51 ----A---- C:\WINDOWS\system32\uDWM.dll
2014-05-16 14:20:51 ----A---- C:\WINDOWS\system32\StructuredQuery.dll
2014-05-16 14:20:51 ----A---- C:\WINDOWS\system32\DfpCommon.dll
2014-05-16 14:20:50 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2014-05-16 14:20:50 ----A---- C:\WINDOWS\system32\setupapi.dll
2014-05-16 14:20:50 ----A---- C:\WINDOWS\system32\rpcss.dll
2014-05-16 14:20:49 ----A---- C:\WINDOWS\system32\twinapi.dll
2014-05-16 14:20:48 ----A---- C:\WINDOWS\system32\RacEngn.dll
2014-05-16 14:20:47 ----AC---- C:\WINDOWS\system32\drivers\acpi.sys
2014-05-16 14:20:47 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.OnlineId.dll
2014-05-16 14:20:47 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2014-05-16 14:20:46 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-05-16 14:20:46 ----A---- C:\WINDOWS\SYSWOW64\mfnetsrc.dll
2014-05-16 14:20:45 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2014-05-16 14:20:43 ----A---- C:\WINDOWS\SYSWOW64\mfnetcore.dll
2014-05-16 14:20:43 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2014-05-16 14:20:43 ----A---- C:\WINDOWS\system32\SHCore.dll
2014-05-16 14:20:43 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-05-16 14:20:42 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2014-05-16 14:20:42 ----A---- C:\WINDOWS\system32\wpccpl.dll
2014-05-16 14:20:41 ----A---- C:\WINDOWS\SYSWOW64\Wpc.dll
2014-05-16 14:20:41 ----A---- C:\WINDOWS\SYSWOW64\twinapi.dll
2014-05-16 14:20:41 ----A---- C:\WINDOWS\SYSWOW64\StructuredQuery.dll
2014-05-16 14:20:40 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2014-05-16 14:20:40 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2014-05-16 14:20:40 ----A---- C:\WINDOWS\system32\uxtheme.dll
2014-05-16 14:20:40 ----A---- C:\WINDOWS\system32\samsrv.dll
2014-05-16 14:20:39 ----A---- C:\WINDOWS\system32\user32.dll
2014-05-16 14:20:38 ----A---- C:\WINDOWS\system32\SettingSync.dll
2014-05-16 14:20:37 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2014-05-16 14:20:37 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2014-05-16 14:20:37 ----A---- C:\WINDOWS\system32\hal.dll
2014-05-16 14:20:36 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-05-16 14:20:36 ----A---- C:\WINDOWS\system32\WofUtil.dll
2014-05-16 14:20:36 ----A---- C:\WINDOWS\system32\storagewmi.dll
2014-05-16 14:20:35 ----A---- C:\WINDOWS\SYSWOW64\WindowsCodecs.dll
2014-05-16 14:20:35 ----A---- C:\WINDOWS\system32\wimgapi.dll
2014-05-16 14:20:34 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2014-05-16 14:20:34 ----A---- C:\WINDOWS\system32\MMDevAPI.dll
2014-05-16 14:20:34 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-05-16 14:20:33 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2014-05-16 14:20:33 ----A---- C:\WINDOWS\system32\AppReadiness.dll
2014-05-16 14:20:32 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2014-05-16 14:20:32 ----A---- C:\WINDOWS\system32\schannel.dll
2014-05-16 14:20:32 ----A---- C:\WINDOWS\system32\reseteng.dll
2014-05-16 14:20:32 ----A---- C:\WINDOWS\system32\drivers\rdyboost.sys
2014-05-16 14:20:31 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2014-05-16 14:20:31 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2014-05-16 14:20:31 ----A---- C:\WINDOWS\SYSWOW64\RacEngn.dll
2014-05-16 14:20:30 ----A---- C:\WINDOWS\system32\wpncore.dll
2014-05-16 14:20:30 ----A---- C:\WINDOWS\system32\recimg.exe
2014-05-16 14:20:30 ----A---- C:\WINDOWS\system32\dfp.exe
2014-05-16 14:20:29 ----A---- C:\WINDOWS\system32\usercpl.dll
2014-05-16 14:20:29 ----A---- C:\WINDOWS\system32\perftrack.dll
2014-05-16 14:20:28 ----A---- C:\WINDOWS\SYSWOW64\usercpl.dll
2014-05-16 14:20:28 ----A---- C:\WINDOWS\system32\WWAHost.exe
2014-05-16 14:20:28 ----A---- C:\WINDOWS\system32\WerFault.exe
2014-05-16 14:20:28 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2014-05-16 14:20:28 ----A---- C:\WINDOWS\system32\dfpinc.dat
2014-05-16 14:20:28 ----A---- C:\WINDOWS\system32\advapi32.dll
2014-05-16 14:20:27 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2014-05-16 14:20:27 ----A---- C:\WINDOWS\system32\lsm.dll
2014-05-16 14:20:27 ----A---- C:\WINDOWS\system32\bisrv.dll
2014-05-16 14:20:26 ----A---- C:\WINDOWS\system32\mssvp.dll
2014-05-16 14:20:26 ----A---- C:\WINDOWS\system32\energy.dll
2014-05-16 14:20:26 ----A---- C:\WINDOWS\system32\apphelp.dll
2014-05-16 14:20:25 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2014-05-16 14:20:25 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2014-05-16 14:20:25 ----A---- C:\WINDOWS\system32\tdh.dll
2014-05-16 14:20:24 ----AC---- C:\WINDOWS\system32\drivers\pci.sys
2014-05-16 14:20:23 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-05-16 14:20:23 ----A---- C:\WINDOWS\system32\DismApi.dll
2014-05-16 14:20:22 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2014-05-16 14:20:22 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2014-05-16 14:20:22 ----A---- C:\WINDOWS\system32\winlogon.exe
2014-05-16 14:20:22 ----A---- C:\WINDOWS\system32\winload.exe
2014-05-16 14:20:21 ----A---- C:\WINDOWS\SYSWOW64\MMDevAPI.dll
2014-05-16 14:20:20 ----A---- C:\WINDOWS\SYSWOW64\apphelp.dll
2014-05-16 14:20:20 ----A---- C:\WINDOWS\system32\winresume.exe
2014-05-16 14:20:20 ----A---- C:\WINDOWS\system32\mssph.dll
2014-05-16 14:20:19 ----A---- C:\WINDOWS\system32\msvproc.dll
2014-05-16 14:20:19 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2014-05-16 14:20:19 ----A---- C:\WINDOWS\system32\ActionCenter.dll
2014-05-16 14:20:18 ----A---- C:\WINDOWS\system32\werconcpl.dll
2014-05-16 14:20:18 ----A---- C:\WINDOWS\system32\thumbcache.dll
2014-05-16 14:20:17 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-05-16 14:20:17 ----A---- C:\WINDOWS\system32\stobject.dll
2014-05-16 14:20:16 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2014-05-16 14:20:16 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2014-05-16 14:20:16 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2014-05-16 14:20:16 ----A---- C:\WINDOWS\system32\msctfuimanager.dll
2014-05-16 14:20:15 ----A---- C:\WINDOWS\system32\WMALFXGFXDSP.dll
2014-05-16 14:20:15 ----A---- C:\WINDOWS\system32\Faultrep.dll
2014-05-16 14:20:15 ----A---- C:\WINDOWS\system32\ci.dll
2014-05-16 14:20:13 ----AC---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2014-05-16 14:20:12 ----A---- C:\WINDOWS\system32\sppwinob.dll
2014-05-16 14:20:11 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2014-05-16 14:20:11 ----A---- C:\WINDOWS\SYSWOW64\msctfuimanager.dll
2014-05-16 14:20:11 ----A---- C:\WINDOWS\system32\ntshrui.dll
2014-05-16 14:20:11 ----A---- C:\WINDOWS\system32\iuilp.dll
2014-05-16 14:20:10 ----A---- C:\WINDOWS\SYSWOW64\ActionCenter.dll
2014-05-16 14:20:10 ----A---- C:\WINDOWS\system32\wlidcli.dll
2014-05-16 14:20:10 ----A---- C:\WINDOWS\system32\printui.dll
2014-05-16 14:20:09 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2014-05-16 14:20:09 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2014-05-16 14:20:09 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2014-05-16 14:20:09 ----A---- C:\WINDOWS\system32\vmrdvcore.dll
2014-05-16 14:20:09 ----A---- C:\WINDOWS\system32\aelupsvc.dll
2014-05-16 14:20:08 ----A---- C:\WINDOWS\SYSWOW64\slc.dll
2014-05-16 14:20:08 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-05-16 14:20:08 ----A---- C:\WINDOWS\system32\slc.dll
2014-05-16 14:20:08 ----A---- C:\WINDOWS\system32\MrmIndexer.dll
2014-05-16 14:20:07 ----A---- C:\WINDOWS\SYSWOW64\thumbcache.dll
2014-05-16 14:20:07 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2014-05-16 14:20:07 ----A---- C:\WINDOWS\SYSWOW64\advapi32.dll
2014-05-16 14:20:07 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2014-05-16 14:20:07 ----A---- C:\WINDOWS\system32\nettrace.dll
2014-05-16 14:20:07 ----A---- C:\WINDOWS\system32\Dism.exe
2014-05-16 14:20:07 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2014-05-16 14:20:06 ----A---- C:\WINDOWS\SYSWOW64\uxtheme.dll
2014-05-16 14:20:06 ----A---- C:\WINDOWS\system32\pnidui.dll
2014-05-16 14:20:06 ----A---- C:\WINDOWS\system32\comdlg32.dll
2014-05-16 14:20:05 ----A---- C:\WINDOWS\SYSWOW64\stobject.dll
2014-05-16 14:20:05 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2014-05-16 14:20:05 ----A---- C:\WINDOWS\system32\WMPDMC.exe
2014-05-16 14:20:05 ----A---- C:\WINDOWS\system32\dwmredir.dll
2014-05-16 14:20:04 ----A---- C:\WINDOWS\system32\psmsrv.dll
2014-05-16 14:20:03 ----A---- C:\WINDOWS\SYSWOW64\ntshrui.dll
2014-05-16 14:20:03 ----A---- C:\WINDOWS\system32\WlanMM.dll
2014-05-16 14:20:02 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-05-16 14:20:02 ----A---- C:\WINDOWS\system32\VAN.dll
2014-05-16 14:20:02 ----A---- C:\WINDOWS\system32\osk.exe
2014-05-16 14:20:02 ----A---- C:\WINDOWS\system32\ninput.dll
2014-05-16 14:20:02 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2014-05-16 14:20:01 ----A---- C:\WINDOWS\system32\authz.dll
2014-05-16 14:20:00 ----AC---- C:\WINDOWS\system32\drivers\portcls.sys
2014-05-16 14:20:00 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-05-16 14:19:59 ----AC---- C:\WINDOWS\system32\drivers\vhdmp.sys
2014-05-16 14:19:59 ----A---- C:\WINDOWS\system32\taskeng.exe
2014-05-16 14:19:59 ----A---- C:\WINDOWS\system32\SyncCenter.dll
2014-05-16 14:19:59 ----A---- C:\WINDOWS\system32\rascustom.dll
2014-05-16 14:19:59 ----A---- C:\WINDOWS\system32\conhost.exe
2014-05-16 14:19:58 ----A---- C:\WINDOWS\system32\wlidcredprov.dll
2014-05-16 14:19:58 ----A---- C:\WINDOWS\system32\wersvc.dll
2014-05-16 14:19:58 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-05-16 14:19:58 ----A---- C:\WINDOWS\system32\themeui.dll
2014-05-16 14:19:58 ----A---- C:\WINDOWS\system32\rdbui.dll
2014-05-16 14:19:58 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-05-16 14:19:57 ----A---- C:\WINDOWS\SYSWOW64\DismApi.dll
2014-05-16 14:19:57 ----A---- C:\WINDOWS\system32\sqmapi.dll
2014-05-16 14:19:57 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2014-05-16 14:19:56 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2014-05-16 14:19:56 ----A---- C:\WINDOWS\system32\wbengine.exe
2014-05-16 14:19:56 ----A---- C:\WINDOWS\system32\rdpcore.dll
2014-05-16 14:19:55 ----A---- C:\WINDOWS\SYSWOW64\WSClient.dll
2014-05-16 14:19:55 ----A---- C:\WINDOWS\SYSWOW64\themeui.dll
2014-05-16 14:19:55 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2014-05-16 14:19:55 ----A---- C:\WINDOWS\SYSWOW64\MrmIndexer.dll
2014-05-16 14:19:55 ----A---- C:\WINDOWS\system32\SndVol.exe
2014-05-16 14:19:55 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-05-16 14:19:54 ----A---- C:\WINDOWS\SYSWOW64\Dism.exe
2014-05-16 14:19:54 ----A---- C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2014-05-16 14:19:54 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-05-16 14:19:54 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-05-16 14:19:54 ----A---- C:\WINDOWS\system32\cscui.dll
Re: Otvíraní nechtěných webových stránek prosím kontrolu log
2014-05-16 14:19:53 ----A---- C:\WINDOWS\SYSWOW64\mssphtb.dll
2014-05-16 14:19:53 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2014-05-16 14:19:53 ----A---- C:\WINDOWS\system32\sppc.dll
2014-05-16 14:19:53 ----A---- C:\WINDOWS\system32\SkyDriveShell.dll
2014-05-16 14:19:52 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2014-05-16 14:19:52 ----A---- C:\WINDOWS\system32\bcrypt.dll
2014-05-16 14:19:49 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2014-05-16 14:19:49 ----A---- C:\WINDOWS\system32\clrhost.dll
2014-05-16 14:19:49 ----A---- C:\WINDOWS\system32\aepdu.dll
2014-05-16 14:19:48 ----A---- C:\WINDOWS\SYSWOW64\sppc.dll
2014-05-16 14:19:48 ----A---- C:\WINDOWS\system32\wwanmm.dll
2014-05-16 14:19:48 ----A---- C:\WINDOWS\system32\WSClient.dll
2014-05-16 14:19:48 ----A---- C:\WINDOWS\system32\WLanConn.dll
2014-05-16 14:19:48 ----A---- C:\WINDOWS\system32\wimserv.exe
2014-05-16 14:19:48 ----A---- C:\WINDOWS\system32\PkgMgr.exe
2014-05-16 14:19:47 ----AC---- C:\WINDOWS\system32\drivers\sdbus.sys
2014-05-16 14:19:47 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2014-05-16 14:19:47 ----A---- C:\WINDOWS\SYSWOW64\osk.exe
2014-05-16 14:19:47 ----A---- C:\WINDOWS\system32\wscinterop.dll
2014-05-16 14:19:47 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2014-05-16 14:19:46 ----A---- C:\WINDOWS\system32\PurchaseWindowsLicense.dll
2014-05-16 14:19:45 ----A---- C:\WINDOWS\SYSWOW64\SyncCenter.dll
2014-05-16 14:19:45 ----A---- C:\WINDOWS\SYSWOW64\SndVol.exe
2014-05-16 14:19:45 ----A---- C:\WINDOWS\SYSWOW64\SkyDriveShell.dll
2014-05-16 14:19:45 ----A---- C:\WINDOWS\system32\gameux.dll
2014-05-16 14:19:45 ----A---- C:\WINDOWS\system32\fhcfg.dll
2014-05-16 14:19:44 ----A---- C:\WINDOWS\SYSWOW64\WlanMM.dll
2014-05-16 14:19:44 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2014-05-16 14:19:44 ----A---- C:\WINDOWS\system32\taskhost.exe
2014-05-16 14:19:44 ----A---- C:\WINDOWS\system32\dwm.exe
2014-05-16 14:19:43 ----A---- C:\WINDOWS\system32\winsrv.dll
2014-05-16 14:19:43 ----A---- C:\WINDOWS\system32\rasgcw.dll
2014-05-16 14:19:43 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2014-05-16 14:19:43 ----A---- C:\WINDOWS\system32\drivers\luafv.sys
2014-05-16 14:19:42 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2014-05-16 14:19:42 ----A---- C:\WINDOWS\system32\wscapi.dll
2014-05-16 14:19:42 ----A---- C:\WINDOWS\system32\dmdskmgr.dll
2014-05-16 14:19:41 ----AC---- C:\WINDOWS\system32\drivers\rfcomm.sys
2014-05-16 14:19:41 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2014-05-16 14:19:41 ----A---- C:\WINDOWS\system32\wermgr.exe
2014-05-16 14:19:41 ----A---- C:\WINDOWS\system32\srchadmin.dll
2014-05-16 14:19:40 ----AC---- C:\WINDOWS\system32\drivers\dumpsd.sys
2014-05-16 14:19:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2014-05-16 14:19:40 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2014-05-16 14:19:40 ----A---- C:\WINDOWS\SYSWOW64\clrhost.dll
2014-05-16 14:19:39 ----A---- C:\WINDOWS\SYSWOW64\ninput.dll
2014-05-16 14:19:36 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2014-05-16 14:19:36 ----A---- C:\WINDOWS\system32\wwanconn.dll
2014-05-16 14:19:36 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2014-05-16 14:19:36 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2014-05-16 14:19:36 ----A---- C:\WINDOWS\system32\smss.exe
