Dobré ráno, včera jsem měl problém s policejním virem a po jeho vyřešení jsem byl Naughtym odkázán sem. Kromě logu z RSIT přikládám i logy z OTL. Děkuji za pomoc.
Logfile of random's system information tool 1.06 (written by random/random)
Run by Adam at 2012-12-28 22:29:39
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 5 GB (5%) free of 96 GB
Total RAM: 3066 MB (36% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:29:50, on 28.12.2012
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\OEM\OSD_1.16\osd.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.Exe
C:\Program Files\Real\RealPlayer\Update\realsched.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Users\Adam\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\The Weather Channel\The Weather Channel App\TWCApp.exe
C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
C:\Users\Adam\AppData\Local\Autobahn\nexdef.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Users\Adam\AppData\Local\Akamai\netsession_win.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Adam\Desktop\RSIT.exe
C:\Program Files\trend micro\Adam.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1:9421;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SimilarSites - {FE69C007-C452-4d3e-86D2-1730DF8BC871} - C:\Program Files\SimilarSites\similarsites.dll
R3 - URLSearchHook: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll
R3 - URLSearchHook: (no name) - - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Idea2 SidebarBrowserMonitor Class - {45AD732C-2CE2-4666-B366-B2214AD57A49} - C:\Program Files\Desktop Sidebar\sbhelp.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O3 - Toolbar: SimilarSites - {FE69C007-C452-4d3e-86D2-1730DF8BC871} - C:\Program Files\SimilarSites\similarsites.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [FSCRecovery] c:\Program Files\Fujitsu Siemens Computers\Fujitsu Siemens Computers Recovery\FSCRecoveryReminder.exe
O4 - HKLM\..\Run: [OSD] C:\Program Files\OEM\OSD_1.16\osd.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [TkBellExe] "c:\program files\real\realplayer\Update\realsched.exe" -osboot
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [USBToolTip] C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [DW6] "C:\Program Files\The Weather Channel FW\Desktop\DesktopWeather.exe"
O4 - HKCU\..\Run: [Xvid] C:\Program Files\Xvid\CheckUpdate.exe
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Adam\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [DW7] "C:\Program Files\The Weather Channel\The Weather Channel App\TWCApp.exe"
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe" -automount
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [fsc-reg] C:\ProgramData\fsc-reg\fscreg.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [fsc-reg] C:\ProgramData\fsc-reg\fscreg.exe (User 'Default user')
O4 - Startup: NexDef Plug-in.lnk = C:\Users\Adam\AppData\Local\Autobahn\nexdef.exe
O4 - Global Startup: WDDMStatus.lnk = C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Subscribe in Desktop Sidebar - {09FE188B-6E85-479e-9411-51FB2220DF80} - C:\Program Files\Desktop Sidebar\sbhelp.dll
O9 - Extra 'Tools' menuitem: Subscribe in Desktop Sidebar - {09FE188B-6E85-479e-9411-51FB2220DF80} - C:\Program Files\Desktop Sidebar\sbhelp.dll
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: SimilarSites - {807DF5E0-4EF7-48a8-A405-239F3E29FFA9} - C:\Program Files\SimilarSites\similarsites.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe
O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe
O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: OSD Service (OsdService) - TODO: <????> - C:\Program Files\OEM\OSD_1.16\OsdService.exe
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: Fujitsu Siemens Computers Diagnostic Testhandler (TestHandler) - Fujitsu Siemens Computers - C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
O23 - Service: WDDMService - WDC - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
O23 - Service: WD File Management Engine (WDFME) - Unknown owner - C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
O23 - Service: WD File Management Shadow Engine (WDSC) - Unknown owner - C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
--
End of file - 11349 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Ad-Aware Update (Daily 1).job
C:\Windows\tasks\Ad-Aware Update (Daily 2).job
C:\Windows\tasks\Ad-Aware Update (Daily 3).job
C:\Windows\tasks\Ad-Aware Update (Daily 4).job
C:\Windows\tasks\Ad-Aware Update (Weekly).job
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\Install_NSS.job
C:\Windows\tasks\ReclaimerUpdateFiles_Adam.job
C:\Windows\tasks\ReclaimerUpdateXML_Adam.job
C:\Windows\tasks\RNUpgradeHelperLogonPrompt_Adam.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-07-27 63944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{45AD732C-2CE2-4666-B366-B2214AD57A49}]
Idea2 SidebarBrowserMonitor Class - C:\Program Files\Desktop Sidebar\sbhelp.dll [2006-07-09 278528]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-09-24 449512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-10-30 1227736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ba14329e-9550-4989-b3f2-9732e92d17cc}]
Vuze Remote Toolbar - C:\Program Files\Vuze_Remote\tbVuze.dll [2010-03-17 2355224]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-09-24 155384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{ba14329e-9550-4989-b3f2-9732e92d17cc} - Vuze Remote Toolbar - C:\Program Files\Vuze_Remote\tbVuze.dll [2010-03-17 2355224]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-10-30 1227736]
{FE69C007-C452-4d3e-86D2-1730DF8BC871} - SimilarSites - C:\Program Files\SimilarSites\similarsites.dll [2012-02-01 316928]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-05-13 6139904]
"FSCRecovery"=c:\Program Files\Fujitsu Siemens Computers\Fujitsu Siemens Computers Recovery\FSCRecoveryReminder.exe [2008-05-08 268096]
"OSD"=C:\Program Files\OEM\OSD_1.16\osd.exe [2008-06-18 376832]
"Skytel"=C:\Windows\Skytel.exe [2007-11-20 1826816]
"Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-08-31 30192]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-09-01 13797992]
"NPSStartup"= []
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2012-10-30 4297136]
"SpywareTerminator"=C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2009-10-02 2171904]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-07-27 919008]
"TkBellExe"=c:\program files\real\realplayer\Update\realsched.exe [2012-06-16 296056]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-10-11 59280]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2012-10-25 421888]
"LogMeIn Hamachi Ui"=C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2012-12-10 2254768]
"USBToolTip"=C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe [2007-02-20 199752]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"WindowsWelcomeCenter"=oobefldr.dll,ShowWelcomeCenter []
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
"DW6"=C:\Program Files\The Weather Channel FW\Desktop\DesktopWeather.exe []
"Xvid"=C:\Program Files\Xvid\CheckUpdate.exe [2011-01-17 8192]
"Akamai NetSession Interface"=C:\Users\Adam\AppData\Local\Akamai\netsession_win.exe [2012-10-09 4441920]
"DW7"=C:\Program Files\The Weather Channel\The Weather Channel App\TWCApp.exe [2011-12-12 10448384]
"AlcoholAutomount"=C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe [2012-01-05 75624]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
WDDMStatus.lnk - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
C:\Users\Adam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
NexDef Plug-in.lnk - C:\Users\Adam\AppData\Local\Autobahn\nexdef.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2012-12-29 01:22:34 ----SHD---- C:\RECYCLER
2012-12-29 00:34:01 ----A---- C:\Extras.Txt
2012-12-29 00:33:59 ----A---- C:\OTL.Txt
2012-12-29 00:33:57 ----A---- C:\PRIKAZ.TXT
2012-12-28 11:52:07 ----SHD---- C:\found.000
2012-12-21 06:38:17 ----A---- C:\Windows\system32\atmfd.dll
2012-12-21 06:38:16 ----A---- C:\Windows\system32\atmlib.dll
2012-12-17 23:41:27 ----D---- C:\ProgramData\Pinnacle Studio
2012-12-17 23:34:34 ----D---- C:\Program Files\AdorageI-SAL
2012-12-17 23:34:34 ----D---- C:\Program Files\AdorageI-GfxDatas
2012-12-17 23:34:34 ----A---- C:\adorage-protocol.txt
2012-12-17 23:18:53 ----D---- C:\Program Files\Common Files\MSSoap
2012-12-17 23:18:53 ----D---- C:\Program Files\BIAS
2012-12-17 23:17:02 ----D---- C:\Users\Adam\AppData\Roaming\proDAD
2012-12-17 23:17:00 ----D---- C:\Program Files\proDAD
2012-12-17 23:06:57 ----D---- C:\Program Files\Alcohol Soft
2012-12-17 22:46:01 ----D---- C:\Program Files\SimilarSites
2012-12-17 22:45:59 ----D---- C:\Users\Adam\AppData\Roaming\SimilarSites
2012-12-17 22:34:27 ----A---- C:\ProgramData\__wdump.txt
2012-12-17 22:30:39 ----A---- C:\Windows\unvise32.exe
2012-12-17 22:30:34 ----D---- C:\Program Files\LooksBuilderSE
2012-12-17 22:25:44 ----D---- C:\Program Files\Common Files\Pinnacle
2012-12-17 22:24:12 ----D---- C:\ProgramData\Pinnacle Studio Ultimate Collection
2012-12-17 22:12:07 ----D---- C:\Program Files\Common Files\Pegasus Imaging
2012-12-17 22:11:57 ----D---- C:\ProgramData\Studio 14
2012-12-17 22:11:57 ----D---- C:\ProgramData\Pinnacle Studio Plus
2012-12-17 22:11:57 ----D---- C:\Program Files\Common Files\Yahoo!
2012-12-17 22:01:49 ----D---- C:\ProgramData\Pinnacle
2012-12-17 22:01:49 ----D---- C:\Program Files\Pinnacle
2012-12-17 15:24:03 ----D---- C:\Users\Adam\AppData\Roaming\Sony
2012-12-13 06:45:02 ----A---- C:\Windows\system32\vbscript.dll
2012-12-13 06:45:02 ----A---- C:\Windows\system32\mshtmled.dll
2012-12-13 06:45:01 ----A---- C:\Windows\system32\jsproxy.dll
2012-12-13 06:45:01 ----A---- C:\Windows\system32\ieUnatt.exe
2012-12-13 06:45:01 ----A---- C:\Windows\system32\ieui.dll
2012-12-13 06:45:00 ----A---- C:\Windows\system32\msfeeds.dll
2012-12-13 06:44:59 ----A---- C:\Windows\system32\wininet.dll
2012-12-13 06:44:59 ----A---- C:\Windows\system32\jscript.dll
2012-12-13 06:44:58 ----A---- C:\Windows\system32\url.dll
2012-12-13 06:44:58 ----A---- C:\Windows\system32\jscript9.dll
2012-12-13 06:44:57 ----A---- C:\Windows\system32\iertutil.dll
2012-12-13 06:44:55 ----A---- C:\Windows\system32\urlmon.dll
2012-12-13 06:44:54 ----A---- C:\Windows\system32\ieframe.dll
2012-12-13 06:44:51 ----A---- C:\Windows\system32\mshtml.dll
2012-12-13 06:38:58 ----A---- C:\Windows\system32\Wdfres.dll
2012-12-13 06:38:43 ----A---- C:\Windows\system32\winusb.dll
2012-12-13 06:38:42 ----A---- C:\Windows\system32\WUDFSvc.dll
2012-12-13 06:38:42 ----A---- C:\Windows\system32\WUDFPlatform.dll
2012-12-13 06:38:33 ----A---- C:\Windows\system32\WUDFHost.exe
2012-12-13 06:38:33 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2012-12-13 06:38:32 ----A---- C:\Windows\system32\WUDFx.dll
2012-12-13 06:12:55 ----A---- C:\Windows\system32\dpnsvr.exe
2012-12-13 06:12:55 ----A---- C:\Windows\system32\dpnet.dll
2012-12-13 06:12:53 ----A---- C:\Windows\system32\kernel32.dll
2012-12-13 06:12:47 ----A---- C:\Windows\system32\tzres.dll
2012-12-12 19:07:26 ----AD---- C:\ProgramData\TEMP
2012-12-11 17:54:57 ----D---- C:\Program Files\LogMeIn Hamachi
2012-12-06 18:59:14 ----D---- C:\Program Files\Mozilla Firefox
2012-12-03 18:45:40 ----D---- C:\Users\Adam\AppData\Roaming\GoPro
2012-12-03 18:39:27 ----D---- C:\Program Files\CineForm
2012-12-03 18:37:45 ----D---- C:\Program Files\GoPro
======List of files/folders modified in the last 1 months======
2012-12-29 01:21:18 ----HD---- C:\ProgramData
2012-12-28 22:29:50 ----D---- C:\Windows\Prefetch
2012-12-28 22:29:44 ----D---- C:\Program Files\trend micro
2012-12-28 22:29:28 ----D---- C:\Windows\Temp
2012-12-28 20:36:22 ----SHD---- C:\System Volume Information
2012-12-28 19:37:25 ----D---- C:\Program Files\Common Files\Akamai
2012-12-28 09:24:32 ----D---- C:\Windows\Tasks
2012-12-23 22:39:07 ----D---- C:\Windows\system32\Tasks
2012-12-21 22:21:29 ----D---- C:\Users\Adam\AppData\Roaming\BSplayer
2012-12-21 18:44:52 ----D---- C:\Windows\winsxs
2012-12-21 18:24:02 ----D---- C:\Windows\system32\catroot
2012-12-21 18:24:00 ----D---- C:\Windows\system32\catroot2
2012-12-21 06:56:21 ----D---- C:\Windows\System32
2012-12-21 06:38:21 ----D---- C:\Users\Adam\AppData\Roaming\Azureus
2012-12-21 06:08:52 ----D---- C:\Windows\Minidump
2012-12-21 06:08:42 ----D---- C:\Windows
2012-12-20 19:22:37 ----D---- C:\Windows\system32\WDI
2012-12-19 13:06:15 ----D---- C:\Windows\inf
2012-12-19 13:06:15 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-12-17 23:42:03 ----RD---- C:\Program Files
2012-12-17 23:41:23 ----RSD---- C:\Windows\Fonts
2012-12-17 23:20:59 ----HD---- C:\Program Files\InstallShield Installation Information
2012-12-17 23:18:57 ----SHD---- C:\Windows\Installer
2012-12-17 23:18:57 ----SHD---- C:\Config.Msi
2012-12-17 23:18:53 ----D---- C:\Program Files\Common Files
2012-12-17 22:46:29 ----D---- C:\Windows\system32\drivers
2012-12-17 15:48:20 ----RSD---- C:\Windows\assembly
2012-12-13 19:18:32 ----D---- C:\Windows\rescache
2012-12-13 18:58:56 ----D---- C:\Windows\system32\migration
2012-12-13 18:58:56 ----D---- C:\Program Files\Internet Explorer
2012-12-13 18:58:55 ----D---- C:\Windows\system32\wbem
2012-12-13 18:58:55 ----D---- C:\Windows\system32\cs-CZ
2012-12-13 06:46:38 ----A---- C:\Windows\win.ini
2012-12-13 06:35:29 ----A---- C:\Windows\system32\mrt.exe
2012-12-12 20:28:28 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2012-12-07 06:09:25 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-12-03 18:39:21 ----D---- C:\Program Files\DIFX
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2012-10-30 35928]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2012-10-30 738504]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2012-10-30 361032]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2012-10-30 54232]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\Windows\system32\drivers\sp_rsdrv2.sys [2009-10-02 142592]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2012-10-30 21256]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2012-10-30 58680]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-21 14208]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS [2009-03-31 36608]
R3 GpdDevDPort;GpdDevDPort; \??\C:\Windows\system32\directport.sys [2008-06-17 7168]
R3 GpdKbFilter;GpdKbFilter; \??\C:\Windows\system32\kbfiltr.sys [2008-03-31 8192]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-05-14 2136920]
R3 MarvinBus;Pinnacle Marvin Bus; C:\Windows\system32\DRIVERS\MarvinBus.sys [2005-09-23 171520]
R3 netr28;Ralink 802.11n Wireless Driver for Windows Vista; C:\Windows\system32\DRIVERS\netr28.sys [2008-01-30 338432]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-09-01 9825728]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2010-06-23 259176]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
S3 a0nn7xso;a0nn7xso; C:\Windows\system32\drivers\a0nn7xso.sys []
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 NETw5v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit ; C:\Windows\system32\DRIVERS\NETw5v32.sys [2008-05-01 3660800]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2009-03-20 90112]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2009-03-20 14976]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2009-03-20 121856]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2009-05-23 29696]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam.sys [2011-02-16 11520]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WPRO_40_1340;WinPcap Packet Driver (WPRO_40_1340); C:\Windows\system32\drivers\WPRO_40_1340.sys []
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
S4 ahcix86s;ahcix86s; C:\Windows\system32\drivers\ahcix86s.sys [2007-12-19 170000]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iastor.sys [2007-09-29 308248]
S4 JRAID;JRAID; C:\Windows\system32\drivers\jraid.sys [2008-04-03 76688]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2008-01-21 11264]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
R2 Akamai;Akamai NetSession Interface; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2012-10-30 44808]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 FsUsbExService;FsUsbExService; C:\Windows\system32\FsUsbExService.Exe [2009-03-31 233472]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2012-12-10 1435568]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2008-04-29 877864]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-09-01 211560]
R2 OsdService;OSD Service; C:\Program Files\OEM\OSD_1.16\OsdService.exe [2008-02-22 94208]
R2 PanService;PandoraService; C:\Program Files\PANDORA.TV\PanService\PandoraService.exe [2012-06-22 625816]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [2006-12-19 81920]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2011-03-30 75136]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2009-10-02 487424]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 TestHandler;Fujitsu Siemens Computers Diagnostic Testhandler; C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe [2008-04-25 303104]
R2 WDDMService;WDDMService; C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2011-03-09 238592]
R2 WDFME;WD File Management Engine; C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [2011-03-09 1060864]
R2 WDSC;WD File Management Shadow Engine; C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [2011-03-09 484352]
R3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service; C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe [2012-01-05 75624]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-23 136176]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-12 250808]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-08-31 30192]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-23 136176]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-12-06 115168]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-02-28 529704]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2010-08-10 407336]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu - preventivka, RSIT, OTL
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Prosím o kontrolu - preventivka, RSIT, OTL
- Přílohy
-
- Desktop.rar
- Log z OTL
- (68.7 KiB) Staženo 71 x
Naposledy upravil(a) Mc_Murphy dne 29 pro 2012 13:18, celkem upraveno 1 x.
Důvod: Log odstraněn z [Quote].
Důvod: Log odstraněn z [Quote].
Re: Prosím o kontrolu - preventivka, RSIT, OTL
Zdravim 
Logy z OTL mi sem prosim vlozte - rozdelte je do vice prispevku
Logy z OTL mi sem prosim vlozte - rozdelte je do vice prispevku
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu - preventivka, RSIT, OTL
OTL.txt:
OTL logfile created on: 28.12.2012 20:34:26 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Adam\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,99 Gb Total Physical Memory | 1,39 Gb Available Physical Memory | 46,31% Memory free
6,21 Gb Paging File | 4,77 Gb Available in Paging File | 76,84% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 94,16 Gb Total Space | 5,38 Gb Free Space | 5,72% Space Free | Partition Type: NTFS
Drive D: | 129,94 Gb Total Space | 15,03 Gb Free Space | 11,57% Space Free | Partition Type: NTFS
Computer Name: ADAM-PC | User Name: Adam | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 14 Days
========== Processes (SafeList) ==========
PRC - [2012.12.28 20:32:28 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Adam\Desktop\OTL.exe
PRC - [2012.12.12 20:28:28 | 001,807,800 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe
PRC - [2012.12.10 17:29:46 | 002,254,768 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
PRC - [2012.12.10 17:29:44 | 001,435,568 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
PRC - [2012.12.06 18:59:26 | 000,916,960 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012.10.30 23:50:59 | 004,297,136 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2012.10.30 23:50:59 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2012.10.09 09:53:36 | 004,441,920 | ---- | M] (Akamai Technologies, Inc.) -- C:\Users\Adam\AppData\Local\Akamai\netsession_win.exe
PRC - [2012.09.24 16:34:36 | 000,212,432 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.3.21.123\GoogleCrashHandler.exe
PRC - [2012.07.27 21:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012.06.22 09:32:12 | 000,625,816 | ---- | M] (Pandora.TV) -- C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
PRC - [2012.06.16 13:03:54 | 000,296,056 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe
PRC - [2011.12.12 12:12:16 | 010,448,384 | ---- | M] (The Weather Channel) -- C:\Program Files\The Weather Channel\The Weather Channel App\TWCApp.exe
PRC - [2011.08.11 16:27:42 | 015,490,560 | ---- | M] () -- C:\Users\Adam\AppData\Local\Autobahn\nexdef.exe
PRC - [2011.03.09 10:18:06 | 001,060,864 | ---- | M] () -- C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
PRC - [2011.03.09 10:16:56 | 000,484,352 | ---- | M] () -- C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
PRC - [2011.03.09 10:09:54 | 003,986,944 | ---- | M] (Western Digital Technologies, Inc.) -- C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
PRC - [2011.03.09 10:07:54 | 000,238,592 | ---- | M] (WDC) -- C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
PRC - [2009.12.23 22:34:20 | 000,370,688 | ---- | M] (StarWind Software) -- C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
PRC - [2009.10.02 17:59:33 | 000,487,424 | ---- | M] (Crawler.com) -- C:\Program Files\Spyware Terminator\sp_rsser.exe
PRC - [2009.10.02 17:59:32 | 002,171,904 | ---- | M] (Crawler.com) -- C:\Program Files\Spyware Terminator\SpywareTerminatorShield.Exe
PRC - [2009.04.11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009.04.11 07:27:28 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conime.exe
PRC - [2009.03.31 09:39:36 | 000,233,472 | ---- | M] (Teruten) -- C:\Windows\System32\FsUsbExService.Exe
PRC - [2008.06.18 12:19:44 | 000,376,832 | ---- | M] (ODM) -- C:\Program Files\OEM\OSD_1.16\osd.exe
PRC - [2008.05.13 10:12:54 | 006,139,904 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2008.04.25 13:23:36 | 000,303,104 | ---- | M] (Fujitsu Siemens Computers) -- C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
PRC - [2008.02.22 08:24:28 | 000,094,208 | ---- | M] (TODO: <公司名稱>) -- C:\Program Files\OEM\OSD_1.16\OsdService.exe
PRC - [2008.01.21 03:23:32 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2007.02.20 11:07:40 | 000,199,752 | ---- | M] (Pinnacle Systems GmbH) -- C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe
========== Modules (All) ==========
MOD - [2012.12.28 20:32:28 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Adam\Desktop\OTL.exe
MOD - [2012.12.12 20:28:28 | 001,807,800 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe
MOD - [2012.12.12 20:28:27 | 014,586,296 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_11_5_502_135.dll
MOD - [2012.12.11 18:58:39 | 000,043,272 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\defs\12122800\uiext.dll
MOD - [2012.12.10 17:29:46 | 002,254,768 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
MOD - [2012.12.06 18:59:26 | 004,220,896 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\gkmedias.dll
MOD - [2012.12.06 18:59:26 | 000,916,960 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
MOD - [2012.12.06 18:59:26 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
MOD - [2012.12.06 18:59:26 | 000,258,528 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\freebl3.dll
MOD - [2012.12.06 18:59:25 | 002,397,152 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012.12.06 18:59:25 | 000,810,976 | ---- | M] (sqlite.org) -- C:\Program Files\Mozilla Firefox\mozsqlite3.dll
MOD - [2012.12.06 18:59:25 | 000,638,432 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nss3.dll
MOD - [2012.12.06 18:59:25 | 000,370,656 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssckbi.dll
MOD - [2012.12.06 18:59:25 | 000,172,000 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nspr4.dll
MOD - [2012.12.06 18:59:25 | 000,124,896 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\mozglue.dll
MOD - [2012.12.06 18:59:25 | 000,015,840 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\mozalloc.dll
MOD - [2012.12.06 18:59:24 | 000,096,224 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssdbm3.dll
MOD - [2012.12.06 18:59:24 | 000,092,640 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssutil3.dll
MOD - [2012.12.06 18:59:23 | 015,112,160 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\xul.dll
MOD - [2012.12.06 18:59:23 | 000,155,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\softokn3.dll
MOD - [2012.12.06 18:59:23 | 000,145,376 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\ssl3.dll
MOD - [2012.12.06 18:59:23 | 000,091,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\smime3.dll
MOD - [2012.12.06 18:59:23 | 000,021,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\plc4.dll
MOD - [2012.12.06 18:59:23 | 000,020,960 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\plds4.dll
MOD - [2012.12.06 18:59:23 | 000,019,424 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\xpcom.dll
MOD - [2012.12.06 18:59:23 | 000,016,864 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
MOD - [2012.11.14 03:48:26 | 012,320,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.dll
MOD - [2012.11.14 03:14:59 | 009,738,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieframe.dll
MOD - [2012.11.14 03:09:22 | 001,800,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
MOD - [2012.11.14 02:57:44 | 001,103,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\urlmon.dll
MOD - [2012.11.14 02:57:37 | 001,129,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wininet.dll
MOD - [2012.11.14 02:49:19 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
MOD - [2012.11.14 02:46:38 | 001,793,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iertutil.dll
MOD - [2012.11.13 21:55:17 | 000,096,768 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationProvider\9fedec1f005f9e39f8dde611c4c27cab\UIAutomationProvider.ni.dll
MOD - [2012.11.13 21:55:00 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\fff1287f12f1ab73c271386342224a3a\System.Runtime.Remoting.ni.dll
MOD - [2012.11.13 21:54:51 | 000,393,216 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\d6dc54d6b4aadbc921d00c3b76647e61\System.Xml.Linq.ni.dll
MOD - [2012.11.13 21:54:35 | 001,880,064 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Deployment\7b9e229466be7e0bc584ea7b3de23523\System.Deployment.ni.dll
MOD - [2012.11.13 21:54:17 | 001,801,728 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\5e3ccfdf88ccd6a9ff4e6ddae7e3fec6\System.Xaml.ni.dll
MOD - [2012.11.13 21:09:46 | 018,002,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\c881e2d2ec912499834feb85c4c2e483\PresentationFramework.ni.dll
MOD - [2012.11.13 21:09:27 | 011,451,904 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\58f50a891bafb8fd7149e6eebc2b7b52\PresentationCore.ni.dll
MOD - [2012.11.13 21:09:14 | 003,858,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\05ebffcb5aac31412fea8c38cbac8df8\WindowsBase.ni.dll
MOD - [2012.11.13 21:09:09 | 000,595,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\cbb227c0a77a5b15a1255220984239f2\PresentationFramework.Aero.ni.dll
MOD - [2012.11.13 21:05:17 | 013,198,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\caffbced23ee85b40b919ad4a122b7aa\System.Windows.Forms.ni.dll
MOD - [2012.11.13 21:05:05 | 001,666,048 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\9422d0c052186760a4645e10995487f5\System.Drawing.ni.dll
MOD - [2012.11.13 21:04:59 | 007,069,184 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\752225ca2585aa8f1c46b489e172e920\System.Core.ni.dll
MOD - [2012.11.13 21:04:56 | 005,617,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\cb0c00757e89f0b1fe282913ed667212\System.Xml.ni.dll
MOD - [2012.11.13 21:04:50 | 000,982,528 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\ed886fb71addf400705481dcf8de12da\System.Configuration.ni.dll
MOD - [2012.11.13 21:04:47 | 009,093,632 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\811a7bc79f8f0a5be8065292a320819e\System.ni.dll
MOD - [2012.11.13 21:04:38 | 014,412,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\16126cae96ea2422253ae06eeb672abc\mscorlib.ni.dll
MOD - [2012.11.08 16:58:26 | 000,556,056 | ---- | M] (Google) -- C:\Program Files\Google\Drive\googledrivesync32.dll
MOD - [2012.10.30 23:51:12 | 000,216,312 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\1029\uiLangRes.dll
MOD - [2012.10.30 23:51:12 | 000,090,640 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\1029\Base.dll
MOD - [2012.10.30 23:50:59 | 004,297,136 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
MOD - [2012.10.30 23:50:53 | 000,236,888 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\snxhk.dll
MOD - [2012.10.30 23:50:51 | 006,439,048 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\CommonRes.dll
MOD - [2012.10.30 23:50:47 | 000,476,360 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswSqLt.dll
MOD - [2012.10.30 23:50:47 | 000,027,296 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswUtil.dll
MOD - [2012.10.30 23:50:44 | 000,220,944 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswLog.dll
MOD - [2012.10.30 23:50:44 | 000,217,848 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswProperty.dll
MOD - [2012.10.30 23:50:44 | 000,126,160 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswJsFlt.dll
MOD - [2012.10.30 23:50:44 | 000,051,000 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswEngLdr.dll
MOD - [2012.10.30 23:50:41 | 002,162,488 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswAra.dll
MOD - [2012.10.30 23:50:41 | 000,682,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswAux.dll
MOD - [2012.10.30 23:50:41 | 000,347,616 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswCmnBS.dll
MOD - [2012.10.30 23:50:41 | 000,191,568 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswCmnIS.dll
MOD - [2012.10.30 23:50:41 | 000,191,080 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswData.dll
MOD - [2012.10.30 23:50:41 | 000,099,416 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswCmnOS.dll
MOD - [2012.10.30 23:50:38 | 000,153,976 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\ashTask.dll
MOD - [2012.10.30 23:50:38 | 000,121,528 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\ashShell.dll
MOD - [2012.10.30 23:50:38 | 000,061,800 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\ashTaskEx.dll
MOD - [2012.10.30 23:50:36 | 000,441,352 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\ashBase.dll
MOD - [2012.10.30 23:50:33 | 000,140,104 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AhAScr.dll
MOD - [2012.10.30 23:50:30 | 000,368,752 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\Aavm4h.dll
MOD - [2012.10.30 23:50:30 | 000,120,504 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AavmRpch.dll
MOD - [2012.10.09 09:53:36 | 004,441,920 | ---- | M] (Akamai Technologies, Inc.) -- C:\Users\Adam\AppData\Local\Akamai\netsession_win.exe
MOD - [2012.09.28 17:11:03 | 000,892,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kernel32.dll
MOD - [2012.09.10 08:38:58 | 001,664,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll
MOD - [2012.09.10 08:38:58 | 000,917,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpftxt_v0400.dll
MOD - [2012.09.06 08:50:24 | 006,728,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
MOD - [2012.09.06 08:50:24 | 000,057,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll
MOD - [2012.08.24 16:53:29 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wintrust.dll
MOD - [2012.07.03 08:04:54 | 000,252,848 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
MOD - [2012.06.29 17:01:42 | 000,467,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netapi32.dll
MOD - [2012.06.16 13:03:54 | 000,296,056 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe
MOD - [2012.06.08 18:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shell32.dll
MOD - [2012.06.07 20:01:02 | 000,770,384 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\msvcr100.dll
MOD - [2012.06.07 20:01:02 | 000,421,200 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\msvcp100.dll
MOD - [2012.06.05 17:47:28 | 001,401,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml6.dll
MOD - [2012.06.05 17:47:27 | 001,248,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml3.dll
MOD - [2012.06.02 01:04:25 | 000,278,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\schannel.dll
MOD - [2012.06.02 01:03:42 | 000,204,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
MOD - [2012.06.02 01:02:32 | 000,985,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\crypt32.dll
MOD - [2012.06.02 01:02:32 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptnet.dll
MOD - [2012.03.01 15:46:01 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
MOD - [2012.03.01 15:46:01 | 000,160,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
MOD - [2012.02.29 16:09:53 | 000,157,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imagehlp.dll
MOD - [2012.02.29 15:08:47 | 001,172,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
MOD - [2012.02.29 14:44:50 | 000,683,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
MOD - [2012.02.29 14:41:40 | 001,069,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
MOD - [2012.02.03 16:11:07 | 001,748,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\GdiPlus.dll
MOD - [2011.12.15 12:08:30 | 000,386,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
MOD - [2011.12.14 17:17:47 | 000,680,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcrt.dll
MOD - [2011.12.12 12:12:16 | 010,448,384 | ---- | M] (The Weather Channel) -- C:\Program Files\The Weather Channel\The Weather Channel App\TWCApp.exe
MOD - [2011.11.18 21:23:34 | 001,205,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntdll.dll
MOD - [2011.11.16 17:23:44 | 000,377,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winhttp.dll
MOD - [2011.11.16 17:23:08 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secur32.dll
MOD - [2011.10.14 17:03:25 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winmm.dll
MOD - [2011.08.25 17:14:01 | 000,563,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleaut32.dll
MOD - [2011.08.25 17:14:01 | 000,238,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleacc.dll
MOD - [2011.08.11 16:27:46 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Users\Adam\AppData\Local\Autobahn\rt\bin\msvcr71.dll
MOD - [2011.08.11 16:27:46 | 000,077,824 | ---- | M] (Sun Microsystems, Inc.) -- C:\Users\Adam\AppData\Local\Autobahn\rt\bin\net.dll
MOD - [2011.08.11 16:27:44 | 000,159,744 | ---- | M] () -- C:\Users\Adam\AppData\Local\Autobahn\rt\jetrt\baseline720.dll
MOD - [2011.08.11 16:27:44 | 000,069,632 | ---- | M] () -- C:\Users\Adam\AppData\Local\Autobahn\rt\bin\java.dll
MOD - [2011.08.11 16:27:44 | 000,020,480 | ---- | M] (Sun Microsystems, Inc.) -- C:\Users\Adam\AppData\Local\Autobahn\rt\bin\nio.dll
MOD - [2011.08.11 16:27:44 | 000,015,872 | ---- | M] (Sun Microsystems, Inc.) -- C:\Users\Adam\AppData\Local\Autobahn\rt\bin\hpi.dll
MOD - [2011.08.11 16:27:42 | 015,490,560 | ---- | M] () -- C:\Users\Adam\AppData\Local\Autobahn\nexdef.exe
MOD - [2011.08.11 16:27:40 | 000,126,976 | ---- | M] () -- C:\Users\Adam\AppData\Local\Autobahn\rt\bin\zip.dll
MOD - [2011.08.11 16:27:40 | 000,020,480 | ---- | M] () -- C:\Users\Adam\AppData\Local\Autobahn\rt\bin\jetvm\jvm.dll
MOD - [2011.06.28 16:06:02 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
MOD - [2011.06.18 02:12:13 | 003,781,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
MOD - [2011.06.18 02:11:59 | 000,653,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
MOD - [2011.06.18 02:11:59 | 000,569,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
MOD - [2011.06.15 17:12:11 | 000,182,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xmllite.dll
MOD - [2011.05.17 08:27:54 | 000,044,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\Culture.dll
MOD - [2011.05.17 08:27:52 | 000,413,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
MOD - [2011.03.09 10:09:54 | 003,986,944 | ---- | M] (Western Digital Technologies, Inc.) -- C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
MOD - [2011.03.09 10:08:22 | 000,096,768 | ---- | M] (Western Digital Corp.) -- C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WdNetworkDiscovery.dll
MOD - [2011.03.02 16:44:26 | 000,168,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dnsapi.dll
MOD - [2011.01.21 17:35:22 | 000,353,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shlwapi.dll
MOD - [2011.01.20 17:08:16 | 000,478,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
MOD - [2011.01.20 17:08:06 | 001,029,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
MOD - [2011.01.20 17:08:06 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
MOD - [2011.01.20 17:07:42 | 000,258,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winspool.drv
MOD - [2011.01.20 17:07:16 | 000,586,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\stobject.dll
MOD - [2011.01.20 17:07:03 | 001,075,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shdocvw.dll
MOD - [2011.01.20 17:04:54 | 000,209,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
MOD - [2010.11.21 15:54:34 | 000,094,208 | ---- | M] () -- C:\Program Files\FileZilla FTP Client\fzshellext.dll
MOD - [2010.11.04 19:55:38 | 000,352,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
MOD - [2010.11.04 17:34:06 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskeng.exe
MOD - [2010.08.31 16:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
MOD - [2010.08.31 16:43:52 | 000,531,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\comctl32.dll
MOD - [2010.08.31 13:40:56 | 002,057,728 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleServices.dll
MOD - [2010.08.31 13:40:56 | 000,653,312 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleUIEngine.dll
MOD - [2010.08.31 13:40:55 | 000,570,880 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktopResources_cs.dll
MOD - [2010.08.31 13:40:55 | 000,480,256 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktopAPI2.dll
MOD - [2010.08.31 13:40:55 | 000,273,920 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktopCommon.dll
MOD - [2010.08.31 13:40:55 | 000,147,456 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktopSSD.dll
MOD - [2010.08.31 13:40:55 | 000,129,024 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktopHyper.dll
MOD - [2010.08.31 13:40:55 | 000,123,392 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll
MOD - [2010.08.31 13:40:55 | 000,034,816 | ---- | M] () -- C:\Program Files\Google\Google Desktop Search\gzlib.dll
MOD - [2010.08.31 13:40:55 | 000,030,192 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
MOD - [2010.08.26 17:37:45 | 000,157,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
MOD - [2010.06.28 18:00:21 | 001,316,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ole32.dll
MOD - [2010.06.18 18:31:29 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll
MOD - [2010.05.04 20:13:07 | 000,231,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
MOD - [2010.04.16 17:46:48 | 000,502,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\usp10.dll
MOD - [2010.04.05 18:01:01 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
MOD - [2010.03.18 13:16:28 | 004,881,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\NlsData0009.dll
MOD - [2010.03.18 13:16:28 | 002,650,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\NlsLexicons0009.dll
MOD - [2010.03.18 13:16:28 | 000,807,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\NaturalLanguage6.dll
MOD - [2010.03.18 13:16:28 | 000,801,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll
MOD - [2010.03.18 13:16:28 | 000,771,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcr100_clr0400.dll
MOD - [2010.03.18 13:16:28 | 000,688,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\diasymreader.dll
MOD - [2009.11.08 09:55:32 | 000,297,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscoree.dll
MOD - [2009.10.23 18:10:19 | 000,714,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
MOD - [2009.10.02 17:59:32 | 002,171,904 | ---- | M] (Crawler.com) -- C:\Program Files\Spyware Terminator\SpywareTerminatorShield.Exe
MOD - [2009.10.01 02:02:04 | 000,334,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
MOD - [2009.10.01 02:02:02 | 000,087,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WPDShServiceObj.dll
MOD - [2009.10.01 02:01:59 | 000,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll
MOD - [2009.09.25 03:10:10 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecs.dll
MOD - [2009.09.25 03:07:08 | 000,189,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
MOD - [2009.09.10 17:48:01 | 000,218,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msv1_0.dll
MOD - [2009.09.04 12:41:59 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msasn1.dll
MOD - [2009.09.01 07:19:18 | 007,629,312 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
MOD - [2009.09.01 07:19:18 | 000,993,792 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll
MOD - [2009.07.17 14:54:43 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\atl.dll
MOD - [2009.07.11 20:01:41 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanapi.dll
MOD - [2009.06.15 15:52:42 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lpk.dll
MOD - [2009.04.23 13:15:07 | 000,784,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rpcrt4.dll
MOD - [2009.04.11 07:28:26 | 000,223,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscntfy.dll
MOD - [2009.04.11 07:28:26 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscapi.dll
MOD - [2009.04.11 07:28:25 | 001,077,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vssapi.dll
MOD - [2009.04.11 07:28:25 | 000,627,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\user32.dll
MOD - [2009.04.11 07:28:25 | 000,287,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wldap32.dll
MOD - [2009.04.11 07:28:25 | 000,250,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtapi.dll
MOD - [2009.04.11 07:28:25 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WinSCard.dll
MOD - [2009.04.11 07:28:25 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\userenv.dll
MOD - [2009.04.11 07:28:25 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wbemsvc.dll
MOD - [2009.04.11 07:28:25 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wbemprox.dll
MOD - [2009.04.11 07:28:25 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\version.dll