2014-05-16 14:19:36 ----A---- C:\WINDOWS\system32\BioCredProv.dll
2014-05-16 14:19:36 ----A---- C:\WINDOWS\system32\AltTab.dll
2014-05-16 14:19:35 ----A---- C:\WINDOWS\system32\vdsbas.dll
2014-05-16 14:19:35 ----A---- C:\WINDOWS\system32\systemreset.exe
2014-05-16 14:19:35 ----A---- C:\WINDOWS\system32\RASMM.dll
2014-05-16 14:19:35 ----A---- C:\WINDOWS\system32\imm32.dll
2014-05-16 14:19:34 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2014-05-16 14:19:34 ----A---- C:\WINDOWS\system32\fhcpl.dll
2014-05-16 14:19:33 ----A---- C:\WINDOWS\SYSWOW64\sqmapi.dll
2014-05-16 14:19:33 ----A---- C:\WINDOWS\system32\taskhostex.exe
2014-05-16 14:19:33 ----A---- C:\WINDOWS\system32\netid.dll
2014-05-16 14:19:33 ----A---- C:\WINDOWS\system32\fsutil.exe
2014-05-16 14:19:33 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-05-16 14:19:32 ----A---- C:\WINDOWS\system32\sharemediacpl.dll
2014-05-16 14:19:32 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2014-05-16 14:19:32 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-05-16 14:19:32 ----A---- C:\WINDOWS\system32\drivers\msgpioclx.sys
2014-05-16 14:19:32 ----A---- C:\WINDOWS\system32\das.dll
2014-05-16 14:19:32 ----A---- C:\WINDOWS\system32\CloudNotifications.exe
2014-05-16 14:19:31 ----A---- C:\WINDOWS\SYSWOW64\fsutil.exe
2014-05-16 14:19:31 ----A---- C:\WINDOWS\SYSWOW64\CloudNotifications.exe
2014-05-16 14:19:31 ----A---- C:\WINDOWS\system32\WSDApi.dll
2014-05-16 14:19:31 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2014-05-16 14:19:31 ----A---- C:\WINDOWS\system32\sdclt.exe
2014-05-16 14:19:31 ----A---- C:\WINDOWS\system32\drivers\fileinfo.sys
2014-05-16 14:19:30 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2014-05-16 14:19:30 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-05-16 14:19:30 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2014-05-16 14:19:30 ----A---- C:\WINDOWS\system32\powrprof.dll
2014-05-16 14:19:30 ----A---- C:\WINDOWS\system32\mssprxy.dll
2014-05-16 14:19:30 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2014-05-16 14:19:29 ----AC---- C:\WINDOWS\system32\drivers\BasicRender.sys
2014-05-16 14:19:29 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe
2014-05-16 14:19:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2014-05-16 14:19:29 ----A---- C:\WINDOWS\SYSWOW64\imm32.dll
2014-05-16 14:19:29 ----A---- C:\WINDOWS\system32\zipfldr.dll
2014-05-16 14:19:29 ----A---- C:\WINDOWS\system32\newdev.dll
2014-05-16 14:19:28 ----AC---- C:\WINDOWS\system32\drivers\sdstor.sys
2014-05-16 14:19:28 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2014-05-16 14:19:28 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2014-05-16 14:19:28 ----A---- C:\WINDOWS\system32\aepic.dll
2014-05-16 14:19:27 ----A---- C:\WINDOWS\system32\RestoreOptIn.exe
2014-05-16 14:19:27 ----A---- C:\WINDOWS\system32\dmvdsitf.dll
2014-05-16 14:19:26 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2014-05-16 14:19:26 ----A---- C:\WINDOWS\system32\vds.exe
2014-05-16 14:19:26 ----A---- C:\WINDOWS\system32\spwizeng.dll
2014-05-16 14:19:25 ----A---- C:\WINDOWS\system32\wow64win.dll
2014-05-16 14:19:25 ----A---- C:\WINDOWS\system32\UserAccountBroker.exe
2014-05-16 14:19:25 ----A---- C:\WINDOWS\system32\microsoft-windows-kernel-power-events.dll
2014-05-16 14:19:25 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2014-05-16 14:19:25 ----A---- C:\WINDOWS\system32\LockScreenContent.dll
2014-05-16 14:19:25 ----A---- C:\WINDOWS\system32\appinfo.dll
2014-05-16 14:19:24 ----A---- C:\WINDOWS\SYSWOW64\powrprof.dll
2014-05-16 14:19:24 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2014-05-16 14:19:24 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-05-16 14:19:24 ----A---- C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2014-05-16 14:19:23 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2014-05-16 14:19:23 ----A---- C:\WINDOWS\SYSWOW64\WLanConn.dll
2014-05-16 14:19:23 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2014-05-16 14:19:23 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-05-16 14:19:22 ----A---- C:\WINDOWS\SYSWOW64\RestoreOptIn.exe
2014-05-16 14:19:22 ----A---- C:\WINDOWS\system32\bcd.dll
2014-05-16 14:19:22 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2014-05-16 14:19:21 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2014-05-16 14:19:21 ----A---- C:\WINDOWS\SYSWOW64\UserAccountBroker.exe
2014-05-16 14:19:21 ----A---- C:\WINDOWS\SYSWOW64\srchadmin.dll
2014-05-16 14:19:21 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2014-05-16 14:19:21 ----A---- C:\WINDOWS\system32\dot3mm.dll
2014-05-16 14:19:20 ----A---- C:\WINDOWS\SYSWOW64\wscinterop.dll
2014-05-16 14:19:20 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-05-16 14:19:20 ----A---- C:\WINDOWS\system32\easinvoker.exe
2014-05-16 14:19:19 ----A---- C:\WINDOWS\SYSWOW64\bcd.dll
2014-05-16 14:19:19 ----A---- C:\WINDOWS\system32\DAMM.dll
2014-05-16 14:19:19 ----A---- C:\WINDOWS\system32\bootux.dll
2014-05-16 14:19:18 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2014-05-16 14:19:17 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2014-05-16 14:19:16 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-05-16 14:19:16 ----A---- C:\WINDOWS\SYSWOW64\cleanmgr.exe
2014-05-16 14:19:15 ----AC---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2014-05-16 14:19:15 ----A---- C:\WINDOWS\system32\samlib.dll
2014-05-16 14:19:15 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2014-05-16 14:19:15 ----A---- C:\WINDOWS\system32\cleanmgr.exe
2014-05-16 14:19:14 ----A---- C:\WINDOWS\system32\provsvc.dll
2014-05-16 14:19:12 ----AC---- C:\WINDOWS\system32\drivers\UCX01000.SYS
2014-05-16 14:19:12 ----A---- C:\WINDOWS\SYSWOW64\taskeng.exe
2014-05-16 14:19:12 ----A---- C:\WINDOWS\system32\rasmans.dll
2014-05-16 14:19:12 ----A---- C:\WINDOWS\system32\AuthHost.exe
2014-05-16 14:19:11 ----A---- C:\WINDOWS\system32\netiohlp.dll
2014-05-16 14:19:11 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2014-05-16 14:19:10 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2014-05-16 14:19:10 ----A---- C:\WINDOWS\SYSWOW64\netid.dll
2014-05-16 14:19:10 ----A---- C:\WINDOWS\SYSWOW64\BioCredProv.dll
2014-05-16 14:19:10 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2014-05-16 14:19:10 ----A---- C:\WINDOWS\system32\korwbrkr.dll
2014-05-16 14:19:09 ----A---- C:\WINDOWS\SYSWOW64\dmvdsitf.dll
2014-05-16 14:19:08 ----A---- C:\WINDOWS\system32\scrrun.dll
2014-05-16 14:19:08 ----A---- C:\WINDOWS\system32\drivers\http.sys
2014-05-16 14:19:07 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2014-05-16 14:19:07 ----A---- C:\WINDOWS\SYSWOW64\netiohlp.dll
2014-05-16 14:19:07 ----A---- C:\WINDOWS\system32\easwrt.dll
2014-05-16 14:19:06 ----A---- C:\WINDOWS\system32\netplwiz.dll
2014-05-16 14:19:06 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-05-16 14:19:06 ----A---- C:\WINDOWS\system32\CloudStorageWizard.exe
2014-05-16 14:19:06 ----A---- C:\WINDOWS\system32\acppage.dll
2014-05-16 14:19:05 ----A---- C:\WINDOWS\SYSWOW64\dmdskmgr.dll
2014-05-16 14:19:05 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll
2014-05-16 14:19:05 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2014-05-16 14:19:05 ----A---- C:\WINDOWS\system32\scrobj.dll
2014-05-16 14:19:04 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll
2014-05-16 14:19:04 ----A---- C:\WINDOWS\system32\winbrand.dll
2014-05-16 14:19:04 ----A---- C:\WINDOWS\system32\LockScreenContentServer.exe
2014-05-16 14:19:04 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2014-05-16 14:19:03 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2014-05-16 14:19:03 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountTokenProvider.dll
2014-05-16 14:19:03 ----A---- C:\WINDOWS\system32\slpts.dll
2014-05-16 14:19:03 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2014-05-16 14:19:02 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2014-05-16 14:19:02 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2014-05-16 14:19:02 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2014-05-16 14:19:01 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2014-05-16 14:19:01 ----A---- C:\WINDOWS\SYSWOW64\acppage.dll
2014-05-16 14:19:01 ----A---- C:\WINDOWS\system32\wpnprv.dll
2014-05-16 14:19:01 ----A---- C:\WINDOWS\system32\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-05-16 14:19:01 ----A---- C:\WINDOWS\system32\Windows.Media.Renewal.dll
2014-05-16 14:19:01 ----A---- C:\WINDOWS\system32\wbadmin.exe
2014-05-16 14:19:01 ----A---- C:\WINDOWS\system32\sud.dll
2014-05-16 14:19:01 ----A---- C:\WINDOWS\system32\bcdedit.exe
2014-05-16 14:19:01 ----A---- C:\WINDOWS\system32\autofmt.exe
2014-05-16 14:19:01 ----A---- C:\WINDOWS\system32\autoconv.exe
2014-05-16 14:19:00 ----A---- C:\WINDOWS\SYSWOW64\provsvc.dll
2014-05-16 14:19:00 ----A---- C:\WINDOWS\SYSWOW64\printui.dll
2014-05-16 14:19:00 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2014-05-16 14:19:00 ----A---- C:\WINDOWS\system32\SysResetErr.exe
2014-05-16 14:19:00 ----A---- C:\WINDOWS\system32\sppnp.dll
2014-05-16 14:18:59 ----A---- C:\WINDOWS\SYSWOW64\wlidcredprov.dll
2014-05-16 14:18:59 ----A---- C:\WINDOWS\SYSWOW64\scrobj.dll
2014-05-16 14:18:59 ----A---- C:\WINDOWS\system32\untfs.dll
2014-05-16 14:18:59 ----A---- C:\WINDOWS\system32\bcdboot.exe
2014-05-16 14:18:58 ----A---- C:\WINDOWS\SYSWOW64\slpts.dll
2014-05-16 14:18:58 ----A---- C:\WINDOWS\SYSWOW64\PkgMgr.exe
2014-05-16 14:18:58 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-05-16 14:18:58 ----A---- C:\WINDOWS\system32\spbcd.dll
2014-05-16 14:18:58 ----A---- C:\WINDOWS\system32\setbcdlocale.dll
2014-05-16 14:18:58 ----A---- C:\WINDOWS\system32\migisol.dll
2014-05-16 14:18:58 ----A---- C:\WINDOWS\system32\autochk.exe
2014-05-16 14:18:57 ----A---- C:\WINDOWS\SYSWOW64\winbrand.dll
2014-05-16 14:18:57 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2014-05-16 14:18:57 ----A---- C:\WINDOWS\SYSWOW64\autofmt.exe
2014-05-16 14:18:57 ----A---- C:\WINDOWS\SYSWOW64\autoconv.exe
2014-05-16 14:18:57 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe
2014-05-16 14:18:57 ----A---- C:\WINDOWS\system32\DAConn.dll
2014-05-16 14:18:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2014-05-16 14:18:56 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgradeResults.exe
2014-05-16 14:18:56 ----A---- C:\WINDOWS\system32\UXInit.dll
2014-05-16 14:18:56 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2014-05-16 14:18:56 ----A---- C:\WINDOWS\system32\fhevents.dll
2014-05-16 14:18:56 ----A---- C:\WINDOWS\system32\dafBth.dll
2014-05-16 14:18:55 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2014-05-16 14:18:55 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2014-05-16 14:18:55 ----A---- C:\WINDOWS\system32\spcompat.dll
2014-05-16 14:18:54 ----AC---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2014-05-16 14:18:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-05-16 14:18:54 ----A---- C:\WINDOWS\SYSWOW64\StorageContextHandler.dll
2014-05-16 14:18:54 ----A---- C:\WINDOWS\system32\vdsutil.dll
2014-05-16 14:18:54 ----A---- C:\WINDOWS\system32\drivers\watchdog.sys
2014-05-16 14:18:54 ----A---- C:\WINDOWS\system32\cscript.exe
2014-05-16 14:18:53 ----A---- C:\WINDOWS\SYSWOW64\WimBootCompress.ini
2014-05-16 14:18:53 ----A---- C:\WINDOWS\SYSWOW64\spwizeng.dll
2014-05-16 14:18:53 ----A---- C:\WINDOWS\SYSWOW64\spbcd.dll
2014-05-16 14:18:53 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2014-05-16 14:18:53 ----A---- C:\WINDOWS\system32\energytask.dll
2014-05-16 14:18:53 ----A---- C:\WINDOWS\system32\diskpart.exe
2014-05-16 14:18:52 ----A---- C:\WINDOWS\system32\WimBootCompress.ini
2014-05-16 14:18:52 ----A---- C:\WINDOWS\system32\werui.dll
2014-05-16 14:18:52 ----A---- C:\WINDOWS\system32\powercfg.exe
2014-05-16 14:18:52 ----A---- C:\WINDOWS\system32\devinv.dll
2014-05-16 14:18:49 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2014-05-16 14:18:49 ----A---- C:\WINDOWS\system32\RelPost.exe
2014-05-16 14:18:48 ----A---- C:\WINDOWS\system32\pnpclean.dll
2014-05-16 14:18:47 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2014-05-16 14:18:47 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2014-05-16 14:18:47 ----A---- C:\WINDOWS\system32\deviceassociation.dll
2014-05-16 14:18:46 ----A---- C:\WINDOWS\SYSWOW64\SettingMonitor.dll
2014-05-16 14:18:46 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2014-05-16 14:18:46 ----A---- C:\WINDOWS\system32\dasHost.exe
2014-05-16 14:18:45 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2014-05-16 14:18:45 ----A---- C:\WINDOWS\system32\srrstr.dll
2014-05-16 14:18:44 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2014-05-16 14:18:44 ----A---- C:\WINDOWS\system32\ReAgentc.exe
2014-05-16 14:18:44 ----A---- C:\WINDOWS\system32\qedit.dll
2014-05-16 14:18:43 ----A---- C:\WINDOWS\SYSWOW64\winsku.dll
2014-05-16 14:18:43 ----A---- C:\WINDOWS\SYSWOW64\SSShim.dll
2014-05-16 14:18:43 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2014-05-16 14:18:43 ----A---- C:\WINDOWS\SYSWOW64\CloudStorageWizard.exe
2014-05-16 14:18:43 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2014-05-16 14:18:43 ----A---- C:\WINDOWS\system32\offreg.dll
2014-05-16 14:18:43 ----A---- C:\WINDOWS\system32\ActionQueue.dll
2014-05-16 14:18:42 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2014-05-16 14:18:42 ----A---- C:\WINDOWS\SYSWOW64\IdCtrls.dll
2014-05-16 14:18:42 ----A---- C:\WINDOWS\SYSWOW64\deviceassociation.dll
2014-05-16 14:18:42 ----A---- C:\WINDOWS\system32\msshooks.dll
2014-05-16 14:18:42 ----A---- C:\WINDOWS\system32\dfrgui.exe
2014-05-16 14:18:41 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2014-05-16 14:18:41 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2014-05-16 14:18:41 ----A---- C:\WINDOWS\SYSWOW64\powercfg.exe
2014-05-16 14:18:41 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2014-05-16 14:18:41 ----A---- C:\WINDOWS\system32\mf3216.dll
2014-05-16 14:18:40 ----A---- C:\WINDOWS\SYSWOW64\migisol.dll
2014-05-16 14:18:40 ----A---- C:\WINDOWS\system32\f3ahvoas.dll
2014-05-16 14:18:39 ----A---- C:\WINDOWS\SYSWOW64\ReAgentc.exe
2014-05-16 14:18:39 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2014-05-16 14:18:39 ----A---- C:\WINDOWS\system32\SrTasks.exe
2014-05-16 14:18:38 ----A---- C:\WINDOWS\SYSWOW64\easwrt.dll
2014-05-16 14:18:38 ----A---- C:\WINDOWS\SYSWOW64\dfrgui.exe
2014-05-16 14:18:38 ----A---- C:\WINDOWS\system32\winsku.dll
2014-05-16 14:18:38 ----A---- C:\WINDOWS\system32\vdsdyn.dll
2014-05-16 14:18:37 ----A---- C:\WINDOWS\system32\themecpl.dll
2014-05-16 14:18:37 ----A---- C:\WINDOWS\system32\LockScreenContentHost.dll
2014-05-16 14:18:37 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2014-05-16 14:18:37 ----A---- C:\WINDOWS\system32\Defrag.exe
2014-05-16 14:18:37 ----A---- C:\WINDOWS\system32\AepRoam.dll
2014-05-16 14:18:35 ----A---- C:\WINDOWS\SYSWOW64\sxshared.dll
2014-05-16 14:18:35 ----A---- C:\WINDOWS\SYSWOW64\diskpart.exe
2014-05-16 14:18:35 ----A---- C:\WINDOWS\SYSWOW64\cscript.exe
2014-05-16 14:18:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2014-05-16 14:18:34 ----A---- C:\WINDOWS\SYSWOW64\msshooks.dll
2014-05-16 14:18:34 ----A---- C:\WINDOWS\SYSWOW64\ConfigureExpandedStorage.dll
2014-05-16 14:18:34 ----A---- C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2014-05-16 14:18:33 ----A---- C:\WINDOWS\system32\scavengeui.dll
2014-05-16 14:18:30 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-05-16 14:18:29 ----A---- C:\WINDOWS\system32\wincorlib.dll
2014-05-16 14:18:28 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-session-winsta-l1-1-0.dll
2014-05-16 14:18:28 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe
2014-05-16 14:18:27 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2014-05-16 14:18:24 ----A---- C:\WINDOWS\SYSWOW64\UXInit.dll
2014-05-16 14:18:24 ----A---- C:\WINDOWS\system32\BulkOperationHost.exe
2014-05-16 14:18:23 ----A---- C:\WINDOWS\system32\syncui.dll
2014-05-16 14:18:22 ----A---- C:\WINDOWS\system32\SettingSyncPolicy.dll
2014-05-16 14:18:21 ----A---- C:\WINDOWS\SYSWOW64\finger.exe
2014-05-16 14:18:20 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2014-05-16 14:18:20 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncPolicy.dll
2014-05-16 14:18:20 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2014-05-16 14:18:19 ----A---- C:\WINDOWS\system32\ocsetapi.dll
2014-05-16 14:18:19 ----A---- C:\WINDOWS\system32\GlobCollationHost.dll
2014-05-16 14:18:18 ----AH---- C:\WINDOWS\system32\ext-ms-win-session-winsta-l1-1-0.dll
2014-05-16 14:18:18 ----A---- C:\WINDOWS\SYSWOW64\ocsetapi.dll
2014-05-16 14:18:18 ----A---- C:\WINDOWS\SYSWOW64\GlobCollationHost.dll
2014-05-16 14:18:18 ----A---- C:\WINDOWS\system32\StorageContextHandler.dll
2014-05-16 14:18:17 ----A---- C:\WINDOWS\system32\dataclen.dll
2014-05-16 14:18:17 ----A---- C:\WINDOWS\system32\aitagent.exe
2014-05-16 14:18:16 ----A---- C:\WINDOWS\SYSWOW64\korwbrkr.dll
2014-05-16 14:18:15 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-kernel32-package-l1-1-1.dll
2014-05-16 14:18:15 ----AH---- C:\WINDOWS\system32\ext-ms-win-kernel32-package-l1-1-1.dll
2014-05-16 14:18:15 ----A---- C:\WINDOWS\system32\shsetup.dll
2014-05-16 14:18:13 ----A---- C:\WINDOWS\SYSWOW64\dataclen.dll
2014-05-16 14:18:12 ----AH---- C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-1.dll
2014-05-16 14:18:12 ----A---- C:\WINDOWS\system32\shimeng.dll
2014-05-16 14:18:12 ----A---- C:\WINDOWS\system32\lpksetupproxyserv.dll
2014-05-16 14:18:12 ----A---- C:\WINDOWS\system32\fhsvcctl.dll
2014-05-16 14:18:12 ----A---- C:\WINDOWS\system32\aeinv.dll
2014-05-16 14:18:11 ----AH---- C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-0.dll
2014-05-16 14:18:11 ----A---- C:\WINDOWS\system32\dxmasf.dll
2014-05-16 14:18:10 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-ntuser-private-l1-1-1.dll
2014-05-16 14:18:10 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-ntuser-private-l1-1-0.dll
2014-05-16 14:18:10 ----A---- C:\WINDOWS\system32\winbici.dll
2014-05-16 14:18:09 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-networking-wcmapi-l1-1-0.dll
2014-05-16 14:18:09 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2014-05-16 14:18:09 ----A---- C:\WINDOWS\system32\occache.dll
2014-05-16 14:18:09 ----A---- C:\WINDOWS\system32\fveskybackup.dll
2014-05-16 14:18:09 ----A---- C:\WINDOWS\system32\finger.exe
2014-05-16 14:18:08 ----A---- C:\WINDOWS\SYSWOW64\f3ahvoas.dll
2014-05-16 14:18:02 ----A---- C:\WINDOWS\system32\srms.dat
2014-05-16 14:16:23 ----D---- C:\Users\pabuk_000\AppData\Roaming\uTorrent
2014-05-16 13:58:03 ----D---- C:\Users\pabuk_000\AppData\Roaming\Skype
2014-05-16 13:43:34 ----A---- C:\WINDOWS\system32\drivers\ETD.sys
2014-05-16 13:40:51 ----R---- C:\WINDOWS\system32\drivers\SAMSfPa.dat
2014-05-16 13:40:51 ----R---- C:\WINDOWS\system32\drivers\rtkhdaud.dat
2014-05-16 13:40:25 ----HD---- C:\Program Files (x86)\Temp
2014-05-16 13:40:24 ----A---- C:\WINDOWS\RtlExUpd.dll
2014-05-16 13:39:11 ----D---- C:\ProgramData\OneKey Recovery
2014-05-16 13:39:11 ----A---- C:\WINDOWS\system32\drivers\wsvd.sys
2014-05-16 13:36:04 ----A---- C:\WINDOWS\SYSWOW64\RtCamX.dll
2014-05-16 13:36:04 ----A---- C:\WINDOWS\system32\RtCamX64.dll
2014-05-16 13:36:04 ----A---- C:\WINDOWS\RTFTrack.exe
2014-05-16 13:36:04 ----A---- C:\WINDOWS\RtCamU64.exe
2014-05-16 13:35:50 ----RA---- C:\WINDOWS\system32\drivers\rtsuvc.sys
2014-05-16 13:35:50 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-05-16 13:35:39 ----D---- C:\Program Files (x86)\Realtek
2014-05-16 13:35:14 ----RA---- C:\WINDOWS\SYSWOW64\CSVer.dll
2014-05-16 13:32:33 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2014-05-16 13:32:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2014-05-16 13:32:27 ----A---- C:\WINDOWS\system32\msftedit.dll
2014-05-16 13:32:26 ----A---- C:\WINDOWS\system32\msxml6.dll
2014-05-16 13:32:26 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2014-05-16 13:32:26 ----A---- C:\WINDOWS\system32\authui.dll
2014-05-16 13:32:26 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-05-16 13:32:26 ----A---- C:\WINDOWS\explorer.exe
2014-05-16 13:32:25 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2014-05-16 13:32:25 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-05-16 13:32:25 ----A---- C:\WINDOWS\system32\dwmcore.dll
2014-05-16 13:32:25 ----A---- C:\WINDOWS\system32\d3d11.dll
2014-05-16 13:32:24 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2014-05-16 13:32:24 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2014-05-16 13:32:24 ----A---- C:\WINDOWS\system32\ole32.dll
2014-05-16 13:32:24 ----A---- C:\WINDOWS\system32\KernelBase.dll
2014-05-16 13:32:24 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2014-05-16 13:32:24 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2014-05-16 13:32:23 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2014-05-16 13:32:23 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2014-05-16 13:32:23 ----A---- C:\WINDOWS\system32\kerberos.dll
2014-05-16 13:32:22 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2014-05-16 13:32:22 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2014-05-16 13:32:22 ----A---- C:\WINDOWS\system32\wlidprov.dll
2014-05-16 13:32:22 ----A---- C:\WINDOWS\system32\ReAgent.dll
2014-05-16 13:32:22 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2014-05-16 13:32:22 ----A---- C:\WINDOWS\system32\kernel32.dll
2014-05-16 13:32:21 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2014-05-16 13:32:21 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2014-05-16 13:32:21 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2014-05-16 13:32:21 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2014-05-16 13:32:21 ----A---- C:\WINDOWS\system32\gdi32.dll
2014-05-16 13:32:21 ----A---- C:\WINDOWS\system32\dxgi.dll
2014-05-16 13:32:21 ----A---- C:\WINDOWS\system32\dnsapi.dll
2014-05-16 13:32:21 ----A---- C:\WINDOWS\system32\dcomp.dll
2014-05-16 13:32:20 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2014-05-16 13:32:20 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2014-05-16 13:32:20 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2014-05-16 13:32:20 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2014-05-16 13:32:20 ----A---- C:\WINDOWS\system32\rasapi32.dll
2014-05-16 13:32:20 ----A---- C:\WINDOWS\system32\netlogon.dll
2014-05-16 13:32:20 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2014-05-16 13:32:20 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2014-05-16 13:32:20 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2014-05-16 13:32:19 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2014-05-16 13:32:19 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2014-05-16 13:32:19 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2014-05-16 13:32:19 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2014-05-16 13:32:19 ----A---- C:\WINDOWS\system32\SessEnv.dll
2014-05-16 13:32:19 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2014-05-16 13:32:19 ----A---- C:\WINDOWS\system32\fveapi.dll
2014-05-16 13:32:19 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-05-16 13:32:19 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2014-05-16 13:32:19 ----A---- C:\WINDOWS\system32\BFE.DLL
2014-05-16 13:32:19 ----A---- C:\WINDOWS\system32\bdesvc.dll
2014-05-16 13:32:19 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-05-16 13:32:18 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2014-05-16 13:32:18 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2014-05-16 13:32:18 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2014-05-16 13:32:18 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2014-05-16 13:32:18 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2014-05-16 13:32:18 ----A---- C:\WINDOWS\system32\netcfgx.dll
2014-05-16 13:32:18 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2014-05-16 13:32:18 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2014-05-16 13:32:17 ----AC---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2014-05-16 13:32:17 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\SYSWOW64\userenv.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\wlangpui.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\userenv.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\umpnpmgr.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\ReInfo.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\profsvc.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\pdh.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\davclnt.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\cdd.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\AdmTmpl.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\aclui.dll
2014-05-16 13:32:16 ----AC---- C:\WINDOWS\system32\drivers\hidusb.sys
2014-05-16 13:32:16 ----AC---- C:\WINDOWS\system32\drivers\hidclass.sys
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\wlangpui.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\w32tm.exe
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\spp.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\CredentialMigrationHandler.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\AdmTmpl.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\WSDMon.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\w32tm.exe
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\spp.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\RMapi.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\LocationApi.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\fveapibase.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\drvinst.exe
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\drvcfg.exe
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\drivers\tcpipreg.sys
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\Display.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\dafWfdProvider.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\SYSWOW64\sxproxy.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\SYSWOW64\l2gpstore.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\system32\sxproxy.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\system32\SetNetworkLocation.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\system32\nshwfp.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\system32\l2gpstore.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\system32\fvewiz.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2014-05-16 13:32:15 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2014-05-16 13:32:15 ----A---- C:\WINDOWS\system32\DevPropMgr.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\system32\BdeHdCfgLib.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\system32\BdeHdCfg.exe
2014-05-16 13:27:22 ----D---- C:\WINDOWS\Embedded
2014-05-16 12:58:57 ----RD---- C:\WINDOWS\BrowserChoice
2014-05-16 12:54:51 ----D---- C:\Users\pabuk_000\AppData\Roaming\Apple Computer
2014-05-16 12:54:46 ----DC---- C:\WINDOWS\system32\DRVSTORE
2014-05-16 12:54:46 ----A---- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
2014-05-16 12:54:35 ----D---- C:\ProgramData\Apple Computer
2014-05-16 12:52:47 ----D---- C:\Program Files (x86)\Apple Software Update
2014-05-16 12:52:42 ----D---- C:\Program Files\Common Files\Apple
2014-05-16 12:52:34 ----D---- C:\Program Files\Bonjour
2014-05-16 12:52:34 ----D---- C:\Program Files (x86)\Bonjour
2014-05-16 12:52:26 ----D---- C:\ProgramData\Apple
2014-05-16 12:42:29 ----D---- C:\WINDOWS\system32\MRT
2014-05-16 12:42:26 ----A---- C:\WINDOWS\system32\MRT.exe
2014-05-16 12:30:36 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2014-05-16 12:28:55 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2014-05-16 12:28:54 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2014-05-16 12:28:54 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2014-05-16 12:28:54 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2014-05-16 12:28:53 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2014-05-16 12:28:53 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2014-05-16 12:28:53 ----A---- C:\WINDOWS\system32\d3d10level9.dll
2014-05-16 12:28:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2014-05-16 12:28:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2014-05-16 12:28:52 ----A---- C:\WINDOWS\SYSWOW64\d3d10level9.dll
2014-05-16 12:28:52 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2014-05-16 12:28:50 ----A---- C:\WINDOWS\system32\eapphost.dll
2014-05-16 12:28:47 ----A---- C:\WINDOWS\system32\tsmf.dll