MOD - [2009.04.11 07:28:25 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winrnr.dll
MOD - [2009.04.11 07:28:24 | 002,205,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SyncCenter.dll
MOD - [2009.04.11 07:28:24 | 001,591,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\setupapi.dll
MOD - [2009.04.11 07:28:24 | 000,466,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\riched20.dll
MOD - [2009.04.11 07:28:24 | 000,301,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srchadmin.dll
MOD - [2009.04.11 07:28:24 | 000,203,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uDWM.dll
MOD - [2009.04.11 07:28:24 | 000,142,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spp.dll
MOD - [2009.04.11 07:28:24 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samlib.dll
MOD - [2009.04.11 07:28:23 | 003,174,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netshell.dll
MOD - [2009.04.11 07:28:23 | 002,153,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oobefldr.dll
MOD - [2009.04.11 07:28:23 | 001,823,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnidui.dll
MOD - [2009.04.11 07:28:23 | 001,541,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\onex.dll
MOD - [2009.04.11 07:28:23 | 000,754,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\propsys.dll
MOD - [2009.04.11 07:28:23 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasapi32.dll
MOD - [2009.04.11 07:28:23 | 000,242,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pdh.dll
MOD - [2009.04.11 07:28:23 | 000,228,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLC.dll
MOD - [2009.04.11 07:28:23 | 000,121,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntmarta.dll
MOD - [2009.04.11 07:28:23 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\powrprof.dll
MOD - [2009.04.11 07:28:23 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\olepro32.dll
MOD - [2009.04.11 07:28:22 | 000,805,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll
MOD - [2009.04.11 07:28:22 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mswsock.dll
MOD - [2009.04.11 07:28:22 | 000,163,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msutb.dll
MOD - [2009.04.11 07:28:22 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll
MOD - [2009.04.11 07:28:21 | 002,241,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msi.dll
MOD - [2009.04.11 07:28:21 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msimtf.dll
MOD - [2009.04.11 07:28:20 | 002,012,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\milcore.dll
MOD - [2009.04.11 07:28:20 | 000,807,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msctf.dll
MOD - [2009.04.11 07:28:20 | 000,564,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll
MOD - [2009.04.11 07:28:20 | 000,391,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscms.dll
MOD - [2009.04.11 07:28:20 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MMDevAPI.dll
MOD - [2009.04.11 07:28:20 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imm32.dll
MOD - [2009.04.11 07:28:20 | 000,091,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IPHLPAPI.DLL
MOD - [2009.04.11 07:28:20 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msctfui.dll
MOD - [2009.04.11 07:28:20 | 000,068,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mpr.dll
MOD - [2009.04.11 07:28:20 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsCtfMonitor.dll
MOD - [2009.04.11 07:28:20 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\midimap.dll
MOD - [2009.04.11 07:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\fastprox.dll
MOD - [2009.04.11 07:28:19 | 000,595,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
MOD - [2009.04.11 07:28:19 | 000,444,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dsound.dll
MOD - [2009.04.11 07:28:19 | 000,297,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gdi32.dll
MOD - [2009.04.11 07:28:19 | 000,268,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\es.dll
MOD - [2009.04.11 07:28:19 | 000,153,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fundisc.dll
MOD - [2009.04.11 07:28:19 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\eappcfg.dll
MOD - [2009.04.11 07:28:19 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehSSO.dll
MOD - [2009.04.11 07:28:19 | 000,114,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\EhStorShell.dll
MOD - [2009.04.11 07:28:19 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gpapi.dll
MOD - [2009.04.11 07:28:19 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\feclient.dll
MOD - [2009.04.11 07:28:19 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fdProxy.dll
MOD - [2009.04.11 07:28:19 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
MOD - [2009.04.11 07:28:18 | 001,985,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
MOD - [2009.04.11 07:28:18 | 001,788,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d9.dll
MOD - [2009.04.11 07:28:18 | 001,324,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\browseui.dll
MOD - [2009.04.11 07:28:18 | 001,112,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll
MOD - [2009.04.11 07:28:18 | 000,450,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\comdlg32.dll
MOD - [2009.04.11 07:28:18 | 000,323,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\certcli.dll
MOD - [2009.04.11 07:28:18 | 000,274,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bcrypt.dll
MOD - [2009.04.11 07:28:18 | 000,204,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc.dll
MOD - [2009.04.11 07:28:18 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
MOD - [2009.04.11 07:28:18 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AudioSes.dll
MOD - [2009.04.11 07:28:18 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authz.dll
MOD - [2009.04.11 07:28:18 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cscapi.dll
MOD - [2009.04.11 07:28:17 | 000,800,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\advapi32.dll
MOD - [2009.04.11 07:28:17 | 000,171,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\apphelp.dll
MOD - [2009.04.11 07:28:08 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\unsecapp.exe
MOD - [2009.04.11 07:27:47 | 000,241,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rsaenh.dll
MOD - [2009.04.11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
MOD - [2009.04.11 07:27:33 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwm.exe
MOD - [2009.04.11 07:27:28 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conime.exe
MOD - [2009.04.11 07:27:17 | 000,220,672 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codecp.acm
MOD - [2009.04.11 07:27:12 | 000,640,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bthprops.cpl
MOD - [2009.04.11 07:27:12 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wdmaud.drv
MOD - [2009.04.11 07:27:12 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msacm32.drv
MOD - [2008.06.18 12:19:44 | 000,376,832 | ---- | M] (ODM) -- C:\Program Files\OEM\OSD_1.16\osd.exe
MOD - [2008.05.14 14:54:24 | 002,159,616 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkAPO.dll
MOD - [2008.05.13 10:12:54 | 006,139,904 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
MOD - [2008.01.21 03:25:33 | 000,202,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnscfg.exe
MOD - [2008.01.21 03:25:33 | 000,195,072 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnssci.dll
MOD - [2008.01.21 03:25:29 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srclient.dll
MOD - [2008.01.21 03:25:26 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpnsp.dll
MOD - [2008.01.21 03:25:25 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wpc.dll
MOD - [2008.01.21 03:25:18 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\HotStartUserAgent.dll
MOD - [2008.01.21 03:25:11 | 000,125,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehtray.exe
MOD - [2008.01.21 03:25:11 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehmsas.exe
MOD - [2008.01.21 03:25:02 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdmo.dll
MOD - [2008.01.21 03:25:01 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntshrui.dll
MOD - [2008.01.21 03:25:01 | 000,183,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\duser.dll
MOD - [2008.01.21 03:24:57 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntdsapi.dll
MOD - [2008.01.21 03:24:56 | 000,326,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\actxprxy.dll
MOD - [2008.01.21 03:24:56 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\QAGENT.DLL
MOD - [2008.01.21 03:24:54 | 000,397,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AudioEng.dll
MOD - [2008.01.21 03:24:54 | 000,187,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mlang.dll
MOD - [2008.01.21 03:24:54 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cabinet.dll
MOD - [2008.01.21 03:24:54 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avrt.dll
MOD - [2008.01.21 03:24:53 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msacm32.dll
MOD - [2008.01.21 03:24:48 | 000,179,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ws2_32.dll
MOD - [2008.01.21 03:24:48 | 000,140,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winsta.dll
MOD - [2008.01.21 03:24:47 | 000,403,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FirewallAPI.dll
MOD - [2008.01.21 03:24:47 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winnsi.dll
MOD - [2008.01.21 03:24:47 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nsi.dll
MOD - [2008.01.21 03:24:46 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\eappprxy.dll
MOD - [2008.01.21 03:24:46 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wtsapi32.dll
MOD - [2008.01.21 03:24:44 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmredir.dll
MOD - [2008.01.21 03:24:41 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oledlg.dll
MOD - [2008.01.21 03:24:41 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptdll.dll
MOD - [2008.01.21 03:24:37 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscript.ocx
MOD - [2008.01.21 03:24:37 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\credssp.dll
MOD - [2008.01.21 03:24:29 | 000,050,176 | ---- | M] (Společnost Microsoft) -- C:\Windows\System32\NapiNSP.dll
MOD - [2008.01.21 03:24:29 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PlaySndSrv.dll
MOD - [2008.01.21 03:24:28 | 000,215,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icm32.dll
MOD - [2008.01.21 03:24:27 | 000,155,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dssenh.dll
MOD - [2008.01.21 03:24:26 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vsstrace.dll
MOD - [2008.01.21 03:24:25 | 000,079,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\QUTIL.DLL
MOD - [2008.01.21 03:24:24 | 000,523,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\clbcatq.dll
MOD - [2008.01.21 03:24:23 | 000,237,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netprofm.dll
MOD - [2008.01.21 03:24:13 | 000,376,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sxs.dll
MOD - [2008.01.21 03:24:11 | 000,071,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasman.dll
MOD - [2008.01.21 03:24:06 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devenum.dll
MOD - [2008.01.21 03:24:06 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll
MOD - [2008.01.21 03:24:04 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSHTCPIP.DLL
MOD - [2008.01.21 03:24:04 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wship6.dll
MOD - [2008.01.21 03:24:03 | 000,195,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\upnp.dll
MOD - [2008.01.21 03:23:58 | 001,523,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0000.dll
MOD - [2008.01.21 03:23:54 | 000,798,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dbghelp.dll
MOD - [2008.01.21 03:23:53 | 000,357,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbemcomn.dll
MOD - [2008.01.21 03:23:53 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shacct.dll
MOD - [2008.01.21 03:23:50 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dimsjob.dll
MOD - [2008.01.21 03:23:45 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wsock32.dll
MOD - [2008.01.21 03:23:44 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nlaapi.dll
MOD - [2008.01.21 03:23:43 | 000,240,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uxtheme.dll
MOD - [2008.01.21 03:23:40 | 000,383,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WinSATAPI.dll
MOD - [2008.01.21 03:23:39 | 001,298,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TMM.dll
MOD - [2008.01.21 03:23:32 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
MOD - [2008.01.21 03:23:32 | 000,671,288 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MpRtMon.dll
MOD - [2008.01.21 03:23:32 | 000,312,888 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MpClient.dll
MOD - [2008.01.21 03:23:32 | 000,090,680 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MpOAV.dll
MOD - [2008.01.21 03:23:21 | 001,312,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMALFXGFXDSP.dll
MOD - [2007.11.21 09:33:14 | 000,208,896 | ---- | M] (TODO: <公司名稱>) -- C:\Program Files\OEM\OSD_1.16\DirectPort.dll
MOD - [2007.02.20 11:07:40 | 000,199,752 | ---- | M] (Pinnacle Systems GmbH) -- C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe
MOD - [2006.11.02 13:35:33 | 000,116,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehProxy.dll
MOD - [2006.11.02 13:34:50 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AltTab.dll
MOD - [2006.11.02 13:34:48 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\linkinfo.dll
MOD - [2006.11.02 13:34:33 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IconCodecService.dll
MOD - [2006.11.02 13:34:32 | 000,653,928 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MsMpRes.dll
MOD - [2006.11.02 10:46:14 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanutil.dll
MOD - [2006.11.02 10:46:13 | 000,869,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winbrand.dll
MOD - [2006.11.02 10:46:13 | 000,191,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tapi32.dll
MOD - [2006.11.02 10:46:13 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SndVolSSO.dll
MOD - [2006.11.02 10:46:13 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ssdpapi.dll
MOD - [2006.11.02 10:46:13 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TSChannel.dll
MOD - [2006.11.02 10:46:13 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shfolder.dll
MOD - [2006.11.02 10:46:12 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pautoenr.dll
MOD - [2006.11.02 10:46:12 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\perfos.dll
MOD - [2006.11.02 10:46:12 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\npmproxy.dll
MOD - [2006.11.02 10:46:12 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\psapi.dll
MOD - [2006.11.02 10:46:12 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasadhlp.dll
MOD - [2006.11.02 10:46:12 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SensApi.dll
MOD - [2006.11.02 10:46:07 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msiltcfg.dll
MOD - [2006.11.02 10:46:07 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msimg32.dll
MOD - [2006.11.02 10:46:05 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hid.dll
MOD - [2006.11.02 10:46:05 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ksuser.dll
MOD - [2006.11.02 10:46:03 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d8thk.dll
MOD - [2006.11.02 10:46:02 | 000,737,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\batmeter.dll
MOD - [2006.11.02 10:43:08 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\security.dll
MOD - [2006.11.02 09:33:06 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\normaliz.dll
MOD - [2006.10.09 15:07:22 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\msvcr71.dll
MOD - [2006.10.09 15:07:20 | 001,060,864 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\MFC71.dll
MOD - [2002.01.05 14:05:48 | 000,180,224 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\VS7DEBUG\PDM.DLL
MOD - [2002.01.05 07:03:46 | 000,176,128 | ---- | M] (Mi
OTL logfile created on: 28.12.2012 20:34:26 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Adam\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,99 Gb Total Physical Memory | 1,39 Gb Available Physical Memory | 46,31% Memory free
6,21 Gb Paging File | 4,77 Gb Available in Paging File | 76,84% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 94,16 Gb Total Space | 5,38 Gb Free Space | 5,72% Space Free | Partition Type: NTFS
Drive D: | 129,94 Gb Total Space | 15,03 Gb Free Space | 11,57% Space Free | Partition Type: NTFS
Computer Name: ADAM-PC | User Name: Adam | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 14 Days
========== Processes (SafeList) ==========
PRC - [2012.12.28 20:32:28 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Adam\Desktop\OTL.exe
PRC - [2012.12.12 20:28:28 | 001,807,800 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe
PRC - [2012.12.10 17:29:46 | 002,254,768 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
PRC - [2012.12.10 17:29:44 | 001,435,568 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
PRC - [2012.12.06 18:59:26 | 000,916,960 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012.10.30 23:50:59 | 004,297,136 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2012.10.30 23:50:59 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2012.10.09 09:53:36 | 004,441,920 | ---- | M] (Akamai Technologies, Inc.) -- C:\Users\Adam\AppData\Local\Akamai\netsession_win.exe
PRC - [2012.09.24 16:34:36 | 000,212,432 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Update\1.3.21.123\GoogleCrashHandler.exe
PRC - [2012.07.27 21:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012.06.22 09:32:12 | 000,625,816 | ---- | M] (Pandora.TV) -- C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
PRC - [2012.06.16 13:03:54 | 000,296,056 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe
PRC - [2011.12.12 12:12:16 | 010,448,384 | ---- | M] (The Weather Channel) -- C:\Program Files\The Weather Channel\The Weather Channel App\TWCApp.exe
PRC - [2011.08.11 16:27:42 | 015,490,560 | ---- | M] () -- C:\Users\Adam\AppData\Local\Autobahn\nexdef.exe
PRC - [2011.03.09 10:18:06 | 001,060,864 | ---- | M] () -- C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
PRC - [2011.03.09 10:16:56 | 000,484,352 | ---- | M] () -- C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
PRC - [2011.03.09 10:09:54 | 003,986,944 | ---- | M] (Western Digital Technologies, Inc.) -- C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
PRC - [2011.03.09 10:07:54 | 000,238,592 | ---- | M] (WDC) -- C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
PRC - [2009.12.23 22:34:20 | 000,370,688 | ---- | M] (StarWind Software) -- C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
PRC - [2009.10.02 17:59:33 | 000,487,424 | ---- | M] (Crawler.com) -- C:\Program Files\Spyware Terminator\sp_rsser.exe
PRC - [2009.10.02 17:59:32 | 002,171,904 | ---- | M] (Crawler.com) -- C:\Program Files\Spyware Terminator\SpywareTerminatorShield.Exe
PRC - [2009.04.11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009.04.11 07:27:28 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conime.exe
PRC - [2009.03.31 09:39:36 | 000,233,472 | ---- | M] (Teruten) -- C:\Windows\System32\FsUsbExService.Exe
PRC - [2008.06.18 12:19:44 | 000,376,832 | ---- | M] (ODM) -- C:\Program Files\OEM\OSD_1.16\osd.exe
PRC - [2008.05.13 10:12:54 | 006,139,904 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2008.04.25 13:23:36 | 000,303,104 | ---- | M] (Fujitsu Siemens Computers) -- C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
PRC - [2008.02.22 08:24:28 | 000,094,208 | ---- | M] (TODO: <公司名稱>) -- C:\Program Files\OEM\OSD_1.16\OsdService.exe
PRC - [2008.01.21 03:23:32 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2007.02.20 11:07:40 | 000,199,752 | ---- | M] (Pinnacle Systems GmbH) -- C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe
========== Modules (All) ==========
MOD - [2012.12.28 20:32:28 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Adam\Desktop\OTL.exe
MOD - [2012.12.12 20:28:28 | 001,807,800 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe
MOD - [2012.12.12 20:28:27 | 014,586,296 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_11_5_502_135.dll
MOD - [2012.12.11 18:58:39 | 000,043,272 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\defs\12122800\uiext.dll
MOD - [2012.12.10 17:29:46 | 002,254,768 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
MOD - [2012.12.06 18:59:26 | 004,220,896 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\gkmedias.dll
MOD - [2012.12.06 18:59:26 | 000,916,960 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
MOD - [2012.12.06 18:59:26 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
MOD - [2012.12.06 18:59:26 | 000,258,528 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\freebl3.dll
MOD - [2012.12.06 18:59:25 | 002,397,152 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012.12.06 18:59:25 | 000,810,976 | ---- | M] (sqlite.org) -- C:\Program Files\Mozilla Firefox\mozsqlite3.dll
MOD - [2012.12.06 18:59:25 | 000,638,432 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nss3.dll
MOD - [2012.12.06 18:59:25 | 000,370,656 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssckbi.dll
MOD - [2012.12.06 18:59:25 | 000,172,000 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nspr4.dll
MOD - [2012.12.06 18:59:25 | 000,124,896 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\mozglue.dll
MOD - [2012.12.06 18:59:25 | 000,015,840 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\mozalloc.dll
MOD - [2012.12.06 18:59:24 | 000,096,224 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssdbm3.dll
MOD - [2012.12.06 18:59:24 | 000,092,640 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssutil3.dll
MOD - [2012.12.06 18:59:23 | 015,112,160 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\xul.dll
MOD - [2012.12.06 18:59:23 | 000,155,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\softokn3.dll
MOD - [2012.12.06 18:59:23 | 000,145,376 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\ssl3.dll
MOD - [2012.12.06 18:59:23 | 000,091,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\smime3.dll
MOD - [2012.12.06 18:59:23 | 000,021,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\plc4.dll
MOD - [2012.12.06 18:59:23 | 000,020,960 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\plds4.dll
MOD - [2012.12.06 18:59:23 | 000,019,424 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\xpcom.dll
MOD - [2012.12.06 18:59:23 | 000,016,864 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
MOD - [2012.11.14 03:48:26 | 012,320,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.dll
MOD - [2012.11.14 03:14:59 | 009,738,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieframe.dll
MOD - [2012.11.14 03:09:22 | 001,800,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
MOD - [2012.11.14 02:57:44 | 001,103,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\urlmon.dll
MOD - [2012.11.14 02:57:37 | 001,129,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wininet.dll
MOD - [2012.11.14 02:49:19 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
MOD - [2012.11.14 02:46:38 | 001,793,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iertutil.dll
MOD - [2012.11.13 21:55:17 | 000,096,768 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationProvider\9fedec1f005f9e39f8dde611c4c27cab\UIAutomationProvider.ni.dll
MOD - [2012.11.13 21:55:00 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\fff1287f12f1ab73c271386342224a3a\System.Runtime.Remoting.ni.dll
MOD - [2012.11.13 21:54:51 | 000,393,216 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\d6dc54d6b4aadbc921d00c3b76647e61\System.Xml.Linq.ni.dll
MOD - [2012.11.13 21:54:35 | 001,880,064 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Deployment\7b9e229466be7e0bc584ea7b3de23523\System.Deployment.ni.dll
MOD - [2012.11.13 21:54:17 | 001,801,728 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\5e3ccfdf88ccd6a9ff4e6ddae7e3fec6\System.Xaml.ni.dll
MOD - [2012.11.13 21:09:46 | 018,002,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\c881e2d2ec912499834feb85c4c2e483\PresentationFramework.ni.dll
MOD - [2012.11.13 21:09:27 | 011,451,904 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\58f50a891bafb8fd7149e6eebc2b7b52\PresentationCore.ni.dll
MOD - [2012.11.13 21:09:14 | 003,858,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\05ebffcb5aac31412fea8c38cbac8df8\WindowsBase.ni.dll
MOD - [2012.11.13 21:09:09 | 000,595,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\cbb227c0a77a5b15a1255220984239f2\PresentationFramework.Aero.ni.dll
MOD - [2012.11.13 21:05:17 | 013,198,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\caffbced23ee85b40b919ad4a122b7aa\System.Windows.Forms.ni.dll
MOD - [2012.11.13 21:05:05 | 001,666,048 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\9422d0c052186760a4645e10995487f5\System.Drawing.ni.dll
MOD - [2012.11.13 21:04:59 | 007,069,184 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\752225ca2585aa8f1c46b489e172e920\System.Core.ni.dll
MOD - [2012.11.13 21:04:56 | 005,617,664 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\cb0c00757e89f0b1fe282913ed667212\System.Xml.ni.dll
MOD - [2012.11.13 21:04:50 | 000,982,528 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\ed886fb71addf400705481dcf8de12da\System.Configuration.ni.dll
MOD - [2012.11.13 21:04:47 | 009,093,632 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\System\811a7bc79f8f0a5be8065292a320819e\System.ni.dll
MOD - [2012.11.13 21:04:38 | 014,412,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\16126cae96ea2422253ae06eeb672abc\mscorlib.ni.dll
MOD - [2012.11.08 16:58:26 | 000,556,056 | ---- | M] (Google) -- C:\Program Files\Google\Drive\googledrivesync32.dll
MOD - [2012.10.30 23:51:12 | 000,216,312 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\1029\uiLangRes.dll
MOD - [2012.10.30 23:51:12 | 000,090,640 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\1029\Base.dll
MOD - [2012.10.30 23:50:59 | 004,297,136 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
MOD - [2012.10.30 23:50:53 | 000,236,888 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\snxhk.dll
MOD - [2012.10.30 23:50:51 | 006,439,048 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\CommonRes.dll
MOD - [2012.10.30 23:50:47 | 000,476,360 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswSqLt.dll
MOD - [2012.10.30 23:50:47 | 000,027,296 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswUtil.dll
MOD - [2012.10.30 23:50:44 | 000,220,944 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswLog.dll
MOD - [2012.10.30 23:50:44 | 000,217,848 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswProperty.dll
MOD - [2012.10.30 23:50:44 | 000,126,160 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswJsFlt.dll
MOD - [2012.10.30 23:50:44 | 000,051,000 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswEngLdr.dll
MOD - [2012.10.30 23:50:41 | 002,162,488 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswAra.dll
MOD - [2012.10.30 23:50:41 | 000,682,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswAux.dll
MOD - [2012.10.30 23:50:41 | 000,347,616 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswCmnBS.dll
MOD - [2012.10.30 23:50:41 | 000,191,568 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswCmnIS.dll
MOD - [2012.10.30 23:50:41 | 000,191,080 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswData.dll
MOD - [2012.10.30 23:50:41 | 000,099,416 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\aswCmnOS.dll
MOD - [2012.10.30 23:50:38 | 000,153,976 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\ashTask.dll
MOD - [2012.10.30 23:50:38 | 000,121,528 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\ashShell.dll
MOD - [2012.10.30 23:50:38 | 000,061,800 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\ashTaskEx.dll
MOD - [2012.10.30 23:50:36 | 000,441,352 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\ashBase.dll
MOD - [2012.10.30 23:50:33 | 000,140,104 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AhAScr.dll
MOD - [2012.10.30 23:50:30 | 000,368,752 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\Aavm4h.dll
MOD - [2012.10.30 23:50:30 | 000,120,504 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AavmRpch.dll
MOD - [2012.10.09 09:53:36 | 004,441,920 | ---- | M] (Akamai Technologies, Inc.) -- C:\Users\Adam\AppData\Local\Akamai\netsession_win.exe
MOD - [2012.09.28 17:11:03 | 000,892,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kernel32.dll
MOD - [2012.09.10 08:38:58 | 001,664,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll
MOD - [2012.09.10 08:38:58 | 000,917,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpftxt_v0400.dll
MOD - [2012.09.06 08:50:24 | 006,728,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
MOD - [2012.09.06 08:50:24 | 000,057,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll
MOD - [2012.08.24 16:53:29 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wintrust.dll
MOD - [2012.07.03 08:04:54 | 000,252,848 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
MOD - [2012.06.29 17:01:42 | 000,467,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netapi32.dll
MOD - [2012.06.16 13:03:54 | 000,296,056 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe
MOD - [2012.06.08 18:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shell32.dll
MOD - [2012.06.07 20:01:02 | 000,770,384 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\msvcr100.dll
MOD - [2012.06.07 20:01:02 | 000,421,200 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\msvcp100.dll
MOD - [2012.06.05 17:47:28 | 001,401,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml6.dll
MOD - [2012.06.05 17:47:27 | 001,248,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml3.dll
MOD - [2012.06.02 01:04:25 | 000,278,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\schannel.dll
MOD - [2012.06.02 01:03:42 | 000,204,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
MOD - [2012.06.02 01:02:32 | 000,985,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\crypt32.dll
MOD - [2012.06.02 01:02:32 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptnet.dll
MOD - [2012.03.01 15:46:01 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
MOD - [2012.03.01 15:46:01 | 000,160,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
MOD - [2012.02.29 16:09:53 | 000,157,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imagehlp.dll
MOD - [2012.02.29 15:08:47 | 001,172,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
MOD - [2012.02.29 14:44:50 | 000,683,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
MOD - [2012.02.29 14:41:40 | 001,069,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
MOD - [2012.02.03 16:11:07 | 001,748,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\GdiPlus.dll
MOD - [2011.12.15 12:08:30 | 000,386,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
MOD - [2011.12.14 17:17:47 | 000,680,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcrt.dll
MOD - [2011.12.12 12:12:16 | 010,448,384 | ---- | M] (The Weather Channel) -- C:\Program Files\The Weather Channel\The Weather Channel App\TWCApp.exe
MOD - [2011.11.18 21:23:34 | 001,205,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntdll.dll
MOD - [2011.11.16 17:23:44 | 000,377,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winhttp.dll
MOD - [2011.11.16 17:23:08 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secur32.dll
MOD - [2011.10.14 17:03:25 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winmm.dll
MOD - [2011.08.25 17:14:01 | 000,563,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleaut32.dll
MOD - [2011.08.25 17:14:01 | 000,238,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleacc.dll
MOD - [2011.08.11 16:27:46 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Users\Adam\AppData\Local\Autobahn\rt\bin\msvcr71.dll
MOD - [2011.08.11 16:27:46 | 000,077,824 | ---- | M] (Sun Microsystems, Inc.) -- C:\Users\Adam\AppData\Local\Autobahn\rt\bin\net.dll
MOD - [2011.08.11 16:27:44 | 000,159,744 | ---- | M] () -- C:\Users\Adam\AppData\Local\Autobahn\rt\jetrt\baseline720.dll
MOD - [2011.08.11 16:27:44 | 000,069,632 | ---- | M] () -- C:\Users\Adam\AppData\Local\Autobahn\rt\bin\java.dll
MOD - [2011.08.11 16:27:44 | 000,020,480 | ---- | M] (Sun Microsystems, Inc.) -- C:\Users\Adam\AppData\Local\Autobahn\rt\bin\nio.dll
MOD - [2011.08.11 16:27:44 | 000,015,872 | ---- | M] (Sun Microsystems, Inc.) -- C:\Users\Adam\AppData\Local\Autobahn\rt\bin\hpi.dll
MOD - [2011.08.11 16:27:42 | 015,490,560 | ---- | M] () -- C:\Users\Adam\AppData\Local\Autobahn\nexdef.exe
MOD - [2011.08.11 16:27:40 | 000,126,976 | ---- | M] () -- C:\Users\Adam\AppData\Local\Autobahn\rt\bin\zip.dll
MOD - [2011.08.11 16:27:40 | 000,020,480 | ---- | M] () -- C:\Users\Adam\AppData\Local\Autobahn\rt\bin\jetvm\jvm.dll
MOD - [2011.06.28 16:06:02 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
MOD - [2011.06.18 02:12:13 | 003,781,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
MOD - [2011.06.18 02:11:59 | 000,653,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
MOD - [2011.06.18 02:11:59 | 000,569,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
MOD - [2011.06.15 17:12:11 | 000,182,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xmllite.dll
MOD - [2011.05.17 08:27:54 | 000,044,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\Culture.dll
MOD - [2011.05.17 08:27:52 | 000,413,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
MOD - [2011.03.09 10:09:54 | 003,986,944 | ---- | M] (Western Digital Technologies, Inc.) -- C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
MOD - [2011.03.09 10:08:22 | 000,096,768 | ---- | M] (Western Digital Corp.) -- C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WdNetworkDiscovery.dll
MOD - [2011.03.02 16:44:26 | 000,168,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dnsapi.dll
MOD - [2011.01.21 17:35:22 | 000,353,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shlwapi.dll
MOD - [2011.01.20 17:08:16 | 000,478,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
MOD - [2011.01.20 17:08:06 | 001,029,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
MOD - [2011.01.20 17:08:06 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
MOD - [2011.01.20 17:07:42 | 000,258,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winspool.drv
MOD - [2011.01.20 17:07:16 | 000,586,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\stobject.dll
MOD - [2011.01.20 17:07:03 | 001,075,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shdocvw.dll
MOD - [2011.01.20 17:04:54 | 000,209,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfplat.dll
MOD - [2010.11.21 15:54:34 | 000,094,208 | ---- | M] () -- C:\Program Files\FileZilla FTP Client\fzshellext.dll
MOD - [2010.11.04 19:55:38 | 000,352,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
MOD - [2010.11.04 17:34:06 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskeng.exe
MOD - [2010.08.31 16:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
MOD - [2010.08.31 16:43:52 | 000,531,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\comctl32.dll
MOD - [2010.08.31 13:40:56 | 002,057,728 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleServices.dll
MOD - [2010.08.31 13:40:56 | 000,653,312 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleUIEngine.dll
MOD - [2010.08.31 13:40:55 | 000,570,880 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktopResources_cs.dll
MOD - [2010.08.31 13:40:55 | 000,480,256 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktopAPI2.dll
MOD - [2010.08.31 13:40:55 | 000,273,920 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktopCommon.dll
MOD - [2010.08.31 13:40:55 | 000,147,456 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktopSSD.dll
MOD - [2010.08.31 13:40:55 | 000,129,024 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktopHyper.dll
MOD - [2010.08.31 13:40:55 | 000,123,392 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll
MOD - [2010.08.31 13:40:55 | 000,034,816 | ---- | M] () -- C:\Program Files\Google\Google Desktop Search\gzlib.dll
MOD - [2010.08.31 13:40:55 | 000,030,192 | ---- | M] (Google) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
MOD - [2010.08.26 17:37:45 | 000,157,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
MOD - [2010.06.28 18:00:21 | 001,316,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ole32.dll
MOD - [2010.06.18 18:31:29 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll
MOD - [2010.05.04 20:13:07 | 000,231,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll
MOD - [2010.04.16 17:46:48 | 000,502,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\usp10.dll
MOD - [2010.04.05 18:01:01 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\asycfilt.dll
MOD - [2010.03.18 13:16:28 | 004,881,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\NlsData0009.dll
MOD - [2010.03.18 13:16:28 | 002,650,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\NlsLexicons0009.dll
MOD - [2010.03.18 13:16:28 | 000,807,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\NaturalLanguage6.dll
MOD - [2010.03.18 13:16:28 | 000,801,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll
MOD - [2010.03.18 13:16:28 | 000,771,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcr100_clr0400.dll
MOD - [2010.03.18 13:16:28 | 000,688,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\diasymreader.dll
MOD - [2009.11.08 09:55:32 | 000,297,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscoree.dll
MOD - [2009.10.23 18:10:19 | 000,714,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
MOD - [2009.10.02 17:59:32 | 002,171,904 | ---- | M] (Crawler.com) -- C:\Program Files\Spyware Terminator\SpywareTerminatorShield.Exe
MOD - [2009.10.01 02:02:04 | 000,334,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
MOD - [2009.10.01 02:02:02 | 000,087,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WPDShServiceObj.dll
MOD - [2009.10.01 02:01:59 | 000,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll
MOD - [2009.09.25 03:10:10 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecs.dll
MOD - [2009.09.25 03:07:08 | 000,189,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
MOD - [2009.09.10 17:48:01 | 000,218,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msv1_0.dll
MOD - [2009.09.04 12:41:59 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msasn1.dll
MOD - [2009.09.01 07:19:18 | 007,629,312 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
MOD - [2009.09.01 07:19:18 | 000,993,792 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll
MOD - [2009.07.17 14:54:43 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\atl.dll
MOD - [2009.07.11 20:01:41 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanapi.dll
MOD - [2009.06.15 15:52:42 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lpk.dll
MOD - [2009.04.23 13:15:07 | 000,784,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rpcrt4.dll
MOD - [2009.04.11 07:28:26 | 000,223,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscntfy.dll
MOD - [2009.04.11 07:28:26 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscapi.dll
MOD - [2009.04.11 07:28:25 | 001,077,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vssapi.dll
MOD - [2009.04.11 07:28:25 | 000,627,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\user32.dll
MOD - [2009.04.11 07:28:25 | 000,287,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wldap32.dll
MOD - [2009.04.11 07:28:25 | 000,250,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtapi.dll
MOD - [2009.04.11 07:28:25 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WinSCard.dll
MOD - [2009.04.11 07:28:25 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\userenv.dll
MOD - [2009.04.11 07:28:25 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wbemsvc.dll
MOD - [2009.04.11 07:28:25 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wbemprox.dll
MOD - [2009.04.11 07:28:25 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\version.dll
MOD - [2009.04.11 07:28:25 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winrnr.dll
MOD - [2009.04.11 07:28:24 | 002,205,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SyncCenter.dll
MOD - [2009.04.11 07:28:24 | 001,591,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\setupapi.dll
MOD - [2009.04.11 07:28:24 | 000,466,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\riched20.dll
MOD - [2009.04.11 07:28:24 | 000,301,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srchadmin.dll
MOD - [2009.04.11 07:28:24 | 000,203,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uDWM.dll
MOD - [2009.04.11 07:28:24 | 000,142,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spp.dll
MOD - [2009.04.11 07:28:24 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samlib.dll
MOD - [2009.04.11 07:28:23 | 003,174,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netshell.dll
MOD - [2009.04.11 07:28:23 | 002,153,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oobefldr.dll
MOD - [2009.04.11 07:28:23 | 001,823,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnidui.dll
MOD - [2009.04.11 07:28:23 | 001,541,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\onex.dll
MOD - [2009.04.11 07:28:23 | 000,754,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\propsys.dll
MOD - [2009.04.11 07:28:23 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasapi32.dll
MOD - [2009.04.11 07:28:23 | 000,242,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pdh.dll
MOD - [2009.04.11 07:28:23 | 000,228,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLC.dll
MOD - [2009.04.11 07:28:23 | 000,121,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntmarta.dll
MOD - [2009.04.11 07:28:23 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\powrprof.dll
MOD - [2009.04.11 07:28:23 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\olepro32.dll
MOD - [2009.04.11 07:28:22 | 000,805,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll
MOD - [2009.04.11 07:28:22 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mswsock.dll
MOD - [2009.04.11 07:28:22 | 000,163,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msutb.dll
MOD - [2009.04.11 07:28:22 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll
MOD - [2009.04.11 07:28:21 | 002,241,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msi.dll
MOD - [2009.04.11 07:28:21 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msimtf.dll
MOD - [2009.04.11 07:28:20 | 002,012,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\milcore.dll