2014-05-16 12:28:47 ----A---- C:\WINDOWS\system32\kd_02_8086.dll
2014-05-16 12:28:46 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2014-05-16 12:28:46 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2014-05-16 12:28:46 ----A---- C:\WINDOWS\system32\eapp3hst.dll
2014-05-16 12:28:45 ----A---- C:\WINDOWS\SYSWOW64\eapphost.dll
2014-05-16 12:28:45 ----A---- C:\WINDOWS\system32\pcsvDevice.dll
2014-05-16 12:28:45 ----A---- C:\WINDOWS\system32\msched.dll
2014-05-16 12:28:45 ----A---- C:\WINDOWS\system32\embeddedapplauncher.exe
2014-05-16 12:28:45 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2014-05-16 12:28:44 ----AC---- C:\WINDOWS\system32\drivers\stornvme.sys
2014-05-16 12:28:44 ----A---- C:\WINDOWS\system32\wldp.dll
2014-05-16 12:28:44 ----A---- C:\WINDOWS\system32\TSWbPrxy.exe
2014-05-16 12:28:44 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2014-05-16 12:28:43 ----A---- C:\WINDOWS\SYSWOW64\shsetup.dll
2014-05-16 12:28:43 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-05-16 12:28:43 ----A---- C:\WINDOWS\system32\eappcfg.dll
2014-05-16 12:28:42 ----A---- C:\WINDOWS\SYSWOW64\eappgnui.dll
2014-05-16 12:28:42 ----A---- C:\WINDOWS\SYSWOW64\eappcfg.dll
2014-05-16 12:28:42 ----A---- C:\WINDOWS\SYSWOW64\eapp3hst.dll
2014-05-16 12:28:42 ----A---- C:\WINDOWS\system32\eappgnui.dll
2014-05-16 12:28:41 ----A---- C:\WINDOWS\SYSWOW64\ftp.exe
2014-05-16 12:28:40 ----A---- C:\WINDOWS\SYSWOW64\miutils.dll
2014-05-16 12:28:40 ----A---- C:\WINDOWS\system32\rdpclip.exe
2014-05-16 12:28:40 ----A---- C:\WINDOWS\system32\miutils.dll
2014-05-16 12:28:40 ----A---- C:\WINDOWS\system32\ftp.exe
2014-05-16 12:27:19 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2014-05-16 12:27:19 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2014-05-16 12:27:15 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-05-16 12:27:14 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-05-16 12:27:14 ----A---- C:\WINDOWS\system32\mfds.dll
2014-05-16 12:27:13 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2014-05-16 12:27:13 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2014-05-16 12:27:13 ----A---- C:\WINDOWS\system32\Windows.Graphics.dll
2014-05-16 12:27:13 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2014-05-16 12:27:13 ----A---- C:\WINDOWS\system32\drivers\ipnat.sys
2014-05-16 12:27:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.dll
2014-05-16 12:27:12 ----A---- C:\WINDOWS\system32\rastls.dll
2014-05-16 12:27:12 ----A---- C:\WINDOWS\system32\msieftp.dll
2014-05-16 12:27:11 ----A---- C:\WINDOWS\system32\bi.dll
2014-05-16 12:27:10 ----AC---- C:\WINDOWS\system32\drivers\BtaMPM.sys
2014-05-16 12:27:10 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2014-05-16 12:27:10 ----A---- C:\WINDOWS\SYSWOW64\msieftp.dll
2014-05-16 12:27:10 ----A---- C:\WINDOWS\system32\deviceregistration.dll
2014-05-16 12:23:18 ----A---- C:\WINDOWS\system32\schedsvc.dll
2014-05-16 12:23:17 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2014-05-16 12:23:16 ----A---- C:\WINDOWS\system32\pnrpsvc.dll
2014-05-16 12:23:15 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2014-05-16 12:23:15 ----A---- C:\WINDOWS\system32\sti.dll
2014-05-16 12:23:15 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2014-05-16 12:23:14 ----A---- C:\WINDOWS\SYSWOW64\sti.dll
2014-05-16 12:23:14 ----A---- C:\WINDOWS\SYSWOW64\OEMLicense.dll
2014-05-16 12:23:14 ----A---- C:\WINDOWS\system32\OEMLicense.dll
2014-05-16 12:19:29 ----AC---- C:\WINDOWS\system32\drivers\intelpep.sys
2014-05-16 12:19:20 ----A---- C:\WINDOWS\system32\drivers\SerCx2.sys
2014-05-16 12:19:20 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2014-05-16 12:19:20 ----A---- C:\WINDOWS\system32\appmgr.dll
2014-05-16 12:19:18 ----A---- C:\WINDOWS\SYSWOW64\appmgr.dll
2014-05-16 12:10:28 ----A---- C:\WINDOWS\system32\sppsvc.exe
2014-05-16 12:10:26 ----A---- C:\WINDOWS\system32\dbgeng.dll
2014-05-16 12:10:25 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2014-05-16 12:10:25 ----A---- C:\WINDOWS\system32\dbghelp.dll
2014-05-16 12:10:24 ----A---- C:\WINDOWS\SYSWOW64\dbghelp.dll
2014-05-16 12:10:23 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2014-05-16 12:10:23 ----A---- C:\WINDOWS\system32\sppcomapi.dll
2014-05-16 12:09:01 ----A---- C:\WINDOWS\system32\WSCollect.exe
2014-05-16 12:06:09 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-05-16 12:06:09 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-05-16 12:05:58 ----A---- C:\WINDOWS\SYSWOW64\msdrm.dll
2014-05-16 12:05:58 ----A---- C:\WINDOWS\system32\msdrm.dll
2014-05-16 12:05:30 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2014-05-16 12:05:30 ----A---- C:\WINDOWS\system32\poqexec.exe
2014-05-16 12:05:19 ----D---- C:\ProgramData\REPORTS
2014-05-16 12:05:19 ----D---- C:\ProgramData\LOGFILES
2014-05-16 12:05:19 ----D---- C:\ProgramData\INFECTED
2014-05-16 12:04:43 ----A---- C:\WINDOWS\system32\d2d1.dll
2014-05-16 12:04:42 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2014-05-16 12:04:42 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2014-05-16 12:04:42 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2014-05-16 12:04:41 ----A---- C:\WINDOWS\SYSWOW64\imagehlp.dll
2014-05-16 12:04:41 ----A---- C:\WINDOWS\system32\imagehlp.dll
2014-05-16 12:04:02 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2014-05-16 12:04:02 ----A---- C:\WINDOWS\system32\crypt32.dll
2014-05-16 12:01:17 ----A---- C:\WINDOWS\SYSWOW64\WMPhoto.dll
2014-05-16 12:01:17 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2014-05-16 11:59:32 ----A---- C:\WINDOWS\SYSWOW64\pcaui.exe
2014-05-16 11:59:32 ----A---- C:\WINDOWS\system32\pcaui.exe
2014-05-16 11:26:00 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2014-05-16 11:24:42 ----D---- C:\Program Files (x86)\Adobe
2014-05-16 11:23:19 ----D---- C:\ProgramData\Adobe
2014-05-16 10:52:24 ----D---- C:\ProgramData\CDB
2014-05-16 10:50:36 ----D---- C:\ProgramData\TEMP
2014-05-16 10:49:51 ----A---- C:\WINDOWS\Reimage.ini
2014-05-16 10:46:03 ----D---- C:\Program Files (x86)\Intel
2014-05-16 10:46:01 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.DLL
2014-05-16 10:46:01 ----A---- C:\WINDOWS\system32\OpenCL.DLL
2014-05-16 10:45:56 ----D---- C:\Program Files\Intel
2014-05-16 10:41:49 ----D---- C:\Users\pabuk_000\AppData\Roaming\Macromedia
2014-05-16 10:34:47 ----D---- C:\ProgramData\NVIDIA Corporation
2014-05-16 10:34:43 ----D---- C:\Program Files\NVIDIA Corporation
2014-05-16 10:34:43 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-05-16 10:16:32 ----A---- C:\WINDOWS\SECOH-QAD.exe
2014-05-16 10:16:32 ----A---- C:\WINDOWS\SECOH-QAD.dll
2014-05-16 10:12:08 ----D---- C:\Users\pabuk_000\AppData\Roaming\Adobe
2014-05-16 10:11:19 ----SD---- C:\Users\pabuk_000\AppData\Roaming\Microsoft
2014-05-16 09:49:08 ----DC---- C:\WINDOWS\Panther
2014-05-16 09:48:07 ----D---- C:\Windows.old
2014-05-16 09:47:21 ----AC---- C:\WINDOWS\system32\drivers\usbccgp.sys
2014-05-16 09:47:11 ----D---- C:\Recovery
2014-05-16 09:36:45 ----RASH---- C:\BOOTSECT.BAK
2014-05-16 09:02:09 ----D---- C:\WINDOWS\CSC
2014-05-16 08:53:45 ----SHD---- C:\ProgramData\Šablony
2014-05-16 08:53:45 ----SHD---- C:\ProgramData\Plocha
2014-05-16 08:53:45 ----SHD---- C:\ProgramData\Nabídka Start
2014-05-16 08:53:45 ----SHD---- C:\ProgramData\Dokumenty
2014-05-16 08:53:45 ----SHD---- C:\ProgramData\Data aplikací
2014-05-16 08:53:22 ----D---- C:\WINDOWS\SoftwareDistribution
2014-05-16 08:50:14 ----D---- C:\WINDOWS\Prefetch
2014-05-15 18:46:33 ----SHD---- C:\Config.Msi
2014-05-15 09:09:25 ----SHD---- C:\Boot
======List of files/folders modified in the last 1 month======
2014-05-27 14:27:54 ----D---- C:\WINDOWS\Temp
2014-05-27 14:22:32 ----RD---- C:\WINDOWS\System32
2014-05-27 14:22:31 ----D---- C:\WINDOWS\Inf
2014-05-27 14:22:31 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-05-27 14:20:41 ----D---- C:\WINDOWS\system32\Tasks
2014-05-27 14:04:42 ----D---- C:\Windows
2014-05-27 14:00:14 ----RSD---- C:\WINDOWS\Fonts
2014-05-27 14:00:02 ----D---- C:\WINDOWS\system32\sru
2014-05-27 13:59:18 ----SHD---- C:\System Volume Information
2014-05-27 13:21:34 ----SHD---- C:\WINDOWS\Installer
2014-05-27 13:20:12 ----D---- C:\WINDOWS\debug
2014-05-27 13:17:13 ----RD---- C:\Program Files
2014-05-27 13:02:44 ----D---- C:\WINDOWS\system32\DriverStore
2014-05-27 13:02:44 ----D---- C:\WINDOWS\system32\drivers
2014-05-27 12:59:05 ----HD---- C:\ProgramData
2014-05-27 12:42:44 ----RD---- C:\Program Files (x86)
2014-05-26 16:03:05 ----D---- C:\WINDOWS\Microsoft.NET
2014-05-26 15:39:04 ----D---- C:\WINDOWS\SysWOW64
2014-05-26 15:32:14 ----D---- C:\Program Files\Common Files
2014-05-26 15:31:25 ----SD---- C:\ProgramData\Microsoft
2014-05-26 08:48:12 ----D---- C:\WINDOWS\Logs
2014-05-25 21:24:12 ----D---- C:\WINDOWS\system32\config
2014-05-25 16:11:20 ----D---- C:\WINDOWS\WinSxS
2014-05-25 10:15:42 ----RSD---- C:\WINDOWS\assembly
2014-05-25 02:21:54 ----D---- C:\WINDOWS\system32\drivers\etc
2014-05-25 02:19:06 ----D---- C:\WINDOWS\CbsTemp
2014-05-24 22:44:35 ----D---- C:\drivers
2014-05-24 09:30:11 ----D---- C:\WINDOWS\Tasks
2014-05-24 09:27:05 ----D---- C:\WINDOWS\vpnplugins
2014-05-24 09:25:52 ----D---- C:\temp
2014-05-23 12:04:02 ----D---- C:\Program Files\Common Files\microsoft shared
2014-05-23 11:48:50 ----D---- C:\WINDOWS\AppReadiness
2014-05-23 11:28:49 ----RD---- C:\Users
2014-05-23 09:30:17 ----HD---- C:\Program Files\WindowsApps
2014-05-22 14:36:06 ----D---- C:\WINDOWS\SYSWOW64\MUI
2014-05-22 14:36:06 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-05-22 14:36:06 ----D---- C:\WINDOWS\system32\MUI
2014-05-22 14:36:06 ----D---- C:\WINDOWS\system32\cs-CZ
2014-05-22 10:55:06 ----RD---- C:\WINDOWS\ToastData
2014-05-22 10:55:02 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-05-22 10:55:02 ----D---- C:\WINDOWS\system32\oobe
2014-05-22 10:55:02 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2014-05-21 20:59:24 ----SHD---- C:\$Recycle.Bin
2014-05-21 18:39:49 ----D---- C:\WINDOWS\system32\catroot2
2014-05-21 17:37:50 ----D---- C:\WINDOWS\system32\wdi
2014-05-21 17:33:57 ----D---- C:\Program Files (x86)\Common Files
2014-05-21 17:15:48 ----D---- C:\WINDOWS\system32\catroot
2014-05-20 22:24:32 ----D---- C:\Program Files\Internet Explorer
2014-05-19 17:00:27 ----D---- C:\Program Files\Windows Defender
2014-05-19 17:00:27 ----D---- C:\Program Files (x86)\Windows Defender
2014-05-18 07:36:43 ----D---- C:\WINDOWS\system32\drivers\UMDF
2014-05-17 22:04:06 ----D---- C:\WINDOWS\WinStore
2014-05-17 22:04:05 ----D---- C:\WINDOWS\apppatch
2014-05-16 15:48:34 ----D---- C:\WINDOWS\system32\wbem
2014-05-16 15:48:34 ----D---- C:\WINDOWS\system32\setup
2014-05-16 15:48:34 ----D---- C:\WINDOWS\PolicyDefinitions
2014-05-16 15:48:28 ----D---- C:\Program Files (x86)\Internet Explorer
2014-05-16 15:48:27 ----D---- C:\WINDOWS\system32\en-US
2014-05-16 15:48:26 ----D---- C:\WINDOWS\SYSWOW64\en-US
2014-05-16 15:48:11 ----D---- C:\Program Files\Windows Multimedia Platform
2014-05-16 15:48:10 ----D---- C:\Program Files\Windows Portable Devices
2014-05-16 15:48:10 ----D---- C:\Program Files\Windows Media Player
2014-05-16 15:48:09 ----D---- C:\Program Files (x86)\Windows Portable Devices
2014-05-16 15:48:09 ----D---- C:\Program Files (x86)\Windows Multimedia Platform
2014-05-16 15:48:09 ----D---- C:\Program Files (x86)\Windows Media Player
2014-05-16 15:48:08 ----D---- C:\WINDOWS\servicing
2014-05-16 15:48:08 ----D---- C:\WINDOWS\MediaViewer
2014-05-16 15:48:07 ----D---- C:\WINDOWS\SYSWOW64\wbem
2014-05-16 15:48:07 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-05-16 15:48:07 ----D---- C:\WINDOWS\SYSWOW64\Dism
2014-05-16 15:48:04 ----D---- C:\WINDOWS\SYSWOW64\oobe
2014-05-16 15:48:01 ----D---- C:\WINDOWS\cs-CZ
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\Sysprep
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\sk-SK
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\ru-RU
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\migration
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\lv-LV
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\ko-KR
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\it-IT
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\hr-HR
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\fr-FR
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\et-EE
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\en-GB
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\el-GR
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\de-DE
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\da-DK
2014-05-16 15:47:57 ----D---- C:\WINDOWS\system32\sv-SE
2014-05-16 15:47:57 ----D---- C:\WINDOWS\system32\he-IL
2014-05-16 15:47:57 ----D---- C:\WINDOWS\system32\fi-FI
2014-05-16 15:47:52 ----D---- C:\WINDOWS\system32\zh-TW
2014-05-16 15:47:52 ----D---- C:\WINDOWS\system32\zh-CN
2014-05-16 15:47:52 ----D---- C:\WINDOWS\system32\uk-UA
2014-05-16 15:47:52 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2014-05-16 15:47:52 ----D---- C:\WINDOWS\system32\sl-SI
2014-05-16 15:47:52 ----D---- C:\WINDOWS\system32\pt-PT
2014-05-16 15:47:52 ----D---- C:\WINDOWS\system32\pl-PL
2014-05-16 15:47:52 ----D---- C:\WINDOWS\system32\hu-HU
2014-05-16 15:47:52 ----D---- C:\WINDOWS\system32\es-ES
2014-05-16 15:47:51 ----D---- C:\WINDOWS\system32\ro-RO
2014-05-16 15:47:51 ----D---- C:\WINDOWS\system32\ja-JP
2014-05-16 15:47:51 ----D---- C:\WINDOWS\system32\bg-BG
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\zh-HK
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\tr-TR
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\th-TH
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\pt-BR
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\nl-NL
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\nb-NO
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\migwiz
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\lt-LT
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\drivers\en-US
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\Dism
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\Boot
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\ar-SA
2014-05-16 15:47:40 ----D---- C:\WINDOWS\Camera
2014-05-16 15:47:39 ----D---- C:\WINDOWS\FileManager
2014-05-16 15:41:34 ----SH---- C:\WINDOWS\system32\desktop.ini