MOD - [2009.04.11 07:28:20 | 000,807,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msctf.dll
MOD - [2009.04.11 07:28:20 | 000,564,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll
MOD - [2009.04.11 07:28:20 | 000,391,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscms.dll
MOD - [2009.04.11 07:28:20 | 000,150,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MMDevAPI.dll
MOD - [2009.04.11 07:28:20 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imm32.dll
MOD - [2009.04.11 07:28:20 | 000,091,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IPHLPAPI.DLL
MOD - [2009.04.11 07:28:20 | 000,085,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msctfui.dll
MOD - [2009.04.11 07:28:20 | 000,068,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mpr.dll
MOD - [2009.04.11 07:28:20 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsCtfMonitor.dll
MOD - [2009.04.11 07:28:20 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\midimap.dll
MOD - [2009.04.11 07:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\fastprox.dll
MOD - [2009.04.11 07:28:19 | 000,595,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
MOD - [2009.04.11 07:28:19 | 000,444,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dsound.dll
MOD - [2009.04.11 07:28:19 | 000,297,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gdi32.dll
MOD - [2009.04.11 07:28:19 | 000,268,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\es.dll
MOD - [2009.04.11 07:28:19 | 000,153,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fundisc.dll
MOD - [2009.04.11 07:28:19 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\eappcfg.dll
MOD - [2009.04.11 07:28:19 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehSSO.dll
MOD - [2009.04.11 07:28:19 | 000,114,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\EhStorShell.dll
MOD - [2009.04.11 07:28:19 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gpapi.dll
MOD - [2009.04.11 07:28:19 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\feclient.dll
MOD - [2009.04.11 07:28:19 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fdProxy.dll
MOD - [2009.04.11 07:28:19 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
MOD - [2009.04.11 07:28:18 | 001,985,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
MOD - [2009.04.11 07:28:18 | 001,788,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d9.dll
MOD - [2009.04.11 07:28:18 | 001,324,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\browseui.dll
MOD - [2009.04.11 07:28:18 | 001,112,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll
MOD - [2009.04.11 07:28:18 | 000,450,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\comdlg32.dll
MOD - [2009.04.11 07:28:18 | 000,323,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\certcli.dll
MOD - [2009.04.11 07:28:18 | 000,274,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bcrypt.dll
MOD - [2009.04.11 07:28:18 | 000,204,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc.dll
MOD - [2009.04.11 07:28:18 | 000,130,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
MOD - [2009.04.11 07:28:18 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AudioSes.dll
MOD - [2009.04.11 07:28:18 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authz.dll
MOD - [2009.04.11 07:28:18 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cscapi.dll
MOD - [2009.04.11 07:28:17 | 000,800,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\advapi32.dll
MOD - [2009.04.11 07:28:17 | 000,171,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\apphelp.dll
MOD - [2009.04.11 07:28:08 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\unsecapp.exe
MOD - [2009.04.11 07:27:47 | 000,241,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rsaenh.dll
MOD - [2009.04.11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
MOD - [2009.04.11 07:27:33 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwm.exe
MOD - [2009.04.11 07:27:28 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conime.exe
MOD - [2009.04.11 07:27:17 | 000,220,672 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codecp.acm
MOD - [2009.04.11 07:27:12 | 000,640,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bthprops.cpl
MOD - [2009.04.11 07:27:12 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wdmaud.drv
MOD - [2009.04.11 07:27:12 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msacm32.drv
MOD - [2008.06.18 12:19:44 | 000,376,832 | ---- | M] (ODM) -- C:\Program Files\OEM\OSD_1.16\osd.exe
MOD - [2008.05.14 14:54:24 | 002,159,616 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkAPO.dll
MOD - [2008.05.13 10:12:54 | 006,139,904 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
MOD - [2008.01.21 03:25:33 | 000,202,240 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnscfg.exe
MOD - [2008.01.21 03:25:33 | 000,195,072 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnssci.dll
MOD - [2008.01.21 03:25:29 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srclient.dll
MOD - [2008.01.21 03:25:26 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpnsp.dll
MOD - [2008.01.21 03:25:25 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wpc.dll
MOD - [2008.01.21 03:25:18 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\HotStartUserAgent.dll
MOD - [2008.01.21 03:25:11 | 000,125,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehtray.exe
MOD - [2008.01.21 03:25:11 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehmsas.exe
MOD - [2008.01.21 03:25:02 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdmo.dll
MOD - [2008.01.21 03:25:01 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntshrui.dll
MOD - [2008.01.21 03:25:01 | 000,183,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\duser.dll
MOD - [2008.01.21 03:24:57 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntdsapi.dll
MOD - [2008.01.21 03:24:56 | 000,326,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\actxprxy.dll
MOD - [2008.01.21 03:24:56 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\QAGENT.DLL
MOD - [2008.01.21 03:24:54 | 000,397,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AudioEng.dll
MOD - [2008.01.21 03:24:54 | 000,187,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mlang.dll
MOD - [2008.01.21 03:24:54 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cabinet.dll
MOD - [2008.01.21 03:24:54 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avrt.dll
MOD - [2008.01.21 03:24:53 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msacm32.dll
MOD - [2008.01.21 03:24:48 | 000,179,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ws2_32.dll
MOD - [2008.01.21 03:24:48 | 000,140,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winsta.dll
MOD - [2008.01.21 03:24:47 | 000,403,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FirewallAPI.dll
MOD - [2008.01.21 03:24:47 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winnsi.dll
MOD - [2008.01.21 03:24:47 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nsi.dll
MOD - [2008.01.21 03:24:46 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\eappprxy.dll
MOD - [2008.01.21 03:24:46 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wtsapi32.dll
MOD - [2008.01.21 03:24:44 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmredir.dll
MOD - [2008.01.21 03:24:41 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oledlg.dll
MOD - [2008.01.21 03:24:41 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptdll.dll
MOD - [2008.01.21 03:24:37 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscript.ocx
MOD - [2008.01.21 03:24:37 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\credssp.dll
MOD - [2008.01.21 03:24:29 | 000,050,176 | ---- | M] (Společnost Microsoft) -- C:\Windows\System32\NapiNSP.dll
MOD - [2008.01.21 03:24:29 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PlaySndSrv.dll
MOD - [2008.01.21 03:24:28 | 000,215,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icm32.dll
MOD - [2008.01.21 03:24:27 | 000,155,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dssenh.dll
MOD - [2008.01.21 03:24:26 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vsstrace.dll
MOD - [2008.01.21 03:24:25 | 000,079,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\QUTIL.DLL
MOD - [2008.01.21 03:24:24 | 000,523,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\clbcatq.dll
MOD - [2008.01.21 03:24:23 | 000,237,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netprofm.dll
MOD - [2008.01.21 03:24:13 | 000,376,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sxs.dll
MOD - [2008.01.21 03:24:11 | 000,071,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasman.dll
MOD - [2008.01.21 03:24:06 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devenum.dll
MOD - [2008.01.21 03:24:06 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll
MOD - [2008.01.21 03:24:04 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSHTCPIP.DLL
MOD - [2008.01.21 03:24:04 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wship6.dll
MOD - [2008.01.21 03:24:03 | 000,195,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\upnp.dll
MOD - [2008.01.21 03:23:58 | 001,523,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0000.dll
MOD - [2008.01.21 03:23:54 | 000,798,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dbghelp.dll
MOD - [2008.01.21 03:23:53 | 000,357,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbemcomn.dll
MOD - [2008.01.21 03:23:53 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shacct.dll
MOD - [2008.01.21 03:23:50 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dimsjob.dll
MOD - [2008.01.21 03:23:45 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wsock32.dll
MOD - [2008.01.21 03:23:44 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nlaapi.dll
MOD - [2008.01.21 03:23:43 | 000,240,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uxtheme.dll
MOD - [2008.01.21 03:23:40 | 000,383,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WinSATAPI.dll
MOD - [2008.01.21 03:23:39 | 001,298,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TMM.dll
MOD - [2008.01.21 03:23:32 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
MOD - [2008.01.21 03:23:32 | 000,671,288 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MpRtMon.dll
MOD - [2008.01.21 03:23:32 | 000,312,888 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MpClient.dll
MOD - [2008.01.21 03:23:32 | 000,090,680 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MpOAV.dll
MOD - [2008.01.21 03:23:21 | 001,312,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMALFXGFXDSP.dll
MOD - [2007.11.21 09:33:14 | 000,208,896 | ---- | M] (TODO: <公司名稱>) -- C:\Program Files\OEM\OSD_1.16\DirectPort.dll
MOD - [2007.02.20 11:07:40 | 000,199,752 | ---- | M] (Pinnacle Systems GmbH) -- C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe
MOD - [2006.11.02 13:35:33 | 000,116,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehProxy.dll
MOD - [2006.11.02 13:34:50 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AltTab.dll
MOD - [2006.11.02 13:34:48 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\linkinfo.dll
MOD - [2006.11.02 13:34:33 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IconCodecService.dll
MOD - [2006.11.02 13:34:32 | 000,653,928 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MsMpRes.dll
MOD - [2006.11.02 10:46:14 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanutil.dll
MOD - [2006.11.02 10:46:13 | 000,869,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winbrand.dll
MOD - [2006.11.02 10:46:13 | 000,191,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tapi32.dll
MOD - [2006.11.02 10:46:13 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SndVolSSO.dll
MOD - [2006.11.02 10:46:13 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ssdpapi.dll
MOD - [2006.11.02 10:46:13 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TSChannel.dll
MOD - [2006.11.02 10:46:13 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shfolder.dll
MOD - [2006.11.02 10:46:12 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pautoenr.dll
MOD - [2006.11.02 10:46:12 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\perfos.dll
MOD - [2006.11.02 10:46:12 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\npmproxy.dll
MOD - [2006.11.02 10:46:12 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\psapi.dll
MOD - [2006.11.02 10:46:12 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasadhlp.dll
MOD - [2006.11.02 10:46:12 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SensApi.dll
MOD - [2006.11.02 10:46:07 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msiltcfg.dll
MOD - [2006.11.02 10:46:07 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msimg32.dll
MOD - [2006.11.02 10:46:05 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hid.dll
MOD - [2006.11.02 10:46:05 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ksuser.dll
MOD - [2006.11.02 10:46:03 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d8thk.dll
MOD - [2006.11.02 10:46:02 | 000,737,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\batmeter.dll
MOD - [2006.11.02 10:43:08 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\security.dll
MOD - [2006.11.02 09:33:06 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\normaliz.dll
MOD - [2006.10.09 15:07:22 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\msvcr71.dll
MOD - [2006.10.09 15:07:20 | 001,060,864 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\MFC71.dll
MOD - [2002.01.05 14:05:48 | 000,180,224 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\VS7DEBUG\PDM.DLL
MOD - [2002.01.05 07:03:46 | 000,176,128 | ---- | M] (Mi
Re: Prosím o kontrolu - preventivka, RSIT, OTL
========== Services (SafeList) ==========
SRV - [2012.12.12 20:28:28 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012.12.10 17:29:44 | 001,435,568 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2012.12.06 18:59:25 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.11.12 20:31:58 | 004,539,712 | ---- | M] () [Auto | Running] -- c:\program files\common files\akamai/netsession_win_ce5ba24.dll -- (Akamai)
SRV - [2012.10.30 23:50:59 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2012.07.27 21:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012.07.13 12:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.06.22 09:32:12 | 000,625,816 | ---- | M] (Pandora.TV) [Auto | Running] -- C:\Program Files\PANDORA.TV\PanService\PandoraService.exe -- (PanService)
SRV - [2012.01.05 16:42:34 | 000,075,624 | ---- | M] (Alcohol Soft Development Team) [Auto | Stopped] -- C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe -- (AxAutoMntSrv)
SRV - [2011.03.09 10:18:06 | 001,060,864 | ---- | M] () [Auto | Running] -- C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe -- (WDFME)
SRV - [2011.03.09 10:16:56 | 000,484,352 | ---- | M] () [Auto | Running] -- C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe -- (WDSC)
SRV - [2011.03.09 10:07:54 | 000,238,592 | ---- | M] (WDC) [Auto | Running] -- C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe -- (WDDMService)
SRV - [2010.08.10 09:38:05 | 000,407,336 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2009.12.23 22:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2009.10.02 17:59:33 | 000,487,424 | ---- | M] (Crawler.com) [Auto | Running] -- C:\Program Files\Spyware Terminator\sp_rsser.exe -- (sp_rssrv)
SRV - [2009.03.31 09:39:36 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] -- C:\Windows\System32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2008.04.25 13:23:36 | 000,303,104 | ---- | M] (Fujitsu Siemens Computers) [Auto | Running] -- C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe -- (TestHandler)
SRV - [2008.04.07 09:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2008.02.22 08:24:28 | 000,094,208 | ---- | M] (TODO: <公司名稱>) [Auto | Running] -- C:\Program Files\OEM\OSD_1.16\OsdService.exe -- (OsdService)
SRV - [2008.01.21 03:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\WPRO_40_1340.sys -- (WPRO_40_1340)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [File_System | Boot | Stopped] -- system32\DRIVERS\Lbd.sys -- (Lbd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (a0nn7xso)
DRV - [2012.12.17 22:46:29 | 000,466,008 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2012.10.30 23:51:58 | 000,738,504 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2012.10.30 23:51:58 | 000,361,032 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2012.10.30 23:51:58 | 000,054,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2012.10.30 23:51:58 | 000,035,928 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2012.10.30 23:51:57 | 000,058,680 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2012.10.30 23:51:56 | 000,021,256 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011.02.16 16:52:46 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wdcsam.sys -- (WDC_SAM)
DRV - [2010.06.23 09:21:32 | 000,259,176 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2009.10.02 17:59:33 | 000,142,592 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\sp_rsdrv2.sys -- (sp_rsdrv2)
DRV - [2009.09.01 07:19:18 | 009,825,728 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009.03.31 09:39:36 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2009.03.20 10:01:26 | 000,121,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bmdm.sys -- (ss_bmdm)
DRV - [2009.03.20 10:01:26 | 000,090,112 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bbus.sys -- (ss_bbus)
DRV - [2009.03.20 10:01:26 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bmdfl.sys -- (ss_bmdfl)
DRV - [2009.03.18 16:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi)
DRV - [2008.06.17 20:27:28 | 000,007,168 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\directport.sys -- (GpdDevDPort)
DRV - [2008.05.01 07:35:54 | 003,660,800 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw5v32.sys -- (NETw5v32)
DRV - [2008.04.03 13:58:46 | 000,076,688 | ---- | M] (JMicron Technology Corp.) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\jraid.sys -- (JRAID)
DRV - [2008.03.31 11:02:34 | 000,008,192 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\System32\kbfiltr.sys -- (GpdKbFilter)
DRV - [2007.12.19 18:45:00 | 000,170,000 | ---- | M] (AMD Technologies Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\ahcix86s.sys -- (ahcix86s)
DRV - [2007.09.17 15:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2005.09.23 22:18:32 | 000,171,520 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MarvinBus.sys -- (MarvinBus)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.)
IE - HKLM\..\URLSearchHook: {FE69C007-C452-4d3e-86D2-1730DF8BC871} - C:\Program Files\SimilarSites\similarsites.dll (SimilarSites)
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\URLSearchHook: {FE69C007-C452-4d3e-86D2-1730DF8BC871} - C:\Program Files\SimilarSites\similarsites.dll (SimilarSites)
IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\SearchScopes,DefaultScope = {6552C7DD-90A4-4387-B795-F8F96747DE19}
IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}: "URL" = http://www.icq.com/search/results.php?q ... &ch_id=osd
IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E}: "URL" = http://127.0.0.1:4664/search&s=3TrfiYpW ... earchTerms}
IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1:9421;<local>
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledAddons: %7Ba7c6cf7f-112c-4500-a7ea-39801a327e5f%7D:2.0.7
FF - prefs.js..extensions.enabledAddons: %7Bb9db16a4-6edc-47ec-a1f4-b86292ed211d%7D:4.9.12
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1
FF - prefs.js..extensions.enabledItems: illimitux@illimitux.net:3.2
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: firefox@tvunetworks.com:2
FF - prefs.js..extensions.enabledItems: 5
FF - prefs.js..extensions.enabledItems: 3
FF - prefs.js..extensions.enabledItems: 1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: vshare@toolbar:1.0.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: {a7c6cf7f-112c-4500-a7ea-39801a327e5f}:1.0.10
FF - prefs.js..extensions.enabledItems: video.downloader.plugin@ffpimp.com:3.3.5
FF - prefs.js..extensions.enabledItems: ShopperReports@ShopperReports.com:3.0.517.0
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pages.tvunetworks.com/WebPlayer: C:\Program Files\TVUPlayer\npTVUAx.dll (TVU networks)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=15.0.4.53: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.4.53: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.4.53: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.4.53: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=15.0.4.53: c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@veetle.com/vbp;version=0.9.17: C:\Program Files\Veetle\VLCBroadcast\npvbp.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.17: C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.17: C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Adam\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\ShopperReports@ShopperReports.com: C:\Program Files\ShopperReports3\bin\3.0.517.0\firefox\firefoxtoolbar\extensions [2011.04.03 19:20:03 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2012.11.21 17:09:21 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.12.06 18:59:27 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.12.06 18:59:19 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.12.06 18:59:27 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.12.06 18:59:19 | 000,000,000 | ---D | M]
[2009.10.04 23:56:30 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Adam\AppData\Roaming\Mozilla\Extensions
[2012.12.21 18:39:22 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\extensions
[2010.04.27 12:51:58 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2012.11.22 06:10:35 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2010.09.27 16:44:37 | 000,000,000 | ---D | M] (TVU Web Player) -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\extensions\firefox@tvunetworks.com
[2009.11.09 08:53:12 | 000,000,000 | ---D | M] ("Illimitux") -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\extensions\illimitux@illimitux.net
[2012.12.21 18:39:22 | 000,182,314 | ---- | M] () (No name found) -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\extensions\jid0-GjwrPchS3Ugt7xydvqVK4DQk8Ls@jetpack.xpi
[2012.08.23 17:26:03 | 000,341,143 | ---- | M] () (No name found) -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}.xpi
[2012.11.23 22:34:03 | 000,804,627 | ---- | M] () (No name found) -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012.02.15 18:03:18 | 000,002,434 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\searchplugins\s-amazon-byskipity-int.xml
[2012.01.20 23:55:26 | 000,002,281 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\searchplugins\s-amazon.xml
[2012.12.06 18:59:17 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012.12.06 18:59:17 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2012.12.06 18:59:26 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012.06.16 13:04:08 | 000,129,144 | ---- | M] (RealPlayer) -- C:\Program Files\mozilla firefox\plugins\nprpplugin.dll
[2012.03.22 18:38:11 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2012.03.22 18:38:11 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2012.03.22 18:38:11 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2012.03.22 18:38:11 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2012.03.22 18:38:11 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2010.11.25 08:07:00 | 000,000,935 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 im.adtech.de
O1 - Hosts: 127.0.0.1 adserver.adtech.de
O1 - Hosts: 127.0.0.1 adtech.de
O1 - Hosts: 127.0.0.1 atwola.com
O1 - Hosts: 127.0.0.1 adserver.71i.de
O1 - Hosts: 127.0.0.1 adicqserver.71i.de
O1 - Hosts: 127.0.0.1 71i.de
O2 - BHO: (Idea2 SidebarBrowserMonitor Class) - {45AD732C-2CE2-4666-B366-B2214AD57A49} - C:\Program Files\Desktop Sidebar\sbhelp.dll (Idea2)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (SimilarSites) - {FE69C007-C452-4d3e-86D2-1730DF8BC871} - C:\Program Files\SimilarSites\similarsites.dll (SimilarSites)
O3 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\Toolbar\WebBrowser: (Vuze Remote Toolbar) - {BA14329E-9550-4989-B3F2-9732E92D17CC} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [FSCRecovery] c:\Program Files\Fujitsu Siemens Computers\Fujitsu Siemens Computers Recovery\FSCRecoveryReminder.exe (Fujitsu Siemens Computers GmbH)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [NPSStartup] File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [OSD] C:\Program Files\OEM\OSD_1.16\osd.exe (ODM)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SpywareTerminator] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe (Crawler.com)
O4 - HKLM..\Run: [TkBellExe] c:\program files\real\realplayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [USBToolTip] C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe (Pinnacle Systems GmbH)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\.DEFAULT..\Run: [fsc-reg] C:\ProgramData\fsc-reg\fscreg.exe (Fujitsu Siemens)
O4 - HKU\S-1-5-18..\Run: [fsc-reg] C:\ProgramData\fsc-reg\fscreg.exe (Fujitsu Siemens)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000..\Run: [Akamai NetSession Interface] C:\Users\Adam\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.)
O4 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000..\Run: [AlcoholAutomount] C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe (Alcohol Soft Development Team)
O4 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000..\Run: [DW6] "C:\Program Files\The Weather Channel FW\Desktop\DesktopWeather.exe" File not found
O4 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000..\Run: [DW7] C:\Program Files\The Weather Channel\The Weather Channel App\TWCApp.exe (The Weather Channel)
O4 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000..\Run: [Xvid] C:\Program Files\Xvid\CheckUpdate.exe ()
O4 - Startup: C:\Users\Adam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\NexDef Plug-in.lnk = C:\Users\Adam\AppData\Local\Autobahn\nexdef.exe ()
O7 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Subscribe in Desktop Sidebar - {09FE188B-6E85-479e-9411-51FB2220DF80} - C:\Program Files\Desktop Sidebar\sbhelp.dll (Idea2)
O9 - Extra 'Tools' menuitem : Subscribe in Desktop Sidebar - {09FE188B-6E85-479e-9411-51FB2220DF80} - C:\Program Files\Desktop Sidebar\sbhelp.dll (Idea2)
O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: SimilarSites - {807DF5E0-4EF7-48a8-A405-239F3E29FFA9} - C:\Program Files\SimilarSites\similarsites.dll (SimilarSites)
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..Trusted Domains: localhost ([]http in Local intranet)
O15 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..Trusted Ranges: GD ([http] in Local intranet)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 10.9.2)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 10.9.2)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4F52D8AC-096B-4A80-ACF7-722C207DCBC5}: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL) - C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img17.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img17.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.l3acm - C:\Windows\System32\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: VIDC.CFHD - C:\Windows\System32\CFHD.dll (CineForm Inc.)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.mjpg - pvmjpg30.dll File not found
Drivers32: vidc.XVID - C:\Windows\System32\xvidvfw.dll ()
SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: NTDS - File not found
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet: AppMgmt - Service
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: Hamachi2Svc - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: NTDS - File not found
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 14 Days ==========
[2012.12.29 01:22:34 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2012.12.28 20:32:26 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Adam\Desktop\OTL.exe
[2012.12.28 11:52:07 | 000,000,000 | -HSD | C] -- C:\found.000
[2012.12.28 11:06:52 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\Users\Adam\wgsdgsdgdsgsd.dll
[2012.12.21 06:38:17 | 000,293,376 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2012.12.21 06:38:16 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2012.12.19 16:26:50 | 000,000,000 | R--D | C] -- C:\Users\Adam\MůJ FILM
[2012.12.19 14:10:40 | 000,000,000 | ---D | C] -- C:\Users\Adam\Documents\InstantCDDVD
[2012.12.17 23:47:40 | 000,000,000 | ---D | C] -- C:\Users\Adam\Documents\Pinnacle Studio
[2012.12.17 23:41:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle Studio
[2012.12.17 23:36:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Studio 11
[2012.12.17 23:34:34 | 000,000,000 | ---D | C] -- C:\Program Files\AdorageI-SAL
[2012.12.17 23:34:34 | 000,000,000 | ---D | C] -- C:\Program Files\AdorageI-GfxDatas
[2012.12.17 23:18:54 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BIAS
[2012.12.17 23:18:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2012.12.17 23:18:53 | 000,000,000 | ---D | C] -- C:\Program Files\BIAS
[2012.12.17 23:17:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\proDAD
[2012.12.17 23:17:02 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Roaming\proDAD
[2012.12.17 23:17:00 | 000,000,000 | ---D | C] -- C:\Program Files\proDAD
[2012.12.17 23:07:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alcohol 52%
[2012.12.17 23:06:57 | 000,000,000 | ---D | C] -- C:\Program Files\Alcohol Soft
[2012.12.17 22:46:29 | 000,466,008 | ---- | C] (Duplex Secure Ltd.) -- C:\Windows\System32\drivers\sptd.sys
[2012.12.17 22:46:01 | 000,000,000 | ---D | C] -- C:\Program Files\SimilarSites
[2012.12.17 22:45:59 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Roaming\SimilarSites
[2012.12.17 22:30:39 | 000,090,112 | ---- | C] (MindVision Software) -- C:\Windows\unvise32.exe
[2012.12.17 22:30:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Studio Plugins
[2012.12.17 22:30:34 | 000,000,000 | ---D | C] -- C:\Program Files\LooksBuilderSE
[2012.12.17 22:25:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Pinnacle
[2012.12.17 22:24:29 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\Pinnacle
[2012.12.17 22:24:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle Studio Ultimate Collection
[2012.12.17 22:20:19 | 000,000,000 | R--D | C] -- C:\Users\Adam\Music
[2012.12.17 22:17:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle Studio 14
[2012.12.17 22:17:11 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\My Projects
[2012.12.17 22:12:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Pegasus Imaging
[2012.12.17 22:11:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Yahoo!
[2012.12.17 22:11:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Studio 14
[2012.12.17 22:11:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle Studio Plus
[2012.12.17 22:11:57 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Pinnacle
[2012.12.17 22:01:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle
[2012.12.17 22:01:49 | 000,000,000 | ---D | C] -- C:\Program Files\Pinnacle
[2012.12.17 15:24:03 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Roaming\Sony
[2012.12.17 15:24:03 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\Sony
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 14 Days ==========
[2012.12.28 20:44:08 | 000,000,512 | ---- | M] () -- C:\Physical0MBR.bin
[2012.12.28 20:39:04 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012.12.28 20:36:32 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.12.28 20:32:28 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Adam\Desktop\OTL.exe
[2012.12.28 20:28:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012.12.28 19:37:43 | 000,151,176 | ---- | M] () -- C:\ProgramData\nvModes.001
[2012.12.28 19:37:27 | 000,151,176 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2012.12.28 19:37:26 | 000,000,372 | ---- | M] () -- C:\Windows\tasks\RNUpgradeHelperLogonPrompt_Adam.job
[2012.12.28 19:37:25 | 000,000,932 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012.12.28 19:36:52 | 000,003,344 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012.12.28 19:36:52 | 000,003,344 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012.12.28 19:36:45 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.12.28 19:36:42 | 3215,613,952 | -HS- | M] () -- C:\hiberfil.sys
[2012.12.28 11:06:52 | 000,211,456 | ---- | M] (Microsoft Corporation) -- C:\Users\Adam\wgsdgsdgdsgsd.dll
[2012.12.28 09:24:32 | 000,000,366 | ---- | M] () -- C:\Windows\tasks\ReclaimerUpdateFiles_Adam.job
[2012.12.28 09:24:22 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\ReclaimerUpdateXML_Adam.job
[2012.12.28 09:23:52 | 000,000,370 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Daily 4).job
[2012.12.28 09:23:52 | 000,000,370 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Daily 2).job
[2012.12.28 09:23:52 | 000,000,370 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Daily 1).job
[2012.12.27 12:45:00 | 000,000,370 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Daily 3).job
[2012.12.21 22:21:34 | 000,000,921 | ---- | M] () -- C:\Users\Public\Desktop\BS.Player FREE.lnk
[2012.12.21 18:22:28 | 000,435,680 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012.12.21 06:08:42 | 276,037,019 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012.12.19 16:26:50 | 000,000,006 | ---- | M] () -- C:\Users\Adam\Můj film.stx
[2012.12.19 16:25:11 | 000,000,349 | ---- | M] () -- C:\Users\Public\Documents\PCLECHAL.INI
[2012.12.19 13:06:15 | 000,642,632 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2012.12.19 13:06:15 | 000,632,152 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012.12.19 13:06:15 | 000,136,306 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2012.12.19 13:06:15 | 000,118,778 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012.12.19 08:46:50 | 000,000,838 | ---- | M] () -- C:\Users\Adam\Desktop\KMPlayer.lnk
[2012.12.18 00:09:21 | 000,000,553 | ---- | M] () -- C:\Users\Adam\Documents\ax_files.xml
[2012.12.17 23:38:51 | 000,000,282 | ---- | M] () -- C:\Users\Public\Desktop\More effects for your video.lnk
[2012.12.17 23:07:24 | 000,000,972 | ---- | M] () -- C:\Users\Public\Desktop\Alcohol 52%.lnk
[2012.12.17 22:44:40 | 001,158,024 | ---- | M] () -- C:\Users\Adam\Desktop\Alcohol52_FE_2.0.2.4713.exe
[2012.12.17 22:17:38 | 000,001,061 | ---- | M] () -- C:\Users\Public\Desktop\Pinnacle Studio 14.lnk
[2012.12.17 22:07:59 | 000,177,860 | ---- | M] () -- C:\Users\Adam\Desktop\Pinnacle_reg.jpg
[2012.12.17 20:37:15 | 000,022,036 | ---- | M] () -- C:\Users\Adam\Desktop\712_cz.rar
[2012.12.17 15:46:11 | 000,002,436 | ---- | M] () -- C:\Users\Adam\Documents\Register Vegas Pro.htm
[2012.12.16 14:12:54 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2012.12.16 11:50:29 | 000,293,376 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2012.12.16 10:06:49 | 000,013,410 | ---- | M] () -- C:\Users\Adam\Desktop\bbtcz-s06e11_v1.zip
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012.12.28 20:36:31 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.12.28 18:56:58 | 000,000,512 | ---- | C] () -- C:\Physical0MBR.bin
[2012.12.21 18:26:34 | 000,000,372 | ---- | C] () -- C:\Windows\tasks\RNUpgradeHelperLogonPrompt_Adam.job
[2012.12.21 18:26:28 | 000,000,366 | ---- | C] () -- C:\Windows\tasks\ReclaimerUpdateFiles_Adam.job
[2012.12.21 18:26:25 | 000,000,362 | ---- | C] () -- C:\Windows\tasks\ReclaimerUpdateXML_Adam.job
[2012.12.19 16:26:50 | 000,000,006 | ---- | C] () -- C:\Users\Adam\Můj film.stx
[2012.12.18 00:09:11 | 000,000,553 | ---- | C] () -- C:\Users\Adam\Documents\ax_files.xml
[2012.12.17 23:38:51 | 000,000,282 | ---- | C] () -- C:\Users\Public\Desktop\More effects for your video.lnk
[2012.12.17 23:07:24 | 000,000,972 | ---- | C] () -- C:\Users\Public\Desktop\Alcohol 52%.lnk
[2012.12.17 22:44:39 | 001,158,024 | ---- | C] () -- C:\Users\Adam\Desktop\Alcohol52_FE_2.0.2.4713.exe
[2012.12.17 22:17:38 | 000,001,061 | ---- | C] () -- C:\Users\Public\Desktop\Pinnacle Studio 14.lnk
[2012.12.17 22:08:06 | 000,000,349 | ---- | C] () -- C:\Users\Public\Documents\PCLECHAL.INI
[2012.12.17 22:07:58 | 000,177,860 | ---- | C] () -- C:\Users\Adam\Desktop\Pinnacle_reg.jpg
[2012.12.17 20:37:08 | 000,022,036 | ---- | C] () -- C:\Users\Adam\Desktop\712_cz.rar
[2012.12.17 15:45:59 | 000,002,436 | ---- | C] () -- C:\Users\Adam\Documents\Register Vegas Pro.htm
[2012.12.16 10:06:47 | 000,013,410 | ---- | C] () -- C:\Users\Adam\Desktop\bbtcz-s06e11_v1.zip
[2011.06.07 16:10:27 | 000,645,632 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2011.06.07 16:10:27 | 000,240,640 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2011.03.30 12:42:30 | 000,189,248 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2011.03.30 12:42:25 | 000,075,136 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2010.05.05 20:23:54 | 000,000,012 | ---- | C] () -- C:\Users\Adam\intlname.ols
[2009.11.18 00:21:08 | 000,001,302 | ---- | C] () -- C:\ProgramData\ss.ini
[2009.10.08 20:44:45 | 000,000,680 | ---- | C] () -- C:\Users\Adam\AppData\Local\d3d9caps.dat
[2009.10.02 18:57:52 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009.10.02 08:20:06 | 000,048,640 | ---- | C] () -- C:\Users\Adam\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.07.03 17:49:53 | 000,151,176 | ---- | C] () -- C:\ProgramData\nvModes.001
[2008.07.03 17:49:26 | 000,151,176 | ---- | C] () -- C:\ProgramData\nvModes.dat
SRV - [2012.12.12 20:28:28 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012.12.10 17:29:44 | 001,435,568 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2012.12.06 18:59:25 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012.11.12 20:31:58 | 004,539,712 | ---- | M] () [Auto | Running] -- c:\program files\common files\akamai/netsession_win_ce5ba24.dll -- (Akamai)
SRV - [2012.10.30 23:50:59 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2012.07.27 21:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012.07.13 12:28:36 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012.06.22 09:32:12 | 000,625,816 | ---- | M] (Pandora.TV) [Auto | Running] -- C:\Program Files\PANDORA.TV\PanService\PandoraService.exe -- (PanService)
SRV - [2012.01.05 16:42:34 | 000,075,624 | ---- | M] (Alcohol Soft Development Team) [Auto | Stopped] -- C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe -- (AxAutoMntSrv)
SRV - [2011.03.09 10:18:06 | 001,060,864 | ---- | M] () [Auto | Running] -- C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe -- (WDFME)
SRV - [2011.03.09 10:16:56 | 000,484,352 | ---- | M] () [Auto | Running] -- C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe -- (WDSC)
SRV - [2011.03.09 10:07:54 | 000,238,592 | ---- | M] (WDC) [Auto | Running] -- C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe -- (WDDMService)
SRV - [2010.08.10 09:38:05 | 000,407,336 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2009.12.23 22:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)
SRV - [2009.10.02 17:59:33 | 000,487,424 | ---- | M] (Crawler.com) [Auto | Running] -- C:\Program Files\Spyware Terminator\sp_rsser.exe -- (sp_rssrv)
SRV - [2009.03.31 09:39:36 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] -- C:\Windows\System32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2008.04.25 13:23:36 | 000,303,104 | ---- | M] (Fujitsu Siemens Computers) [Auto | Running] -- C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe -- (TestHandler)
SRV - [2008.04.07 09:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2008.02.22 08:24:28 | 000,094,208 | ---- | M] (TODO: <公司名稱>) [Auto | Running] -- C:\Program Files\OEM\OSD_1.16\OsdService.exe -- (OsdService)
SRV - [2008.01.21 03:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
========== Driver Services (SafeList) ==========
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\WPRO_40_1340.sys -- (WPRO_40_1340)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [File_System | Boot | Stopped] -- system32\DRIVERS\Lbd.sys -- (Lbd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (a0nn7xso)
DRV - [2012.12.17 22:46:29 | 000,466,008 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2012.10.30 23:51:58 | 000,738,504 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2012.10.30 23:51:58 | 000,361,032 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2012.10.30 23:51:58 | 000,054,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2012.10.30 23:51:58 | 000,035,928 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2012.10.30 23:51:57 | 000,058,680 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2012.10.30 23:51:56 | 000,021,256 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2011.02.16 16:52:46 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wdcsam.sys -- (WDC_SAM)
DRV - [2010.06.23 09:21:32 | 000,259,176 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2009.10.02 17:59:33 | 000,142,592 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\sp_rsdrv2.sys -- (sp_rsdrv2)
DRV - [2009.09.01 07:19:18 | 009,825,728 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009.03.31 09:39:36 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2009.03.20 10:01:26 | 000,121,856 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bmdm.sys -- (ss_bmdm)
DRV - [2009.03.20 10:01:26 | 000,090,112 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bbus.sys -- (ss_bbus)
DRV - [2009.03.20 10:01:26 | 000,014,976 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bmdfl.sys -- (ss_bmdfl)
DRV - [2009.03.18 16:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi)
DRV - [2008.06.17 20:27:28 | 000,007,168 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\directport.sys -- (GpdDevDPort)
DRV - [2008.05.01 07:35:54 | 003,660,800 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw5v32.sys -- (NETw5v32)
DRV - [2008.04.03 13:58:46 | 000,076,688 | ---- | M] (JMicron Technology Corp.) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\jraid.sys -- (JRAID)
DRV - [2008.03.31 11:02:34 | 000,008,192 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\System32\kbfiltr.sys -- (GpdKbFilter)
DRV - [2007.12.19 18:45:00 | 000,170,000 | ---- | M] (AMD Technologies Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\ahcix86s.sys -- (ahcix86s)
DRV - [2007.09.17 15:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2005.09.23 22:18:32 | 000,171,520 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MarvinBus.sys -- (MarvinBus)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.)
IE - HKLM\..\URLSearchHook: {FE69C007-C452-4d3e-86D2-1730DF8BC871} - C:\Program Files\SimilarSites\similarsites.dll (SimilarSites)
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\URLSearchHook: {FE69C007-C452-4d3e-86D2-1730DF8BC871} - C:\Program Files\SimilarSites\similarsites.dll (SimilarSites)
IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\SearchScopes,DefaultScope = {6552C7DD-90A4-4387-B795-F8F96747DE19}
IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTer ... ORM=IE8SRC
IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}: "URL" = http://www.icq.com/search/results.php?q ... &ch_id=osd
IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E}: "URL" = http://127.0.0.1:4664/search&s=3TrfiYpW ... earchTerms}
IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1:9421;<local>
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.seznam.cz/"
FF - prefs.js..extensions.enabledAddons: %7Ba7c6cf7f-112c-4500-a7ea-39801a327e5f%7D:2.0.7
FF - prefs.js..extensions.enabledAddons: %7Bb9db16a4-6edc-47ec-a1f4-b86292ed211d%7D:4.9.12
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1
FF - prefs.js..extensions.enabledItems: illimitux@illimitux.net:3.2
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: firefox@tvunetworks.com:2
FF - prefs.js..extensions.enabledItems: 5
FF - prefs.js..extensions.enabledItems: 3
FF - prefs.js..extensions.enabledItems: 1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: vshare@toolbar:1.0.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: {a7c6cf7f-112c-4500-a7ea-39801a327e5f}:1.0.10
FF - prefs.js..extensions.enabledItems: video.downloader.plugin@ffpimp.com:3.3.5
FF - prefs.js..extensions.enabledItems: ShopperReports@ShopperReports.com:3.0.517.0
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pages.tvunetworks.com/WebPlayer: C:\Program Files\TVUPlayer\npTVUAx.dll (TVU networks)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=15.0.4.53: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.4.53: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.4.53: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.4.53: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=15.0.4.53: c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@veetle.com/vbp;version=0.9.17: C:\Program Files\Veetle\VLCBroadcast\npvbp.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.17: C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.17: C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Adam\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\ShopperReports@ShopperReports.com: C:\Program Files\ShopperReports3\bin\3.0.517.0\firefox\firefoxtoolbar\extensions [2011.04.03 19:20:03 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2012.11.21 17:09:21 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.12.06 18:59:27 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.12.06 18:59:19 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012.12.06 18:59:27 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012.12.06 18:59:19 | 000,000,000 | ---D | M]
[2009.10.04 23:56:30 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Adam\AppData\Roaming\Mozilla\Extensions
[2012.12.21 18:39:22 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\extensions
[2010.04.27 12:51:58 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2012.11.22 06:10:35 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2010.09.27 16:44:37 | 000,000,000 | ---D | M] (TVU Web Player) -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\extensions\firefox@tvunetworks.com
[2009.11.09 08:53:12 | 000,000,000 | ---D | M] ("Illimitux") -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\extensions\illimitux@illimitux.net
[2012.12.21 18:39:22 | 000,182,314 | ---- | M] () (No name found) -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\extensions\jid0-GjwrPchS3Ugt7xydvqVK4DQk8Ls@jetpack.xpi
[2012.08.23 17:26:03 | 000,341,143 | ---- | M] () (No name found) -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}.xpi
[2012.11.23 22:34:03 | 000,804,627 | ---- | M] () (No name found) -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012.02.15 18:03:18 | 000,002,434 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\searchplugins\s-amazon-byskipity-int.xml
[2012.01.20 23:55:26 | 000,002,281 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\searchplugins\s-amazon.xml
[2012.12.06 18:59:17 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012.12.06 18:59:17 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2012.12.06 18:59:26 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012.06.16 13:04:08 | 000,129,144 | ---- | M] (RealPlayer) -- C:\Program Files\mozilla firefox\plugins\nprpplugin.dll
[2012.03.22 18:38:11 | 000,002,208 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\heureka-cz.xml
[2012.03.22 18:38:11 | 000,000,638 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\jyxo-cz.xml
[2012.03.22 18:38:11 | 000,001,367 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\seznam-cz.xml
[2012.03.22 18:38:11 | 000,000,654 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\slunecnice-cz.xml
[2012.03.22 18:38:11 | 000,001,179 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-cz.xml
O1 HOSTS File: ([2010.11.25 08:07:00 | 000,000,935 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 im.adtech.de
O1 - Hosts: 127.0.0.1 adserver.adtech.de
O1 - Hosts: 127.0.0.1 adtech.de
O1 - Hosts: 127.0.0.1 atwola.com
O1 - Hosts: 127.0.0.1 adserver.71i.de
O1 - Hosts: 127.0.0.1 adicqserver.71i.de
O1 - Hosts: 127.0.0.1 71i.de
O2 - BHO: (Idea2 SidebarBrowserMonitor Class) - {45AD732C-2CE2-4666-B366-B2214AD57A49} - C:\Program Files\Desktop Sidebar\sbhelp.dll (Idea2)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (SimilarSites) - {FE69C007-C452-4d3e-86D2-1730DF8BC871} - C:\Program Files\SimilarSites\similarsites.dll (SimilarSites)
O3 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\Toolbar\WebBrowser: (Vuze Remote Toolbar) - {BA14329E-9550-4989-B3F2-9732E92D17CC} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [FSCRecovery] c:\Program Files\Fujitsu Siemens Computers\Fujitsu Siemens Computers Recovery\FSCRecoveryReminder.exe (Fujitsu Siemens Computers GmbH)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [NPSStartup] File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [OSD] C:\Program Files\OEM\OSD_1.16\osd.exe (ODM)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SpywareTerminator] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe (Crawler.com)
O4 - HKLM..\Run: [TkBellExe] c:\program files\real\realplayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [USBToolTip] C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe (Pinnacle Systems GmbH)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\.DEFAULT..\Run: [fsc-reg] C:\ProgramData\fsc-reg\fscreg.exe (Fujitsu Siemens)
O4 - HKU\S-1-5-18..\Run: [fsc-reg] C:\ProgramData\fsc-reg\fscreg.exe (Fujitsu Siemens)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000..\Run: [Akamai NetSession Interface] C:\Users\Adam\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.)
O4 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000..\Run: [AlcoholAutomount] C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe (Alcohol Soft Development Team)
O4 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000..\Run: [DW6] "C:\Program Files\The Weather Channel FW\Desktop\DesktopWeather.exe" File not found
O4 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000..\Run: [DW7] C:\Program Files\The Weather Channel\The Weather Channel App\TWCApp.exe (The Weather Channel)
O4 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000..\Run: [Xvid] C:\Program Files\Xvid\CheckUpdate.exe ()
O4 - Startup: C:\Users\Adam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\NexDef Plug-in.lnk = C:\Users\Adam\AppData\Local\Autobahn\nexdef.exe ()
O7 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Subscribe in Desktop Sidebar - {09FE188B-6E85-479e-9411-51FB2220DF80} - C:\Program Files\Desktop Sidebar\sbhelp.dll (Idea2)
O9 - Extra 'Tools' menuitem : Subscribe in Desktop Sidebar - {09FE188B-6E85-479e-9411-51FB2220DF80} - C:\Program Files\Desktop Sidebar\sbhelp.dll (Idea2)
O9 - Extra Button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: SimilarSites - {807DF5E0-4EF7-48a8-A405-239F3E29FFA9} - C:\Program Files\SimilarSites\similarsites.dll (SimilarSites)
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..Trusted Domains: localhost ([]http in Local intranet)
O15 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..Trusted Ranges: GD ([http] in Local intranet)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 10.9.2)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 10.9.2)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.138
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4F52D8AC-096B-4A80-ACF7-722C207DCBC5}: DhcpNameServer = 10.0.0.138
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL) - C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img17.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img17.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
Drivers32: msacm.l3acm - C:\Windows\System32\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: VIDC.CFHD - C:\Windows\System32\CFHD.dll (CineForm Inc.)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.mjpg - pvmjpg30.dll File not found
Drivers32: vidc.XVID - C:\Windows\System32\xvidvfw.dll ()
SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: NTDS - File not found
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet: AppMgmt - Service
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: Hamachi2Svc - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: NTDS - File not found
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin
========== Files/Folders - Created Within 14 Days ==========
[2012.12.29 01:22:34 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2012.12.28 20:32:26 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Adam\Desktop\OTL.exe
[2012.12.28 11:52:07 | 000,000,000 | -HSD | C] -- C:\found.000
[2012.12.28 11:06:52 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\Users\Adam\wgsdgsdgdsgsd.dll
[2012.12.21 06:38:17 | 000,293,376 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2012.12.21 06:38:16 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2012.12.19 16:26:50 | 000,000,000 | R--D | C] -- C:\Users\Adam\MůJ FILM
[2012.12.19 14:10:40 | 000,000,000 | ---D | C] -- C:\Users\Adam\Documents\InstantCDDVD
[2012.12.17 23:47:40 | 000,000,000 | ---D | C] -- C:\Users\Adam\Documents\Pinnacle Studio
[2012.12.17 23:41:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle Studio
[2012.12.17 23:36:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Studio 11
[2012.12.17 23:34:34 | 000,000,000 | ---D | C] -- C:\Program Files\AdorageI-SAL
[2012.12.17 23:34:34 | 000,000,000 | ---D | C] -- C:\Program Files\AdorageI-GfxDatas
[2012.12.17 23:18:54 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BIAS
[2012.12.17 23:18:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2012.12.17 23:18:53 | 000,000,000 | ---D | C] -- C:\Program Files\BIAS
[2012.12.17 23:17:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\proDAD
[2012.12.17 23:17:02 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Roaming\proDAD
[2012.12.17 23:17:00 | 000,000,000 | ---D | C] -- C:\Program Files\proDAD
[2012.12.17 23:07:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alcohol 52%
[2012.12.17 23:06:57 | 000,000,000 | ---D | C] -- C:\Program Files\Alcohol Soft
[2012.12.17 22:46:29 | 000,466,008 | ---- | C] (Duplex Secure Ltd.) -- C:\Windows\System32\drivers\sptd.sys
[2012.12.17 22:46:01 | 000,000,000 | ---D | C] -- C:\Program Files\SimilarSites
[2012.12.17 22:45:59 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Roaming\SimilarSites
[2012.12.17 22:30:39 | 000,090,112 | ---- | C] (MindVision Software) -- C:\Windows\unvise32.exe
[2012.12.17 22:30:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Studio Plugins
[2012.12.17 22:30:34 | 000,000,000 | ---D | C] -- C:\Program Files\LooksBuilderSE
[2012.12.17 22:25:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Pinnacle
[2012.12.17 22:24:29 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\Pinnacle
[2012.12.17 22:24:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle Studio Ultimate Collection
[2012.12.17 22:20:19 | 000,000,000 | R--D | C] -- C:\Users\Adam\Music
[2012.12.17 22:17:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle Studio 14
[2012.12.17 22:17:11 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\My Projects
[2012.12.17 22:12:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Pegasus Imaging
[2012.12.17 22:11:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Yahoo!
[2012.12.17 22:11:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Studio 14
[2012.12.17 22:11:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle Studio Plus
[2012.12.17 22:11:57 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Pinnacle
[2012.12.17 22:01:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Pinnacle
[2012.12.17 22:01:49 | 000,000,000 | ---D | C] -- C:\Program Files\Pinnacle
[2012.12.17 15:24:03 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Roaming\Sony
[2012.12.17 15:24:03 | 000,000,000 | ---D | C] -- C:\Users\Adam\AppData\Local\Sony
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files - Modified Within 14 Days ==========
[2012.12.28 20:44:08 | 000,000,512 | ---- | M] () -- C:\Physical0MBR.bin
[2012.12.28 20:39:04 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012.12.28 20:36:32 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012.12.28 20:32:28 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Adam\Desktop\OTL.exe
[2012.12.28 20:28:00 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012.12.28 19:37:43 | 000,151,176 | ---- | M] () -- C:\ProgramData\nvModes.001
[2012.12.28 19:37:27 | 000,151,176 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2012.12.28 19:37:26 | 000,000,372 | ---- | M] () -- C:\Windows\tasks\RNUpgradeHelperLogonPrompt_Adam.job
[2012.12.28 19:37:25 | 000,000,932 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012.12.28 19:36:52 | 000,003,344 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012.12.28 19:36:52 | 000,003,344 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012.12.28 19:36:45 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012.12.28 19:36:42 | 3215,613,952 | -HS- | M] () -- C:\hiberfil.sys
[2012.12.28 11:06:52 | 000,211,456 | ---- | M] (Microsoft Corporation) -- C:\Users\Adam\wgsdgsdgdsgsd.dll
[2012.12.28 09:24:32 | 000,000,366 | ---- | M] () -- C:\Windows\tasks\ReclaimerUpdateFiles_Adam.job
[2012.12.28 09:24:22 | 000,000,362 | ---- | M] () -- C:\Windows\tasks\ReclaimerUpdateXML_Adam.job
[2012.12.28 09:23:52 | 000,000,370 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Daily 4).job
[2012.12.28 09:23:52 | 000,000,370 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Daily 2).job
[2012.12.28 09:23:52 | 000,000,370 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Daily 1).job
[2012.12.27 12:45:00 | 000,000,370 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Daily 3).job
[2012.12.21 22:21:34 | 000,000,921 | ---- | M] () -- C:\Users\Public\Desktop\BS.Player FREE.lnk
[2012.12.21 18:22:28 | 000,435,680 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012.12.21 06:08:42 | 276,037,019 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012.12.19 16:26:50 | 000,000,006 | ---- | M] () -- C:\Users\Adam\Můj film.stx
[2012.12.19 16:25:11 | 000,000,349 | ---- | M] () -- C:\Users\Public\Documents\PCLECHAL.INI
[2012.12.19 13:06:15 | 000,642,632 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2012.12.19 13:06:15 | 000,632,152 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012.12.19 13:06:15 | 000,136,306 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2012.12.19 13:06:15 | 000,118,778 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012.12.19 08:46:50 | 000,000,838 | ---- | M] () -- C:\Users\Adam\Desktop\KMPlayer.lnk
[2012.12.18 00:09:21 | 000,000,553 | ---- | M] () -- C:\Users\Adam\Documents\ax_files.xml
[2012.12.17 23:38:51 | 000,000,282 | ---- | M] () -- C:\Users\Public\Desktop\More effects for your video.lnk
[2012.12.17 23:07:24 | 000,000,972 | ---- | M] () -- C:\Users\Public\Desktop\Alcohol 52%.lnk
[2012.12.17 22:44:40 | 001,158,024 | ---- | M] () -- C:\Users\Adam\Desktop\Alcohol52_FE_2.0.2.4713.exe
[2012.12.17 22:17:38 | 000,001,061 | ---- | M] () -- C:\Users\Public\Desktop\Pinnacle Studio 14.lnk
[2012.12.17 22:07:59 | 000,177,860 | ---- | M] () -- C:\Users\Adam\Desktop\Pinnacle_reg.jpg
[2012.12.17 20:37:15 | 000,022,036 | ---- | M] () -- C:\Users\Adam\Desktop\712_cz.rar
[2012.12.17 15:46:11 | 000,002,436 | ---- | M] () -- C:\Users\Adam\Documents\Register Vegas Pro.htm
[2012.12.16 14:12:54 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2012.12.16 11:50:29 | 000,293,376 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2012.12.16 10:06:49 | 000,013,410 | ---- | M] () -- C:\Users\Adam\Desktop\bbtcz-s06e11_v1.zip
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
========== Files Created - No Company Name ==========
[2012.12.28 20:36:31 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012.12.28 18:56:58 | 000,000,512 | ---- | C] () -- C:\Physical0MBR.bin
[2012.12.21 18:26:34 | 000,000,372 | ---- | C] () -- C:\Windows\tasks\RNUpgradeHelperLogonPrompt_Adam.job
[2012.12.21 18:26:28 | 000,000,366 | ---- | C] () -- C:\Windows\tasks\ReclaimerUpdateFiles_Adam.job
[2012.12.21 18:26:25 | 000,000,362 | ---- | C] () -- C:\Windows\tasks\ReclaimerUpdateXML_Adam.job
[2012.12.19 16:26:50 | 000,000,006 | ---- | C] () -- C:\Users\Adam\Můj film.stx
[2012.12.18 00:09:11 | 000,000,553 | ---- | C] () -- C:\Users\Adam\Documents\ax_files.xml
[2012.12.17 23:38:51 | 000,000,282 | ---- | C] () -- C:\Users\Public\Desktop\More effects for your video.lnk
[2012.12.17 23:07:24 | 000,000,972 | ---- | C] () -- C:\Users\Public\Desktop\Alcohol 52%.lnk
[2012.12.17 22:44:39 | 001,158,024 | ---- | C] () -- C:\Users\Adam\Desktop\Alcohol52_FE_2.0.2.4713.exe
[2012.12.17 22:17:38 | 000,001,061 | ---- | C] () -- C:\Users\Public\Desktop\Pinnacle Studio 14.lnk
[2012.12.17 22:08:06 | 000,000,349 | ---- | C] () -- C:\Users\Public\Documents\PCLECHAL.INI
[2012.12.17 22:07:58 | 000,177,860 | ---- | C] () -- C:\Users\Adam\Desktop\Pinnacle_reg.jpg
[2012.12.17 20:37:08 | 000,022,036 | ---- | C] () -- C:\Users\Adam\Desktop\712_cz.rar
[2012.12.17 15:45:59 | 000,002,436 | ---- | C] () -- C:\Users\Adam\Documents\Register Vegas Pro.htm
[2012.12.16 10:06:47 | 000,013,410 | ---- | C] () -- C:\Users\Adam\Desktop\bbtcz-s06e11_v1.zip
[2011.06.07 16:10:27 | 000,645,632 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2011.06.07 16:10:27 | 000,240,640 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2011.03.30 12:42:30 | 000,189,248 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2011.03.30 12:42:25 | 000,075,136 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2010.05.05 20:23:54 | 000,000,012 | ---- | C] () -- C:\Users\Adam\intlname.ols
[2009.11.18 00:21:08 | 000,001,302 | ---- | C] () -- C:\ProgramData\ss.ini
[2009.10.08 20:44:45 | 000,000,680 | ---- | C] () -- C:\Users\Adam\AppData\Local\d3d9caps.dat
[2009.10.02 18:57:52 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009.10.02 08:20:06 | 000,048,640 | ---- | C] () -- C:\Users\Adam\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008.07.03 17:49:53 | 000,151,176 | ---- | C] () -- C:\ProgramData\nvModes.001
[2008.07.03 17:49:26 | 000,151,176 | ---- | C] () -- C:\ProgramData\nvModes.dat
Re: Prosím o kontrolu - preventivka, RSIT, OTL
========== ZeroAccess Check ==========
[2006.11.02 13:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.06.08 18:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.04.11 07:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.04.11 07:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2009.11.01 17:33:09 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\2K Sports
[2009.10.10 10:59:10 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Ableton
[2010.10.19 10:11:59 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\AnvSoft
[2012.12.21 06:38:21 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Azureus
[2012.12.21 22:21:29 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\BSplayer
[2009.10.03 20:59:46 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\BSplayer Pro
[2009.11.14 15:26:45 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Desktop Sidebar
[2011.03.20 10:41:49 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\FileZilla
[2010.08.15 10:19:22 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\GetRightToGo
[2012.12.03 18:45:40 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\GoPro
[2012.11.19 21:22:18 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\ICQ
[2010.03.23 17:51:35 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Leawo
[2010.02.02 11:05:14 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\PC Suite
[2012.12.17 23:40:44 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\proDAD
[2011.03.30 12:42:20 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\PunkBuster
[2012.09.28 22:35:41 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Rayman Origins
[2010.02.02 10:34:59 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Samsung
[2011.04.03 19:19:57 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\ShopperReports3
[2012.12.17 22:46:00 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\SimilarSites
[2009.11.12 14:19:56 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Sinovation
[2012.12.17 15:24:03 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Sony
[2010.12.09 01:59:49 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Spyware Terminator
[2009.10.03 00:13:42 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\StreamTorrent
[2010.05.06 09:12:32 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Ubisoft
[2010.08.05 08:50:03 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\YoudaGames
========== Purity Check ==========
========== Custom Scans ==========
< >
[2006.11.02 14:01:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2006.11.02 14:01:49 | 000,032,566 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2010.03.06 22:51:14 | 000,000,370 | ---- | C] () -- C:\Windows\Tasks\Ad-Aware Update (Daily 1).job
[2010.03.06 22:51:15 | 000,000,370 | ---- | C] () -- C:\Windows\Tasks\Ad-Aware Update (Daily 2).job
[2010.03.06 22:51:15 | 000,000,370 | ---- | C] () -- C:\Windows\Tasks\Ad-Aware Update (Daily 3).job
[2010.03.06 22:51:15 | 000,000,370 | ---- | C] () -- C:\Windows\Tasks\Ad-Aware Update (Daily 4).job
[2010.03.06 22:51:16 | 000,000,370 | ---- | C] () -- C:\Windows\Tasks\Ad-Aware Update (Weekly).job
[2010.04.13 16:23:39 | 000,000,310 | ---- | C] () -- C:\Windows\Tasks\Install_NSS.job
[2010.09.23 02:00:11 | 000,000,932 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2010.09.23 02:00:12 | 000,000,936 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2012.05.23 16:12:38 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2012.12.21 18:26:25 | 000,000,362 | ---- | C] () -- C:\Windows\Tasks\ReclaimerUpdateXML_Adam.job
[2012.12.21 18:26:28 | 000,000,366 | ---- | C] () -- C:\Windows\Tasks\ReclaimerUpdateFiles_Adam.job
[2012.12.21 18:26:34 | 000,000,372 | ---- | C] () -- C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Adam.job
========== Drive Information ==========
Physical Drives
---------------
Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: ST9250827AS ATA Device
Partitions: 3
Status: OK
Status Info: 0
Partitions
---------------
DeviceID: Disk #0, Partition #0
PartitionType: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 9,00GB
Starting Offset: 1048576
Hidden sectors: 0
DeviceID: Disk #0, Partition #1
PartitionType: Installable File System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 94,00GB
Starting Offset: 9438232576
Hidden sectors: 0
DeviceID: Disk #0, Partition #2
PartitionType: Installable File System
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 130,00GB
Starting Offset: 110540881920
Hidden sectors: 0
========== Base Services ==========
SRV - [2006.11.02 10:46:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\aelupsvc.dll -- (AeLookupSvc)
SRV - [2008.01.21 03:24:17 | 000,033,280 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\appinfo.dll -- (Appinfo)
SRV - [2008.01.21 03:24:14 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\alg.exe -- (ALG)
SRV - [2009.04.11 07:28:23 | 000,758,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\qmgr.dll -- (BITS)
SRV - [2009.04.11 07:28:18 | 000,334,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\BFE.DLL -- (BFE)
SRV - [2011.11.16 15:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\lsass.exe -- (KeyIso)
SRV - [2009.04.11 07:28:19 | 000,268,800 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\es.dll -- (EventSystem)
SRV - [2008.01.21 03:24:36 | 000,081,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\browser.dll -- (Browser)
SRV - [2012.06.02 01:02:32 | 000,133,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\cryptsvc.dll -- (CryptSvc)
SRV - [2009.04.11 07:28:24 | 000,550,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (DcomLaunch)
SRV - [2009.04.11 07:28:18 | 000,204,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dhcpcsvc.dll -- (Dhcp)
SRV - [2011.03.02 16:44:27 | 000,086,528 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dnsrslvr.dll -- (Dnscache)
SRV - [2008.01.21 03:25:01 | 000,057,344 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\eapsvc.dll -- (EapHost)
SRV - [2009.04.11 07:28:19 | 000,026,112 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\hidserv.dll -- (hidserv)
SRV - [2008.01.21 03:24:09 | 000,288,256 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\ipnathlp.dll -- (SharedAccess)
SRV - [2009.04.11 07:28:20 | 000,364,032 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV - [2009.04.11 07:28:24 | 000,311,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\swprv.dll -- (swprv)
SRV - [2008.01.21 03:24:54 | 000,045,056 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\mmcss.dll -- (MMCSS)
SRV - [2008.01.21 03:24:11 | 000,274,432 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netman.dll -- (Netman)
SRV - [2008.01.21 03:24:23 | 000,237,056 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\netprofm.dll -- (netprofm)
SRV - [2008.01.21 03:23:44 | 000,168,448 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\nlasvc.dll -- (NlaSvc)
SRV - [2008.01.21 03:24:47 | 000,018,432 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\nsisvc.dll -- (nsi)
SRV - [2009.04.11 07:28:25 | 000,222,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpnpmgr.dll -- (PlugPlay)
SRV - [2010.08.17 15:11:37 | 000,128,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\spoolsv.exe -- (Spooler)
SRV - [2011.11.16 15:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\lsass.exe -- (ProtectedStorage)
SRV - [2009.04.11 07:28:19 | 000,564,224 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\emdmgmt.dll -- (EMDMgmt)
SRV - [2008.01.21 03:24:19 | 000,090,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\rasauto.dll -- (RasAuto)
SRV - [2009.04.11 07:28:24 | 000,262,144 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\rasmans.dll -- (RasMan)
SRV - [2009.04.11 07:28:24 | 000,550,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (RpcSs)
SRV - [2008.01.21 03:24:35 | 000,019,968 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\seclogon.dll -- (seclogon)
SRV - [2011.11.16 15:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\lsass.exe -- (SamSs)
SRV - [2009.04.11 07:28:26 | 000,061,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wscsvc.dll -- (wscsvc)
SRV - [2010.09.06 17:20:29 | 000,125,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\srvsvc.dll -- (LanmanServer)
SRV - [2009.07.10 12:47:42 | 000,247,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\shsvcs.dll -- (ShellHWDetection)
SRV - [2009.04.11 07:27:49 | 003,408,896 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\SLsvc.exe -- (slsvc)
SRV - [2010.11.04 19:55:12 | 000,601,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\schedsvc.dll -- (Schedule)
SRV - [2009.04.11 07:28:24 | 000,242,688 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\tapisrv.dll -- (TapiSrv)
SRV - [2009.07.10 12:47:42 | 000,247,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\shsvcs.dll -- (Themes)
SRV - [2009.04.11 07:28:23 | 000,153,088 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\profsvc.dll -- (ProfSvc)
SRV - [2009.04.11 07:28:10 | 001,055,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\VSSVC.exe -- (VSS)
SRV - [2009.04.11 07:28:18 | 000,315,392 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\audiosrv.dll -- (Audiosrv)
SRV - [2009.04.11 07:28:18 | 000,315,392 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\audiosrv.dll -- (AudioEndpointBuilder)
SRV - [2008.01.21 03:23:27 | 000,104,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sdrsvc.dll -- (SDRSVC)
SRV - [2008.01.21 03:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009.04.11 07:28:25 | 001,017,856 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wevtsvc.dll -- (Eventlog)
SRV - [2009.04.11 07:28:20 | 000,407,552 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\MPSSVC.dll -- (MpsSvc)
SRV - [2009.04.11 07:28:25 | 000,453,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wiaservc.dll -- (stisvc)
SRV - [2009.04.11 07:27:45 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\msiexec.exe -- (msiserver)
SRV - [2009.04.11 07:28:25 | 000,162,304 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wbem\WMIsvc.dll -- (Winmgmt)
SRV - [2012.06.02 23:19:17 | 001,933,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wuaueng.dll -- (wuauserv)
SRV - [2009.04.11 07:28:18 | 000,175,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\dot3svc.dll -- (dot3svc)
SRV - [2009.07.11 20:01:42 | 000,513,536 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wlansvc.dll -- (Wlansvc)
SRV - [2009.06.10 12:42:23 | 000,160,256 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wkssvc.dll -- (LanmanWorkstation)
< >
< MD5 for: ACPI.SYS >
[2006.11.02 10:51:30 | 000,255,592 | ---- | M] (Microsoft Corporation) MD5=192BDBD1540645C4A2AA69F24CCE197F -- C:\Windows\System32\DriverStore\FileRepository\acpi.inf_97916753\acpi.sys
[2009.04.11 07:32:46 | 000,265,688 | ---- | M] (Microsoft Corporation) MD5=82B296AE1892FE3DBEE00C9CF92F8AC7 -- C:\Windows\System32\drivers\acpi.sys
[2009.04.11 07:32:46 | 000,265,688 | ---- | M] (Microsoft Corporation) MD5=82B296AE1892FE3DBEE00C9CF92F8AC7 -- C:\Windows\System32\DriverStore\FileRepository\acpi.inf_62085e44\acpi.sys
[2009.04.11 07:32:46 | 000,265,688 | ---- | M] (Microsoft Corporation) MD5=82B296AE1892FE3DBEE00C9CF92F8AC7 -- C:\Windows\winsxs\x86_acpi.inf_31bf3856ad364e35_6.0.6002.18005_none_24743d0fcb299a94\acpi.sys
[2008.01.21 03:23:00 | 000,266,808 | ---- | M] (Microsoft Corporation) MD5=FCB8C7210F0135E24C6580F7F649C73C -- C:\Windows\System32\DriverStore\FileRepository\acpi.inf_cae6072a\acpi.sys
[2008.01.21 03:23:00 | 000,266,808 | ---- | M] (Microsoft Corporation) MD5=FCB8C7210F0135E24C6580F7F649C73C -- C:\Windows\winsxs\x86_acpi.inf_31bf3856ad364e35_6.0.6001.18000_none_2288c403ce07cf48\acpi.sys
< MD5 for: AFD.SYS >
[2011.04.21 14:58:27 | 000,273,408 | ---- | M] (Microsoft Corporation) MD5=3911B972B55FEA0478476B2E777B29FA -- C:\Windows\System32\drivers\afd.sys
[2011.04.21 14:58:27 | 000,273,408 | ---- | M] (Microsoft Corporation) MD5=3911B972B55FEA0478476B2E777B29FA -- C:\Windows\winsxs\x86_microsoft-windows-winsock-core_31bf3856ad364e35_6.0.6002.18457_none_d99fb42e5bb59d9b\afd.sys
[2011.04.21 14:16:42 | 000,273,408 | ---- | M] (Microsoft Corporation) MD5=48EB99503533C27AC6135648E5474457 -- C:\Windows\winsxs\x86_microsoft-windows-winsock-core_31bf3856ad364e35_6.0.6001.18639_none_d7d0e0cc5e7d461c\afd.sys
[2011.04.21 14:28:53 | 000,273,920 | ---- | M] (Microsoft Corporation) MD5=70EE0FC7A0F384DBD929A01384AEEB4B -- C:\Windows\winsxs\x86_microsoft-windows-winsock-core_31bf3856ad364e35_6.0.6002.22629_none_da4bc33774b91967\afd.sys
[2008.01.21 03:24:17 | 000,273,920 | ---- | M] (Microsoft Corporation) MD5=763E172A55177E478CB419F88FD0BA03 -- C:\Windows\winsxs\x86_microsoft-windows-winsock-core_31bf3856ad364e35_6.0.6001.18000_none_d7e842925e6d1f50\afd.sys
[2009.04.11 05:47:03 | 000,273,920 | ---- | M] (Microsoft Corporation) MD5=A201207363AA900ABF1A388468688570 -- C:\Windows\winsxs\x86_microsoft-windows-winsock-core_31bf3856ad364e35_6.0.6002.18005_none_d9d3bb9e5b8eea9c\afd.sys
[2011.04.21 14:12:21 | 000,273,920 | ---- | M] (Microsoft Corporation) MD5=C8AF25017CECB75906A571AC70D2D306 -- C:\Windows\winsxs\x86_microsoft-windows-winsock-core_31bf3856ad364e35_6.0.6001.22905_none_d876efff77862705\afd.sys
< MD5 for: AGP440.SYS >
[2008.01.21 03:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\drivers\AGP440.sys
[2008.01.21 03:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys
[2008.01.21 03:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys
[2008.01.21 03:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys
[2008.01.21 03:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys
[2006.11.02 10:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys
< MD5 for: AHCIX86S.SYS >
[2007.12.19 18:45:00 | 000,170,000 | ---- | M] (AMD Technologies Inc.) MD5=0DEE2B628D4C6E23285BB91EFFDABFDE -- C:\Windows\System32\drivers\ahcix86s.sys
[2007.12.19 18:45:00 | 000,170,000 | ---- | M] (AMD Technologies Inc.) MD5=0DEE2B628D4C6E23285BB91EFFDABFDE -- C:\Windows\System32\DriverStore\FileRepository\ahcix86s.inf_71554ba4\ahcix86s.sys
< MD5 for: ATAPI.SYS >
[2008.03.12 07:38:18 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=0D83C87A801A3DFCD1BF73893FE7518C -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_4c9c5a00\atapi.sys
[2008.03.12 07:38:18 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=0D83C87A801A3DFCD1BF73893FE7518C -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18034_none_dd1bb97e219e87cb\atapi.sys
[2009.04.11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\drivers\atapi.sys
[2009.04.11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys
[2009.04.11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys
[2008.01.21 03:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys
[2008.01.21 03:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
[2006.11.02 10:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