2014-05-16 15:21:56 ----D---- C:\WINDOWS\Help
2014-05-16 14:41:15 ----D---- C:\WINDOWS\SYSWOW64\drivers
2014-05-16 14:40:53 ----A---- C:\WINDOWS\system32\WudfUpdate_01011.dll
2014-05-16 13:36:06 ----D---- C:\WINDOWS\twain_32
2014-05-16 12:39:41 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2014-05-16 10:51:16 ----D---- C:\WINDOWS\system32\restore
2014-05-16 09:48:15 ----D---- C:\WINDOWS\system32\Recovery
2014-05-16 09:03:29 ----D---- C:\WINDOWS\system32\CodeIntegrity
2014-05-16 08:54:01 ----D---- C:\WINDOWS\rescache
2014-05-16 08:53:45 ----D---- C:\Program Files\Windows NT
2014-05-01 21:30:26 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2013-09-17 239296]
R0 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2013-09-17 62136]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-09-01 647736]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2014-05-16 39008]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2013-12-26 32544]
R1 dtsoftbus01;@oem62.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-05-18 283200]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2013-09-17 239320]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2013-09-17 168256]
R1 EpfwLWF;@oem71.inf,%EpfwLWF_Desc%;Epfw NDIS LightWeight Filter; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2013-09-17 44120]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2013-08-22 71680]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2013-09-17 220232]
R3 ACPIVPC;@oem15.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2014-05-16 35600]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 btmhsf;btmhsf; C:\WINDOWS\system32\DRIVERS\btmhsf.sys [2013-10-15 1390904]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 iBtFltCoex;iBtFltCoex; C:\WINDOWS\system32\DRIVERS\iBtFltCoex.sys [2013-10-15 69088]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2013-08-23 4165120]
R3 iwdbus;@oem56.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2013-08-08 26008]
R3 MEIx64;@oem58.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2013-08-08 99288]
R3 NETwNe64;@oem11.inf,%NIC_Service_DispName_WIN8_64%;Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 8 64 Bit; C:\WINDOWS\system32\DRIVERS\Netwew00.sys [2013-10-08 3345376]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2013-12-26 11311392]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 rtsuvc;@oem34.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2012-08-27 8227216]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2013-08-14 34544]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2013-08-22 36864]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2013-08-22 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-04-11 1200128]
S3 ESETOlmarikOlmascoCleaner;ESET Olmarik/Olmasco Cleaner; \??\C:\WINDOWS\system32\Drivers\ESETOlmarikOlmascoCleaner.sys [2014-05-27 156360]
S3 intaud_WaveExtensible;@oem17.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2013-12-27 38296]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-08-27 3613528]
S3 IntcDAud;@oem57.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2013-08-20 449528]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
S3 RSUSBVSTOR;@oem60.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2013-07-09 329944]
S3 USBAAPL64;@oem20.inf,%USBAAPL64.SvcDesc%;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl64.sys [2013-03-18 54784]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-02-12 43336]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; D:\Programky\B\devmonsrv.exe [2013-08-26 1137016]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; D:\Programky\B\obexsrv.exe [2013-08-26 1157496]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2014-02-24 1343408]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-11 733696]
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management;Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; D:\Programky\B\ibtrksrv.exe [2013-09-18 157128]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-08-08 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-08-08 390616]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2013-10-29 920864]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-07-27 1889568]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S2 Service KMSELDI;Service KMSELDI; D:\Programky\KMSpico\Service_KMS.exe [2014-03-02 977088]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2013-08-23 279000]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-11 822232]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2014-05-15 641352]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-04-22 119408]
-----------------EOF-----------------
2014-05-16 14:19:53 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2014-05-16 14:19:53 ----A---- C:\WINDOWS\system32\sppc.dll
2014-05-16 14:19:53 ----A---- C:\WINDOWS\system32\SkyDriveShell.dll
2014-05-16 14:19:52 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2014-05-16 14:19:52 ----A---- C:\WINDOWS\system32\bcrypt.dll
2014-05-16 14:19:49 ----A---- C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2014-05-16 14:19:49 ----A---- C:\WINDOWS\system32\clrhost.dll
2014-05-16 14:19:49 ----A---- C:\WINDOWS\system32\aepdu.dll
2014-05-16 14:19:48 ----A---- C:\WINDOWS\SYSWOW64\sppc.dll
2014-05-16 14:19:48 ----A---- C:\WINDOWS\system32\wwanmm.dll
2014-05-16 14:19:48 ----A---- C:\WINDOWS\system32\WSClient.dll
2014-05-16 14:19:48 ----A---- C:\WINDOWS\system32\WLanConn.dll
2014-05-16 14:19:48 ----A---- C:\WINDOWS\system32\wimserv.exe
2014-05-16 14:19:48 ----A---- C:\WINDOWS\system32\PkgMgr.exe
2014-05-16 14:19:47 ----AC---- C:\WINDOWS\system32\drivers\sdbus.sys
2014-05-16 14:19:47 ----A---- C:\WINDOWS\SYSWOW64\VAN.dll
2014-05-16 14:19:47 ----A---- C:\WINDOWS\SYSWOW64\osk.exe
2014-05-16 14:19:47 ----A---- C:\WINDOWS\system32\wscinterop.dll
2014-05-16 14:19:47 ----A---- C:\WINDOWS\system32\microsoft-windows-system-events.dll
2014-05-16 14:19:46 ----A---- C:\WINDOWS\system32\PurchaseWindowsLicense.dll
2014-05-16 14:19:45 ----A---- C:\WINDOWS\SYSWOW64\SyncCenter.dll
2014-05-16 14:19:45 ----A---- C:\WINDOWS\SYSWOW64\SndVol.exe
2014-05-16 14:19:45 ----A---- C:\WINDOWS\SYSWOW64\SkyDriveShell.dll
2014-05-16 14:19:45 ----A---- C:\WINDOWS\system32\gameux.dll
2014-05-16 14:19:45 ----A---- C:\WINDOWS\system32\fhcfg.dll
2014-05-16 14:19:44 ----A---- C:\WINDOWS\SYSWOW64\WlanMM.dll
2014-05-16 14:19:44 ----A---- C:\WINDOWS\SYSWOW64\WinTypes.dll
2014-05-16 14:19:44 ----A---- C:\WINDOWS\system32\taskhost.exe
2014-05-16 14:19:44 ----A---- C:\WINDOWS\system32\dwm.exe
2014-05-16 14:19:43 ----A---- C:\WINDOWS\system32\winsrv.dll
2014-05-16 14:19:43 ----A---- C:\WINDOWS\system32\rasgcw.dll
2014-05-16 14:19:43 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2014-05-16 14:19:43 ----A---- C:\WINDOWS\system32\drivers\luafv.sys
2014-05-16 14:19:42 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2014-05-16 14:19:42 ----A---- C:\WINDOWS\system32\wscapi.dll
2014-05-16 14:19:42 ----A---- C:\WINDOWS\system32\dmdskmgr.dll
2014-05-16 14:19:41 ----AC---- C:\WINDOWS\system32\drivers\rfcomm.sys
2014-05-16 14:19:41 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2014-05-16 14:19:41 ----A---- C:\WINDOWS\system32\wermgr.exe
2014-05-16 14:19:41 ----A---- C:\WINDOWS\system32\srchadmin.dll
2014-05-16 14:19:40 ----AC---- C:\WINDOWS\system32\drivers\dumpsd.sys
2014-05-16 14:19:40 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.HumanInterfaceDevice.dll
2014-05-16 14:19:40 ----A---- C:\WINDOWS\SYSWOW64\mdmregistration.dll
2014-05-16 14:19:40 ----A---- C:\WINDOWS\SYSWOW64\clrhost.dll
2014-05-16 14:19:39 ----A---- C:\WINDOWS\SYSWOW64\ninput.dll
2014-05-16 14:19:36 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2014-05-16 14:19:36 ----A---- C:\WINDOWS\system32\wwanconn.dll
2014-05-16 14:19:36 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2014-05-16 14:19:36 ----A---- C:\WINDOWS\system32\SndVolSSO.dll
2014-05-16 14:19:36 ----A---- C:\WINDOWS\system32\smss.exe
2014-05-16 14:19:36 ----A---- C:\WINDOWS\system32\BioCredProv.dll
2014-05-16 14:19:36 ----A---- C:\WINDOWS\system32\AltTab.dll
2014-05-16 14:19:35 ----A---- C:\WINDOWS\system32\vdsbas.dll
2014-05-16 14:19:35 ----A---- C:\WINDOWS\system32\systemreset.exe
2014-05-16 14:19:35 ----A---- C:\WINDOWS\system32\RASMM.dll
2014-05-16 14:19:35 ----A---- C:\WINDOWS\system32\imm32.dll
2014-05-16 14:19:34 ----A---- C:\WINDOWS\system32\PlayToManager.dll
2014-05-16 14:19:34 ----A---- C:\WINDOWS\system32\fhcpl.dll
2014-05-16 14:19:33 ----A---- C:\WINDOWS\SYSWOW64\sqmapi.dll
2014-05-16 14:19:33 ----A---- C:\WINDOWS\system32\taskhostex.exe
2014-05-16 14:19:33 ----A---- C:\WINDOWS\system32\netid.dll
2014-05-16 14:19:33 ----A---- C:\WINDOWS\system32\fsutil.exe
2014-05-16 14:19:33 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-05-16 14:19:32 ----A---- C:\WINDOWS\system32\sharemediacpl.dll
2014-05-16 14:19:32 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2014-05-16 14:19:32 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-05-16 14:19:32 ----A---- C:\WINDOWS\system32\drivers\msgpioclx.sys
2014-05-16 14:19:32 ----A---- C:\WINDOWS\system32\das.dll
2014-05-16 14:19:32 ----A---- C:\WINDOWS\system32\CloudNotifications.exe
2014-05-16 14:19:31 ----A---- C:\WINDOWS\SYSWOW64\fsutil.exe
2014-05-16 14:19:31 ----A---- C:\WINDOWS\SYSWOW64\CloudNotifications.exe
2014-05-16 14:19:31 ----A---- C:\WINDOWS\system32\WSDApi.dll
2014-05-16 14:19:31 ----A---- C:\WINDOWS\system32\UserLanguagesCpl.dll
2014-05-16 14:19:31 ----A---- C:\WINDOWS\system32\sdclt.exe
2014-05-16 14:19:31 ----A---- C:\WINDOWS\system32\drivers\fileinfo.sys
2014-05-16 14:19:30 ----A---- C:\WINDOWS\SYSWOW64\wscapi.dll
2014-05-16 14:19:30 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-05-16 14:19:30 ----A---- C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2014-05-16 14:19:30 ----A---- C:\WINDOWS\system32\powrprof.dll
2014-05-16 14:19:30 ----A---- C:\WINDOWS\system32\mssprxy.dll
2014-05-16 14:19:30 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2014-05-16 14:19:29 ----AC---- C:\WINDOWS\system32\drivers\BasicRender.sys
2014-05-16 14:19:29 ----A---- C:\WINDOWS\SYSWOW64\WMPDMC.exe
2014-05-16 14:19:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Connectivity.dll
2014-05-16 14:19:29 ----A---- C:\WINDOWS\SYSWOW64\imm32.dll
2014-05-16 14:19:29 ----A---- C:\WINDOWS\system32\zipfldr.dll
2014-05-16 14:19:29 ----A---- C:\WINDOWS\system32\newdev.dll
2014-05-16 14:19:28 ----AC---- C:\WINDOWS\system32\drivers\sdstor.sys
2014-05-16 14:19:28 ----A---- C:\WINDOWS\SYSWOW64\SndVolSSO.dll
2014-05-16 14:19:28 ----A---- C:\WINDOWS\SYSWOW64\gameux.dll
2014-05-16 14:19:28 ----A---- C:\WINDOWS\system32\aepic.dll
2014-05-16 14:19:27 ----A---- C:\WINDOWS\system32\RestoreOptIn.exe
2014-05-16 14:19:27 ----A---- C:\WINDOWS\system32\dmvdsitf.dll
2014-05-16 14:19:26 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2014-05-16 14:19:26 ----A---- C:\WINDOWS\system32\vds.exe
2014-05-16 14:19:26 ----A---- C:\WINDOWS\system32\spwizeng.dll
2014-05-16 14:19:25 ----A---- C:\WINDOWS\system32\wow64win.dll
2014-05-16 14:19:25 ----A---- C:\WINDOWS\system32\UserAccountBroker.exe
2014-05-16 14:19:25 ----A---- C:\WINDOWS\system32\microsoft-windows-kernel-power-events.dll
2014-05-16 14:19:25 ----A---- C:\WINDOWS\system32\MbaeApiPublic.dll
2014-05-16 14:19:25 ----A---- C:\WINDOWS\system32\LockScreenContent.dll
2014-05-16 14:19:25 ----A---- C:\WINDOWS\system32\appinfo.dll
2014-05-16 14:19:24 ----A---- C:\WINDOWS\SYSWOW64\powrprof.dll
2014-05-16 14:19:24 ----A---- C:\WINDOWS\SYSWOW64\PlayToManager.dll
2014-05-16 14:19:24 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-05-16 14:19:24 ----A---- C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2014-05-16 14:19:23 ----A---- C:\WINDOWS\SYSWOW64\WSDApi.dll
2014-05-16 14:19:23 ----A---- C:\WINDOWS\SYSWOW64\WLanConn.dll
2014-05-16 14:19:23 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2014-05-16 14:19:23 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-05-16 14:19:22 ----A---- C:\WINDOWS\SYSWOW64\RestoreOptIn.exe
2014-05-16 14:19:22 ----A---- C:\WINDOWS\system32\bcd.dll
2014-05-16 14:19:22 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2014-05-16 14:19:21 ----A---- C:\WINDOWS\SYSWOW64\zipfldr.dll
2014-05-16 14:19:21 ----A---- C:\WINDOWS\SYSWOW64\UserAccountBroker.exe
2014-05-16 14:19:21 ----A---- C:\WINDOWS\SYSWOW64\srchadmin.dll
2014-05-16 14:19:21 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2014-05-16 14:19:21 ----A---- C:\WINDOWS\system32\dot3mm.dll
2014-05-16 14:19:20 ----A---- C:\WINDOWS\SYSWOW64\wscinterop.dll
2014-05-16 14:19:20 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-05-16 14:19:20 ----A---- C:\WINDOWS\system32\easinvoker.exe
2014-05-16 14:19:19 ----A---- C:\WINDOWS\SYSWOW64\bcd.dll
2014-05-16 14:19:19 ----A---- C:\WINDOWS\system32\DAMM.dll
2014-05-16 14:19:19 ----A---- C:\WINDOWS\system32\bootux.dll
2014-05-16 14:19:18 ----A---- C:\WINDOWS\system32\WiFiDisplay.dll
2014-05-16 14:19:17 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2014-05-16 14:19:16 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-05-16 14:19:16 ----A---- C:\WINDOWS\SYSWOW64\cleanmgr.exe
2014-05-16 14:19:15 ----AC---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2014-05-16 14:19:15 ----A---- C:\WINDOWS\system32\samlib.dll
2014-05-16 14:19:15 ----A---- C:\WINDOWS\system32\drivers\wpcfltr.sys
2014-05-16 14:19:15 ----A---- C:\WINDOWS\system32\cleanmgr.exe
2014-05-16 14:19:14 ----A---- C:\WINDOWS\system32\provsvc.dll
2014-05-16 14:19:12 ----AC---- C:\WINDOWS\system32\drivers\UCX01000.SYS
2014-05-16 14:19:12 ----A---- C:\WINDOWS\SYSWOW64\taskeng.exe
2014-05-16 14:19:12 ----A---- C:\WINDOWS\system32\rasmans.dll
2014-05-16 14:19:12 ----A---- C:\WINDOWS\system32\AuthHost.exe
2014-05-16 14:19:11 ----A---- C:\WINDOWS\system32\netiohlp.dll
2014-05-16 14:19:11 ----A---- C:\WINDOWS\system32\deviceaccess.dll
2014-05-16 14:19:10 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2014-05-16 14:19:10 ----A---- C:\WINDOWS\SYSWOW64\netid.dll
2014-05-16 14:19:10 ----A---- C:\WINDOWS\SYSWOW64\BioCredProv.dll
2014-05-16 14:19:10 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2014-05-16 14:19:10 ----A---- C:\WINDOWS\system32\korwbrkr.dll