[2008.03.12 07:24:20 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=96DC4E1A9F90CCD489950A8935425C59 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.22134_none_dda556493abc2795\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2009.04.11 07:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E99509F5E7 -- C:\Windows\System32\autochk.exe
[2009.04.11 07:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E99509F5E7 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6002.18005_none_e3df6655bee2ee3b\autochk.exe
[2008.01.21 03:24:45 | 000,642,560 | ---- | M] (Microsoft Corporation) MD5=2FC5BE79B51714B479809358E4908FC3 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6001.18000_none_e1f3ed49c1c122ef\autochk.exe
< MD5 for: CDROM.SYS >
[2008.01.21 03:23:02 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_a29e71c6\cdrom.sys
[2008.01.21 03:23:02 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6001.18000_none_5fa95be2a3c76a4a\cdrom.sys
[2009.04.11 05:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\drivers\cdrom.sys
[2009.04.11 05:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_c949a5b6\cdrom.sys
[2009.04.11 05:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6002.18005_none_6194d4eea0e93596\cdrom.sys
[2006.11.02 09:51:44 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=8D1866E61AF096AE8B582454F5E4D303 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_e487f727\cdrom.sys
< MD5 for: CMD.EXE >
[2006.11.02 10:44:59 | 000,320,000 | ---- | M] (Microsoft Corporation) MD5=349CD4318E6E351C9BB72EE13B7CA807 -- C:\Windows\winsxs\x86_microsoft-windows-commandprompt_31bf3856ad364e35_6.0.6000.16386_none_88d604c11d71789b\cmd.exe
[2008.01.21 03:23:50 | 000,318,976 | ---- | M] (Microsoft Corporation) MD5=74F26FC01B180D4A99A168ED69C30A53 -- C:\Windows\System32\cmd.exe
[2008.01.21 03:23:50 | 000,318,976 | ---- | M] (Microsoft Corporation) MD5=74F26FC01B180D4A99A168ED69C30A53 -- C:\Windows\winsxs\x86_microsoft-windows-commandprompt_31bf3856ad364e35_6.0.6001.18000_none_8b0cc6bd1a5c896f\cmd.exe
< MD5 for: CNGAUDIT.DLL >
[2006.11.02 10:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll
[2006.11.02 10:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2008.01.21 03:24:35 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=6DE363F9F99334514C46AEC02D3E3678 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6001.18000_none_75ff99649acf4de9\cryptsvc.dll
[2012.04.23 17:00:53 | 000,133,120 | ---- | M] (Microsoft Corporation) MD5=75C6A297E364014840B48ECCD7525E30 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.18618_none_77e34ec697f67015\cryptsvc.dll
[2012.04.23 15:48:06 | 000,135,168 | ---- | M] (Microsoft Corporation) MD5=C979AEA8C4D8F875CD25507D08980006 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.22840_none_78447b63b1339621\cryptsvc.dll
[2012.06.02 12:09:26 | 000,135,168 | ---- | M] (Microsoft Corporation) MD5=DD9CCF40ED80DD0D62F1B607A1EA4449 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.22869_none_7837de25b13bb212\cryptsvc.dll
[2012.06.02 01:02:32 | 000,133,120 | ---- | M] (Microsoft Corporation) MD5=F1E8C34892336D33EDDCDFE44E474F64 -- C:\Windows\System32\cryptsvc.dll
[2012.06.02 01:02:32 | 000,133,120 | ---- | M] (Microsoft Corporation) MD5=F1E8C34892336D33EDDCDFE44E474F64 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.18643_none_77bddd9098134535\cryptsvc.dll
[2009.04.11 07:28:18 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=FB27772BEAF8E1D28CCD825C09DA939B -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.18005_none_77eb127097f11935\cryptsvc.dll
< MD5 for: CSRSS.EXE >
[2008.01.21 03:24:54 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=ABCA209EBA02CB59233614DB83B4F50D -- C:\Windows\System32\csrss.exe
[2008.01.21 03:24:54 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=ABCA209EBA02CB59233614DB83B4F50D -- C:\Windows\winsxs\x86_microsoft-windows-csrss_31bf3856ad364e35_6.0.6001.18000_none_58e3e3d7e415ae4c\csrss.exe
< MD5 for: EXPLORER.EXE >
[2008.10.29 07:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2008.10.29 07:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2008.10.30 04:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2009.04.11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\explorer.exe
[2009.04.11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe
[2008.10.28 03:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2008.01.21 03:24:24 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe
< MD5 for: FASTFAT.SYS >
[2009.04.11 05:13:52 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=1E9B9A70D332103C52995E957DC09EF8 -- C:\Windows\System32\drivers\fastfat.sys
[2009.04.11 05:13:52 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=1E9B9A70D332103C52995E957DC09EF8 -- C:\Windows\winsxs\x86_microsoft-windows-fat_31bf3856ad364e35_6.0.6002.18005_none_b09ea48c5485f42b\fastfat.sys
[2008.01.21 03:24:13 | 000,143,360 | ---- | M] (Microsoft Corporation) MD5=3C489390C2E2064563727752AF8EAB9E -- C:\Windows\winsxs\x86_microsoft-windows-fat_31bf3856ad364e35_6.0.6001.18000_none_aeb32b80576428df\fastfat.sys
< MD5 for: HAL.DLL >
[2009.04.11 07:32:46 | 000,177,128 | ---- | M] (Microsoft Corporation) MD5=B8D52005181A15D7D1470CBF2AF214DD -- C:\Windows\System32\hal.dll
< MD5 for: I8042PRT.SYS >
[2006.11.02 09:51:13 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=1060F1377F395A242E27719440ECE602 -- C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_93b1c41f\i8042prt.sys
[2006.11.02 09:51:13 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=1060F1377F395A242E27719440ECE602 -- C:\Windows\System32\DriverStore\FileRepository\msmouse.inf_3dfa3917\i8042prt.sys
[2008.01.21 03:09:47 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=1C9EE072BAA3ABB460B91D7EE9152660 -- C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_a81145df\i8042prt.sys
[2008.01.21 03:09:47 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=1C9EE072BAA3ABB460B91D7EE9152660 -- C:\Windows\System32\DriverStore\FileRepository\msmouse.inf_f4514c17\i8042prt.sys
[2008.01.21 03:09:47 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=1C9EE072BAA3ABB460B91D7EE9152660 -- C:\Windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.0.6000.16609_none_957131ccdbca3f9c\i8042prt.sys
[2008.01.21 03:09:47 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=1C9EE072BAA3ABB460B91D7EE9152660 -- C:\Windows\winsxs\x86_msmouse.inf_31bf3856ad364e35_6.0.6000.16609_none_4c56cf70d52c8670\i8042prt.sys
[2008.01.21 03:23:20 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=22D56C8184586B7A1F6FA60BE5F5A2BD -- C:\Windows\System32\drivers\i8042prt.sys
[2008.01.21 03:23:23 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=22D56C8184586B7A1F6FA60BE5F5A2BD -- C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_da7e599e\i8042prt.sys
[2008.01.21 03:23:23 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=22D56C8184586B7A1F6FA60BE5F5A2BD -- C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_f55d5e51\i8042prt.sys
[2008.01.21 03:23:20 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=22D56C8184586B7A1F6FA60BE5F5A2BD -- C:\Windows\System32\DriverStore\FileRepository\msmouse.inf_8b7c4328\i8042prt.sys
[2008.01.21 03:23:23 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=22D56C8184586B7A1F6FA60BE5F5A2BD -- C:\Windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.0.6001.18000_none_974e6dd8d8f8ec7e\i8042prt.sys
[2008.01.21 03:23:23 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=22D56C8184586B7A1F6FA60BE5F5A2BD -- C:\Windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.0.6002.18005_none_9939e6e4d61ab7ca\i8042prt.sys
[2008.01.21 03:23:20 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=22D56C8184586B7A1F6FA60BE5F5A2BD -- C:\Windows\winsxs\x86_msmouse.inf_31bf3856ad364e35_6.0.6001.18000_none_4e340b7cd25b3352\i8042prt.sys
[2008.01.21 03:09:47 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=BEA9838CD25D36BEBA3F94386A761D60 -- C:\Windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.0.6000.20734_none_95d55d61f504b486\i8042prt.sys
[2008.01.21 03:09:47 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=BEA9838CD25D36BEBA3F94386A761D60 -- C:\Windows\winsxs\x86_msmouse.inf_31bf3856ad364e35_6.0.6000.20734_none_4cbafb05ee66fb5a\i8042prt.sys
< MD5 for: IASTOR.SYS >
[2007.09.29 23:03:12 | 000,308,248 | ---- | M] (Intel Corporation) MD5=E5A0034847537EAEE3C00349D5C34C5F -- C:\Windows\System32\drivers\iaStor.sys
[2007.09.29 23:03:12 | 000,308,248 | ---- | M] (Intel Corporation) MD5=E5A0034847537EAEE3C00349D5C34C5F -- C:\Windows\System32\DriverStore\FileRepository\iaahci.inf_7baf6192\iaStor.sys
[2007.09.29 23:03:12 | 000,308,248 | ---- | M] (Intel Corporation) MD5=E5A0034847537EAEE3C00349D5C34C5F -- C:\Windows\System32\DriverStore\FileRepository\iastor.inf_41af7b1f\iaStor.sys
< MD5 for: IASTORV.SYS >
[2008.01.21 03:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\drivers\iaStorV.sys
[2008.01.21 03:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_c9df7691\iaStorV.sys
[2008.01.21 03:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_af11527887c7fa8f\iaStorV.sys
[2006.11.02 10:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2006.11.02 10:50:24 | 000,047,208 | ---- | M] (Microsoft Corporation) MD5=350FCA7E73CF65BCEF43FAE1E4E91293 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\isapnp.sys
[2008.01.21 03:23:01 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\System32\drivers\isapnp.sys
[2008.01.21 03:23:01 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\isapnp.sys
[2008.01.21 03:23:01 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\isapnp.sys
[2008.01.21 03:23:01 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\isapnp.sys
[2008.01.21 03:23:01 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\isapnp.sys
< MD5 for: KBDCLASS.SYS >
[2006.11.02 10:49:57 | 000,032,872 | ---- | M] (Microsoft Corporation) MD5=1A48765F92BA1A88445FC25C9C9D94FC -- C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_93b1c41f\kbdclass.sys
[2008.01.21 03:23:23 | 000,035,384 | ---- | M] (Microsoft Corporation) MD5=37605E0A8CF00CBBA538E753E4344C6E -- C:\Windows\System32\drivers\kbdclass.sys
[2008.01.21 03:23:23 | 000,035,384 | ---- | M] (Microsoft Corporation) MD5=37605E0A8CF00CBBA538E753E4344C6E -- C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_da7e599e\kbdclass.sys
[2008.01.21 03:23:23 | 000,035,384 | ---- | M] (Microsoft Corporation) MD5=37605E0A8CF00CBBA538E753E4344C6E -- C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_f55d5e51\kbdclass.sys
[2008.01.21 03:23:23 | 000,035,384 | ---- | M] (Microsoft Corporation) MD5=37605E0A8CF00CBBA538E753E4344C6E -- C:\Windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.0.6001.18000_none_974e6dd8d8f8ec7e\kbdclass.sys
[2008.01.21 03:23:23 | 000,035,384 | ---- | M] (Microsoft Corporation) MD5=37605E0A8CF00CBBA538E753E4344C6E -- C:\Windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.0.6002.18005_none_9939e6e4d61ab7ca\kbdclass.sys
[2008.01.21 03:09:47 | 000,035,384 | ---- | M] (Microsoft Corporation) MD5=B076B2AB806B3F696DAB21375389101C -- C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_a81145df\kbdclass.sys
[2008.01.21 03:09:47 | 000,035,384 | ---- | M] (Microsoft Corporation) MD5=B076B2AB806B3F696DAB21375389101C -- C:\Windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.0.6000.16609_none_957131ccdbca3f9c\kbdclass.sys
[2008.01.21 03:09:47 | 000,035,384 | ---- | M] (Microsoft Corporation) MD5=C9B0CF786D5F151A43C7BE8E243F2819 -- C:\Windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.0.6000.20734_none_95d55d61f504b486\kbdclass.sys
< MD5 for: LSASS.EXE >
[2009.06.15 13:51:56 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=203D86EBD6D8E4C8501B222421E81506 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22152_none_a886901f7335e2fc\lsass.exe
[2009.09.10 15:44:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=2D3AC5E7AC01E905F3ABD2D745FE3A9B -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22223_none_a8a80213731ca5a7\lsass.exe
[2009.06.15 13:48:49 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=3978F3540329E16C0AC3BCF677E5669F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\lsass.exe
[2009.02.13 08:26:04 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=59DE082968FDD257FFF0D209B9A5B460 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16820_none_a44eb0105fb4d975\lsass.exe
[2012.06.01 23:37:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=613DEB66A91820F0A41915B40BB8833F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22869_none_a882cf8373379c5f\lsass.exe
[2009.06.15 14:03:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=6F1F23D3599EAE17734451936B7F17C6 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22450_none_a69e1da376115b2a\lsass.exe
[2011.11.16 15:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A3E186B4B935905B829219502557314E -- C:\Windows\System32\lsass.exe
[2011.11.16 15:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A3E186B4B935905B829219502557314E -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18541_none_a806cc745a10ffad\lsass.exe
[2011.11.16 15:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A3E186B4B935905B829219502557314E -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18643_none_a808ceee5a0f2f82\lsass.exe
[2009.06.15 13:57:59 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A911ECAC81F94ADEAFBE8E3F7873EDB0 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\lsass.exe
[2009.02.13 05:58:37 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=AFF8A58280863629CA4FFA9E0B259F1E -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21010_none_a4e2f4e978ca9090\lsass.exe
[2009.06.15 13:59:08 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=BA9A67672E025078C77967731BCFC560 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21067_none_a4b3e75378eccda6\lsass.exe
[2009.06.15 14:10:12 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=C731B1FE449D4E9CEA358C9D55B69BE9 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\lsass.exe
[2009.09.09 12:09:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=CB7E838C140B4087B2DA323F2D4523C5 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22518_none_a6d1618975e9b345\lsass.exe
[2009.09.10 15:47:51 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=D09A5DA84B7C9CA9B02EBCD7FAE41C8D -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21125_none_a4dd285578ce285b\lsass.exe
[2008.01.21 03:24:15 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18000_none_a64a8ac25ccb3836\lsass.exe
[2008.01.21 03:24:15 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18215_none_a644c0145ccecd28\lsass.exe
[2008.01.21 03:24:15 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18005_none_a83603ce59ed0382\lsass.exe
[2011.11.16 14:57:04 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=EBFAEB786C46B407930811F94F08877D -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22742_none_a8916b6f732db5f5\lsass.exe
[2009.02.13 09:20:29 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=F4C62B07E5BF96F1FDCA9DB393ECED22 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22376_none_a68e7da1761c2def\lsass.exe
< MD5 for: NDIS.SYS >
[2009.04.11 07:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\System32\drivers\ndis.sys
[2009.04.11 07:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6002.18005_none_a9b2a4d31930d864\ndis.sys
[2008.01.21 03:23:50 | 000,529,464 | ---- | M] (Microsoft Corporation) MD5=9BDC71790FA08F0A0B5F10462B1BD0B1 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6001.18000_none_a7c72bc71c0f0d18\ndis.sys
< MD5 for: NETLOGON.DLL >
[2009.04.11 07:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\System32\netlogon.dll
[2009.04.11 07:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll
[2008.01.21 03:24:05 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll
< MD5 for: NTFS.SYS >
[2009.04.11 07:32:49 | 001,083,880 | ---- | M] (Společnost Microsoft) MD5=6A4A98CEE84CF9E99564510DDA4BAA47 -- C:\Windows\System32\drivers\ntfs.sys
[2009.04.11 07:32:49 | 001,083,880 | ---- | M] (Microsoft Corporation) MD5=6A4A98CEE84CF9E99564510DDA4BAA47 -- C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6002.18005_none_a85ca2c91a0d64df\ntfs.sys
[2008.01.21 03:23:51 | 001,081,912 | ---- | M] (Microsoft Corporation) MD5=B4EFFE29EB4F15538FD8A9681108492D -- C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6001.18000_none_a67129bd1ceb9993\ntfs.sys
< MD5 for: NTKRNLPA.EXE >
[2009.08.04 13:34:19 | 003,600,456 | ---- | M] (Microsoft Corporation) MD5=0517782FC7FEDBEBFAD15566E75B732F -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18082_none_6dc25a6eb1887137\ntkrnlpa.exe
[2009.03.03 05:24:50 | 003,503,584 | ---- | M] (Microsoft Corporation) MD5=06BCF21AAA1890328D1F58F0ACBE668D -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16830_none_6a29b702b714cf98\ntkrnlpa.exe
[2012.08.29 12:27:41 | 003,604,352 | ---- | M] (Microsoft Corporation) MD5=0802CFF50B3020D49884195DC065CF20 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22920_none_6e8ae55dca771fe5\ntkrnlpa.exe
[2009.04.11 07:32:49 | 003,601,896 | ---- | M] (Microsoft Corporation) MD5=1260BEACF2F023807A1087BBB0E15BBD -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18005_none_6e1bdaacb144ddb4\ntkrnlpa.exe
[2009.03.03 05:22:42 | 003,505,120 | ---- | M] (Microsoft Corporation) MD5=191C702B48681FB2BA5A96F416207ACF -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21023_none_6ac0fcb9d027d2b8\ntkrnlpa.exe
[2010.02.18 15:21:54 | 003,601,800 | ---- | M] (Microsoft Corporation) MD5=1FED62B16D372E169CF355B2F3210A65 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22341_none_6e763a6bca868234\ntkrnlpa.exe
[2012.08.29 12:27:41 | 003,602,816 | ---- | M] (Microsoft Corporation) MD5=244C631BE2F7F36EAD9DDAEED95AA298 -- C:\Windows\System32\ntkrnlpa.exe
[2012.08.29 12:27:41 | 003,602,816 | ---- | M] (Microsoft Corporation) MD5=244C631BE2F7F36EAD9DDAEED95AA298 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18686_none_6dc666fab184c57d\ntkrnlpa.exe
[2009.08.05 18:15:59 | 003,599,960 | ---- | M] (Microsoft Corporation) MD5=2E6E7BA5C8764F80ADA7D4C98E8B5D4A -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22489_none_6c6c8757cd796d3e\ntkrnlpa.exe
[2011.06.20 09:54:36 | 003,602,832 | ---- | M] (Microsoft Corporation) MD5=31AD5148F09D539BAF06D0A0FA53CD8B -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18484_none_6dc4629ab1869881\ntkrnlpa.exe
[2010.10.15 15:08:12 | 003,602,832 | ---- | M] (Microsoft Corporation) MD5=3BEF21D45A74AD2C6EAD894BA6C6A502 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22777_none_6c755c61cd731614\ntkrnlpa.exe
[2010.06.08 19:04:17 | 003,601,792 | ---- | M] (Microsoft Corporation) MD5=3FAFA4C0567D205F56C15D8B9D469F9D -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22420_none_6e8adbdfca772e22\ntkrnlpa.exe
[2009.12.08 21:36:58 | 003,600,472 | ---- | M] (Microsoft Corporation) MD5=4A65C0C8743AD660A9DE8C2B68218FC7 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22577_none_6c755895cd731bc6\ntkrnlpa.exe
[2010.06.08 18:00:42 | 003,598,216 | ---- | M] (Microsoft Corporation) MD5=4F332C0A64F4209EB322DB35310BA879 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18488_none_6be1ec28b45cb144\ntkrnlpa.exe
[2010.06.08 17:47:40 | 003,600,784 | ---- | M] (Microsoft Corporation) MD5=560C7E5036D6D0F9CC4AED5DE885DB8A -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22707_none_6cc10bd5cd3a527d\ntkrnlpa.exe
[2011.10.27 09:01:53 | 003,603,840 | ---- | M] (Microsoft Corporation) MD5=5B3C5FBBE4FB0DCFFCEC402B44BC6719 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22732_none_6e821239ca7d7436\ntkrnlpa.exe
[2009.08.05 15:10:22 | 003,599,928 | ---- | M] (Microsoft Corporation) MD5=5FBCBEBDC19FB9A3F9C102D30FCD1E9E -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22191_none_6e402703caaf139b\ntkrnlpa.exe
[2009.03.03 05:37:19 | 003,600,880 | ---- | M] (Microsoft Corporation) MD5=641C0F376136E5B6F389016EC48374D2 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22389_none_6c6c8571cd797017\ntkrnlpa.exe
[2010.02.18 15:34:38 | 003,504,008 | ---- | M] (Microsoft Corporation) MD5=642161C66547496ACCD2794AB6B4284F -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21226_none_6ac40163d025190b\ntkrnlpa.exe
[2012.03.06 07:39:00 | 003,603,840 | ---- | M] (Microsoft Corporation) MD5=67C80F4BEF37E4F40AC38BBE6BCC6198 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22811_none_6e96b3adca6e2024\ntkrnlpa.exe
[2012.03.06 07:39:00 | 003,602,816 | ---- | M] (Microsoft Corporation) MD5=67FB74F129CD6EB6A299B232B09F2FD8 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18595_none_6dba94deb18dcaf0\ntkrnlpa.exe
[2008.04.26 09:11:34 | 003,601,464 | ---- | M] (Microsoft Corporation) MD5=68EEF02A8846442FE98AD0E0517EE6BC -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22167_none_6c8020e9cd6b0b39\ntkrnlpa.exe
[2009.08.05 15:10:22 | 003,503,688 | ---- | M] (Microsoft Corporation) MD5=6AD406205B25DC4EFBBCB044744248AD -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21101_none_6ad49de3d019654f\ntkrnlpa.exe
[2008.04.26 09:25:53 | 003,600,952 | ---- | M] (Microsoft Corporation) MD5=6BB1994F5B62FEF6268F1EBB4014E293 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18063_none_6bf282f6b4510613\ntkrnlpa.exe
[2009.12.08 21:01:02 | 003,600,456 | ---- | M] (Microsoft Corporation) MD5=735CDD610B7A0E7B5C6A153DD45ECE32 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18160_none_6dd5fb98b17a03ce\ntkrnlpa.exe
[2009.12.08 21:54:53 | 003,502,168 | ---- | M] (Microsoft Corporation) MD5=84D47D16C6E7FB61D3A2F7738838A57B -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16973_none_6a017a16b7328888\ntkrnlpa.exe
[2010.02.18 15:07:05 | 003,600,776 | ---- | M] (Microsoft Corporation) MD5=8BBC454D2F91D92E3E73DB5B5A0D8D8E -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18209_none_6e1fdfa0b1413d5e\ntkrnlpa.exe
[2010.10.15 15:08:12 | 003,600,272 | ---- | M] (Microsoft Corporation) MD5=950C425C9E1FA4DDEC8A6B7915E3D892 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18538_none_6c17fdaab43422b6\ntkrnlpa.exe
[2011.06.20 09:54:36 | 003,603,856 | ---- | M] (Microsoft Corporation) MD5=A94B3B8B4B35ACA0290A2A8CC2977094 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22662_none_6e61a08fca95cae2\ntkrnlpa.exe
[2010.02.18 18:36:43 | 003,600,776 | ---- | M] (Microsoft Corporation) MD5=AF2FC3FE3AD6860A808B237171BA6EED -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22636_none_6c9f99e1cd538fd2\ntkrnlpa.exe
[2012.04.03 09:16:12 | 003,604,352 | ---- | M] (Microsoft Corporation) MD5=BEF3218359377715B1D85D7DF823E123 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22831_none_6e8113d5ca7e5806\ntkrnlpa.exe
[2010.02.18 15:49:31 | 003,598,216 | ---- | M] (Microsoft Corporation) MD5=C2334AE54E10BCA2631660F649010B03 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18427_none_6c21cb66b42cf047\ntkrnlpa.exe
[2010.10.15 15:08:12 | 003,602,320 | ---- | M] (Microsoft Corporation) MD5=C391DF1007E54B1FE06A4EF02DB6FA61 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18327_none_6e08411ab1533fb9\ntkrnlpa.exe
[2009.12.08 21:14:53 | 003,601,464 | ---- | M] (Microsoft Corporation) MD5=C481B4F271D3D234B93E19F5531D1D55 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22283_none_6e4cf969caa5277f\ntkrnlpa.exe
[2009.12.08 21:52:17 | 003,597,912 | ---- | M] (Microsoft Corporation) MD5=C89111B0489D5CF7B14CBDB5D225A88F -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18377_none_6bebb9e4b4557ed5\ntkrnlpa.exe
[2011.10.27 09:01:53 | 003,602,816 | ---- | M] (Microsoft Corporation) MD5=CA537C1021ACDF5B3D14A01B0D4A09B7 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18533_none_6df973d2b15ef09c\ntkrnlpa.exe
[2012.04.03 09:16:12 | 003,602,816 | ---- | M] (Microsoft Corporation) MD5=CAD95AFB7FDDCC490681555C570FBB7D -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18607_none_6e1de6a4b142ff4c\ntkrnlpa.exe
[2009.12.08 23:29:30 | 003,503,704 | ---- | M] (Microsoft Corporation) MD5=D2859DAE5F6730DF5BF1C25CFC376797 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21175_none_6a8cef97d04e8e42\ntkrnlpa.exe
[2010.02.18 15:54:09 | 003,502,480 | ---- | M] (Microsoft Corporation) MD5=D8077969EE22B889B793D076FDCA7066 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.17021_none_6a356140b70bfd67\ntkrnlpa.exe
[2010.06.08 18:35:03 | 003,600,768 | ---- | M] (Microsoft Corporation) MD5=E3A2697835A14C75B233606357AB46DD -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18267_none_6ddcff84b173b256\ntkrnlpa.exe
[2009.08.05 15:22:41 | 003,597,896 | ---- | M] (Microsoft Corporation) MD5=FBA1B3594C1F691F1FA917ADE45D1DB5 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18304_none_6c34687ab41f6f39\ntkrnlpa.exe
[2008.01.21 03:24:42 | 003,600,440 | ---- | M] (Microsoft Corporation) MD5=FE51E8DBBEF2D01EF886499FECBF2D78 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18000_none_6c3061a0b4231268\ntkrnlpa.exe
[2009.03.03 05:46:01 | 003,599,328 | ---- | M] (Microsoft Corporation) MD5=FEB3FB3309EBA85917BDE7F4FD019C9D -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18226_none_6c20c750b42ddca2\ntkrnlpa.exe
[2010.10.15 15:08:12 | 003,603,856 | ---- | M] (Microsoft Corporation) MD5=FEB9209E1D2B97DB4AE8FBF1DB0F54B6 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22505_none_6ea57f0fca62721a\ntkrnlpa.exe
[2009.08.05 15:28:45 | 003,502,152 | ---- | M] (Microsoft Corporation) MD5=FF493ACD34EE896B8D114918439FAF10 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16901_none_6a4b28f6b6fb9243\ntkrnlpa.exe
< MD5 for: NTOSKRNL.EXE >
[2012.08.29 12:27:41 | 003,550,080 | ---- | M] (Microsoft Corporation) MD5=0895557E35AE46729FFEFCB3906EBC69 -- C:\Windows\System32\ntoskrnl.exe
[2012.08.29 12:27:41 | 003,550,080 | ---- | M] (Microsoft Corporation) MD5=0895557E35AE46729FFEFCB3906EBC69 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18686_none_6dc666fab184c57d\ntoskrnl.exe
[2009.08.05 15:10:22 | 003,548,216 | ---- | M] (Microsoft Corporation) MD5=09C5FB44F152EFF551A112C931DDE640 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22191_none_6e402703caaf139b\ntoskrnl.exe
[2010.10.15 15:08:12 | 003,550,096 | ---- | M] (Microsoft Corporation) MD5=1ACD7FC485D0E0FF9097E08900D834CC -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18327_none_6e08411ab1533fb9\ntoskrnl.exe
[2009.12.08 21:52:16 | 003,546,200 | ---- | M] (Microsoft Corporation) MD5=20D040ECE9A8F578D1D938256F34B663 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18377_none_6bebb9e4b4557ed5\ntoskrnl.exe
[2008.04.26 09:11:33 | 003,549,240 | ---- | M] (Microsoft Corporation) MD5=22D444D3D88A4C299894B3638A114BF7 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22167_none_6c8020e9cd6b0b39\ntoskrnl.exe
[2009.12.08 23:29:12 | 003,469,912 | ---- | M] (Microsoft Corporation) MD5=2972EEF8E834883EEC7C1995639341EF -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21175_none_6a8cef97d04e8e42\ntoskrnl.exe
[2010.02.18 15:21:55 | 003,550,088 | ---- | M] (Microsoft Corporation) MD5=31289DD6914686D088582EED4B43F826 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22341_none_6e763a6bca868234\ntoskrnl.exe
[2009.03.03 05:24:50 | 003,469,280 | ---- | M] (Microsoft Corporation) MD5=3910FE042C707E6BACD0FEC5AB9ECDE6 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16830_none_6a29b702b714cf98\ntoskrnl.exe
[2009.03.03 05:46:01 | 003,547,632 | ---- | M] (Microsoft Corporation) MD5=393BB8FE05D66ABA7B091E6032179272 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18226_none_6c20c750b42ddca2\ntoskrnl.exe
[2009.08.05 18:15:59 | 003,547,736 | ---- | M] (Microsoft Corporation) MD5=3EEEDCCFB587BCB0E2DE075332498C11 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22489_none_6c6c8757cd796d3e\ntoskrnl.exe
[2009.08.05 15:28:44 | 003,467,864 | ---- | M] (Microsoft Corporation) MD5=4765C66A89E7151626FF3545B01D2601 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16901_none_6a4b28f6b6fb9243\ntoskrnl.exe
[2010.06.08 17:47:40 | 003,548,552 | ---- | M] (Microsoft Corporation) MD5=47DB9968B8CF2031C46007F42CCE2437 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22707_none_6cc10bd5cd3a527d\ntoskrnl.exe
[2012.08.29 12:27:42 | 003,553,152 | ---- | M] (Microsoft Corporation) MD5=4E7F06BA9E352E072AE0EDF3DB7B7462 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22920_none_6e8ae55dca771fe5\ntoskrnl.exe
[2009.08.05 15:22:41 | 003,546,184 | ---- | M] (Microsoft Corporation) MD5=5302026B0FADB0819009798D3F6BCD77 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18304_none_6c34687ab41f6f39\ntoskrnl.exe
[2009.08.04 13:34:19 | 003,548,216 | ---- | M] (Microsoft Corporation) MD5=575DD16BF4C21C2F7E2BBE203AC1E957 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18082_none_6dc25a6eb1887137\ntoskrnl.exe
[2010.02.18 15:49:31 | 003,545,992 | ---- | M] (Microsoft Corporation) MD5=6025E5530E2C43E1983CC8B840DF2108 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18427_none_6c21cb66b42cf047\ntoskrnl.exe
[2009.12.08 21:01:02 | 003,548,216 | ---- | M] (Microsoft Corporation) MD5=664CA09C523FAB9D01BE6C4028C1B58B -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18160_none_6dd5fb98b17a03ce\ntoskrnl.exe
[2008.01.21 03:24:42 | 003,548,728 | ---- | M] (Microsoft Corporation) MD5=6700F35EBA206E5C89AC27C9A124DC01 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18000_none_6c3061a0b4231268\ntoskrnl.exe
[2009.04.11 07:32:49 | 003,549,672 | ---- | M] (Microsoft Corporation) MD5=6798DBF3F25721637AEF5B6C69911C9C -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18005_none_6e1bdaacb144ddb4\ntoskrnl.exe
[2009.03.03 05:22:43 | 003,471,328 | ---- | M] (Microsoft Corporation) MD5=808C86316AED98716C5F305A6265F393 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21023_none_6ac0fcb9d027d2b8\ntoskrnl.exe
[2010.10.15 15:08:12 | 003,552,144 | ---- | M] (Microsoft Corporation) MD5=8B5EEAA99965E26C3FBB9FAC8BD3B6A1 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22505_none_6ea57f0fca62721a\ntoskrnl.exe
[2010.10.15 15:08:12 | 003,548,048 | ---- | M] (Microsoft Corporation) MD5=A573338BDCED710795C618EA5FCF48D5 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18538_none_6c17fdaab43422b6\ntoskrnl.exe
[2010.02.18 15:07:05 | 003,548,040 | ---- | M] (Microsoft Corporation) MD5=A5D0B405442724448D23D61821BEA92A -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18209_none_6e1fdfa0b1413d5e\ntoskrnl.exe
[2012.04.03 09:16:12 | 003,552,640 | ---- | M] (Microsoft Corporation) MD5=B9907DD4BE7B1B39573BF66554AB224E -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22831_none_6e8113d5ca7e5806\ntoskrnl.exe
[2012.04.03 09:16:11 | 003,550,080 | ---- | M] (Microsoft Corporation) MD5=BA4C485548914034B471EB6FC2B50082 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18607_none_6e1de6a4b142ff4c\ntoskrnl.exe
[2011.06.20 09:54:36 | 003,552,144 | ---- | M] (Microsoft Corporation) MD5=BF4B9F40116DF26B2FC7C20CB69B9D9A -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22662_none_6e61a08fca95cae2\ntoskrnl.exe
[2010.02.18 18:36:43 | 003,548,560 | ---- | M] (Microsoft Corporation) MD5=C5759C9345A06EE52C7F5ECCF685CA6D -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22636_none_6c9f99e1cd538fd2\ntoskrnl.exe
[2010.06.08 19:04:17 | 003,550,600 | ---- | M] (Microsoft Corporation) MD5=C5AB434D0C8FA38EAD136FB29E2504B7 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22420_none_6e8adbdfca772e22\ntoskrnl.exe
[2011.06.20 09:54:36 | 003,550,096 | ---- | M] (Microsoft Corporation) MD5=C73E0BEB5062C94B68581642304F7BB4 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18484_none_6dc4629ab1869881\ntoskrnl.exe
[2011.10.27 09:01:53 | 003,550,080 | ---- | M] (Microsoft Corporation) MD5=C7D1507B837BC41D13D6EAC31A032AE3 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18533_none_6df973d2b15ef09c\ntoskrnl.exe
[2008.04.26 09:25:54 | 003,549,240 | ---- | M] (Microsoft Corporation) MD5=C9CD31B3CBA8134F2B47FB5E78376ACC -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18063_none_6bf282f6b4510613\ntoskrnl.exe
[2009.12.08 21:54:53 | 003,467,848 | ---- | M] (Microsoft Corporation) MD5=CD2EEBFA39E742C8C066CCE09382A19B -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16973_none_6a017a16b7328888\ntoskrnl.exe
[2009.12.08 21:36:58 | 003,548,760 | ---- | M] (Microsoft Corporation) MD5=D32E95B17477E183F6019A99BE799BA9 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22577_none_6c755895cd731bc6\ntoskrnl.exe
[2010.06.08 18:00:41 | 003,545,992 | ---- | M] (Microsoft Corporation) MD5=D5FA5D17F03E6D39E1A12431DD6F2A39 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18488_none_6be1ec28b45cb144\ntoskrnl.exe
[2009.08.05 15:10:15 | 003,469,896 | ---- | M] (Microsoft Corporation) MD5=D8DCA438CE571DB20BD8C4915CAC0760 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21101_none_6ad49de3d019654f\ntoskrnl.exe
[2011.10.27 09:01:53 | 003,552,640 | ---- | M] (Microsoft Corporation) MD5=D91407C7DF48B369E35E9E1426563EFA -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22732_none_6e821239ca7d7436\ntoskrnl.exe
[2012.03.06 07:39:00 | 003,550,080 | ---- | M] (Microsoft Corporation) MD5=D960F9E1FCA0C86387E806D9AED319FB -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18595_none_6dba94deb18dcaf0\ntoskrnl.exe
[2010.02.18 15:54:03 | 003,468,168 | ---- | M] (Microsoft Corporation) MD5=DC44BF78DEB87B7737D0D29B5B8EDAE3 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.17021_none_6a356140b70bfd67\ntoskrnl.exe
[2009.03.03 05:37:19 | 003,548,656 | ---- | M] (Microsoft Corporation) MD5=DFF34C5D66AB4BF1EED47BF19D1267BB -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22389_none_6c6c8571cd797017\ntoskrnl.exe
[2010.10.15 15:08:12 | 003,550,608 | ---- | M] (Microsoft Corporation) MD5=F276ABE13DD0BA1024A42A443E47A4A2 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22777_none_6c755c61cd731614\ntoskrnl.exe
[2010.06.08 18:35:04 | 003,548,040 | ---- | M] (Microsoft Corporation) MD5=F2BEE482023F146CF85EBB15B9E1CD35 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18267_none_6ddcff84b173b256\ntoskrnl.exe
[2010.02.18 15:34:36 | 003,470,216 | ---- | M] (Microsoft Corporation) MD5=F8BEC470EAA8621751F739585C5871CD -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21226_none_6ac40163d025190b\ntoskrnl.exe
[2009.12.08 21:14:53 | 003,550,264 | ---- | M] (Microsoft Corporation) MD5=FB82B0147B7D93379B68F8A6A5828C70 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22283_none_6e4cf969caa5277f\ntoskrnl.exe
[2012.03.06 07:39:00 | 003,552,640 | ---- | M] (Microsoft Corporation) MD5=FEA4425645424D66DCCC6CD3F417A40D -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22811_none_6e96b3adca6e2024\ntoskrnl.exe
[2006.11.02 13:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012.06.08 18:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009.04.11 07:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009.04.11 07:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2009.11.01 17:33:09 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\2K Sports
[2009.10.10 10:59:10 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Ableton
[2010.10.19 10:11:59 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\AnvSoft
[2012.12.21 06:38:21 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Azureus
[2012.12.21 22:21:29 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\BSplayer
[2009.10.03 20:59:46 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\BSplayer Pro
[2009.11.14 15:26:45 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Desktop Sidebar
[2011.03.20 10:41:49 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\FileZilla
[2010.08.15 10:19:22 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\GetRightToGo
[2012.12.03 18:45:40 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\GoPro
[2012.11.19 21:22:18 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\ICQ
[2010.03.23 17:51:35 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Leawo
[2010.02.02 11:05:14 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\PC Suite
[2012.12.17 23:40:44 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\proDAD
[2011.03.30 12:42:20 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\PunkBuster
[2012.09.28 22:35:41 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Rayman Origins
[2010.02.02 10:34:59 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Samsung
[2011.04.03 19:19:57 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\ShopperReports3
[2012.12.17 22:46:00 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\SimilarSites
[2009.11.12 14:19:56 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Sinovation
[2012.12.17 15:24:03 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Sony
[2010.12.09 01:59:49 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Spyware Terminator
[2009.10.03 00:13:42 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\StreamTorrent
[2010.05.06 09:12:32 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Ubisoft
[2010.08.05 08:50:03 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\YoudaGames
========== Purity Check ==========
========== Custom Scans ==========
< >
[2006.11.02 14:01:49 | 000,000,006 | -H-- | C] () -- C:\Windows\Tasks\SA.DAT
[2006.11.02 14:01:49 | 000,032,566 | ---- | C] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2010.03.06 22:51:14 | 000,000,370 | ---- | C] () -- C:\Windows\Tasks\Ad-Aware Update (Daily 1).job
[2010.03.06 22:51:15 | 000,000,370 | ---- | C] () -- C:\Windows\Tasks\Ad-Aware Update (Daily 2).job
[2010.03.06 22:51:15 | 000,000,370 | ---- | C] () -- C:\Windows\Tasks\Ad-Aware Update (Daily 3).job
[2010.03.06 22:51:15 | 000,000,370 | ---- | C] () -- C:\Windows\Tasks\Ad-Aware Update (Daily 4).job
[2010.03.06 22:51:16 | 000,000,370 | ---- | C] () -- C:\Windows\Tasks\Ad-Aware Update (Weekly).job
[2010.04.13 16:23:39 | 000,000,310 | ---- | C] () -- C:\Windows\Tasks\Install_NSS.job
[2010.09.23 02:00:11 | 000,000,932 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2010.09.23 02:00:12 | 000,000,936 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2012.05.23 16:12:38 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2012.12.21 18:26:25 | 000,000,362 | ---- | C] () -- C:\Windows\Tasks\ReclaimerUpdateXML_Adam.job
[2012.12.21 18:26:28 | 000,000,366 | ---- | C] () -- C:\Windows\Tasks\ReclaimerUpdateFiles_Adam.job
[2012.12.21 18:26:34 | 000,000,372 | ---- | C] () -- C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Adam.job
========== Drive Information ==========
Physical Drives
---------------
Drive: \\\\.\\PHYSICALDRIVE0 - Fixed hard disk media
Interface type: IDE
Media Type: Fixed hard disk media
Model: ST9250827AS ATA Device
Partitions: 3
Status: OK
Status Info: 0
Partitions
---------------
DeviceID: Disk #0, Partition #0
PartitionType: Unknown
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 9,00GB
Starting Offset: 1048576
Hidden sectors: 0
DeviceID: Disk #0, Partition #1
PartitionType: Installable File System
Bootable: True
BootPartition: True
PrimaryPartition: True
Size: 94,00GB
Starting Offset: 9438232576
Hidden sectors: 0
DeviceID: Disk #0, Partition #2
PartitionType: Installable File System
Bootable: False
BootPartition: False
PrimaryPartition: True
Size: 130,00GB
Starting Offset: 110540881920
Hidden sectors: 0
========== Base Services ==========
SRV - [2006.11.02 10:46:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\aelupsvc.dll -- (AeLookupSvc)
SRV - [2008.01.21 03:24:17 | 000,033,280 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\appinfo.dll -- (Appinfo)
SRV - [2008.01.21 03:24:14 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\alg.exe -- (ALG)
SRV - [2009.04.11 07:28:23 | 000,758,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\qmgr.dll -- (BITS)
SRV - [2009.04.11 07:28:18 | 000,334,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\BFE.DLL -- (BFE)
SRV - [2011.11.16 15:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\lsass.exe -- (KeyIso)
SRV - [2009.04.11 07:28:19 | 000,268,800 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\es.dll -- (EventSystem)
SRV - [2008.01.21 03:24:36 | 000,081,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\browser.dll -- (Browser)
SRV - [2012.06.02 01:02:32 | 000,133,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\cryptsvc.dll -- (CryptSvc)
SRV - [2009.04.11 07:28:24 | 000,550,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (DcomLaunch)
SRV - [2009.04.11 07:28:18 | 000,204,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dhcpcsvc.dll -- (Dhcp)
SRV - [2011.03.02 16:44:27 | 000,086,528 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dnsrslvr.dll -- (Dnscache)
SRV - [2008.01.21 03:25:01 | 000,057,344 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\eapsvc.dll -- (EapHost)
SRV - [2009.04.11 07:28:19 | 000,026,112 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\hidserv.dll -- (hidserv)
SRV - [2008.01.21 03:24:09 | 000,288,256 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\ipnathlp.dll -- (SharedAccess)
SRV - [2009.04.11 07:28:20 | 000,364,032 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV - [2009.04.11 07:28:24 | 000,311,808 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\swprv.dll -- (swprv)
SRV - [2008.01.21 03:24:54 | 000,045,056 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\mmcss.dll -- (MMCSS)
SRV - [2008.01.21 03:24:11 | 000,274,432 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netman.dll -- (Netman)
SRV - [2008.01.21 03:24:23 | 000,237,056 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\netprofm.dll -- (netprofm)
SRV - [2008.01.21 03:23:44 | 000,168,448 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\nlasvc.dll -- (NlaSvc)
SRV - [2008.01.21 03:24:47 | 000,018,432 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\nsisvc.dll -- (nsi)
SRV - [2009.04.11 07:28:25 | 000,222,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpnpmgr.dll -- (PlugPlay)
SRV - [2010.08.17 15:11:37 | 000,128,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\spoolsv.exe -- (Spooler)
SRV - [2011.11.16 15:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\lsass.exe -- (ProtectedStorage)
SRV - [2009.04.11 07:28:19 | 000,564,224 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\emdmgmt.dll -- (EMDMgmt)
SRV - [2008.01.21 03:24:19 | 000,090,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\rasauto.dll -- (RasAuto)
SRV - [2009.04.11 07:28:24 | 000,262,144 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\rasmans.dll -- (RasMan)
SRV - [2009.04.11 07:28:24 | 000,550,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (RpcSs)
SRV - [2008.01.21 03:24:35 | 000,019,968 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\seclogon.dll -- (seclogon)
SRV - [2011.11.16 15:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\lsass.exe -- (SamSs)
SRV - [2009.04.11 07:28:26 | 000,061,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wscsvc.dll -- (wscsvc)
SRV - [2010.09.06 17:20:29 | 000,125,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\srvsvc.dll -- (LanmanServer)
SRV - [2009.07.10 12:47:42 | 000,247,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\shsvcs.dll -- (ShellHWDetection)
SRV - [2009.04.11 07:27:49 | 003,408,896 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\SLsvc.exe -- (slsvc)
SRV - [2010.11.04 19:55:12 | 000,601,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\schedsvc.dll -- (Schedule)
SRV - [2009.04.11 07:28:24 | 000,242,688 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\tapisrv.dll -- (TapiSrv)
SRV - [2009.07.10 12:47:42 | 000,247,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\shsvcs.dll -- (Themes)
SRV - [2009.04.11 07:28:23 | 000,153,088 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\profsvc.dll -- (ProfSvc)
SRV - [2009.04.11 07:28:10 | 001,055,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\VSSVC.exe -- (VSS)
SRV - [2009.04.11 07:28:18 | 000,315,392 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\audiosrv.dll -- (Audiosrv)
SRV - [2009.04.11 07:28:18 | 000,315,392 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\audiosrv.dll -- (AudioEndpointBuilder)
SRV - [2008.01.21 03:23:27 | 000,104,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sdrsvc.dll -- (SDRSVC)
SRV - [2008.01.21 03:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009.04.11 07:28:25 | 001,017,856 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wevtsvc.dll -- (Eventlog)
SRV - [2009.04.11 07:28:20 | 000,407,552 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\MPSSVC.dll -- (MpsSvc)
SRV - [2009.04.11 07:28:25 | 000,453,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wiaservc.dll -- (stisvc)
SRV - [2009.04.11 07:27:45 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\msiexec.exe -- (msiserver)
SRV - [2009.04.11 07:28:25 | 000,162,304 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wbem\WMIsvc.dll -- (Winmgmt)
SRV - [2012.06.02 23:19:17 | 001,933,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wuaueng.dll -- (wuauserv)
SRV - [2009.04.11 07:28:18 | 000,175,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\dot3svc.dll -- (dot3svc)
SRV - [2009.07.11 20:01:42 | 000,513,536 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wlansvc.dll -- (Wlansvc)
SRV - [2009.06.10 12:42:23 | 000,160,256 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wkssvc.dll -- (LanmanWorkstation)
< >
< MD5 for: ACPI.SYS >
[2006.11.02 10:51:30 | 000,255,592 | ---- | M] (Microsoft Corporation) MD5=192BDBD1540645C4A2AA69F24CCE197F -- C:\Windows\System32\DriverStore\FileRepository\acpi.inf_97916753\acpi.sys
[2009.04.11 07:32:46 | 000,265,688 | ---- | M] (Microsoft Corporation) MD5=82B296AE1892FE3DBEE00C9CF92F8AC7 -- C:\Windows\System32\drivers\acpi.sys
[2009.04.11 07:32:46 | 000,265,688 | ---- | M] (Microsoft Corporation) MD5=82B296AE1892FE3DBEE00C9CF92F8AC7 -- C:\Windows\System32\DriverStore\FileRepository\acpi.inf_62085e44\acpi.sys
[2009.04.11 07:32:46 | 000,265,688 | ---- | M] (Microsoft Corporation) MD5=82B296AE1892FE3DBEE00C9CF92F8AC7 -- C:\Windows\winsxs\x86_acpi.inf_31bf3856ad364e35_6.0.6002.18005_none_24743d0fcb299a94\acpi.sys
[2008.01.21 03:23:00 | 000,266,808 | ---- | M] (Microsoft Corporation) MD5=FCB8C7210F0135E24C6580F7F649C73C -- C:\Windows\System32\DriverStore\FileRepository\acpi.inf_cae6072a\acpi.sys
[2008.01.21 03:23:00 | 000,266,808 | ---- | M] (Microsoft Corporation) MD5=FCB8C7210F0135E24C6580F7F649C73C -- C:\Windows\winsxs\x86_acpi.inf_31bf3856ad364e35_6.0.6001.18000_none_2288c403ce07cf48\acpi.sys
< MD5 for: AFD.SYS >
[2011.04.21 14:58:27 | 000,273,408 | ---- | M] (Microsoft Corporation) MD5=3911B972B55FEA0478476B2E777B29FA -- C:\Windows\System32\drivers\afd.sys
[2011.04.21 14:58:27 | 000,273,408 | ---- | M] (Microsoft Corporation) MD5=3911B972B55FEA0478476B2E777B29FA -- C:\Windows\winsxs\x86_microsoft-windows-winsock-core_31bf3856ad364e35_6.0.6002.18457_none_d99fb42e5bb59d9b\afd.sys
[2011.04.21 14:16:42 | 000,273,408 | ---- | M] (Microsoft Corporation) MD5=48EB99503533C27AC6135648E5474457 -- C:\Windows\winsxs\x86_microsoft-windows-winsock-core_31bf3856ad364e35_6.0.6001.18639_none_d7d0e0cc5e7d461c\afd.sys
[2011.04.21 14:28:53 | 000,273,920 | ---- | M] (Microsoft Corporation) MD5=70EE0FC7A0F384DBD929A01384AEEB4B -- C:\Windows\winsxs\x86_microsoft-windows-winsock-core_31bf3856ad364e35_6.0.6002.22629_none_da4bc33774b91967\afd.sys
[2008.01.21 03:24:17 | 000,273,920 | ---- | M] (Microsoft Corporation) MD5=763E172A55177E478CB419F88FD0BA03 -- C:\Windows\winsxs\x86_microsoft-windows-winsock-core_31bf3856ad364e35_6.0.6001.18000_none_d7e842925e6d1f50\afd.sys
[2009.04.11 05:47:03 | 000,273,920 | ---- | M] (Microsoft Corporation) MD5=A201207363AA900ABF1A388468688570 -- C:\Windows\winsxs\x86_microsoft-windows-winsock-core_31bf3856ad364e35_6.0.6002.18005_none_d9d3bb9e5b8eea9c\afd.sys
[2011.04.21 14:12:21 | 000,273,920 | ---- | M] (Microsoft Corporation) MD5=C8AF25017CECB75906A571AC70D2D306 -- C:\Windows\winsxs\x86_microsoft-windows-winsock-core_31bf3856ad364e35_6.0.6001.22905_none_d876efff77862705\afd.sys
< MD5 for: AGP440.SYS >
[2008.01.21 03:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\drivers\AGP440.sys
[2008.01.21 03:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\AGP440.sys
[2008.01.21 03:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\AGP440.sys
[2008.01.21 03:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys
[2008.01.21 03:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\AGP440.sys
[2006.11.02 10:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys
< MD5 for: AHCIX86S.SYS >
[2007.12.19 18:45:00 | 000,170,000 | ---- | M] (AMD Technologies Inc.) MD5=0DEE2B628D4C6E23285BB91EFFDABFDE -- C:\Windows\System32\drivers\ahcix86s.sys
[2007.12.19 18:45:00 | 000,170,000 | ---- | M] (AMD Technologies Inc.) MD5=0DEE2B628D4C6E23285BB91EFFDABFDE -- C:\Windows\System32\DriverStore\FileRepository\ahcix86s.inf_71554ba4\ahcix86s.sys
< MD5 for: ATAPI.SYS >
[2008.03.12 07:38:18 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=0D83C87A801A3DFCD1BF73893FE7518C -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_4c9c5a00\atapi.sys
[2008.03.12 07:38:18 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=0D83C87A801A3DFCD1BF73893FE7518C -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18034_none_dd1bb97e219e87cb\atapi.sys
[2009.04.11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\drivers\atapi.sys
[2009.04.11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys
[2009.04.11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys
[2008.01.21 03:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys
[2008.01.21 03:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
[2006.11.02 10:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
[2008.03.12 07:24:20 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=96DC4E1A9F90CCD489950A8935425C59 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.22134_none_dda556493abc2795\atapi.sys
< MD5 for: AUTOCHK.EXE >
[2009.04.11 07:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E99509F5E7 -- C:\Windows\System32\autochk.exe
[2009.04.11 07:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E99509F5E7 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6002.18005_none_e3df6655bee2ee3b\autochk.exe
[2008.01.21 03:24:45 | 000,642,560 | ---- | M] (Microsoft Corporation) MD5=2FC5BE79B51714B479809358E4908FC3 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6001.18000_none_e1f3ed49c1c122ef\autochk.exe
< MD5 for: CDROM.SYS >
[2008.01.21 03:23:02 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_a29e71c6\cdrom.sys
[2008.01.21 03:23:02 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6001.18000_none_5fa95be2a3c76a4a\cdrom.sys
[2009.04.11 05:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\drivers\cdrom.sys
[2009.04.11 05:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_c949a5b6\cdrom.sys
[2009.04.11 05:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6002.18005_none_6194d4eea0e93596\cdrom.sys
[2006.11.02 09:51:44 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=8D1866E61AF096AE8B582454F5E4D303 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_e487f727\cdrom.sys
< MD5 for: CMD.EXE >
[2006.11.02 10:44:59 | 000,320,000 | ---- | M] (Microsoft Corporation) MD5=349CD4318E6E351C9BB72EE13B7CA807 -- C:\Windows\winsxs\x86_microsoft-windows-commandprompt_31bf3856ad364e35_6.0.6000.16386_none_88d604c11d71789b\cmd.exe
[2008.01.21 03:23:50 | 000,318,976 | ---- | M] (Microsoft Corporation) MD5=74F26FC01B180D4A99A168ED69C30A53 -- C:\Windows\System32\cmd.exe
[2008.01.21 03:23:50 | 000,318,976 | ---- | M] (Microsoft Corporation) MD5=74F26FC01B180D4A99A168ED69C30A53 -- C:\Windows\winsxs\x86_microsoft-windows-commandprompt_31bf3856ad364e35_6.0.6001.18000_none_8b0cc6bd1a5c896f\cmd.exe
< MD5 for: CNGAUDIT.DLL >
[2006.11.02 10:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll
[2006.11.02 10:46:03 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2008.01.21 03:24:35 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=6DE363F9F99334514C46AEC02D3E3678 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6001.18000_none_75ff99649acf4de9\cryptsvc.dll
[2012.04.23 17:00:53 | 000,133,120 | ---- | M] (Microsoft Corporation) MD5=75C6A297E364014840B48ECCD7525E30 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.18618_none_77e34ec697f67015\cryptsvc.dll
[2012.04.23 15:48:06 | 000,135,168 | ---- | M] (Microsoft Corporation) MD5=C979AEA8C4D8F875CD25507D08980006 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.22840_none_78447b63b1339621\cryptsvc.dll
[2012.06.02 12:09:26 | 000,135,168 | ---- | M] (Microsoft Corporation) MD5=DD9CCF40ED80DD0D62F1B607A1EA4449 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.22869_none_7837de25b13bb212\cryptsvc.dll
[2012.06.02 01:02:32 | 000,133,120 | ---- | M] (Microsoft Corporation) MD5=F1E8C34892336D33EDDCDFE44E474F64 -- C:\Windows\System32\cryptsvc.dll
[2012.06.02 01:02:32 | 000,133,120 | ---- | M] (Microsoft Corporation) MD5=F1E8C34892336D33EDDCDFE44E474F64 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.18643_none_77bddd9098134535\cryptsvc.dll
[2009.04.11 07:28:18 | 000,129,024 | ---- | M] (Microsoft Corporation) MD5=FB27772BEAF8E1D28CCD825C09DA939B -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.0.6002.18005_none_77eb127097f11935\cryptsvc.dll
< MD5 for: CSRSS.EXE >
[2008.01.21 03:24:54 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=ABCA209EBA02CB59233614DB83B4F50D -- C:\Windows\System32\csrss.exe
[2008.01.21 03:24:54 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=ABCA209EBA02CB59233614DB83B4F50D -- C:\Windows\winsxs\x86_microsoft-windows-csrss_31bf3856ad364e35_6.0.6001.18000_none_58e3e3d7e415ae4c\csrss.exe
< MD5 for: EXPLORER.EXE >
[2008.10.29 07:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2008.10.29 07:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2008.10.30 04:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2009.04.11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\explorer.exe
[2009.04.11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe
[2008.10.28 03:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2008.01.21 03:24:24 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe
< MD5 for: FASTFAT.SYS >
[2009.04.11 05:13:52 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=1E9B9A70D332103C52995E957DC09EF8 -- C:\Windows\System32\drivers\fastfat.sys
[2009.04.11 05:13:52 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=1E9B9A70D332103C52995E957DC09EF8 -- C:\Windows\winsxs\x86_microsoft-windows-fat_31bf3856ad364e35_6.0.6002.18005_none_b09ea48c5485f42b\fastfat.sys
[2008.01.21 03:24:13 | 000,143,360 | ---- | M] (Microsoft Corporation) MD5=3C489390C2E2064563727752AF8EAB9E -- C:\Windows\winsxs\x86_microsoft-windows-fat_31bf3856ad364e35_6.0.6001.18000_none_aeb32b80576428df\fastfat.sys
< MD5 for: HAL.DLL >
[2009.04.11 07:32:46 | 000,177,128 | ---- | M] (Microsoft Corporation) MD5=B8D52005181A15D7D1470CBF2AF214DD -- C:\Windows\System32\hal.dll
< MD5 for: I8042PRT.SYS >
[2006.11.02 09:51:13 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=1060F1377F395A242E27719440ECE602 -- C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_93b1c41f\i8042prt.sys
[2006.11.02 09:51:13 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=1060F1377F395A242E27719440ECE602 -- C:\Windows\System32\DriverStore\FileRepository\msmouse.inf_3dfa3917\i8042prt.sys
[2008.01.21 03:09:47 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=1C9EE072BAA3ABB460B91D7EE9152660 -- C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_a81145df\i8042prt.sys
[2008.01.21 03:09:47 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=1C9EE072BAA3ABB460B91D7EE9152660 -- C:\Windows\System32\DriverStore\FileRepository\msmouse.inf_f4514c17\i8042prt.sys
[2008.01.21 03:09:47 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=1C9EE072BAA3ABB460B91D7EE9152660 -- C:\Windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.0.6000.16609_none_957131ccdbca3f9c\i8042prt.sys
[2008.01.21 03:09:47 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=1C9EE072BAA3ABB460B91D7EE9152660 -- C:\Windows\winsxs\x86_msmouse.inf_31bf3856ad364e35_6.0.6000.16609_none_4c56cf70d52c8670\i8042prt.sys
[2008.01.21 03:23:20 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=22D56C8184586B7A1F6FA60BE5F5A2BD -- C:\Windows\System32\drivers\i8042prt.sys
[2008.01.21 03:23:23 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=22D56C8184586B7A1F6FA60BE5F5A2BD -- C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_da7e599e\i8042prt.sys
[2008.01.21 03:23:23 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=22D56C8184586B7A1F6FA60BE5F5A2BD -- C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_f55d5e51\i8042prt.sys
[2008.01.21 03:23:20 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=22D56C8184586B7A1F6FA60BE5F5A2BD -- C:\Windows\System32\DriverStore\FileRepository\msmouse.inf_8b7c4328\i8042prt.sys
[2008.01.21 03:23:23 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=22D56C8184586B7A1F6FA60BE5F5A2BD -- C:\Windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.0.6001.18000_none_974e6dd8d8f8ec7e\i8042prt.sys
[2008.01.21 03:23:23 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=22D56C8184586B7A1F6FA60BE5F5A2BD -- C:\Windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.0.6002.18005_none_9939e6e4d61ab7ca\i8042prt.sys
[2008.01.21 03:23:20 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=22D56C8184586B7A1F6FA60BE5F5A2BD -- C:\Windows\winsxs\x86_msmouse.inf_31bf3856ad364e35_6.0.6001.18000_none_4e340b7cd25b3352\i8042prt.sys
[2008.01.21 03:09:47 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=BEA9838CD25D36BEBA3F94386A761D60 -- C:\Windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.0.6000.20734_none_95d55d61f504b486\i8042prt.sys
[2008.01.21 03:09:47 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=BEA9838CD25D36BEBA3F94386A761D60 -- C:\Windows\winsxs\x86_msmouse.inf_31bf3856ad364e35_6.0.6000.20734_none_4cbafb05ee66fb5a\i8042prt.sys
< MD5 for: IASTOR.SYS >
[2007.09.29 23:03:12 | 000,308,248 | ---- | M] (Intel Corporation) MD5=E5A0034847537EAEE3C00349D5C34C5F -- C:\Windows\System32\drivers\iaStor.sys
[2007.09.29 23:03:12 | 000,308,248 | ---- | M] (Intel Corporation) MD5=E5A0034847537EAEE3C00349D5C34C5F -- C:\Windows\System32\DriverStore\FileRepository\iaahci.inf_7baf6192\iaStor.sys
[2007.09.29 23:03:12 | 000,308,248 | ---- | M] (Intel Corporation) MD5=E5A0034847537EAEE3C00349D5C34C5F -- C:\Windows\System32\DriverStore\FileRepository\iastor.inf_41af7b1f\iaStor.sys
< MD5 for: IASTORV.SYS >
[2008.01.21 03:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\drivers\iaStorV.sys
[2008.01.21 03:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_c9df7691\iaStorV.sys
[2008.01.21 03:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_af11527887c7fa8f\iaStorV.sys
[2006.11.02 10:51:25 | 000,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2006.11.02 10:50:24 | 000,047,208 | ---- | M] (Microsoft Corporation) MD5=350FCA7E73CF65BCEF43FAE1E4E91293 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\isapnp.sys
[2008.01.21 03:23:01 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\System32\drivers\isapnp.sys
[2008.01.21 03:23:01 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_51b95d75\isapnp.sys
[2008.01.21 03:23:01 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_f750e484\isapnp.sys
[2008.01.21 03:23:01 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\isapnp.sys
[2008.01.21 03:23:01 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6002.18005_none_bbfe6647bbd2a4c6\isapnp.sys
< MD5 for: KBDCLASS.SYS >
[2006.11.02 10:49:57 | 000,032,872 | ---- | M] (Microsoft Corporation) MD5=1A48765F92BA1A88445FC25C9C9D94FC -- C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_93b1c41f\kbdclass.sys
[2008.01.21 03:23:23 | 000,035,384 | ---- | M] (Microsoft Corporation) MD5=37605E0A8CF00CBBA538E753E4344C6E -- C:\Windows\System32\drivers\kbdclass.sys
[2008.01.21 03:23:23 | 000,035,384 | ---- | M] (Microsoft Corporation) MD5=37605E0A8CF00CBBA538E753E4344C6E -- C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_da7e599e\kbdclass.sys
[2008.01.21 03:23:23 | 000,035,384 | ---- | M] (Microsoft Corporation) MD5=37605E0A8CF00CBBA538E753E4344C6E -- C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_f55d5e51\kbdclass.sys
[2008.01.21 03:23:23 | 000,035,384 | ---- | M] (Microsoft Corporation) MD5=37605E0A8CF00CBBA538E753E4344C6E -- C:\Windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.0.6001.18000_none_974e6dd8d8f8ec7e\kbdclass.sys
[2008.01.21 03:23:23 | 000,035,384 | ---- | M] (Microsoft Corporation) MD5=37605E0A8CF00CBBA538E753E4344C6E -- C:\Windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.0.6002.18005_none_9939e6e4d61ab7ca\kbdclass.sys
[2008.01.21 03:09:47 | 000,035,384 | ---- | M] (Microsoft Corporation) MD5=B076B2AB806B3F696DAB21375389101C -- C:\Windows\System32\DriverStore\FileRepository\keyboard.inf_a81145df\kbdclass.sys
[2008.01.21 03:09:47 | 000,035,384 | ---- | M] (Microsoft Corporation) MD5=B076B2AB806B3F696DAB21375389101C -- C:\Windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.0.6000.16609_none_957131ccdbca3f9c\kbdclass.sys
[2008.01.21 03:09:47 | 000,035,384 | ---- | M] (Microsoft Corporation) MD5=C9B0CF786D5F151A43C7BE8E243F2819 -- C:\Windows\winsxs\x86_keyboard.inf_31bf3856ad364e35_6.0.6000.20734_none_95d55d61f504b486\kbdclass.sys
< MD5 for: LSASS.EXE >
[2009.06.15 13:51:56 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=203D86EBD6D8E4C8501B222421E81506 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22152_none_a886901f7335e2fc\lsass.exe
[2009.09.10 15:44:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=2D3AC5E7AC01E905F3ABD2D745FE3A9B -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22223_none_a8a80213731ca5a7\lsass.exe
[2009.06.15 13:48:49 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=3978F3540329E16C0AC3BCF677E5669F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\lsass.exe
[2009.02.13 08:26:04 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=59DE082968FDD257FFF0D209B9A5B460 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16820_none_a44eb0105fb4d975\lsass.exe
[2012.06.01 23:37:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=613DEB66A91820F0A41915B40BB8833F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22869_none_a882cf8373379c5f\lsass.exe
[2009.06.15 14:03:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=6F1F23D3599EAE17734451936B7F17C6 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22450_none_a69e1da376115b2a\lsass.exe
[2011.11.16 15:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A3E186B4B935905B829219502557314E -- C:\Windows\System32\lsass.exe
[2011.11.16 15:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A3E186B4B935905B829219502557314E -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18541_none_a806cc745a10ffad\lsass.exe
[2011.11.16 15:12:25 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A3E186B4B935905B829219502557314E -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18643_none_a808ceee5a0f2f82\lsass.exe
[2009.06.15 13:57:59 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A911ECAC81F94ADEAFBE8E3F7873EDB0 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\lsass.exe
[2009.02.13 05:58:37 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=AFF8A58280863629CA4FFA9E0B259F1E -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21010_none_a4e2f4e978ca9090\lsass.exe
[2009.06.15 13:59:08 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=BA9A67672E025078C77967731BCFC560 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21067_none_a4b3e75378eccda6\lsass.exe
[2009.06.15 14:10:12 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=C731B1FE449D4E9CEA358C9D55B69BE9 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\lsass.exe
[2009.09.09 12:09:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=CB7E838C140B4087B2DA323F2D4523C5 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22518_none_a6d1618975e9b345\lsass.exe
[2009.09.10 15:47:51 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=D09A5DA84B7C9CA9B02EBCD7FAE41C8D -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21125_none_a4dd285578ce285b\lsass.exe
[2008.01.21 03:24:15 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18000_none_a64a8ac25ccb3836\lsass.exe
[2008.01.21 03:24:15 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18215_none_a644c0145ccecd28\lsass.exe
[2008.01.21 03:24:15 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18005_none_a83603ce59ed0382\lsass.exe
[2011.11.16 14:57:04 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=EBFAEB786C46B407930811F94F08877D -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22742_none_a8916b6f732db5f5\lsass.exe
[2009.02.13 09:20:29 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=F4C62B07E5BF96F1FDCA9DB393ECED22 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22376_none_a68e7da1761c2def\lsass.exe
< MD5 for: NDIS.SYS >
[2009.04.11 07:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\System32\drivers\ndis.sys
[2009.04.11 07:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6002.18005_none_a9b2a4d31930d864\ndis.sys
[2008.01.21 03:23:50 | 000,529,464 | ---- | M] (Microsoft Corporation) MD5=9BDC71790FA08F0A0B5F10462B1BD0B1 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6001.18000_none_a7c72bc71c0f0d18\ndis.sys
< MD5 for: NETLOGON.DLL >
[2009.04.11 07:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\System32\netlogon.dll
[2009.04.11 07:28:23 | 000,592,896 | ---- | M] (Microsoft Corporation) MD5=95DAECF0FB120A7B5DA679CC54E37DDE -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6002.18005_none_ffa3304f351bb3a3\netlogon.dll
[2008.01.21 03:24:05 | 000,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll
< MD5 for: NTFS.SYS >
[2009.04.11 07:32:49 | 001,083,880 | ---- | M] (Společnost Microsoft) MD5=6A4A98CEE84CF9E99564510DDA4BAA47 -- C:\Windows\System32\drivers\ntfs.sys
[2009.04.11 07:32:49 | 001,083,880 | ---- | M] (Microsoft Corporation) MD5=6A4A98CEE84CF9E99564510DDA4BAA47 -- C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6002.18005_none_a85ca2c91a0d64df\ntfs.sys
[2008.01.21 03:23:51 | 001,081,912 | ---- | M] (Microsoft Corporation) MD5=B4EFFE29EB4F15538FD8A9681108492D -- C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6001.18000_none_a67129bd1ceb9993\ntfs.sys
< MD5 for: NTKRNLPA.EXE >
[2009.08.04 13:34:19 | 003,600,456 | ---- | M] (Microsoft Corporation) MD5=0517782FC7FEDBEBFAD15566E75B732F -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18082_none_6dc25a6eb1887137\ntkrnlpa.exe
[2009.03.03 05:24:50 | 003,503,584 | ---- | M] (Microsoft Corporation) MD5=06BCF21AAA1890328D1F58F0ACBE668D -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16830_none_6a29b702b714cf98\ntkrnlpa.exe
[2012.08.29 12:27:41 | 003,604,352 | ---- | M] (Microsoft Corporation) MD5=0802CFF50B3020D49884195DC065CF20 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22920_none_6e8ae55dca771fe5\ntkrnlpa.exe
[2009.04.11 07:32:49 | 003,601,896 | ---- | M] (Microsoft Corporation) MD5=1260BEACF2F023807A1087BBB0E15BBD -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18005_none_6e1bdaacb144ddb4\ntkrnlpa.exe
[2009.03.03 05:22:42 | 003,505,120 | ---- | M] (Microsoft Corporation) MD5=191C702B48681FB2BA5A96F416207ACF -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21023_none_6ac0fcb9d027d2b8\ntkrnlpa.exe
[2010.02.18 15:21:54 | 003,601,800 | ---- | M] (Microsoft Corporation) MD5=1FED62B16D372E169CF355B2F3210A65 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22341_none_6e763a6bca868234\ntkrnlpa.exe
[2012.08.29 12:27:41 | 003,602,816 | ---- | M] (Microsoft Corporation) MD5=244C631BE2F7F36EAD9DDAEED95AA298 -- C:\Windows\System32\ntkrnlpa.exe
[2012.08.29 12:27:41 | 003,602,816 | ---- | M] (Microsoft Corporation) MD5=244C631BE2F7F36EAD9DDAEED95AA298 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18686_none_6dc666fab184c57d\ntkrnlpa.exe
[2009.08.05 18:15:59 | 003,599,960 | ---- | M] (Microsoft Corporation) MD5=2E6E7BA5C8764F80ADA7D4C98E8B5D4A -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22489_none_6c6c8757cd796d3e\ntkrnlpa.exe
[2011.06.20 09:54:36 | 003,602,832 | ---- | M] (Microsoft Corporation) MD5=31AD5148F09D539BAF06D0A0FA53CD8B -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18484_none_6dc4629ab1869881\ntkrnlpa.exe
[2010.10.15 15:08:12 | 003,602,832 | ---- | M] (Microsoft Corporation) MD5=3BEF21D45A74AD2C6EAD894BA6C6A502 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22777_none_6c755c61cd731614\ntkrnlpa.exe
[2010.06.08 19:04:17 | 003,601,792 | ---- | M] (Microsoft Corporation) MD5=3FAFA4C0567D205F56C15D8B9D469F9D -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22420_none_6e8adbdfca772e22\ntkrnlpa.exe
[2009.12.08 21:36:58 | 003,600,472 | ---- | M] (Microsoft Corporation) MD5=4A65C0C8743AD660A9DE8C2B68218FC7 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22577_none_6c755895cd731bc6\ntkrnlpa.exe
[2010.06.08 18:00:42 | 003,598,216 | ---- | M] (Microsoft Corporation) MD5=4F332C0A64F4209EB322DB35310BA879 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18488_none_6be1ec28b45cb144\ntkrnlpa.exe
[2010.06.08 17:47:40 | 003,600,784 | ---- | M] (Microsoft Corporation) MD5=560C7E5036D6D0F9CC4AED5DE885DB8A -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22707_none_6cc10bd5cd3a527d\ntkrnlpa.exe