2014-05-16 14:19:09 ----A---- C:\WINDOWS\SYSWOW64\dmvdsitf.dll
2014-05-16 14:19:08 ----A---- C:\WINDOWS\system32\scrrun.dll
2014-05-16 14:19:08 ----A---- C:\WINDOWS\system32\drivers\http.sys
2014-05-16 14:19:07 ----A---- C:\WINDOWS\SYSWOW64\SearchFilterHost.exe
2014-05-16 14:19:07 ----A---- C:\WINDOWS\SYSWOW64\netiohlp.dll
2014-05-16 14:19:07 ----A---- C:\WINDOWS\system32\easwrt.dll
2014-05-16 14:19:06 ----A---- C:\WINDOWS\system32\netplwiz.dll
2014-05-16 14:19:06 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-05-16 14:19:06 ----A---- C:\WINDOWS\system32\CloudStorageWizard.exe
2014-05-16 14:19:06 ----A---- C:\WINDOWS\system32\acppage.dll
2014-05-16 14:19:05 ----A---- C:\WINDOWS\SYSWOW64\dmdskmgr.dll
2014-05-16 14:19:05 ----A---- C:\WINDOWS\SYSWOW64\bcrypt.dll
2014-05-16 14:19:05 ----A---- C:\WINDOWS\system32\wcmcsp.dll
2014-05-16 14:19:05 ----A---- C:\WINDOWS\system32\scrobj.dll
2014-05-16 14:19:04 ----A---- C:\WINDOWS\SYSWOW64\scrrun.dll
2014-05-16 14:19:04 ----A---- C:\WINDOWS\system32\winbrand.dll
2014-05-16 14:19:04 ----A---- C:\WINDOWS\system32\LockScreenContentServer.exe
2014-05-16 14:19:04 ----A---- C:\WINDOWS\system32\AuthBroker.dll
2014-05-16 14:19:03 ----A---- C:\WINDOWS\SYSWOW64\samlib.dll
2014-05-16 14:19:03 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountTokenProvider.dll
2014-05-16 14:19:03 ----A---- C:\WINDOWS\system32\slpts.dll
2014-05-16 14:19:03 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2014-05-16 14:19:02 ----A---- C:\WINDOWS\SYSWOW64\MbaeApiPublic.dll
2014-05-16 14:19:02 ----A---- C:\WINDOWS\SYSWOW64\deviceaccess.dll
2014-05-16 14:19:02 ----A---- C:\WINDOWS\system32\PrintDialogs.dll
2014-05-16 14:19:01 ----A---- C:\WINDOWS\SYSWOW64\netplwiz.dll
2014-05-16 14:19:01 ----A---- C:\WINDOWS\SYSWOW64\acppage.dll
2014-05-16 14:19:01 ----A---- C:\WINDOWS\system32\wpnprv.dll
2014-05-16 14:19:01 ----A---- C:\WINDOWS\system32\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-05-16 14:19:01 ----A---- C:\WINDOWS\system32\Windows.Media.Renewal.dll
2014-05-16 14:19:01 ----A---- C:\WINDOWS\system32\wbadmin.exe
2014-05-16 14:19:01 ----A---- C:\WINDOWS\system32\sud.dll
2014-05-16 14:19:01 ----A---- C:\WINDOWS\system32\bcdedit.exe
2014-05-16 14:19:01 ----A---- C:\WINDOWS\system32\autofmt.exe
2014-05-16 14:19:01 ----A---- C:\WINDOWS\system32\autoconv.exe
2014-05-16 14:19:00 ----A---- C:\WINDOWS\SYSWOW64\provsvc.dll
2014-05-16 14:19:00 ----A---- C:\WINDOWS\SYSWOW64\printui.dll
2014-05-16 14:19:00 ----A---- C:\WINDOWS\system32\wbiosrvc.dll
2014-05-16 14:19:00 ----A---- C:\WINDOWS\system32\SysResetErr.exe
2014-05-16 14:19:00 ----A---- C:\WINDOWS\system32\sppnp.dll
2014-05-16 14:18:59 ----A---- C:\WINDOWS\SYSWOW64\wlidcredprov.dll
2014-05-16 14:18:59 ----A---- C:\WINDOWS\SYSWOW64\scrobj.dll
2014-05-16 14:18:59 ----A---- C:\WINDOWS\system32\untfs.dll
2014-05-16 14:18:59 ----A---- C:\WINDOWS\system32\bcdboot.exe
2014-05-16 14:18:58 ----A---- C:\WINDOWS\SYSWOW64\slpts.dll
2014-05-16 14:18:58 ----A---- C:\WINDOWS\SYSWOW64\PkgMgr.exe
2014-05-16 14:18:58 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-05-16 14:18:58 ----A---- C:\WINDOWS\system32\spbcd.dll
2014-05-16 14:18:58 ----A---- C:\WINDOWS\system32\setbcdlocale.dll
2014-05-16 14:18:58 ----A---- C:\WINDOWS\system32\migisol.dll
2014-05-16 14:18:58 ----A---- C:\WINDOWS\system32\autochk.exe
2014-05-16 14:18:57 ----A---- C:\WINDOWS\SYSWOW64\winbrand.dll
2014-05-16 14:18:57 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2014-05-16 14:18:57 ----A---- C:\WINDOWS\SYSWOW64\autofmt.exe
2014-05-16 14:18:57 ----A---- C:\WINDOWS\SYSWOW64\autoconv.exe
2014-05-16 14:18:57 ----A---- C:\WINDOWS\SYSWOW64\autochk.exe
2014-05-16 14:18:57 ----A---- C:\WINDOWS\system32\DAConn.dll
2014-05-16 14:18:56 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Bluetooth.dll
2014-05-16 14:18:56 ----A---- C:\WINDOWS\system32\WindowsAnytimeUpgradeResults.exe
2014-05-16 14:18:56 ----A---- C:\WINDOWS\system32\UXInit.dll
2014-05-16 14:18:56 ----A---- C:\WINDOWS\system32\IdCtrls.dll
2014-05-16 14:18:56 ----A---- C:\WINDOWS\system32\fhevents.dll
2014-05-16 14:18:56 ----A---- C:\WINDOWS\system32\dafBth.dll
2014-05-16 14:18:55 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2014-05-16 14:18:55 ----A---- C:\WINDOWS\SYSWOW64\AuthBroker.dll
2014-05-16 14:18:55 ----A---- C:\WINDOWS\system32\spcompat.dll
2014-05-16 14:18:54 ----AC---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2014-05-16 14:18:54 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-05-16 14:18:54 ----A---- C:\WINDOWS\SYSWOW64\StorageContextHandler.dll
2014-05-16 14:18:54 ----A---- C:\WINDOWS\system32\vdsutil.dll
2014-05-16 14:18:54 ----A---- C:\WINDOWS\system32\drivers\watchdog.sys
2014-05-16 14:18:54 ----A---- C:\WINDOWS\system32\cscript.exe
2014-05-16 14:18:53 ----A---- C:\WINDOWS\SYSWOW64\WimBootCompress.ini
2014-05-16 14:18:53 ----A---- C:\WINDOWS\SYSWOW64\spwizeng.dll
2014-05-16 14:18:53 ----A---- C:\WINDOWS\SYSWOW64\spbcd.dll
2014-05-16 14:18:53 ----A---- C:\WINDOWS\SYSWOW64\mssprxy.dll
2014-05-16 14:18:53 ----A---- C:\WINDOWS\system32\energytask.dll
2014-05-16 14:18:53 ----A---- C:\WINDOWS\system32\diskpart.exe
2014-05-16 14:18:52 ----A---- C:\WINDOWS\system32\WimBootCompress.ini
2014-05-16 14:18:52 ----A---- C:\WINDOWS\system32\werui.dll
2014-05-16 14:18:52 ----A---- C:\WINDOWS\system32\powercfg.exe
2014-05-16 14:18:52 ----A---- C:\WINDOWS\system32\devinv.dll
2014-05-16 14:18:49 ----A---- C:\WINDOWS\SYSWOW64\sud.dll
2014-05-16 14:18:49 ----A---- C:\WINDOWS\system32\RelPost.exe
2014-05-16 14:18:48 ----A---- C:\WINDOWS\system32\pnpclean.dll
2014-05-16 14:18:47 ----A---- C:\WINDOWS\SYSWOW64\wlidcli.dll
2014-05-16 14:18:47 ----A---- C:\WINDOWS\system32\SettingMonitor.dll
2014-05-16 14:18:47 ----A---- C:\WINDOWS\system32\deviceassociation.dll
2014-05-16 14:18:46 ----A---- C:\WINDOWS\SYSWOW64\SettingMonitor.dll
2014-05-16 14:18:46 ----A---- C:\WINDOWS\system32\PlayToDevice.dll
2014-05-16 14:18:46 ----A---- C:\WINDOWS\system32\dasHost.exe
2014-05-16 14:18:45 ----A---- C:\WINDOWS\SYSWOW64\qedit.dll
2014-05-16 14:18:45 ----A---- C:\WINDOWS\system32\srrstr.dll
2014-05-16 14:18:44 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2014-05-16 14:18:44 ----A---- C:\WINDOWS\system32\ReAgentc.exe
2014-05-16 14:18:44 ----A---- C:\WINDOWS\system32\qedit.dll
2014-05-16 14:18:43 ----A---- C:\WINDOWS\SYSWOW64\winsku.dll
2014-05-16 14:18:43 ----A---- C:\WINDOWS\SYSWOW64\SSShim.dll
2014-05-16 14:18:43 ----A---- C:\WINDOWS\SYSWOW64\PrintDialogs.dll
2014-05-16 14:18:43 ----A---- C:\WINDOWS\SYSWOW64\CloudStorageWizard.exe
2014-05-16 14:18:43 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2014-05-16 14:18:43 ----A---- C:\WINDOWS\system32\offreg.dll
2014-05-16 14:18:43 ----A---- C:\WINDOWS\system32\ActionQueue.dll
2014-05-16 14:18:42 ----A---- C:\WINDOWS\SYSWOW64\PlayToDevice.dll
2014-05-16 14:18:42 ----A---- C:\WINDOWS\SYSWOW64\IdCtrls.dll
2014-05-16 14:18:42 ----A---- C:\WINDOWS\SYSWOW64\deviceassociation.dll
2014-05-16 14:18:42 ----A---- C:\WINDOWS\system32\msshooks.dll
2014-05-16 14:18:42 ----A---- C:\WINDOWS\system32\dfrgui.exe
2014-05-16 14:18:41 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2014-05-16 14:18:41 ----A---- C:\WINDOWS\SYSWOW64\UserLanguagesCpl.dll
2014-05-16 14:18:41 ----A---- C:\WINDOWS\SYSWOW64\powercfg.exe
2014-05-16 14:18:41 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2014-05-16 14:18:41 ----A---- C:\WINDOWS\system32\mf3216.dll
2014-05-16 14:18:40 ----A---- C:\WINDOWS\SYSWOW64\migisol.dll
2014-05-16 14:18:40 ----A---- C:\WINDOWS\system32\f3ahvoas.dll
2014-05-16 14:18:39 ----A---- C:\WINDOWS\SYSWOW64\ReAgentc.exe
2014-05-16 14:18:39 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2014-05-16 14:18:39 ----A---- C:\WINDOWS\system32\SrTasks.exe
2014-05-16 14:18:38 ----A---- C:\WINDOWS\SYSWOW64\easwrt.dll
2014-05-16 14:18:38 ----A---- C:\WINDOWS\SYSWOW64\dfrgui.exe
2014-05-16 14:18:38 ----A---- C:\WINDOWS\system32\winsku.dll
2014-05-16 14:18:38 ----A---- C:\WINDOWS\system32\vdsdyn.dll
2014-05-16 14:18:37 ----A---- C:\WINDOWS\system32\themecpl.dll
2014-05-16 14:18:37 ----A---- C:\WINDOWS\system32\LockScreenContentHost.dll
2014-05-16 14:18:37 ----A---- C:\WINDOWS\system32\DevicePairing.dll
2014-05-16 14:18:37 ----A---- C:\WINDOWS\system32\Defrag.exe
2014-05-16 14:18:37 ----A---- C:\WINDOWS\system32\AepRoam.dll
2014-05-16 14:18:35 ----A---- C:\WINDOWS\SYSWOW64\sxshared.dll
2014-05-16 14:18:35 ----A---- C:\WINDOWS\SYSWOW64\diskpart.exe
2014-05-16 14:18:35 ----A---- C:\WINDOWS\SYSWOW64\cscript.exe
2014-05-16 14:18:34 ----A---- C:\WINDOWS\SYSWOW64\Windows.ApplicationModel.Store.dll
2014-05-16 14:18:34 ----A---- C:\WINDOWS\SYSWOW64\msshooks.dll
2014-05-16 14:18:34 ----A---- C:\WINDOWS\SYSWOW64\ConfigureExpandedStorage.dll
2014-05-16 14:18:34 ----A---- C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2014-05-16 14:18:33 ----A---- C:\WINDOWS\system32\scavengeui.dll
2014-05-16 14:18:30 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-05-16 14:18:29 ----A---- C:\WINDOWS\system32\wincorlib.dll
2014-05-16 14:18:28 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-session-winsta-l1-1-0.dll
2014-05-16 14:18:28 ----A---- C:\WINDOWS\SYSWOW64\setupugc.exe
2014-05-16 14:18:27 ----A---- C:\WINDOWS\SYSWOW64\wincorlib.dll
2014-05-16 14:18:24 ----A---- C:\WINDOWS\SYSWOW64\UXInit.dll
2014-05-16 14:18:24 ----A---- C:\WINDOWS\system32\BulkOperationHost.exe
2014-05-16 14:18:23 ----A---- C:\WINDOWS\system32\syncui.dll
2014-05-16 14:18:22 ----A---- C:\WINDOWS\system32\SettingSyncPolicy.dll
2014-05-16 14:18:21 ----A---- C:\WINDOWS\SYSWOW64\finger.exe
2014-05-16 14:18:20 ----A---- C:\WINDOWS\SYSWOW64\themecpl.dll
2014-05-16 14:18:20 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncPolicy.dll
2014-05-16 14:18:20 ----A---- C:\WINDOWS\system32\wmpdxm.dll
2014-05-16 14:18:19 ----A---- C:\WINDOWS\system32\ocsetapi.dll
2014-05-16 14:18:19 ----A---- C:\WINDOWS\system32\GlobCollationHost.dll
2014-05-16 14:18:18 ----AH---- C:\WINDOWS\system32\ext-ms-win-session-winsta-l1-1-0.dll
2014-05-16 14:18:18 ----A---- C:\WINDOWS\SYSWOW64\ocsetapi.dll
2014-05-16 14:18:18 ----A---- C:\WINDOWS\SYSWOW64\GlobCollationHost.dll
2014-05-16 14:18:18 ----A---- C:\WINDOWS\system32\StorageContextHandler.dll
2014-05-16 14:18:17 ----A---- C:\WINDOWS\system32\dataclen.dll
2014-05-16 14:18:17 ----A---- C:\WINDOWS\system32\aitagent.exe
2014-05-16 14:18:16 ----A---- C:\WINDOWS\SYSWOW64\korwbrkr.dll
2014-05-16 14:18:15 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-kernel32-package-l1-1-1.dll
2014-05-16 14:18:15 ----AH---- C:\WINDOWS\system32\ext-ms-win-kernel32-package-l1-1-1.dll
2014-05-16 14:18:15 ----A---- C:\WINDOWS\system32\shsetup.dll
2014-05-16 14:18:13 ----A---- C:\WINDOWS\SYSWOW64\dataclen.dll
2014-05-16 14:18:12 ----AH---- C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-1.dll
2014-05-16 14:18:12 ----A---- C:\WINDOWS\system32\shimeng.dll
2014-05-16 14:18:12 ----A---- C:\WINDOWS\system32\lpksetupproxyserv.dll
2014-05-16 14:18:12 ----A---- C:\WINDOWS\system32\fhsvcctl.dll
2014-05-16 14:18:12 ----A---- C:\WINDOWS\system32\aeinv.dll
2014-05-16 14:18:11 ----AH---- C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-0.dll
2014-05-16 14:18:11 ----A---- C:\WINDOWS\system32\dxmasf.dll
2014-05-16 14:18:10 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-ntuser-private-l1-1-1.dll
2014-05-16 14:18:10 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-ntuser-private-l1-1-0.dll
2014-05-16 14:18:10 ----A---- C:\WINDOWS\system32\winbici.dll
2014-05-16 14:18:09 ----AH---- C:\WINDOWS\SYSWOW64\ext-ms-win-networking-wcmapi-l1-1-0.dll
2014-05-16 14:18:09 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2014-05-16 14:18:09 ----A---- C:\WINDOWS\system32\occache.dll
2014-05-16 14:18:09 ----A---- C:\WINDOWS\system32\fveskybackup.dll
2014-05-16 14:18:09 ----A---- C:\WINDOWS\system32\finger.exe
2014-05-16 14:18:08 ----A---- C:\WINDOWS\SYSWOW64\f3ahvoas.dll
2014-05-16 14:18:02 ----A---- C:\WINDOWS\system32\srms.dat
2014-05-16 14:16:23 ----D---- C:\Users\pabuk_000\AppData\Roaming\uTorrent
2014-05-16 13:58:03 ----D---- C:\Users\pabuk_000\AppData\Roaming\Skype
2014-05-16 13:43:34 ----A---- C:\WINDOWS\system32\drivers\ETD.sys
2014-05-16 13:40:51 ----R---- C:\WINDOWS\system32\drivers\SAMSfPa.dat
2014-05-16 13:40:51 ----R---- C:\WINDOWS\system32\drivers\rtkhdaud.dat
2014-05-16 13:40:25 ----HD---- C:\Program Files (x86)\Temp
2014-05-16 13:40:24 ----A---- C:\WINDOWS\RtlExUpd.dll
2014-05-16 13:39:11 ----D---- C:\ProgramData\OneKey Recovery
2014-05-16 13:39:11 ----A---- C:\WINDOWS\system32\drivers\wsvd.sys
2014-05-16 13:36:04 ----A---- C:\WINDOWS\SYSWOW64\RtCamX.dll
2014-05-16 13:36:04 ----A---- C:\WINDOWS\system32\RtCamX64.dll
2014-05-16 13:36:04 ----A---- C:\WINDOWS\RTFTrack.exe
2014-05-16 13:36:04 ----A---- C:\WINDOWS\RtCamU64.exe
2014-05-16 13:35:50 ----RA---- C:\WINDOWS\system32\drivers\rtsuvc.sys
2014-05-16 13:35:50 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2014-05-16 13:35:39 ----D---- C:\Program Files (x86)\Realtek
2014-05-16 13:35:14 ----RA---- C:\WINDOWS\SYSWOW64\CSVer.dll
2014-05-16 13:32:33 ----A---- C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2014-05-16 13:32:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Shell.Search.UriHandler.dll
2014-05-16 13:32:27 ----A---- C:\WINDOWS\system32\msftedit.dll
2014-05-16 13:32:26 ----A---- C:\WINDOWS\system32\msxml6.dll
2014-05-16 13:32:26 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2014-05-16 13:32:26 ----A---- C:\WINDOWS\system32\authui.dll
2014-05-16 13:32:26 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-05-16 13:32:26 ----A---- C:\WINDOWS\explorer.exe
2014-05-16 13:32:25 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2014-05-16 13:32:25 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-05-16 13:32:25 ----A---- C:\WINDOWS\system32\dwmcore.dll
2014-05-16 13:32:25 ----A---- C:\WINDOWS\system32\d3d11.dll
2014-05-16 13:32:24 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2014-05-16 13:32:24 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2014-05-16 13:32:24 ----A---- C:\WINDOWS\system32\ole32.dll
2014-05-16 13:32:24 ----A---- C:\WINDOWS\system32\KernelBase.dll
2014-05-16 13:32:24 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2014-05-16 13:32:24 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2014-05-16 13:32:23 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2014-05-16 13:32:23 ----A---- C:\WINDOWS\SYSWOW64\d3d11.dll