[2011.10.27 09:01:53 | 003,603,840 | ---- | M] (Microsoft Corporation) MD5=5B3C5FBBE4FB0DCFFCEC402B44BC6719 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22732_none_6e821239ca7d7436\ntkrnlpa.exe
[2009.08.05 15:10:22 | 003,599,928 | ---- | M] (Microsoft Corporation) MD5=5FBCBEBDC19FB9A3F9C102D30FCD1E9E -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22191_none_6e402703caaf139b\ntkrnlpa.exe
[2009.03.03 05:37:19 | 003,600,880 | ---- | M] (Microsoft Corporation) MD5=641C0F376136E5B6F389016EC48374D2 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22389_none_6c6c8571cd797017\ntkrnlpa.exe
[2010.02.18 15:34:38 | 003,504,008 | ---- | M] (Microsoft Corporation) MD5=642161C66547496ACCD2794AB6B4284F -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21226_none_6ac40163d025190b\ntkrnlpa.exe
[2012.03.06 07:39:00 | 003,603,840 | ---- | M] (Microsoft Corporation) MD5=67C80F4BEF37E4F40AC38BBE6BCC6198 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22811_none_6e96b3adca6e2024\ntkrnlpa.exe
[2012.03.06 07:39:00 | 003,602,816 | ---- | M] (Microsoft Corporation) MD5=67FB74F129CD6EB6A299B232B09F2FD8 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18595_none_6dba94deb18dcaf0\ntkrnlpa.exe
[2008.04.26 09:11:34 | 003,601,464 | ---- | M] (Microsoft Corporation) MD5=68EEF02A8846442FE98AD0E0517EE6BC -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22167_none_6c8020e9cd6b0b39\ntkrnlpa.exe
[2009.08.05 15:10:22 | 003,503,688 | ---- | M] (Microsoft Corporation) MD5=6AD406205B25DC4EFBBCB044744248AD -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21101_none_6ad49de3d019654f\ntkrnlpa.exe
[2008.04.26 09:25:53 | 003,600,952 | ---- | M] (Microsoft Corporation) MD5=6BB1994F5B62FEF6268F1EBB4014E293 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18063_none_6bf282f6b4510613\ntkrnlpa.exe
[2009.12.08 21:01:02 | 003,600,456 | ---- | M] (Microsoft Corporation) MD5=735CDD610B7A0E7B5C6A153DD45ECE32 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18160_none_6dd5fb98b17a03ce\ntkrnlpa.exe
[2009.12.08 21:54:53 | 003,502,168 | ---- | M] (Microsoft Corporation) MD5=84D47D16C6E7FB61D3A2F7738838A57B -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16973_none_6a017a16b7328888\ntkrnlpa.exe
[2010.02.18 15:07:05 | 003,600,776 | ---- | M] (Microsoft Corporation) MD5=8BBC454D2F91D92E3E73DB5B5A0D8D8E -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18209_none_6e1fdfa0b1413d5e\ntkrnlpa.exe
[2010.10.15 15:08:12 | 003,600,272 | ---- | M] (Microsoft Corporation) MD5=950C425C9E1FA4DDEC8A6B7915E3D892 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18538_none_6c17fdaab43422b6\ntkrnlpa.exe
[2011.06.20 09:54:36 | 003,603,856 | ---- | M] (Microsoft Corporation) MD5=A94B3B8B4B35ACA0290A2A8CC2977094 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22662_none_6e61a08fca95cae2\ntkrnlpa.exe
[2010.02.18 18:36:43 | 003,600,776 | ---- | M] (Microsoft Corporation) MD5=AF2FC3FE3AD6860A808B237171BA6EED -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22636_none_6c9f99e1cd538fd2\ntkrnlpa.exe
[2012.04.03 09:16:12 | 003,604,352 | ---- | M] (Microsoft Corporation) MD5=BEF3218359377715B1D85D7DF823E123 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22831_none_6e8113d5ca7e5806\ntkrnlpa.exe
[2010.02.18 15:49:31 | 003,598,216 | ---- | M] (Microsoft Corporation) MD5=C2334AE54E10BCA2631660F649010B03 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18427_none_6c21cb66b42cf047\ntkrnlpa.exe
[2010.10.15 15:08:12 | 003,602,320 | ---- | M] (Microsoft Corporation) MD5=C391DF1007E54B1FE06A4EF02DB6FA61 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18327_none_6e08411ab1533fb9\ntkrnlpa.exe
[2009.12.08 21:14:53 | 003,601,464 | ---- | M] (Microsoft Corporation) MD5=C481B4F271D3D234B93E19F5531D1D55 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22283_none_6e4cf969caa5277f\ntkrnlpa.exe
[2009.12.08 21:52:17 | 003,597,912 | ---- | M] (Microsoft Corporation) MD5=C89111B0489D5CF7B14CBDB5D225A88F -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18377_none_6bebb9e4b4557ed5\ntkrnlpa.exe
[2011.10.27 09:01:53 | 003,602,816 | ---- | M] (Microsoft Corporation) MD5=CA537C1021ACDF5B3D14A01B0D4A09B7 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18533_none_6df973d2b15ef09c\ntkrnlpa.exe
[2012.04.03 09:16:12 | 003,602,816 | ---- | M] (Microsoft Corporation) MD5=CAD95AFB7FDDCC490681555C570FBB7D -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18607_none_6e1de6a4b142ff4c\ntkrnlpa.exe
[2009.12.08 23:29:30 | 003,503,704 | ---- | M] (Microsoft Corporation) MD5=D2859DAE5F6730DF5BF1C25CFC376797 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21175_none_6a8cef97d04e8e42\ntkrnlpa.exe
[2010.02.18 15:54:09 | 003,502,480 | ---- | M] (Microsoft Corporation) MD5=D8077969EE22B889B793D076FDCA7066 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.17021_none_6a356140b70bfd67\ntkrnlpa.exe
[2010.06.08 18:35:03 | 003,600,768 | ---- | M] (Microsoft Corporation) MD5=E3A2697835A14C75B233606357AB46DD -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18267_none_6ddcff84b173b256\ntkrnlpa.exe
[2009.08.05 15:22:41 | 003,597,896 | ---- | M] (Microsoft Corporation) MD5=FBA1B3594C1F691F1FA917ADE45D1DB5 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18304_none_6c34687ab41f6f39\ntkrnlpa.exe
[2008.01.21 03:24:42 | 003,600,440 | ---- | M] (Microsoft Corporation) MD5=FE51E8DBBEF2D01EF886499FECBF2D78 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18000_none_6c3061a0b4231268\ntkrnlpa.exe
[2009.03.03 05:46:01 | 003,599,328 | ---- | M] (Microsoft Corporation) MD5=FEB3FB3309EBA85917BDE7F4FD019C9D -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18226_none_6c20c750b42ddca2\ntkrnlpa.exe
[2010.10.15 15:08:12 | 003,603,856 | ---- | M] (Microsoft Corporation) MD5=FEB9209E1D2B97DB4AE8FBF1DB0F54B6 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22505_none_6ea57f0fca62721a\ntkrnlpa.exe
[2009.08.05 15:28:45 | 003,502,152 | ---- | M] (Microsoft Corporation) MD5=FF493ACD34EE896B8D114918439FAF10 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16901_none_6a4b28f6b6fb9243\ntkrnlpa.exe
< MD5 for: NTOSKRNL.EXE >
[2012.08.29 12:27:41 | 003,550,080 | ---- | M] (Microsoft Corporation) MD5=0895557E35AE46729FFEFCB3906EBC69 -- C:\Windows\System32\ntoskrnl.exe
[2012.08.29 12:27:41 | 003,550,080 | ---- | M] (Microsoft Corporation) MD5=0895557E35AE46729FFEFCB3906EBC69 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18686_none_6dc666fab184c57d\ntoskrnl.exe
[2009.08.05 15:10:22 | 003,548,216 | ---- | M] (Microsoft Corporation) MD5=09C5FB44F152EFF551A112C931DDE640 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22191_none_6e402703caaf139b\ntoskrnl.exe
[2010.10.15 15:08:12 | 003,550,096 | ---- | M] (Microsoft Corporation) MD5=1ACD7FC485D0E0FF9097E08900D834CC -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18327_none_6e08411ab1533fb9\ntoskrnl.exe
[2009.12.08 21:52:16 | 003,546,200 | ---- | M] (Microsoft Corporation) MD5=20D040ECE9A8F578D1D938256F34B663 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18377_none_6bebb9e4b4557ed5\ntoskrnl.exe
[2008.04.26 09:11:33 | 003,549,240 | ---- | M] (Microsoft Corporation) MD5=22D444D3D88A4C299894B3638A114BF7 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22167_none_6c8020e9cd6b0b39\ntoskrnl.exe
[2009.12.08 23:29:12 | 003,469,912 | ---- | M] (Microsoft Corporation) MD5=2972EEF8E834883EEC7C1995639341EF -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21175_none_6a8cef97d04e8e42\ntoskrnl.exe
[2010.02.18 15:21:55 | 003,550,088 | ---- | M] (Microsoft Corporation) MD5=31289DD6914686D088582EED4B43F826 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22341_none_6e763a6bca868234\ntoskrnl.exe
[2009.03.03 05:24:50 | 003,469,280 | ---- | M] (Microsoft Corporation) MD5=3910FE042C707E6BACD0FEC5AB9ECDE6 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16830_none_6a29b702b714cf98\ntoskrnl.exe
[2009.03.03 05:46:01 | 003,547,632 | ---- | M] (Microsoft Corporation) MD5=393BB8FE05D66ABA7B091E6032179272 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18226_none_6c20c750b42ddca2\ntoskrnl.exe
[2009.08.05 18:15:59 | 003,547,736 | ---- | M] (Microsoft Corporation) MD5=3EEEDCCFB587BCB0E2DE075332498C11 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22489_none_6c6c8757cd796d3e\ntoskrnl.exe
[2009.08.05 15:28:44 | 003,467,864 | ---- | M] (Microsoft Corporation) MD5=4765C66A89E7151626FF3545B01D2601 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16901_none_6a4b28f6b6fb9243\ntoskrnl.exe
[2010.06.08 17:47:40 | 003,548,552 | ---- | M] (Microsoft Corporation) MD5=47DB9968B8CF2031C46007F42CCE2437 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22707_none_6cc10bd5cd3a527d\ntoskrnl.exe
[2012.08.29 12:27:42 | 003,553,152 | ---- | M] (Microsoft Corporation) MD5=4E7F06BA9E352E072AE0EDF3DB7B7462 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22920_none_6e8ae55dca771fe5\ntoskrnl.exe
[2009.08.05 15:22:41 | 003,546,184 | ---- | M] (Microsoft Corporation) MD5=5302026B0FADB0819009798D3F6BCD77 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18304_none_6c34687ab41f6f39\ntoskrnl.exe
[2009.08.04 13:34:19 | 003,548,216 | ---- | M] (Microsoft Corporation) MD5=575DD16BF4C21C2F7E2BBE203AC1E957 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18082_none_6dc25a6eb1887137\ntoskrnl.exe
[2010.02.18 15:49:31 | 003,545,992 | ---- | M] (Microsoft Corporation) MD5=6025E5530E2C43E1983CC8B840DF2108 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18427_none_6c21cb66b42cf047\ntoskrnl.exe
[2009.12.08 21:01:02 | 003,548,216 | ---- | M] (Microsoft Corporation) MD5=664CA09C523FAB9D01BE6C4028C1B58B -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18160_none_6dd5fb98b17a03ce\ntoskrnl.exe
[2008.01.21 03:24:42 | 003,548,728 | ---- | M] (Microsoft Corporation) MD5=6700F35EBA206E5C89AC27C9A124DC01 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18000_none_6c3061a0b4231268\ntoskrnl.exe
[2009.04.11 07:32:49 | 003,549,672 | ---- | M] (Microsoft Corporation) MD5=6798DBF3F25721637AEF5B6C69911C9C -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18005_none_6e1bdaacb144ddb4\ntoskrnl.exe
[2009.03.03 05:22:43 | 003,471,328 | ---- | M] (Microsoft Corporation) MD5=808C86316AED98716C5F305A6265F393 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21023_none_6ac0fcb9d027d2b8\ntoskrnl.exe
[2010.10.15 15:08:12 | 003,552,144 | ---- | M] (Microsoft Corporation) MD5=8B5EEAA99965E26C3FBB9FAC8BD3B6A1 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22505_none_6ea57f0fca62721a\ntoskrnl.exe
[2010.10.15 15:08:12 | 003,548,048 | ---- | M] (Microsoft Corporation) MD5=A573338BDCED710795C618EA5FCF48D5 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18538_none_6c17fdaab43422b6\ntoskrnl.exe
[2010.02.18 15:07:05 | 003,548,040 | ---- | M] (Microsoft Corporation) MD5=A5D0B405442724448D23D61821BEA92A -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18209_none_6e1fdfa0b1413d5e\ntoskrnl.exe
[2012.04.03 09:16:12 | 003,552,640 | ---- | M] (Microsoft Corporation) MD5=B9907DD4BE7B1B39573BF66554AB224E -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22831_none_6e8113d5ca7e5806\ntoskrnl.exe
[2012.04.03 09:16:11 | 003,550,080 | ---- | M] (Microsoft Corporation) MD5=BA4C485548914034B471EB6FC2B50082 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18607_none_6e1de6a4b142ff4c\ntoskrnl.exe
[2011.06.20 09:54:36 | 003,552,144 | ---- | M] (Microsoft Corporation) MD5=BF4B9F40116DF26B2FC7C20CB69B9D9A -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22662_none_6e61a08fca95cae2\ntoskrnl.exe
[2010.02.18 18:36:43 | 003,548,560 | ---- | M] (Microsoft Corporation) MD5=C5759C9345A06EE52C7F5ECCF685CA6D -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22636_none_6c9f99e1cd538fd2\ntoskrnl.exe
[2010.06.08 19:04:17 | 003,550,600 | ---- | M] (Microsoft Corporation) MD5=C5AB434D0C8FA38EAD136FB29E2504B7 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22420_none_6e8adbdfca772e22\ntoskrnl.exe
[2011.06.20 09:54:36 | 003,550,096 | ---- | M] (Microsoft Corporation) MD5=C73E0BEB5062C94B68581642304F7BB4 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18484_none_6dc4629ab1869881\ntoskrnl.exe
[2011.10.27 09:01:53 | 003,550,080 | ---- | M] (Microsoft Corporation) MD5=C7D1507B837BC41D13D6EAC31A032AE3 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18533_none_6df973d2b15ef09c\ntoskrnl.exe
[2008.04.26 09:25:54 | 003,549,240 | ---- | M] (Microsoft Corporation) MD5=C9CD31B3CBA8134F2B47FB5E78376ACC -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18063_none_6bf282f6b4510613\ntoskrnl.exe
[2009.12.08 21:54:53 | 003,467,848 | ---- | M] (Microsoft Corporation) MD5=CD2EEBFA39E742C8C066CCE09382A19B -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.16973_none_6a017a16b7328888\ntoskrnl.exe
[2009.12.08 21:36:58 | 003,548,760 | ---- | M] (Microsoft Corporation) MD5=D32E95B17477E183F6019A99BE799BA9 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22577_none_6c755895cd731bc6\ntoskrnl.exe
[2010.06.08 18:00:41 | 003,545,992 | ---- | M] (Microsoft Corporation) MD5=D5FA5D17F03E6D39E1A12431DD6F2A39 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.18488_none_6be1ec28b45cb144\ntoskrnl.exe
[2009.08.05 15:10:15 | 003,469,896 | ---- | M] (Microsoft Corporation) MD5=D8DCA438CE571DB20BD8C4915CAC0760 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21101_none_6ad49de3d019654f\ntoskrnl.exe
[2011.10.27 09:01:53 | 003,552,640 | ---- | M] (Microsoft Corporation) MD5=D91407C7DF48B369E35E9E1426563EFA -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22732_none_6e821239ca7d7436\ntoskrnl.exe
[2012.03.06 07:39:00 | 003,550,080 | ---- | M] (Microsoft Corporation) MD5=D960F9E1FCA0C86387E806D9AED319FB -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18595_none_6dba94deb18dcaf0\ntoskrnl.exe
[2010.02.18 15:54:03 | 003,468,168 | ---- | M] (Microsoft Corporation) MD5=DC44BF78DEB87B7737D0D29B5B8EDAE3 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.17021_none_6a356140b70bfd67\ntoskrnl.exe
[2009.03.03 05:37:19 | 003,548,656 | ---- | M] (Microsoft Corporation) MD5=DFF34C5D66AB4BF1EED47BF19D1267BB -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22389_none_6c6c8571cd797017\ntoskrnl.exe
[2010.10.15 15:08:12 | 003,550,608 | ---- | M] (Microsoft Corporation) MD5=F276ABE13DD0BA1024A42A443E47A4A2 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6001.22777_none_6c755c61cd731614\ntoskrnl.exe
[2010.06.08 18:35:04 | 003,548,040 | ---- | M] (Microsoft Corporation) MD5=F2BEE482023F146CF85EBB15B9E1CD35 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.18267_none_6ddcff84b173b256\ntoskrnl.exe
[2010.02.18 15:34:36 | 003,470,216 | ---- | M] (Microsoft Corporation) MD5=F8BEC470EAA8621751F739585C5871CD -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6000.21226_none_6ac40163d025190b\ntoskrnl.exe
[2009.12.08 21:14:53 | 003,550,264 | ---- | M] (Microsoft Corporation) MD5=FB82B0147B7D93379B68F8A6A5828C70 -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22283_none_6e4cf969caa5277f\ntoskrnl.exe
[2012.03.06 07:39:00 | 003,552,640 | ---- | M] (Microsoft Corporation) MD5=FEA4425645424D66DCCC6CD3F417A40D -- C:\Windows\winsxs\x86_microsoft-windows-os-kernel_31bf3856ad364e35_6.0.6002.22811_none_6e96b3adca6e2024\ntoskrnl.exe
Re: Prosím o kontrolu - preventivka, RSIT, OTL
< MD5 for: NVRAID.SYS >
[2008.01.21 03:23:21 | 000,102,968 | ---- | M] (NVIDIA Corporation) MD5=2EDF9E7751554B42CBB60116DE727101 -- C:\Windows\System32\drivers\nvraid.sys
[2008.01.21 03:23:21 | 000,102,968 | ---- | M] (NVIDIA Corporation) MD5=2EDF9E7751554B42CBB60116DE727101 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvraid.sys
[2008.01.21 03:23:21 | 000,102,968 | ---- | M] (NVIDIA Corporation) MD5=2EDF9E7751554B42CBB60116DE727101 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvraid.sys
[2006.11.02 10:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) MD5=E69E946F80C1C31C53003BFBF50CBB7C -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2006.11.02 10:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys
[2008.01.21 03:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\drivers\nvstor.sys
[2008.01.21 03:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvstor.sys
[2008.01.21 03:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys
< MD5 for: REGEDIT.EXE >
[2008.01.21 03:24:53 | 000,134,656 | ---- | M] (Microsoft Corporation) MD5=467A3B03E924B7B7EDD16D34740574B0 -- C:\Windows\regedit.exe
[2008.01.21 03:24:53 | 000,134,656 | ---- | M] (Microsoft Corporation) MD5=467A3B03E924B7B7EDD16D34740574B0 -- C:\Windows\winsxs\x86_microsoft-windows-registry-editor_31bf3856ad364e35_6.0.6001.18000_none_f42eb564dbd8a697\regedit.exe
< MD5 for: SCECLI.DLL >
[2008.01.21 03:24:50 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll
[2009.04.11 07:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\System32\scecli.dll
[2009.04.11 07:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll
< MD5 for: SERVICES.EXE >
[2008.01.21 03:24:48 | 000,279,040 | ---- | M] (Microsoft Corporation) MD5=2B336AB6286D6C81FA02CBAB914E3C6C -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_cf5fc067cd49010a\services.exe
[2009.04.11 07:27:59 | 000,279,552 | ---- | M] (Microsoft Corporation) MD5=D4E6D91C1349B7BFB3599A6ADA56851B -- C:\Windows\System32\services.exe
[2009.04.11 07:27:59 | 000,279,552 | ---- | M] (Microsoft Corporation) MD5=D4E6D91C1349B7BFB3599A6ADA56851B -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_d14b3973ca6acc56\services.exe
< MD5 for: SMSS.EXE >
[2008.01.21 03:23:50 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=6701DDAF68BEDE6BBEEA9D514D73A35B -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6001.18000_none_ac3aa7fd19319fba\smss.exe
[2009.04.11 07:28:04 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=98AF15A94CD6AC37248E72E5FE789B35 -- C:\Windows\System32\smss.exe
[2009.04.11 07:28:04 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=98AF15A94CD6AC37248E72E5FE789B35 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6002.18005_none_ae26210916536b06\smss.exe
< MD5 for: SPOOLSV.EXE >
[2010.08.17 14:32:33 | 000,126,464 | ---- | M] (Microsoft Corporation) MD5=3665F79026A3F91FBCA63F2C65A09B19 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6001.18511_none_d641dcfdc18fec21\spoolsv.exe
[2009.04.11 07:28:05 | 000,127,488 | ---- | M] (Microsoft Corporation) MD5=524BFBEA40E6E404737CCBC754647A2E -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6002.18005_none_d8371c2dbeaa9062\spoolsv.exe
[2008.01.21 03:24:45 | 000,125,952 | ---- | M] (Microsoft Corporation) MD5=846CDF9A3CF4DA9B306ADFB7D55EE4C2 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6001.18000_none_d64ba321c188c516\spoolsv.exe
[2010.08.17 15:11:37 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=8554097E5136C3BF9F69FE578A1B35F4 -- C:\Windows\System32\spoolsv.exe
[2010.08.17 15:11:37 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=8554097E5136C3BF9F69FE578A1B35F4 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6002.18294_none_d7d4d063bef46cd2\spoolsv.exe
[2010.08.17 15:20:09 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=AAE98B295E88D439A6E0F6E8929424FB -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6002.22468_none_d882e000d7f61b4c\spoolsv.exe
[2010.08.17 14:27:48 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=E807FC542C295BA256CE3567829E02A6 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6001.22743_none_d6ad0c7edac40f93\spoolsv.exe
< MD5 for: SVCHOST.EXE >
[2008.01.21 03:23:43 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\System32\svchost.exe
[2008.01.21 03:23:43 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.04.26 09:08:16 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=01EC1E92595F839BEE70D439C46796E3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22167_none_b36dd19b7fae39c7\tcpip.sys
[2009.04.11 07:33:02 | 000,897,000 | ---- | M] (Microsoft Corporation) MD5=0E6B0885C3D5E4643ED2D043DE3433D8 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18005_none_b5098b5e63880c42\tcpip.sys
[2011.09.20 22:02:55 | 000,913,280 | ---- | M] (Microsoft Corporation) MD5=16731B631F28F63CD9F4CB60940E7DDD -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22719_none_b58c64c97caa1c43\tcpip.sys
[2009.12.08 21:52:30 | 000,897,624 | ---- | M] (Microsoft Corporation) MD5=1ACBB7A47E78F4CC82D2EFFB72901528 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18377_none_b2d96a966698ad63\tcpip.sys
[2009.08.15 22:30:53 | 000,816,640 | ---- | M] (Microsoft Corporation) MD5=2512B4D1353370D6688B1AF1F5AFA1CF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21108_none_6030d425ab49af00\tcpip.sys
[2009.08.14 18:01:55 | 000,900,168 | ---- | M] (Microsoft Corporation) MD5=2608E71AAD54564647D4BB984E1925AA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22497_none_b34d67897fc6850f\tcpip.sys
[2011.06.17 21:13:55 | 000,905,104 | ---- | M] (Microsoft Corporation) MD5=2756186E287139310997090797E0182B -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18484_none_b4b2134c63c9c70f\tcpip.sys
[2012.03.30 13:39:11 | 000,905,600 | ---- | M] (Microsoft Corporation) MD5=27D470DABC77BC60D0A3B0E4DEB6CB91 -- C:\Windows\System32\drivers\tcpip.sys
[2012.03.30 13:39:11 | 000,905,600 | ---- | M] (Microsoft Corporation) MD5=27D470DABC77BC60D0A3B0E4DEB6CB91 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18604_none_b50896786388e1d5\tcpip.sys
[2010.02.18 12:51:51 | 000,818,688 | ---- | M] (Microsoft Corporation) MD5=2C1F7005AA3B62721BFDB307BD5F5010 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21226_none_6019359fab5bb15b\tcpip.sys
[2010.02.18 15:49:38 | 000,898,952 | ---- | M] (Microsoft Corporation) MD5=2EAE4500984C2F8DACFB977060300A15 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18427_none_b30f7c1866701ed5\tcpip.sys
[2009.08.14 15:24:47 | 000,813,568 | ---- | M] (Microsoft Corporation) MD5=300208927321066EA53761FDC98747C6 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16908_none_5fa75f38922bdbf4\tcpip.sys
[2009.12.08 21:15:00 | 000,907,832 | ---- | M] (Microsoft Corporation) MD5=46E6685F3E92AEC743773ADD4CD54F57 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22283_none_b53aaa1b7ce8560d\tcpip.sys
[2010.02.18 15:07:16 | 000,904,576 | ---- | M] (Microsoft Corporation) MD5=48CBE6D53632D0067C2D6B20F90D84CA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18209_none_b50d905263846bec\tcpip.sys
[2010.02.18 13:05:37 | 000,815,104 | ---- | M] (Microsoft Corporation) MD5=4A82FA8F0DF67AA354580C3FAAF8BDE3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.17021_none_5f8a957c924295b7\tcpip.sys
[2009.12.08 21:37:09 | 000,900,696 | ---- | M] (Microsoft Corporation) MD5=5653230D480A9C54D169E1B080B72CF5 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22577_none_b36309477fb64a54\tcpip.sys
[2010.06.16 16:55:58 | 000,902,032 | ---- | M] (Microsoft Corporation) MD5=6216A954ED7045B62880A92D6C9B9FC7 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys
[2009.08.14 17:27:34 | 000,904,776 | ---- | M] (Microsoft Corporation) MD5=65877AA1B6A7CB797488E831698973E9 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18091_none_b4a43aea63d4a25f\tcpip.sys
[2011.06.17 21:13:55 | 000,913,296 | ---- | M] (Microsoft Corporation) MD5=6647FCE6FC4970DAAFE5C64C794513D3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22662_none_b54f51417cd8f970\tcpip.sys
[2010.06.16 17:39:32 | 000,912,776 | ---- | M] (Microsoft Corporation) MD5=6A10AFCE0B38371064BE41C1FBFD3C6B -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22425_none_b57d8e037cb5db63\tcpip.sys
[2010.06.16 16:59:54 | 000,898,952 | ---- | M] (Microsoft Corporation) MD5=782568AB6A43160A159B6215B70BCCE9 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18493_none_b2bfcb7c66ac7d10\tcpip.sys
[2011.09.20 22:02:55 | 000,905,088 | ---- | M] (Microsoft Corporation) MD5=814A1C66FBD4E1B310A517221F1456BF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18519_none_b502c618638c7f52\tcpip.sys
[2008.04.26 09:26:49 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=82E266BEE5F0167E41C6ECFDD2A79C02 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18063_none_b2e033a8669434a1\tcpip.sys
[2009.12.08 18:58:13 | 000,813,568 | ---- | M] (Microsoft Corporation) MD5=8734BD051FFDCBF8425CF222141C3741 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16973_none_5f56ae52926920d8\tcpip.sys
[2009.08.14 18:07:56 | 000,897,608 | ---- | M] (Microsoft Corporation) MD5=8A7AD2A214233F684242F289ED83EBC3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18311_none_b3144862666d6db3\tcpip.sys
[2010.02.18 18:36:50 | 000,902,024 | ---- | M] (Microsoft Corporation) MD5=93A5655CD9CD2F080EF1CB71A3666215 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys
[2010.06.16 17:04:57 | 000,905,088 | ---- | M] (Microsoft Corporation) MD5=A474879AFA4A596B3A531F3E69730DBF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18272_none_b4baded863c37e22\tcpip.sys
[2009.12.08 18:45:32 | 000,816,640 | ---- | M] (Microsoft Corporation) MD5=CA3A5756672013A66BB9D547A5A62DCA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21175_none_5fe223d3ab852692\tcpip.sys
[2010.02.18 15:22:11 | 000,910,216 | ---- | M] (Microsoft Corporation) MD5=D9F5DD5BBC8348E8F8220CCBF14C022E -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22341_none_b563eb1d7cc9b0c2\tcpip.sys
[2009.12.08 21:01:08 | 000,904,776 | ---- | M] (Microsoft Corporation) MD5=DA467E7619AE5F4588E6262C13C8940A -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18160_none_b4c3ac4a63bd325c\tcpip.sys
[2012.03.30 13:39:11 | 000,914,304 | ---- | M] (Microsoft Corporation) MD5=EE7E10BED85C312C1D5D30C435BDDA9F -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22828_none_b58096797cb31c04\tcpip.sys
[2008.01.21 03:25:03 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=FC6E2835D667774D409C7C7021EAF9C4 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_b31e1252666640f6\tcpip.sys
[2009.08.14 17:33:50 | 000,905,784 | ---- | M] (Microsoft Corporation) MD5=FF71856BD4CD6D4367F9FD84BE79A874 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22200_none_b58e289d7caa2a80\tcpip.sys
< MD5 for: TDX.SYS >
[2009.04.11 05:45:56 | 000,072,192 | ---- | M] (Microsoft Corporation) MD5=76B06EB8A01FC8624D699E7045303E54 -- C:\Windows\System32\drivers\tdx.sys
[2009.04.11 05:45:56 | 000,072,192 | ---- | M] (Microsoft Corporation) MD5=76B06EB8A01FC8624D699E7045303E54 -- C:\Windows\winsxs\x86_microsoft-windows-tdi-over-tcpip_31bf3856ad364e35_6.0.6002.18005_none_ec294157d9377403\tdx.sys
[2008.01.21 03:24:53 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=D09276B1FAB033CE1D40DCBDF303D10F -- C:\Windows\winsxs\x86_microsoft-windows-tdi-over-tcpip_31bf3856ad364e35_6.0.6001.18000_none_ea3dc84bdc15a8b7\tdx.sys
< MD5 for: USER32.DLL >
[2009.04.11 07:28:25 | 000,627,712 | ---- | M] (Microsoft Corporation) MD5=75510147B94598407666F4802797C75A -- C:\Windows\System32\user32.dll
[2009.04.11 07:28:25 | 000,627,712 | ---- | M] (Microsoft Corporation) MD5=75510147B94598407666F4802797C75A -- C:\Windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.0.6002.18005_none_cf23e54d6a7e4a7e\user32.dll
[2008.01.21 03:24:21 | 000,627,200 | ---- | M] (Microsoft Corporation) MD5=B974D9F06DC7D1908E825DC201681269 -- C:\Windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.0.6001.18000_none_cd386c416d5c7f32\user32.dll
< MD5 for: USERINIT.EXE >
[2008.01.21 03:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe
[2008.01.21 03:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe
< MD5 for: WDF01000.SYS >
[2008.01.21 03:09:48 | 000,495,160 | ---- | M] (Microsoft Corporation) MD5=42709BDB3FEB92FD7254A4005E1FFCAE -- C:\Windows\winsxs\x86_microsoft-windows-wdf-kernellibrary_31bf3856ad364e35_6.0.6000.20734_none_74da07c339f7e0f2\Wdf01000.sys
[2008.01.21 03:09:48 | 000,495,160 | ---- | M] (Microsoft Corporation) MD5=7B5F66E4A2219C7D9DAF9E738480E534 -- C:\Windows\winsxs\x86_microsoft-windows-wdf-kernellibrary_31bf3856ad364e35_6.0.6000.16609_none_7475dc2e20bd6c08\Wdf01000.sys
[2012.07.26 04:39:21 | 000,526,952 | ---- | M] (Microsoft Corporation) MD5=A840213F1ACDCC175B4D1D5AAEAC0D7A -- C:\Windows\System32\drivers\Wdf01000.sys
[2012.07.26 04:39:21 | 000,526,952 | ---- | M] (Microsoft Corporation) MD5=A840213F1ACDCC175B4D1D5AAEAC0D7A -- C:\Windows\winsxs\x86_microsoft-windows-wdf-kernellibrary_31bf3856ad364e35_6.0.6001.18703_none_765626621de95100\Wdf01000.sys
[2012.07.26 04:39:21 | 000,526,952 | ---- | M] (Microsoft Corporation) MD5=A840213F1ACDCC175B4D1D5AAEAC0D7A -- C:\Windows\winsxs\x86_microsoft-windows-wdf-kernellibrary_31bf3856ad364e35_6.0.6001.23004_none_76e09d7f37063a8a\Wdf01000.sys
[2012.07.26 04:39:21 | 000,526,952 | ---- | M] (Microsoft Corporation) MD5=A840213F1ACDCC175B4D1D5AAEAC0D7A -- C:\Windows\winsxs\x86_microsoft-windows-wdf-kernellibrary_31bf3856ad364e35_6.0.6002.18574_none_77f1eb061b478039\Wdf01000.sys
[2012.07.26 04:39:21 | 000,526,952 | ---- | M] (Microsoft Corporation) MD5=A840213F1ACDCC175B4D1D5AAEAC0D7A -- C:\Windows\winsxs\x86_microsoft-windows-wdf-kernellibrary_31bf3856ad364e35_6.0.6002.22806_none_78c93ba5342a8968\Wdf01000.sys
[2008.01.21 03:23:51 | 000,503,864 | ---- | M] (Microsoft Corporation) MD5=B6F0A7AD6D4BD325FBCD8BAC96CD8D96 -- C:\Windows\winsxs\x86_microsoft-windows-wdf-kernellibrary_31bf3856ad364e35_6.0.6001.18000_none_7653183a1dec18ea\Wdf01000.sys
< MD5 for: WIN32K.SYS >
[2010.10.18 15:01:21 | 002,037,760 | ---- | M] (Microsoft Corporation) MD5=041D6ADE410A2FAD7451DADA50B807AC -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.22778_none_b93974c5b3d5e6c3\win32k.sys
[2008.02.29 05:14:24 | 002,028,544 | ---- | M] (Microsoft Corporation) MD5=0FB1E39EE209B26B70A8C1E1A56D38DF -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6000.20782_none_b7425913b6bceacf\win32k.sys
[2012.06.13 14:20:53 | 002,055,680 | ---- | M] (Microsoft Corporation) MD5=0FC10D6827D1C7B7F0C6F8D0F24CFF75 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22876_none_bb1dedb1b0fdfdd5\win32k.sys
[2009.04.21 12:55:06 | 002,033,152 | ---- | M] (Microsoft Corporation) MD5=13D686DF9652E7A397B2C3DA89881C34 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18246_none_b8ce3f929aa1cbdc\win32k.sys
[2009.08.14 14:53:16 | 002,035,712 | ---- | M] (Microsoft Corporation) MD5=18406CE410C1A4394FE1A8246D10567F -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18311_none_b8e9afca9a8df67d\win32k.sys
[2011.06.02 13:59:29 | 002,042,368 | ---- | M] (Microsoft Corporation) MD5=1AB81DE60826E31BCA3644C34C35006D -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18653_none_b8c076609aac9064\win32k.sys
[2011.11.23 14:35:46 | 002,052,096 | ---- | M] (Microsoft Corporation) MD5=1C8C01C1E0645CC64B79B89D6529EE71 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22745_none_bb3d5b45b0e69384\win32k.sys
[2009.08.14 14:29:56 | 002,045,440 | ---- | M] (Microsoft Corporation) MD5=26AC4A647E67C7A7064309CBF1AAE3AC -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22200_none_bb639005b0cab34a\win32k.sys
[2010.06.21 14:47:04 | 002,045,952 | ---- | M] (Microsoft Corporation) MD5=2AB7745E006D3692A6B758F9A97386A8 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22428_none_bb55f649b0d3b032\win32k.sys
[2010.12.31 14:59:47 | 002,048,000 | ---- | M] (Microsoft Corporation) MD5=2EE9A7A6563BEB2D325028BFA1639A94 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22560_none_bb22b62fb0fb5265\win32k.sys
[2010.10.18 14:31:24 | 002,038,272 | ---- | M] (Microsoft Corporation) MD5=4A2D1819212071B0AA0DD47DD6D2DC7B -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18328_none_bacc597e97b61068\win32k.sys
[2011.06.02 14:12:16 | 002,051,584 | ---- | M] (Microsoft Corporation) MD5=4CD2681A8C7613567F5DFAE6EA4589C4 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22653_none_bb3088dfb0f07fa0\win32k.sys
[2010.08.31 15:33:39 | 002,046,464 | ---- | M] (Microsoft Corporation) MD5=5A259D684426F7DCBD6D435347955FF4 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22478_none_bb1fe6adb0fc3be7\win32k.sys
[2012.01.12 20:52:56 | 002,044,416 | ---- | M] (Microsoft Corporation) MD5=5A62BE9757C7D75120E7C7B2FF513379 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18569_none_baa21de497d593d1\win32k.sys
[2008.02.29 05:15:56 | 002,032,128 | ---- | M] (Microsoft Corporation) MD5=5B1E0409A9A6C415543732F21B2B7CC6 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.22125_none_b96c781fb3b0201f\win32k.sys
[2009.04.21 12:55:42 | 002,030,080 | ---- | M] (Microsoft Corporation) MD5=633B5887DC689EB3ECF2F0994F506F40 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6000.21044_none_b76f7545b69adb49\win32k.sys
[2008.01.21 03:24:35 | 002,031,616 | ---- | M] (Microsoft Corporation) MD5=664FCB81B53ECC5A1ACB325D50EB11C0 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18000_none_b8f379ba9a86c9c0\win32k.sys
[2012.05.15 20:51:08 | 002,045,440 | ---- | M] (Microsoft Corporation) MD5=6B4E654E8616A176D595DF915A426BF4 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18633_none_babc8dd297c2a51b\win32k.sys
[2010.05.01 14:53:49 | 002,036,224 | ---- | M] (Microsoft Corporation) MD5=6E78D8BB909579F9CBA6C8410C5C1697 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18468_none_b8baa41a9ab030ba\win32k.sys
[2008.02.29 05:16:38 | 002,027,008 | ---- | M] (Microsoft Corporation) MD5=6FF39E07708091C05FC748DB2DE833EA -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6000.16646_none_b6e7fd209d7b409d\win32k.sys
[2009.04.11 05:24:16 | 002,034,688 | ---- | M] (Microsoft Corporation) MD5=71C61AFCD453F3153B0EB4F988EE669D -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18005_none_badef2c697a8950c\win32k.sys
[2011.06.02 13:59:32 | 002,042,880 | ---- | M] (Microsoft Corporation) MD5=7380515AC4AD02062931817CC226486D -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.22927_none_b96e87e3b3ae3c05\win32k.sys
[2012.06.13 14:40:21 | 002,047,488 | ---- | M] (Microsoft Corporation) MD5=755A0ABC76E18B6E7707A0F2CDA6D4F3 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18647_none_bab5bf0e97c72668\win32k.sys
[2012.04.02 14:23:35 | 002,053,120 | ---- | M] (Microsoft Corporation) MD5=7A21DD418F77118E5AEE3A97A3911184 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22831_none_bb442befb0e20f5e\win32k.sys
[2012.01.12 20:29:17 | 002,052,608 | ---- | M] (Microsoft Corporation) MD5=7A3A2BAE1222EEBE7DBB0FA83DB4A971 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22777_none_bb1eec15b0fd1a05\win32k.sys
[2010.12.31 14:24:31 | 002,039,296 | ---- | M] (Microsoft Corporation) MD5=7BE33568CBC736ACD18BF868CCFDD721 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.22824_none_b96b851fb3b0f2d9\win32k.sys
[2010.12.31 14:25:17 | 002,038,784 | ---- | M] (Microsoft Corporation) MD5=7E2B88A06365DB40AB739E51DE750A1A -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18573_none_b8aad4a29abccb1f\win32k.sys
[2009.08.14 14:27:17 | 002,036,736 | ---- | M] (Microsoft Corporation) MD5=8705038245789561EE714D12CC3368CE -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18091_none_ba79a25297f52b29\win32k.sys
[2011.11.23 14:37:27 | 002,043,904 | ---- | M] (Microsoft Corporation) MD5=877DF507423D06A4F71BAB4B9C70314F -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18544_none_bab2bc4a97c9dd3c\win32k.sys
[2012.10.12 15:29:30 | 002,047,488 | ---- | M] (Microsoft Corporation) MD5=8A9E46EB3A8C3AB5450B0661437BFA27 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18709_none_bae3013897a4e679\win32k.sys
[2010.08.31 14:39:46 | 002,037,248 | ---- | M] (Microsoft Corporation) MD5=8B8F4094E0C58022F8CBA3D33E45E244 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18523_none_b8e0e43e9a943f6a\win32k.sys
[2008.02.29 05:21:49 | 002,032,128 | ---- | M] (Microsoft Corporation) MD5=8F2DA4DDC21250ABA9206352A1080299 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18027_none_b8e4dbe89a90b303\win32k.sys
[2010.05.01 21:27:32 | 002,036,736 | ---- | M] (Microsoft Corporation) MD5=92D62DCB0C488707CCDBC4044C62920C -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.22682_none_b928a137b3e36d83\win32k.sys
[2012.07.04 15:02:46 | 002,047,488 | ---- | M] (Microsoft Corporation) MD5=92D85E8A4129FE44A3266266AC8D151D -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18661_none_ba9a1d7a97dcc640\win32k.sys
[2012.02.02 16:06:28 | 002,052,608 | ---- | M] (Microsoft Corporation) MD5=930463628D0C21E4F4D752A4F4595BF4 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22790_none_bb024a37b113a086\win32k.sys
[2009.08.14 15:01:34 | 002,031,104 | ---- | M] (Microsoft Corporation) MD5=9352E049F234BFA756C840CD8BDF4FFE -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6000.16908_none_b71543169d58fafc\win32k.sys
[2012.04.02 14:36:21 | 002,044,928 | ---- | M] (Microsoft Corporation) MD5=98BB495043BD5E98B2E8D2B8239390ED -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18607_none_bae0febe97a6b6a4\win32k.sys
[2010.06.21 14:18:15 | 002,036,736 | ---- | M] (Microsoft Corporation) MD5=A0F8D73E65CD93F90FE9410FB17CD154 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18496_none_b89833c29aca51df\win32k.sys
[2009.04.21 12:39:47 | 002,034,688 | ---- | M] (Microsoft Corporation) MD5=A1696D4E327DB3FC815DAE837DC3D8B8 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18023_none_bac7525a97ba9a40\win32k.sys
[2012.05.15 20:37:08 | 002,053,120 | ---- | M] (Microsoft Corporation) MD5=A8E2159B3FE3A1F739BA7703C1AEA206 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22860_none_bb22bbe1b0fb49da\win32k.sys
[2011.03.03 13:53:48 | 002,040,832 | ---- | M] (Microsoft Corporation) MD5=A91142A46B8FC7CFBD22F78515756EF1 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18612_none_b8eab5c69a8d0749\win32k.sys
[2012.02.02 16:16:25 | 002,044,416 | ---- | M] (Microsoft Corporation) MD5=AAEFA77DFDAB01F9EF195FD881DAB235 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18580_none_ba837b7297ede7a4\win32k.sys
[2009.04.21 12:42:33 | 002,034,688 | ---- | M] (Microsoft Corporation) MD5=AB4D93D30AA6B51598ADAFB6AAAB5962 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22119_none_bb61c0cdb0cab623\win32k.sys
[2010.05.01 15:26:07 | 002,045,440 | ---- | M] (Microsoft Corporation) MD5=ABC44865039F3D6B055F7418A83802CC -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22396_none_bb08445bb10e43f4\win32k.sys
[2011.06.02 14:34:49 | 002,043,392 | ---- | M] (Microsoft Corporation) MD5=AD40B88FEA23C51404C40948C3160285 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18475_none_ba934aea97e14d3f\win32k.sys
[2011.09.06 16:18:22 | 002,051,584 | ---- | M] (Microsoft Corporation) MD5=B2855D835DBB342F9B058012254DB767 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22711_none_bb59c9e1b0d1da55\win32k.sys
[2010.06.21 14:25:11 | 002,036,736 | ---- | M] (Microsoft Corporation) MD5=B39C0D9A2B67487FCCF50345E44F8125 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.22716_none_b97853b9b3a70c6f\win32k.sys
[2012.11.13 02:17:40 | 002,055,680 | ---- | M] (Microsoft Corporation) MD5=B982BB0A58B4487734712416DDB0DA87 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22977_none_bb1eefe1b0fd1453\win32k.sys
[2011.03.03 14:25:11 | 002,041,856 | ---- | M] (Microsoft Corporation) MD5=BE9AC15503AD65C35D9EF649539C4E3F -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18417_none_bad62b0697aed847\win32k.sys
[2012.07.04 14:34:55 | 002,055,680 | ---- | M] (Microsoft Corporation) MD5=C1F5D39166C2F1A7D753E372F31265BB -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22889_none_bb161ea3b10365cb\win32k.sys
[2010.08.31 14:27:38 | 002,038,272 | ---- | M] (Microsoft Corporation) MD5=C2F2451A71234D5CF5D0E6C6546FAC6D -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18305_none_badef87897a88c81\win32k.sys
[2010.06.21 14:37:03 | 002,037,760 | ---- | M] (Microsoft Corporation) MD5=C803AEA1F4ED11CBBFFBEFF2FE78D463 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18275_none_ba93471e97e152f1\win32k.sys
[2010.08.31 14:38:10 | 002,037,760 | ---- | M] (Microsoft Corporation) MD5=CFDC1586D84A187D38512528F60CA7E5 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.22754_none_b94b1375b3c94985\win32k.sys
[2009.08.14 14:46:38 | 002,036,224 | ---- | M] (Microsoft Corporation) MD5=D4F9530BB031E0BAEDBE08B21BE52ADD -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.22497_none_b922cef1b3e70dd9\win32k.sys
[2009.04.21 14:26:36 | 002,034,176 | ---- | M] (Microsoft Corporation) MD5=D8882CAF965DCBDE4278C88842D0ACFE -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.22416_none_b9784e07b3a714fa\win32k.sys
[2012.10.12 15:06:22 | 002,055,680 | ---- | M] (Microsoft Corporation) MD5=DA77701AB0FDFC077D1745367FF4B862 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22949_none_bb416039b0e2f32e\win32k.sys
[2010.05.01 15:13:48 | 002,037,248 | ---- | M] (Microsoft Corporation) MD5=DE14B77E9A30588F944163BD0911EDEA -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18253_none_baa6e66297d2e861\win32k.sys
[2009.04.21 13:04:30 | 002,028,032 | ---- | M] (Microsoft Corporation) MD5=F0F292B8E028D69ACF49A9A78FBE4B78 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6000.16849_none_b6eb01ca9d7886f0\win32k.sys
[2009.08.15 22:08:32 | 002,032,128 | ---- | M] (Microsoft Corporation) MD5=F140B984628DA0171AC67548A0515572 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6000.21108_none_b79eb803b676ce08\win32k.sys
[2012.11.13 02:36:35 | 002,048,000 | ---- | M] (Microsoft Corporation) MD5=F167606EC2C01D804FC72F8F84E73E19 -- C:\Windows\System32\win32k.sys
[2012.11.13 02:36:35 | 002,048,000 | ---- | M] (Microsoft Corporation) MD5=F167606EC2C01D804FC72F8F84E73E19 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18733_none_babc8fb897c2a242\win32k.sys
[2011.03.03 13:51:31 | 002,041,344 | ---- | M] (Microsoft Corporation) MD5=F56A9A30BA307D902C661A71B46F75F3 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.22867_none_b943464db3ceaea2\win32k.sys
[2011.09.06 14:30:12 | 002,043,392 | ---- | M] (Microsoft Corporation) MD5=FC8AC0F6116A2454DEE43680494784E4 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18512_none_bad12b7a97b356bb\win32k.sys
[2011.03.03 16:19:03 | 002,050,560 | ---- | M] (Microsoft Corporation) MD5=FCDC7F76EB218887230BE86AC6EBAC9B -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22601_none_bb6497e7b0c9c13d\win32k.sys
[2010.12.31 14:57:01 | 002,039,808 | ---- | M] (Microsoft Corporation) MD5=FD9B62599B3AD261D203040BC7DDEC65 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18365_none_ba9e18f097d93427\win32k.sys
[2010.10.18 16:02:01 | 002,046,976 | ---- | M] (Microsoft Corporation) MD5=FDFC6B42F398A78C490616EA9DE3BCF5 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22506_none_bb699773b0c542c9\win32k.sys
[2010.10.18 14:56:44 | 002,037,248 | ---- | M] (Microsoft Corporation) MD5=FEC8A2CE367AFB7D91ABC0B16478B171 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18539_none_b8dc160e9a96f365\win32k.sys
< MD5 for: WINLOGON.EXE >
[2009.04.11 07:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe
[2009.04.11 07:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
[2008.01.21 03:24:49 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe
< MD5 for: WINSRV.DLL >
[2009.04.11 07:28:25 | 000,375,808 | ---- | M] (Microsoft Corporation) MD5=40864DA48A14EBC68A0D6BFD08BA21EB -- C:\Windows\winsxs\x86_microsoft-windows-winsrv_31bf3856ad364e35_6.0.6002.18005_none_b86a0fae997700f7\winsrv.dll
[2011.06.17 16:19:45 | 000,375,808 | ---- | M] (Microsoft Corporation) MD5=54D17B3CF96B72929A61391E765D7D4C -- C:\Windows\winsxs\x86_microsoft-windows-winsrv_31bf3856ad364e35_6.0.6002.22662_none_b8afd591b2c7ee25\winsrv.dll
[2011.04.20 16:55:29 | 000,375,808 | ---- | M] (Microsoft Corporation) MD5=5DF01708D214FDC0075AD197F1889557 -- C:\Windows\winsxs\x86_microsoft-windows-winsrv_31bf3856ad364e35_6.0.6002.18456_none_b83507f4999e9a9f\winsrv.dll
[2011.04.20 16:13:57 | 000,375,808 | ---- | M] (Microsoft Corporation) MD5=60B351541547DE0A483926AA825D1D1D -- C:\Windows\winsxs\x86_microsoft-windows-winsrv_31bf3856ad364e35_6.0.6002.22628_none_b8e116fdb2a2166b\winsrv.dll
[2008.01.21 03:24:35 | 000,375,296 | ---- | M] (Microsoft Corporation) MD5=8B05FAF8603E6FDE90C5B103761CC3F6 -- C:\Windows\winsxs\x86_microsoft-windows-winsrv_31bf3856ad364e35_6.0.6001.18000_none_b67e96a29c5535ab\winsrv.dll
[2011.06.17 17:03:18 | 000,375,808 | ---- | M] (Microsoft Corporation) MD5=9A7A3BC8DC7E7ECABA2478CED4C38CBD -- C:\Windows\winsxs\x86_microsoft-windows-winsrv_31bf3856ad364e35_6.0.6002.18484_none_b812979c99b8bbc4\winsrv.dll
[2011.04.20 15:37:24 | 000,375,808 | ---- | M] (Microsoft Corporation) MD5=D1DE6323ADB727E9E9BFC0C4315A93E1 -- C:\Windows\winsxs\x86_microsoft-windows-winsrv_31bf3856ad364e35_6.0.6001.22904_none_b70c43c5b56f2409\winsrv.dll
[2011.11.25 16:59:48 | 000,376,320 | ---- | M] (Microsoft Corporation) MD5=D2293B069E4B63DC17B2F08D45E71124 -- C:\Windows\System32\winsrv.dll
[2011.11.25 16:59:48 | 000,376,320 | ---- | M] (Microsoft Corporation) MD5=D2293B069E4B63DC17B2F08D45E71124 -- C:\Windows\winsxs\x86_microsoft-windows-winsrv_31bf3856ad364e35_6.0.6002.18545_none_b83ed97c9997627e\winsrv.dll
[2011.11.26 20:00:25 | 000,376,320 | ---- | M] (Microsoft Corporation) MD5=ECD529277D6372E99236E9CC5AEA08DA -- C:\Windows\winsxs\x86_microsoft-windows-winsrv_31bf3856ad364e35_6.0.6002.22747_none_b8ca78c1b2b3321d\winsrv.dll
[2011.04.20 15:47:25 | 000,375,808 | ---- | M] (Microsoft Corporation) MD5=F42F8855CB5C22E203C6672B124F17FD -- C:\Windows\winsxs\x86_microsoft-windows-winsrv_31bf3856ad364e35_6.0.6001.18638_none_b66634929c664320\winsrv.dll
< MD5 for: WS2_32.DLL >
[2008.01.21 03:24:48 | 000,179,200 | ---- | M] (Microsoft Corporation) MD5=B304D47D5744BA20FCB99FB8B2C07B0B -- C:\Windows\System32\ws2_32.dll
[2008.01.21 03:24:48 | 000,179,200 | ---- | M] (Microsoft Corporation) MD5=B304D47D5744BA20FCB99FB8B2C07B0B -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.0.6001.18000_none_f2b7b0c2ce5605c4\ws2_32.dll
< MD5 for: WSCRIPT.EXE >
[2009.04.11 07:28:17 | 000,155,648 | ---- | M] (Microsoft Corporation) MD5=1259E03DCD5F265B23DB738FB075DF8C -- C:\Windows\System32\wscript.exe
[2009.04.11 07:28:17 | 000,155,648 | ---- | M] (Microsoft Corporation) MD5=1259E03DCD5F265B23DB738FB075DF8C -- C:\Windows\winsxs\x86_microsoft-windows-scripting_31bf3856ad364e35_6.0.6002.18005_none_4a53cc21fd7bbcc7\wscript.exe
[2008.01.21 03:23:41 | 000,155,648 | ---- | M] (Microsoft Corporation) MD5=518466BED4F50B1BAD32475E756CA748 -- C:\Windows\winsxs\x86_microsoft-windows-scripting_31bf3856ad364e35_6.0.6001.18000_none_486853160059f17b\wscript.exe
[2008.05.08 22:59:26 | 000,155,648 | ---- | M] (Microsoft Corporation) MD5=549FA98184D34DA75D84F9914BE2DEFB -- C:\Windows\winsxs\x86_microsoft-windows-scripting_31bf3856ad364e35_6.0.6001.18068_none_482f75de008363d9\wscript.exe
[2008.05.08 04:12:11 | 000,155,648 | ---- | M] (Microsoft Corporation) MD5=DF89C42EBCAE106EAD8657344FF9119D -- C:\Windows\winsxs\x86_microsoft-windows-scripting_31bf3856ad364e35_6.0.6001.22175_none_48ab41df19abd38f\wscript.exe
< >
< >
< %systemroot%\system32\drivers\*.sys /md5 /64 >
[2006.11.02 09:55:12 | 000,053,376 | ---- | M] (Microsoft Corporation) MD5=B46AA621E7BD4FE150BCC140DACEDA1B -- C:\Windows\system32\drivers\1394bus.sys
[2009.04.11 07:32:46 | 000,265,688 | ---- | M] (Microsoft Corporation) MD5=82B296AE1892FE3DBEE00C9CF92F8AC7 -- C:\Windows\system32\drivers\acpi.sys
[2008.01.21 03:23:21 | 000,422,968 | ---- | M] (Adaptec, Inc.) MD5=04F0FCAC69C7C71A3AC4EB97FAFC8303 -- C:\Windows\system32\drivers\adp94xx.sys
[2008.01.21 03:23:25 | 000,300,600 | ---- | M] (Adaptec, Inc.) MD5=60505E0041F7751BDBB80F88BF45C2CE -- C:\Windows\system32\drivers\adpahci.sys
[2008.01.21 03:23:26 | 000,101,432 | ---- | M] (Adaptec, Inc.) MD5=8A42779B02AEC986EAB64ECFC98F8BD7 -- C:\Windows\system32\drivers\adpu160m.sys
[2008.01.21 03:23:27 | 000,149,560 | ---- | M] (Adaptec, Inc.) MD5=241C9E37F8CE45EF51C3DE27515CA4E5 -- C:\Windows\system32\drivers\adpu320.sys
[2011.04.21 14:58:27 | 000,273,408 | ---- | M] (Microsoft Corporation) MD5=3911B972B55FEA0478476B2E777B29FA -- C:\Windows\system32\drivers\afd.sys
[2008.01.21 03:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\system32\drivers\AGP440.sys
[2007.12.19 18:45:00 | 000,170,000 | ---- | M] (AMD Technologies Inc.) MD5=0DEE2B628D4C6E23285BB91EFFDABFDE -- C:\Windows\system32\drivers\ahcix86s.sys
[2008.01.21 03:23:00 | 000,017,464 | ---- | M] (Acer Laboratories Inc.) MD5=9EAEF5FC9B8E351AFA7E78A6FAE91F91 -- C:\Windows\system32\drivers\aliide.sys
[2008.01.21 03:23:01 | 000,057,400 | ---- | M] (Microsoft Corporation) MD5=C47344BC706E5F0B9DCE369516661578 -- C:\Windows\system32\drivers\AMDAGP.SYS
[2008.01.21 03:23:00 | 000,017,976 | ---- | M] (Microsoft Corporation) MD5=9B78A39A4C173FDBC1321E0DD659B34C -- C:\Windows\system32\drivers\amdide.sys
[2008.01.21 03:23:00 | 000,041,472 | ---- | M] (Microsoft Corporation) MD5=18F29B49AD23ECEE3D2A826C725C8D48 -- C:\Windows\system32\drivers\amdk7.sys
[2008.01.21 03:23:00 | 000,044,032 | ---- | M] (Microsoft Corporation) MD5=93AE7F7DD54AB986A6F1A1B37BE7442D -- C:\Windows\system32\drivers\amdk8.sys
[2008.01.21 03:23:23 | 000,079,416 | ---- | M] (Adaptec, Inc.) MD5=5D2888182FB46632511ACEE92FDAD522 -- C:\Windows\system32\drivers\arc.sys
[2008.01.21 03:23:24 | 000,079,928 | ---- | M] (Adaptec, Inc.) MD5=5E2A321BD7C8B3624E41FDEC3E244945 -- C:\Windows\system32\drivers\arcsas.sys
[2012.10.30 23:51:56 | 000,021,256 | ---- | M] (AVAST Software) MD5=DE6ED95AEF259979B2830450072A627B -- C:\Windows\system32\drivers\aswFsBlk.sys
[2012.10.30 23:51:57 | 000,058,680 | ---- | M] (AVAST Software) MD5=62F9DCEC95F91B8E0203E85D344A7E65 -- C:\Windows\system32\drivers\aswMonFlt.sys
[2012.10.30 23:51:58 | 000,035,928 | ---- | M] (AVAST Software) MD5=7C9F0A2AB17D52261A9252A2EB320884 -- C:\Windows\system32\drivers\aswRdr.sys
[2012.10.30 23:51:58 | 000,738,504 | ---- | M] (AVAST Software) MD5=B32E9AD44A1DBB3E8095E80F8DF32B03 -- C:\Windows\system32\drivers\aswSnx.sys
[2012.10.30 23:51:58 | 000,361,032 | ---- | M] (AVAST Software) MD5=67B558895695545FB0568B7541F3BCA7 -- C:\Windows\system32\drivers\aswSP.sys
[2012.10.30 23:51:58 | 000,054,232 | ---- | M] (AVAST Software) MD5=E3E73B2B73A4DFADFDDF557192C4B08A -- C:\Windows\system32\drivers\aswTdi.sys
[2008.01.21 03:24:04 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=53B202ABEE6455406254444303E87BE1 -- C:\Windows\system32\drivers\asyncmac.sys
[2009.04.11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\system32\drivers\atapi.sys
[2009.04.11 07:32:42 | 000,109,032 | ---- | M] (Microsoft Corporation) MD5=64B0052340B8EC28FA8A56B708AE71CC -- C:\Windows\system32\drivers\ataport.sys
[2008.01.21 03:23:00 | 000,028,216 | ---- | M] (Microsoft Corporation) MD5=2B8A5A8879238C3BA9A89A8E3AC4E45D -- C:\Windows\system32\drivers\battc.sys
[2008.01.21 03:23:31 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=9F5F8F2318DFA3974A6F6A5602733929 -- C:\Windows\system32\drivers\bdasup.sys
[2008.01.21 03:23:44 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=67E506B75BD5326A3EC7B70BD014DFB6 -- C:\Windows\system32\drivers\beep.sys
[2008.01.21 03:23:01 | 000,045,568 | ---- | M] (Microsoft Corporation) MD5=D4DF28447741FD3D953526E33A617397 -- C:\Windows\system32\drivers\blbdrive.sys
[2011.02.22 14:23:55 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=35F376253F687BDE63976CCB3F2108CA -- C:\Windows\system32\drivers\bowser.sys
[2006.11.02 09:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) MD5=9F9ACC7F7CCDE8A15C282D3F88B43309 -- C:\Windows\system32\drivers\BrFiltLo.sys
[2006.11.02 09:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) MD5=56801AD62213A41F6497F96DEE83755A -- C:\Windows\system32\drivers\BrFiltUp.sys
[2009.04.11 06:42:55 | 000,093,696 | ---- | M] (Microsoft Corporation) MD5=B1564976D98E91FC764D5DC28A0297DA -- C:\Windows\system32\drivers\bridge.sys
[2006.11.02 09:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) MD5=B304E75CFF293029EDDF094246747113 -- C:\Windows\system32\drivers\BrSerId.sys
[2006.11.02 09:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) MD5=203F0B1E73ADADBBB7B7B1FABD901F6B -- C:\Windows\system32\drivers\BrSerWdm.sys
[2006.11.02 09:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) MD5=BD456606156BA17E60A04E18016AE54B -- C:\Windows\system32\drivers\BrUsbMdm.sys
[2006.11.02 09:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) MD5=AF72ED54503F717A43268B3CC5FAEC2E -- C:\Windows\system32\drivers\BrUsbSer.sys
[2006.11.02 09:55:23 | 000,039,936 | ---- | M] (Microsoft Corporation) MD5=AD07C1EC6665B8B35741AB91200C6B68 -- C:\Windows\system32\drivers\bthmodem.sys
[2008.01.21 03:23:51 | 000,070,144 | ---- | M] (Microsoft Corporation) MD5=7ADD03E75BEB9E6DD102C3081D29840A -- C:\Windows\system32\drivers\cdfs.sys
[2009.04.11 05:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\system32\drivers\cdrom.sys
[2008.01.21 03:23:26 | 000,035,328 | ---- | M] (Microsoft Corporation) MD5=E5D4133F37219DBCFE102BC61072589D -- C:\Windows\system32\drivers\circlass.sys
[2009.04.11 07:32:43 | 000,125,928 | ---- | M] (Microsoft Corporation) MD5=0767B09C74D935A590B4879D14463B64 -- C:\Windows\system32\drivers\Classpnp.sys
[2008.01.21 03:23:26 | 000,014,208 | ---- | M] (Microsoft Corporation) MD5=99AFC3795B58CC478FBBBCDC658FCB56 -- C:\Windows\system32\drivers\CmBatt.sys
[2008.01.21 03:23:00 | 000,019,000 | ---- | M] (CMD Technology, Inc.) MD5=0CA25E686A4928484E9FDABD168AB629 -- C:\Windows\system32\drivers\cmdide.sys
[2008.01.21 03:23:00 | 000,020,792 | ---- | M] (Microsoft Corporation) MD5=6AFEF0B60FA25DE07C0968983EE4F60A -- C:\Windows\system32\drivers\compbatt.sys
[2009.04.11 07:32:30 | 000,035,304 | ---- | M] (Microsoft Corporation) MD5=36975327EF03949CC378AB01E316B574 -- C:\Windows\system32\drivers\crashdmp.sys
[2008.01.21 03:23:22 | 000,024,632 | ---- | M] (Microsoft Corporation) MD5=741E9DFF4F42D2D8477D0FC1DC0DF871 -- C:\Windows\system32\drivers\crcdisk.sys
[2008.01.21 03:23:00 | 000,040,960 | ---- | M] (Microsoft Corporation) MD5=1F07BECDCA750766A96CDA811BA86410 -- C:\Windows\system32\drivers\crusoe.sys
[2011.04.14 15:59:03 | 000,075,264 | ---- | M] (Microsoft Corporation) MD5=622C41A07CA7E6DD91770F50D532CB6C -- C:\Windows\system32\drivers\dfsc.sys
[2009.04.11 07:32:31 | 000,053,736 | ---- | M] (Microsoft Corporation) MD5=5D4AEFC3386920236A548271F8F1AF6A -- C:\Windows\system32\drivers\disk.sys
[2009.04.11 05:39:11 | 000,019,456 | ---- | M] (Microsoft Corporation) MD5=494075282E23D838F43A4C9FB7143959 -- C:\Windows\system32\drivers\Diskdump.sys
[2006.11.02 10:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) MD5=AE1FDF7BF7BB6C6A70F67699D880592A -- C:\Windows\system32\drivers\djsvs.sys
[2008.01.21 03:23:20 | 000,130,048 | ---- | M] (Microsoft Corporation) MD5=7BE5A3C671A2CB56E94403BFC2020A0D -- C:\Windows\system32\drivers\drmk.sys
[2008.01.21 03:23:21 | 000,005,632 | ---- | M] (Microsoft Corporation) MD5=97FEF831AB90BEE128C9AF390E243F80 -- C:\Windows\system32\drivers\drmkaud.sys
[2009.04.11 07:32:29 | 000,027,624 | ---- | M] (Microsoft Corporation) MD5=C67EBF9C05531C406E1E079FF669A2E6 -- C:\Windows\system32\drivers\Dumpata.sys
[2008.01.21 03:24:21 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=EAAAFEF04FBB45665C9576E525D45A12 -- C:\Windows\system32\drivers\dxapi.sys
[2009.04.11 05:23:23 | 000,076,288 | ---- | M] (Microsoft Corporation) MD5=C8D5369BFE193B5FB53337DCE77CE314 -- C:\Windows\system32\drivers\dxg.sys
[2011.01.20 17:37:37 | 000,638,336 | ---- | M] (Microsoft Corporation) MD5=C68AC676B0EF30CFBB1080ADCE49EB1F -- C:\Windows\system32\drivers\dxgkrnl.sys
[2008.01.21 03:23:24 | 000,118,784 | ---- | M] (Intel Corporation) MD5=5425F74AC0C1DBD96A1E04F17D63F94C -- C:\Windows\system32\drivers\E1G60I32.sys
[2009.04.11 07:32:43 | 000,141,288 | ---- | M] (Microsoft Corporation) MD5=7F64EA048DCFAC7ACF8B4D7B4E6FE371 -- C:\Windows\system32\drivers\ecache.sys
[2008.01.21 03:23:22 | 000,342,584 | ---- | M] (Emulex) MD5=23B62471681A124889978F6295B3F4C6 -- C:\Windows\system32\drivers\elxstor.sys
[2008.01.21 03:23:00 | 000,006,656 | ---- | M] (Microsoft Corporation) MD5=3DB974F3935483555D7148663F726C61 -- C:\Windows\system32\drivers\errdev.sys
[2009.04.11 05:13:53 | 000,136,704 | ---- | M] (Microsoft Corporation) MD5=22B408651F9123527BCEE54B4F6C5CAE -- C:\Windows\system32\drivers\exfat.sys
[2009.04.11 05:13:52 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=1E9B9A70D332103C52995E957DC09EF8 -- C:\Windows\system32\drivers\fastfat.sys
[2008.01.21 03:23:20 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=AFE1E8B9782A0DD7FB46BBD88E43F89A -- C:\Windows\system32\drivers\fdc.sys
[2008.01.21 03:24:04 | 000,058,936 | ---- | M] (Microsoft Corporation) MD5=A8C0139A884861E3AAE9CFE73B208A9F -- C:\Windows\system32\drivers\fileinfo.sys
[2008.01.21 03:24:21 | 000,027,648 | ---- | M] (Microsoft Corporation) MD5=0AE429A696AECBC5970E3CF2C62635AE -- C:\Windows\system32\drivers\filetrace.sys
[2008.01.21 03:23:20 | 000,020,480 | ---- | M] (Microsoft Corporation) MD5=85B7CF99D532820495D68D747FDA9EBD -- C:\Windows\system32\drivers\flpydisk.sys
[2009.04.11 07:32:46 | 000,190,424 | ---- | M] (Společnost Microsoft) MD5=01334F9EA68E6877C4EF05D3EA8ABB05 -- C:\Windows\system32\drivers\fltMgr.sys
[2012.02.29 14:32:37 | 000,012,800 | ---- | M] (Microsoft Corporation) MD5=B972A66758577E0BFD1DE0F91AAA27B5 -- C:\Windows\system32\drivers\fs_rec.sys
[2009.04.11 07:32:43 | 000,099,816 | ---- | M] (Microsoft Corporation) MD5=73594DBC99E22958150192EE99BC48CE -- C:\Windows\system32\drivers\FWPKCLNT.SYS
[2008.01.21 03:23:22 | 000,061,496 | ---- | M] (Microsoft Corporation) MD5=34582A6E6573D54A07ECE5FE24A126B5 -- C:\Windows\system32\drivers\GAGP30KX.SYS
[2009.03.18 16:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) MD5=833051C6C6C42117191935F734CFBD97 -- C:\Windows\system32\drivers\hamachi.sys
[2009.04.11 05:42:42 | 000,561,152 | ---- | M] (Microsoft Corporation) MD5=062452B7FFD68C8C042A6261FE8DFF4A -- C:\Windows\system32\drivers\hdaudbus.sys
[2006.11.02 08:36:49 | 000,235,520 | ---- | M] (Microsoft Corporation) MD5=CB04C744BE0A61B1D648FAED182C3B59 -- C:\Windows\system32\drivers\HdAudio.sys
[2006.11.02 09:55:22 | 000,029,184 | ---- | M] (Microsoft Corporation) MD5=1338520E78D90154ED6BE8F84DE5FCEB -- C:\Windows\system32\drivers\hidbth.sys
[2009.04.11 05:42:48 | 000,039,424 | ---- | M] (Microsoft Corporation) MD5=5961CADB7CAD938368D2028725EF771D -- C:\Windows\system32\drivers\hidclass.sys
[2006.11.02 09:55:01 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=FF3160C3A2445128C5A6D9B076DA519E -- C:\Windows\system32\drivers\hidir.sys
[2008.01.21 03:23:26 | 000,025,472 | ---- | M] (Microsoft Corporation) MD5=175444D3A01CA45D0E1C5DC5F48DF7CD -- C:\Windows\system32\drivers\hidparse.sys
[2009.04.11 05:42:48 | 000,012,800 | ---- | M] (Microsoft Corporation) MD5=CCA4B519B17E23A00B826C55716809CC -- C:\Windows\system32\drivers\hidusb.sys
[2008.01.21 03:23:26 | 000,040,504 | ---- | M] (Hewlett-Packard Company) MD5=16EE7B23A009E00D835CDB79574A91A6 -- C:\Windows\system32\drivers\HpCISSs.sys
[2010.02.20 21:53:34 | 000,411,648 | ---- | M] (Microsoft Corporation) MD5=F870AA3E254628EBEAFE754108D664DE -- C:\Windows\system32\drivers\http.sys
[2008.01.21 03:23:02 | 000,019,000 | ---- | M] (Microsoft Corporation) MD5=95BD3EA81EBE6B8CACAFDB6CDAB3586C -- C:\Windows\system32\drivers\i2omgmt.sys
[2008.01.21 03:23:02 | 000,030,264 | ---- | M] (Microsoft Corporation) MD5=C6B032D69650985468160FC9937CF5B4 -- C:\Windows\system32\drivers\i2omp.sys
[2008.01.21 03:23:20 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=22D56C8184586B7A1F6FA60BE5F5A2BD -- C:\Windows\system32\drivers\i8042prt.sys
[2007.09.29 23:03:12 | 000,308,248 | ---- | M] (Intel Corporation) MD5=E5A0034847537EAEE3C00349D5C34C5F -- C:\Windows\system32\drivers\iaStor.sys
[2008.01.21 03:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\system32\drivers\iaStorV.sys
[2006.11.02 10:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) MD5=2D077BF86E843F901D8DB709C95B49A5 -- C:\Windows\system32\drivers\iirsp.sys
[2008.01.21 03:23:00 | 000,017,976 | ---- | M] (Microsoft Corporation) MD5=83AA759F3189E6370C30DE5DC5590718 -- C:\Windows\system32\drivers\intelide.sys
[2008.01.21 03:23:00 | 000,041,472 | ---- | M] (Microsoft Corporation) MD5=224191001E78C89DFA78924C3EA595FF -- C:\Windows\system32\drivers\intelppm.sys
[2008.01.21 03:24:45 | 000,047,616 | ---- | M] (Microsoft Corporation) MD5=62C265C38769B864CB25B4BCF62DF6C3 -- C:\Windows\system32\drivers\ipfltdrv.sys
[2008.01.21 03:23:22 | 000,064,512 | ---- | M] (Microsoft Corporation) MD5=B25AAF203552B7B3491139D582B39AD1 -- C:\Windows\system32\drivers\IPMIDrv.sys
[2008.01.21 03:24:25 | 000,100,864 | ---- | M] (Microsoft Corporation) MD5=8793643A67B42CEC66490B2A0CF92D68 -- C:\Windows\system32\drivers\ipnat.sys
[2008.01.21 03:24:31 | 000,095,744 | ---- | M] (Microsoft Corporation) MD5=E50A95179211B12946F7E035D60AF560 -- C:\Windows\system32\drivers\irda.sys
[2008.01.21 03:23:54 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=109C0DFB82C3632FBD11949B73AEEAC9 -- C:\Windows\system32\drivers\irenum.sys
[2008.01.21 03:23:01 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\system32\drivers\isapnp.sys
[2006.11.02 10:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) MD5=BCED60D16156E428F8DF8CF27B0DF150 -- C:\Windows\system32\drivers\iteatapi.sys
[2006.11.02 10:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) MD5=06FA654504A498C30ADCA8BEC4E87E7E -- C:\Windows\system32\drivers\iteraid.sys
[2008.04.03 13:58:46 | 000,076,688 | ---- | M] (JMicron Technology Corp.) MD5=C36F3A1A4E8416EF43F30DEAB7701730 -- C:\Windows\system32\drivers\jraid.sys
[2008.01.21 03:23:23 | 000,035,384 | ---- | M] (Microsoft Corporation) MD5=37605E0A8CF00CBBA538E753E4344C6E -- C:\Windows\system32\drivers\kbdclass.sys
[2008.01.21 03:23:23 | 000,015,872 | ---- | M] (Microsoft Corporation) MD5=18247836959BA67E3511B62846B9C2E0 -- C:\Windows\system32\drivers\kbdhid.sys
[2009.04.11 05:38:49 | 000,149,504 | ---- | M] (Microsoft Corporation) MD5=EF73C1E29FBE7B0FD0274BF4394E346A -- C:\Windows\system32\drivers\ks.sys
[2012.06.04 16:26:04 | 000,440,704 | ---- | M] (Microsoft Corporation) MD5=4A1445EFA932A3BAF5BDB02D7131EE20 -- C:\Windows\system32\drivers\ksecdd.sys
[2008.01.21 03:24:37 | 000,047,104 | ---- | M] (Microsoft Corporation) MD5=D1C5883087A0C3F1344D9D55A44901F6 -- C:\Windows\system32\drivers\lltdio.sys
[2008.01.21 03:23:23 | 000,096,312 | ---- | M] (LSI Logic) MD5=C7E15E82879BF3235B559563D4185365 -- C:\Windows\system32\drivers\lsi_fc.sys
[2008.01.21 03:23:25 | 000,089,656 | ---- | M] (LSI Logic) MD5=EE01EBAE8C9BF0FA072E0FF68718920A -- C:\Windows\system32\drivers\lsi_sas.sys
[2008.01.21 03:23:23 | 000,096,312 | ---- | M] (LSI Logic) MD5=912A04696E9CA30146A62AFA1463DD5C -- C:\Windows\system32\drivers\lsi_scsi.sys
[2008.01.21 03:24:37 | 000,084,480 | ---- | M] (Microsoft Corporation) MD5=8F5C7426567798E62A3B3614965D62CC -- C:\Windows\system32\drivers\luafv.sys
[2005.09.23 22:18:32 | 000,171,520 | ---- | M] (Pinnacle Systems GmbH) MD5=A3E700D78EEC390F1208098CDCA5C6B6 -- C:\Windows\system32\drivers\MarvinBus.sys
[2010.01.07 16:07:04 | 000,019,160 | ---- | M] (Malwarebytes Corporation) MD5=654A3F014903DC62CAF5E037F3D316D2 -- C:\Windows\system32\drivers\mbam.sys
[2010.01.07 16:07:14 | 000,038,224 | ---- | M] (Malwarebytes Corporation) MD5=C0D40BEAA6DFC05602FC8F484696F7F5 -- C:\Windows\system32\drivers\mbamswissarmy.sys
[2008.01.21 03:24:47 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=B271EC02E71271A2DA28B3B7BC4E4F15 -- C:\Windows\system32\drivers\mcd.sys
[2008.01.21 03:23:27 | 000,031,288 | ---- | M] (LSI Corporation) MD5=0001CE609D66632FA17B84705F658879 -- C:\Windows\system32\drivers\megasas.sys
[2008.01.21 03:23:27 | 000,386,616 | ---- | M] (LSI Corporation, Inc.) MD5=C252F32CD9A49DBFC25ECF26EBD51A99 -- C:\Windows\system32\drivers\MegaSR.sys
[2008.01.21 03:24:57 | 000,031,744 | ---- | M] (Microsoft Corporation) MD5=E13B5EA0F51BA5B1512EC671393D09BA -- C:\Windows\system32\drivers\modem.sys
[2008.01.21 03:23:22 | 000,041,984 | ---- | M] (Microsoft Corporation) MD5=0A9BB33B56E294F686ABB7C1E4E2D8A8 -- C:\Windows\system32\drivers\monitor.sys
[2008.01.21 03:23:20 | 000,034,360 | ---- | M] (Microsoft Corporation) MD5=5BF6A1326A335C5298477754A506D263 -- C:\Windows\system32\drivers\mouclass.sys
[2008.01.21 03:23:20 | 000,015,872 | ---- | M] (Microsoft Corporation) MD5=93B8D4869E12CFBE663915502900876F -- C:\Windows\system32\drivers\mouhid.sys
[2008.01.21 03:23:43 | 000,057,400 | ---- | M] (Microsoft Corporation) MD5=BDAFC88AA6B92F7842416EA6A48E1600 -- C:\Windows\system32\drivers\mountmgr.sys
[2008.01.21 03:23:20 | 000,105,016 | ---- | M] (Microsoft Corporation) MD5=511D011289755DD9F9A7579FB0B064E6 -- C:\Windows\system32\drivers\mpio.sys
[2008.01.21 03:24:47 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=22241FEBA9B2DEFA669C8CB0A8DD7D2E -- C:\Windows\system32\drivers\mpsdrv.sys
[2006.11.02 10:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) MD5=4FBBB70D30FD20EC51F80061703B001E -- C:\Windows\system32\drivers\Mraid35x.sys
[2009.04.11 05:14:40 | 000,114,688 | ---- | M] (Microsoft Corporation) MD5=82CEA0395524AACFEB58BA1448E8325C -- C:\Windows\system32\drivers\mrxdav.sys
[2011.04.29 14:24:40 | 000,106,496 | ---- | M] (Microsoft Corporation) MD5=1E94971C4B446AB2290DEB71D01CF0C2 -- C:\Windows\system32\drivers\mrxsmb.sys
[2011.07.06 16:31:47 | 000,214,016 | ---- | M] (Microsoft Corporation) MD5=4FCCB34D793B116423209C0F8B7A3B03 -- C:\Windows\system32\drivers\mrxsmb10.sys
[2011.04.29 14:24:42 | 000,079,872 | ---- | M] (Microsoft Corporation) MD5=C3CB1B40AD4A0124D617A1199B0B9D7C -- C:\Windows\system32\drivers\mrxsmb20.sys
[2009.04.11 07:32:28 | 000,027,112 | ---- | M] (Microsoft Corporation) MD5=5457DCFA7C0DA43522F4D9D4049C1472 -- C:\Windows\system32\drivers\msahci.sys
[2008.01.21 03:23:21 | 000,094,776 | ---- | M] (Microsoft Corporation) MD5=4468B0F385A86ECDDAF8D3CA662EC0E7 -- C:\Windows\system32\drivers\msdsm.sys
[2008.01.21 03:23:51 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=A9927F4A46B816C92F461ACB90CF8515 -- C:\Windows\system32\drivers\msfs.sys
[2008.01.21 03:23:01 | 000,016,440 | ---- | M] (Microsoft Corporation) MD5=0F400E306F385C56317357D6DEA56F62 -- C:\Windows\system32\drivers\msisadrv.sys
[2009.04.11 07:32:46 | 000,180,712 | ---- | M] (Microsoft Corporation) MD5=232FA340531D940AAC623B121A595034 -- C:\Windows\system32\drivers\msiscsi.sys
[2008.01.21 03:24:50 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=D8C63D34D9C9E56C059E24EC7185CC07 -- C:\Windows\system32\drivers\mskssrv.sys
[2008.01.21 03:24:51 | 000,005,888 | ---- | M] (Microsoft Corporation) MD5=1D373C90D62DDB641D50E55B9E78D65E -- C:\Windows\system32\drivers\mspclock.sys
[2008.01.21 03:24:51 | 000,005,504 | ---- | M] (Microsoft Corporation) MD5=B572DA05BF4E098D4BBA3A4734FB505B -- C:\Windows\system32\drivers\mspqm.sys
[2009.04.11 07:32:46 | 000,161,752 | ---- | M] (Microsoft Corporation) MD5=B49456D70555DE905C311BCDA6EC6ADB -- C:\Windows\system32\drivers\msrpc.sys
[2008.01.21 03:23:01 | 000,031,288 | ---- | M] (Microsoft Corporation) MD5=E384487CB84BE41D09711C30CA79646C -- C:\Windows\system32\drivers\mssmbios.sys
[2008.01.21 03:24:51 | 000,006,016 | ---- | M] (Microsoft Corporation) MD5=7199C1EEC1E4993CAF96B8C0A26BD58A -- C:\Windows\system32\drivers\mstee.sys
[2009.04.11 07:32:31 | 000,048,104 | ---- | M] (Microsoft Corporation) MD5=6A57B5733D4CB702C8EA4542E836B96C -- C:\Windows\system32\drivers\mup.sys
[2009.04.11 07:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\system32\drivers\ndis.sys
[2008.01.21 03:24:25 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=0E186E90404980569FB449BA7519AE61 -- C:\Windows\system32\drivers\ndistapi.sys
[2008.01.21 03:24:55 | 000,016,896 | ---- | M] (Microsoft Corporation) MD5=D6973AA34C4D5D76C0430B181C3CD389 -- C:\Windows\system32\drivers\ndisuio.sys
[2009.04.11 05:46:32 | 000,121,344 | ---- | M] (Microsoft Corporation) MD5=818F648618AE34F729FDB47EC68345C3 -- C:\Windows\system32\drivers\ndiswan.sys
[2008.01.21 03:24:25 | 000,049,664 | ---- | M] (Microsoft Corporation) MD5=71DAB552B41936358F3B541AE5997FB3 -- C:\Windows\system32\drivers\ndproxy.sys
[2008.01.21 03:24:20 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=BCD093A5A6777CF626434568DC7DBA78 -- C:\Windows\system32\drivers\netbios.sys
[2009.04.11 05:45:37 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=ECD64230A59CBD93C85F1CD1CAB9F3F6 -- C:\Windows\system32\drivers\netbt.sys
[2009.04.11 07:32:46 | 000,223,208 | ---- | M] (Microsoft Corporation) MD5=063EE4D3CB88A14EAB9901875CEE98B1 -- C:\Windows\system32\drivers\netio.sys
[2008.01.30 16:31:46 | 000,338,432 | ---- | M] (Ralink Technology, Corp.) MD5=418279DEBE43E05A6551268CD7301D6D -- C:\Windows\system32\drivers\netr28.sys
[2008.05.01 07:35:54 | 003,660,800 | ---- | M] (Intel Corporation) MD5=840D89327C45B0CB9E1AB130249046E2 -- C:\Windows\system32\drivers\NETw5v32.sys
[2006.11.02 10:50:19 | 000,045,160 | ---- | M] (IBM Corporation) MD5=2E7FB731D4790A1BC6270ACCEFACB36E -- C:\Windows\system32\drivers\nfrd960.sys
[2009.04.11 05:14:01 | 000,035,328 | ---- | M] (Microsoft Corporation) MD5=D36F239D7CCE1931598E8FB90A0DBC26 -- C:\Windows\system32\drivers\npfs.sys
[2008.01.21 03:24:47 | 000,016,384 | ---- | M] (Microsoft Corporation) MD5=609773E344A97410CE4EBF74A8914FCF -- C:\Windows\system32\drivers\nsiproxy.sys
[2009.04.11 07:32:49 | 001,083,880 | ---- | M] (Společnost Microsoft) MD5=6A4A98CEE84CF9E99564510DDA4BAA47 -- C:\Windows\system32\drivers\ntfs.sys
[2006.11.02 08:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) MD5=E875C093AEC0C978A90F30C9E0DFBB72 -- C:\Windows\system32\drivers\ntrigdigi.sys
[2008.01.21 03:23:50 | 000,004,608 | ---- | M] (Microsoft