2014-05-16 13:32:23 ----A---- C:\WINDOWS\system32\kerberos.dll
2014-05-16 13:32:22 ----A---- C:\WINDOWS\SYSWOW64\ole32.dll
2014-05-16 13:32:22 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2014-05-16 13:32:22 ----A---- C:\WINDOWS\system32\wlidprov.dll
2014-05-16 13:32:22 ----A---- C:\WINDOWS\system32\ReAgent.dll
2014-05-16 13:32:22 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2014-05-16 13:32:22 ----A---- C:\WINDOWS\system32\kernel32.dll
2014-05-16 13:32:21 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2014-05-16 13:32:21 ----A---- C:\WINDOWS\SYSWOW64\MrmCoreR.dll
2014-05-16 13:32:21 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2014-05-16 13:32:21 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2014-05-16 13:32:21 ----A---- C:\WINDOWS\system32\gdi32.dll
2014-05-16 13:32:21 ----A---- C:\WINDOWS\system32\dxgi.dll
2014-05-16 13:32:21 ----A---- C:\WINDOWS\system32\dnsapi.dll
2014-05-16 13:32:21 ----A---- C:\WINDOWS\system32\dcomp.dll
2014-05-16 13:32:20 ----A---- C:\WINDOWS\SYSWOW64\wlidprov.dll
2014-05-16 13:32:20 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2014-05-16 13:32:20 ----A---- C:\WINDOWS\SYSWOW64\dxgi.dll
2014-05-16 13:32:20 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2014-05-16 13:32:20 ----A---- C:\WINDOWS\system32\rasapi32.dll
2014-05-16 13:32:20 ----A---- C:\WINDOWS\system32\netlogon.dll
2014-05-16 13:32:20 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2014-05-16 13:32:20 ----A---- C:\WINDOWS\system32\drivers\wof.sys
2014-05-16 13:32:20 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2014-05-16 13:32:19 ----A---- C:\WINDOWS\SYSWOW64\SessEnv.dll
2014-05-16 13:32:19 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2014-05-16 13:32:19 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2014-05-16 13:32:19 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2014-05-16 13:32:19 ----A---- C:\WINDOWS\system32\SessEnv.dll
2014-05-16 13:32:19 ----A---- C:\WINDOWS\system32\SensorsApi.dll
2014-05-16 13:32:19 ----A---- C:\WINDOWS\system32\fveapi.dll
2014-05-16 13:32:19 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-05-16 13:32:19 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2014-05-16 13:32:19 ----A---- C:\WINDOWS\system32\BFE.DLL
2014-05-16 13:32:19 ----A---- C:\WINDOWS\system32\bdesvc.dll
2014-05-16 13:32:19 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-05-16 13:32:18 ----A---- C:\WINDOWS\SYSWOW64\SensorsApi.dll
2014-05-16 13:32:18 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2014-05-16 13:32:18 ----A---- C:\WINDOWS\SYSWOW64\netcfgx.dll
2014-05-16 13:32:18 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2014-05-16 13:32:18 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2014-05-16 13:32:18 ----A---- C:\WINDOWS\system32\netcfgx.dll
2014-05-16 13:32:18 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2014-05-16 13:32:18 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2014-05-16 13:32:17 ----AC---- C:\WINDOWS\system32\drivers\USBHUB3.SYS
2014-05-16 13:32:17 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Sensors.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\SYSWOW64\userenv.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\SYSWOW64\mfreadwrite.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\wlangpui.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\userenv.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\umpnpmgr.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\ReInfo.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\profsvc.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\pdh.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\mfreadwrite.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\davclnt.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\cdd.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\AdmTmpl.dll
2014-05-16 13:32:17 ----A---- C:\WINDOWS\system32\aclui.dll
2014-05-16 13:32:16 ----AC---- C:\WINDOWS\system32\drivers\hidusb.sys
2014-05-16 13:32:16 ----AC---- C:\WINDOWS\system32\drivers\hidclass.sys
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\wlangpui.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.Printing.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\w32tm.exe
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\spp.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\ReInfo.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\pdh.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\FWPUCLNT.DLL
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\drvinst.exe
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\Display.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\davclnt.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\CredentialMigrationHandler.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\AdmTmpl.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\SYSWOW64\aclui.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\WSDMon.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\w32tm.exe
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\spp.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\RMapi.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\LocationApi.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\fveapibase.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\drvinst.exe
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\drvcfg.exe
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\drivers\tcpipreg.sys
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\drivers\dfsc.sys
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\Display.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\dafWfdProvider.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2014-05-16 13:32:16 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Scanners.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\SYSWOW64\sxproxy.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\SYSWOW64\LocationApi.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\SYSWOW64\l2gpstore.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\system32\sxproxy.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\system32\SetNetworkLocation.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\system32\nshwfp.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\system32\l2gpstore.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\system32\fvewiz.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\system32\drivers\mrxsmb10.sys
2014-05-16 13:32:15 ----A---- C:\WINDOWS\system32\drivers\IPMIDrv.sys
2014-05-16 13:32:15 ----A---- C:\WINDOWS\system32\DevPropMgr.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\system32\BdeHdCfgLib.dll
2014-05-16 13:32:15 ----A---- C:\WINDOWS\system32\BdeHdCfg.exe
2014-05-16 13:27:22 ----D---- C:\WINDOWS\Embedded
2014-05-16 12:58:57 ----RD---- C:\WINDOWS\BrowserChoice
2014-05-16 12:54:51 ----D---- C:\Users\pabuk_000\AppData\Roaming\Apple Computer
2014-05-16 12:54:46 ----DC---- C:\WINDOWS\system32\DRVSTORE
2014-05-16 12:54:46 ----A---- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
2014-05-16 12:54:35 ----D---- C:\ProgramData\Apple Computer
2014-05-16 12:52:47 ----D---- C:\Program Files (x86)\Apple Software Update
2014-05-16 12:52:42 ----D---- C:\Program Files\Common Files\Apple
2014-05-16 12:52:34 ----D---- C:\Program Files\Bonjour
2014-05-16 12:52:34 ----D---- C:\Program Files (x86)\Bonjour
2014-05-16 12:52:26 ----D---- C:\ProgramData\Apple
2014-05-16 12:42:29 ----D---- C:\WINDOWS\system32\MRT
2014-05-16 12:42:26 ----A---- C:\WINDOWS\system32\MRT.exe
2014-05-16 12:30:36 ----N---- C:\WINDOWS\system32\MpSigStub.exe
2014-05-16 12:28:55 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2014-05-16 12:28:54 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2014-05-16 12:28:54 ----A---- C:\WINDOWS\SYSWOW64\mfasfsrcsnk.dll
2014-05-16 12:28:54 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2014-05-16 12:28:53 ----A---- C:\WINDOWS\system32\Windows.Web.Http.dll
2014-05-16 12:28:53 ----A---- C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2014-05-16 12:28:53 ----A---- C:\WINDOWS\system32\d3d10level9.dll
2014-05-16 12:28:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Web.Http.dll
2014-05-16 12:28:52 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.BackgroundTransfer.dll
2014-05-16 12:28:52 ----A---- C:\WINDOWS\SYSWOW64\d3d10level9.dll
2014-05-16 12:28:52 ----A---- C:\WINDOWS\system32\TSWorkspace.dll
2014-05-16 12:28:50 ----A---- C:\WINDOWS\system32\eapphost.dll
2014-05-16 12:28:47 ----A---- C:\WINDOWS\system32\tsmf.dll
2014-05-16 12:28:47 ----A---- C:\WINDOWS\system32\kd_02_8086.dll
2014-05-16 12:28:46 ----A---- C:\WINDOWS\SYSWOW64\TSWorkspace.dll
2014-05-16 12:28:46 ----A---- C:\WINDOWS\SYSWOW64\tsmf.dll
2014-05-16 12:28:46 ----A---- C:\WINDOWS\system32\eapp3hst.dll
2014-05-16 12:28:45 ----A---- C:\WINDOWS\SYSWOW64\eapphost.dll
2014-05-16 12:28:45 ----A---- C:\WINDOWS\system32\pcsvDevice.dll
2014-05-16 12:28:45 ----A---- C:\WINDOWS\system32\msched.dll
2014-05-16 12:28:45 ----A---- C:\WINDOWS\system32\embeddedapplauncher.exe
2014-05-16 12:28:45 ----A---- C:\WINDOWS\system32\drivers\srv.sys
2014-05-16 12:28:44 ----AC---- C:\WINDOWS\system32\drivers\stornvme.sys
2014-05-16 12:28:44 ----A---- C:\WINDOWS\system32\wldp.dll
2014-05-16 12:28:44 ----A---- C:\WINDOWS\system32\TSWbPrxy.exe
2014-05-16 12:28:44 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2014-05-16 12:28:43 ----A---- C:\WINDOWS\SYSWOW64\shsetup.dll
2014-05-16 12:28:43 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-05-16 12:28:43 ----A---- C:\WINDOWS\system32\eappcfg.dll
2014-05-16 12:28:42 ----A---- C:\WINDOWS\SYSWOW64\eappgnui.dll
2014-05-16 12:28:42 ----A---- C:\WINDOWS\SYSWOW64\eappcfg.dll
2014-05-16 12:28:42 ----A---- C:\WINDOWS\SYSWOW64\eapp3hst.dll
2014-05-16 12:28:42 ----A---- C:\WINDOWS\system32\eappgnui.dll
2014-05-16 12:28:41 ----A---- C:\WINDOWS\SYSWOW64\ftp.exe
2014-05-16 12:28:40 ----A---- C:\WINDOWS\SYSWOW64\miutils.dll
2014-05-16 12:28:40 ----A---- C:\WINDOWS\system32\rdpclip.exe
2014-05-16 12:28:40 ----A---- C:\WINDOWS\system32\miutils.dll
2014-05-16 12:28:40 ----A---- C:\WINDOWS\system32\ftp.exe
2014-05-16 12:27:19 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2014-05-16 12:27:19 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2014-05-16 12:27:15 ----A---- C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-05-16 12:27:14 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-05-16 12:27:14 ----A---- C:\WINDOWS\system32\mfds.dll
2014-05-16 12:27:13 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2014-05-16 12:27:13 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2014-05-16 12:27:13 ----A---- C:\WINDOWS\system32\Windows.Graphics.dll
2014-05-16 12:27:13 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2014-05-16 12:27:13 ----A---- C:\WINDOWS\system32\drivers\ipnat.sys
2014-05-16 12:27:12 ----A---- C:\WINDOWS\SYSWOW64\Windows.Graphics.dll
2014-05-16 12:27:12 ----A---- C:\WINDOWS\system32\rastls.dll
2014-05-16 12:27:12 ----A---- C:\WINDOWS\system32\msieftp.dll
2014-05-16 12:27:11 ----A---- C:\WINDOWS\system32\bi.dll
2014-05-16 12:27:10 ----AC---- C:\WINDOWS\system32\drivers\BtaMPM.sys
2014-05-16 12:27:10 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2014-05-16 12:27:10 ----A---- C:\WINDOWS\SYSWOW64\msieftp.dll
2014-05-16 12:27:10 ----A---- C:\WINDOWS\system32\deviceregistration.dll
2014-05-16 12:23:18 ----A---- C:\WINDOWS\system32\schedsvc.dll
2014-05-16 12:23:17 ----A---- C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2014-05-16 12:23:16 ----A---- C:\WINDOWS\system32\pnrpsvc.dll
2014-05-16 12:23:15 ----A---- C:\WINDOWS\SYSWOW64\MsSpellCheckingFacility.dll
2014-05-16 12:23:15 ----A---- C:\WINDOWS\system32\sti.dll
2014-05-16 12:23:15 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2014-05-16 12:23:14 ----A---- C:\WINDOWS\SYSWOW64\sti.dll
2014-05-16 12:23:14 ----A---- C:\WINDOWS\SYSWOW64\OEMLicense.dll
2014-05-16 12:23:14 ----A---- C:\WINDOWS\system32\OEMLicense.dll
2014-05-16 12:19:29 ----AC---- C:\WINDOWS\system32\drivers\intelpep.sys
2014-05-16 12:19:20 ----A---- C:\WINDOWS\system32\drivers\SerCx2.sys
2014-05-16 12:19:20 ----A---- C:\WINDOWS\system32\drivers\pdc.sys
2014-05-16 12:19:20 ----A---- C:\WINDOWS\system32\appmgr.dll
2014-05-16 12:19:18 ----A---- C:\WINDOWS\SYSWOW64\appmgr.dll
2014-05-16 12:10:28 ----A---- C:\WINDOWS\system32\sppsvc.exe
2014-05-16 12:10:26 ----A---- C:\WINDOWS\system32\dbgeng.dll
2014-05-16 12:10:25 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2014-05-16 12:10:25 ----A---- C:\WINDOWS\system32\dbghelp.dll
2014-05-16 12:10:24 ----A---- C:\WINDOWS\SYSWOW64\dbghelp.dll
2014-05-16 12:10:23 ----A---- C:\WINDOWS\SYSWOW64\tsgqec.dll
2014-05-16 12:10:23 ----A---- C:\WINDOWS\system32\sppcomapi.dll
2014-05-16 12:09:01 ----A---- C:\WINDOWS\system32\WSCollect.exe
2014-05-16 12:06:09 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-05-16 12:06:09 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-05-16 12:05:58 ----A---- C:\WINDOWS\SYSWOW64\msdrm.dll
2014-05-16 12:05:58 ----A---- C:\WINDOWS\system32\msdrm.dll
2014-05-16 12:05:30 ----A---- C:\WINDOWS\SYSWOW64\poqexec.exe
2014-05-16 12:05:30 ----A---- C:\WINDOWS\system32\poqexec.exe
2014-05-16 12:05:19 ----D---- C:\ProgramData\REPORTS
2014-05-16 12:05:19 ----D---- C:\ProgramData\LOGFILES
2014-05-16 12:05:19 ----D---- C:\ProgramData\INFECTED
2014-05-16 12:04:43 ----A---- C:\WINDOWS\system32\d2d1.dll
2014-05-16 12:04:42 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2014-05-16 12:04:42 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2014-05-16 12:04:42 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2014-05-16 12:04:41 ----A---- C:\WINDOWS\SYSWOW64\imagehlp.dll
2014-05-16 12:04:41 ----A---- C:\WINDOWS\system32\imagehlp.dll
2014-05-16 12:04:02 ----A---- C:\WINDOWS\SYSWOW64\crypt32.dll
2014-05-16 12:04:02 ----A---- C:\WINDOWS\system32\crypt32.dll
2014-05-16 12:01:17 ----A---- C:\WINDOWS\SYSWOW64\WMPhoto.dll
2014-05-16 12:01:17 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2014-05-16 11:59:32 ----A---- C:\WINDOWS\SYSWOW64\pcaui.exe
2014-05-16 11:59:32 ----A---- C:\WINDOWS\system32\pcaui.exe
2014-05-16 11:26:00 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2014-05-16 11:24:42 ----D---- C:\Program Files (x86)\Adobe
2014-05-16 11:23:19 ----D---- C:\ProgramData\Adobe
2014-05-16 10:52:24 ----D---- C:\ProgramData\CDB
2014-05-16 10:50:36 ----D---- C:\ProgramData\TEMP
2014-05-16 10:49:51 ----A---- C:\WINDOWS\Reimage.ini
2014-05-16 10:46:03 ----D---- C:\Program Files (x86)\Intel
2014-05-16 10:46:01 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.DLL
2014-05-16 10:46:01 ----A---- C:\WINDOWS\system32\OpenCL.DLL
2014-05-16 10:45:56 ----D---- C:\Program Files\Intel
2014-05-16 10:41:49 ----D---- C:\Users\pabuk_000\AppData\Roaming\Macromedia
2014-05-16 10:34:47 ----D---- C:\ProgramData\NVIDIA Corporation
2014-05-16 10:34:43 ----D---- C:\Program Files\NVIDIA Corporation
2014-05-16 10:34:43 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2014-05-16 10:16:32 ----A---- C:\WINDOWS\SECOH-QAD.exe
2014-05-16 10:16:32 ----A---- C:\WINDOWS\SECOH-QAD.dll
2014-05-16 10:12:08 ----D---- C:\Users\pabuk_000\AppData\Roaming\Adobe
2014-05-16 10:11:19 ----SD---- C:\Users\pabuk_000\AppData\Roaming\Microsoft
2014-05-16 09:49:08 ----DC---- C:\WINDOWS\Panther
2014-05-16 09:48:07 ----D---- C:\Windows.old
2014-05-16 09:47:21 ----AC---- C:\WINDOWS\system32\drivers\usbccgp.sys
2014-05-16 09:47:11 ----D---- C:\Recovery
2014-05-16 09:36:45 ----RASH---- C:\BOOTSECT.BAK
2014-05-16 09:02:09 ----D---- C:\WINDOWS\CSC
2014-05-16 08:53:45 ----SHD---- C:\ProgramData\Šablony
2014-05-16 08:53:45 ----SHD---- C:\ProgramData\Plocha
2014-05-16 08:53:45 ----SHD---- C:\ProgramData\Nabídka Start
2014-05-16 08:53:45 ----SHD---- C:\ProgramData\Dokumenty
2014-05-16 08:53:45 ----SHD---- C:\ProgramData\Data aplikací
2014-05-16 08:53:22 ----D---- C:\WINDOWS\SoftwareDistribution
2014-05-16 08:50:14 ----D---- C:\WINDOWS\Prefetch
2014-05-15 18:46:33 ----SHD---- C:\Config.Msi
2014-05-15 09:09:25 ----SHD---- C:\Boot
======List of files/folders modified in the last 1 month======
2014-05-27 14:27:54 ----D---- C:\WINDOWS\Temp
2014-05-27 14:22:32 ----RD---- C:\WINDOWS\System32
2014-05-27 14:22:31 ----D---- C:\WINDOWS\Inf
2014-05-27 14:22:31 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-05-27 14:20:41 ----D---- C:\WINDOWS\system32\Tasks
2014-05-27 14:04:42 ----D---- C:\Windows
2014-05-27 14:00:14 ----RSD---- C:\WINDOWS\Fonts
2014-05-27 14:00:02 ----D---- C:\WINDOWS\system32\sru
2014-05-27 13:59:18 ----SHD---- C:\System Volume Information
2014-05-27 13:21:34 ----SHD---- C:\WINDOWS\Installer
2014-05-27 13:20:12 ----D---- C:\WINDOWS\debug
2014-05-27 13:17:13 ----RD---- C:\Program Files
2014-05-27 13:02:44 ----D---- C:\WINDOWS\system32\DriverStore
2014-05-27 13:02:44 ----D---- C:\WINDOWS\system32\drivers
2014-05-27 12:59:05 ----HD---- C:\ProgramData
2014-05-27 12:42:44 ----RD---- C:\Program Files (x86)
2014-05-26 16:03:05 ----D---- C:\WINDOWS\Microsoft.NET
2014-05-26 15:39:04 ----D---- C:\WINDOWS\SysWOW64
2014-05-26 15:32:14 ----D---- C:\Program Files\Common Files
2014-05-26 15:31:25 ----SD---- C:\ProgramData\Microsoft
2014-05-26 08:48:12 ----D---- C:\WINDOWS\Logs
2014-05-25 21:24:12 ----D---- C:\WINDOWS\system32\config
2014-05-25 16:11:20 ----D---- C:\WINDOWS\WinSxS
2014-05-25 10:15:42 ----RSD---- C:\WINDOWS\assembly
2014-05-25 02:21:54 ----D---- C:\WINDOWS\system32\drivers\etc
2014-05-25 02:19:06 ----D---- C:\WINDOWS\CbsTemp
2014-05-24 22:44:35 ----D---- C:\drivers
2014-05-24 09:30:11 ----D---- C:\WINDOWS\Tasks
2014-05-24 09:27:05 ----D---- C:\WINDOWS\vpnplugins
2014-05-24 09:25:52 ----D---- C:\temp
2014-05-23 12:04:02 ----D---- C:\Program Files\Common Files\microsoft shared
2014-05-23 11:48:50 ----D---- C:\WINDOWS\AppReadiness
2014-05-23 11:28:49 ----RD---- C:\Users
2014-05-23 09:30:17 ----HD---- C:\Program Files\WindowsApps
2014-05-22 14:36:06 ----D---- C:\WINDOWS\SYSWOW64\MUI
2014-05-22 14:36:06 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-05-22 14:36:06 ----D---- C:\WINDOWS\system32\MUI
2014-05-22 14:36:06 ----D---- C:\WINDOWS\system32\cs-CZ
2014-05-22 10:55:06 ----RD---- C:\WINDOWS\ToastData
2014-05-22 10:55:02 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-05-22 10:55:02 ----D---- C:\WINDOWS\system32\oobe
2014-05-22 10:55:02 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2014-05-21 20:59:24 ----SHD---- C:\$Recycle.Bin
2014-05-21 18:39:49 ----D---- C:\WINDOWS\system32\catroot2
2014-05-21 17:37:50 ----D---- C:\WINDOWS\system32\wdi
2014-05-21 17:33:57 ----D---- C:\Program Files (x86)\Common Files
2014-05-21 17:15:48 ----D---- C:\WINDOWS\system32\catroot
2014-05-20 22:24:32 ----D---- C:\Program Files\Internet Explorer
2014-05-19 17:00:27 ----D---- C:\Program Files\Windows Defender
2014-05-19 17:00:27 ----D---- C:\Program Files (x86)\Windows Defender
2014-05-18 07:36:43 ----D---- C:\WINDOWS\system32\drivers\UMDF
2014-05-17 22:04:06 ----D---- C:\WINDOWS\WinStore
2014-05-17 22:04:05 ----D---- C:\WINDOWS\apppatch
2014-05-16 15:48:34 ----D---- C:\WINDOWS\system32\wbem
2014-05-16 15:48:34 ----D---- C:\WINDOWS\system32\setup
2014-05-16 15:48:34 ----D---- C:\WINDOWS\PolicyDefinitions
2014-05-16 15:48:28 ----D---- C:\Program Files (x86)\Internet Explorer
2014-05-16 15:48:27 ----D---- C:\WINDOWS\system32\en-US
2014-05-16 15:48:26 ----D---- C:\WINDOWS\SYSWOW64\en-US
2014-05-16 15:48:11 ----D---- C:\Program Files\Windows Multimedia Platform
2014-05-16 15:48:10 ----D---- C:\Program Files\Windows Portable Devices
2014-05-16 15:48:10 ----D---- C:\Program Files\Windows Media Player
2014-05-16 15:48:09 ----D---- C:\Program Files (x86)\Windows Portable Devices
2014-05-16 15:48:09 ----D---- C:\Program Files (x86)\Windows Multimedia Platform
2014-05-16 15:48:09 ----D---- C:\Program Files (x86)\Windows Media Player
2014-05-16 15:48:08 ----D---- C:\WINDOWS\servicing
2014-05-16 15:48:08 ----D---- C:\WINDOWS\MediaViewer
2014-05-16 15:48:07 ----D---- C:\WINDOWS\SYSWOW64\wbem
2014-05-16 15:48:07 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-05-16 15:48:07 ----D---- C:\WINDOWS\SYSWOW64\Dism
2014-05-16 15:48:04 ----D---- C:\WINDOWS\SYSWOW64\oobe
2014-05-16 15:48:01 ----D---- C:\WINDOWS\cs-CZ
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\Sysprep
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\sr-Latn-RS
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\sk-SK
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\ru-RU
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\migration
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\lv-LV
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\ko-KR
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\it-IT
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\hr-HR
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\fr-FR
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\et-EE
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\en-GB
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\el-GR
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\de-DE
2014-05-16 15:47:58 ----D---- C:\WINDOWS\system32\da-DK
2014-05-16 15:47:57 ----D---- C:\WINDOWS\system32\sv-SE
2014-05-16 15:47:57 ----D---- C:\WINDOWS\system32\he-IL
2014-05-16 15:47:57 ----D---- C:\WINDOWS\system32\fi-FI
2014-05-16 15:47:52 ----D---- C:\WINDOWS\system32\zh-TW
2014-05-16 15:47:52 ----D---- C:\WINDOWS\system32\zh-CN
2014-05-16 15:47:52 ----D---- C:\WINDOWS\system32\uk-UA
2014-05-16 15:47:52 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2014-05-16 15:47:52 ----D---- C:\WINDOWS\system32\sl-SI
2014-05-16 15:47:52 ----D---- C:\WINDOWS\system32\pt-PT
2014-05-16 15:47:52 ----D---- C:\WINDOWS\system32\pl-PL
2014-05-16 15:47:52 ----D---- C:\WINDOWS\system32\hu-HU
2014-05-16 15:47:52 ----D---- C:\WINDOWS\system32\es-ES
2014-05-16 15:47:51 ----D---- C:\WINDOWS\system32\ro-RO
2014-05-16 15:47:51 ----D---- C:\WINDOWS\system32\ja-JP
2014-05-16 15:47:51 ----D---- C:\WINDOWS\system32\bg-BG
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\zh-HK
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\tr-TR
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\th-TH
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\pt-BR
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\nl-NL
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\nb-NO
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\migwiz
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\lt-LT
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\drivers\en-US
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\Dism
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\Boot
2014-05-16 15:47:50 ----D---- C:\WINDOWS\system32\ar-SA
2014-05-16 15:47:40 ----D---- C:\WINDOWS\Camera
2014-05-16 15:47:39 ----D---- C:\WINDOWS\FileManager
2014-05-16 15:41:34 ----SH---- C:\WINDOWS\system32\desktop.ini
2014-05-16 15:21:56 ----D---- C:\WINDOWS\Help
2014-05-16 14:41:15 ----D---- C:\WINDOWS\SYSWOW64\drivers
2014-05-16 14:40:53 ----A---- C:\WINDOWS\system32\WudfUpdate_01011.dll
2014-05-16 13:36:06 ----D---- C:\WINDOWS\twain_32
2014-05-16 12:39:41 ----D---- C:\WINDOWS\system32\SecureBootUpdates
2014-05-16 10:51:16 ----D---- C:\WINDOWS\system32\restore
2014-05-16 09:48:15 ----D---- C:\WINDOWS\system32\Recovery
2014-05-16 09:03:29 ----D---- C:\WINDOWS\system32\CodeIntegrity
2014-05-16 08:54:01 ----D---- C:\WINDOWS\rescache
2014-05-16 08:53:45 ----D---- C:\Program Files\Windows NT
2014-05-01 21:30:26 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2013-09-17 239296]
R0 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2013-09-17 62136]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-09-01 647736]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2014-05-16 39008]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2013-12-26 32544]
R1 dtsoftbus01;@oem62.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-05-18 283200]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2013-09-17 239320]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2013-09-17 168256]
R1 EpfwLWF;@oem71.inf,%EpfwLWF_Desc%;Epfw NDIS LightWeight Filter; C:\WINDOWS\system32\DRIVERS\EpfwLWF.sys [2013-09-17 44120]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2013-08-22 71680]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2013-09-17 220232]
R3 ACPIVPC;@oem15.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2014-05-16 35600]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-01-31 81920]
R3 btmhsf;btmhsf; C:\WINDOWS\system32\DRIVERS\btmhsf.sys [2013-10-15 1390904]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240]
R3 iBtFltCoex;iBtFltCoex; C:\WINDOWS\system32\DRIVERS\iBtFltCoex.sys [2013-10-15 69088]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2013-08-23 4165120]
R3 iwdbus;@oem56.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2013-08-08 26008]
R3 MEIx64;@oem58.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [2013-08-08 99288]
R3 NETwNe64;@oem11.inf,%NIC_Service_DispName_WIN8_64%;Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 8 64 Bit; C:\WINDOWS\system32\DRIVERS\Netwew00.sys [2013-10-08 3345376]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2013-12-26 11311392]
R3 RTL8168;@netrt630x64.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-18 591360]
R3 rtsuvc;@oem34.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [2012-08-27 8227216]
R3 SmbDrvI;SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [2013-08-14 34544]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2013-08-22 36864]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2013-08-22 53248]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2013-08-22 118272]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-04-11 1200128]
S3 ESETOlmarikOlmascoCleaner;ESET Olmarik/Olmasco Cleaner; \??\C:\WINDOWS\system32\Drivers\ESETOlmarikOlmascoCleaner.sys [2014-05-27 156360]
S3 intaud_WaveExtensible;@oem17.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2013-12-27 38296]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-08-27 3613528]
S3 IntcDAud;@oem57.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2013-08-20 449528]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2014-01-27 167424]
S3 RSUSBVSTOR;@oem60.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RtsUVStor.sys [2013-07-09 329944]
S3 USBAAPL64;@oem20.inf,%USBAAPL64.SvcDesc%;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl64.sys [2013-03-18 54784]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2014-02-12 43336]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; D:\Programky\B\devmonsrv.exe [2013-08-26 1137016]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; D:\Programky\B\obexsrv.exe [2013-08-26 1157496]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2014-02-24 1343408]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-05-11 733696]
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management;Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; D:\Programky\B\ibtrksrv.exe [2013-09-18 157128]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-08-08 169432]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-08-08 390616]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2013-10-29 920864]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-07-27 1889568]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S2 Service KMSELDI;Service KMSELDI; D:\Programky\KMSpico\Service_KMS.exe [2014-03-02 977088]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2013-08-23 279000]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-05-11 822232]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2014-05-15 641352]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-04-22 119408]
-----------------EOF-----------------
Re: Otvíraní nechtěných webových stránek prosím kontrolu log
Nekdy je jedine reseni reinstal prohlizece, protoze se to do nej tak zavrta, ze to nejde skriptem ven. Navic je to prohlizec, ktery nepatri mezi nejpouzivanejsi, cili skenery ho pro jistotu neukazuji vubecPajinek88 píše:zkušel jsem to ve vice prohlížečích a asi blb jen maxthon po jeho odinstalovania znova nainstalovani se nic už samo neotevíra.
Po kterem kroku to zaclo zlobit?Pajinek88 píše:Ale nejdou otvírat .PDF soubory.
k otevíraní používam aplikaci od Microsoftu - Reader, jenom to blikne
nefunguje ani Store.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Přispějete na provoz fóra?
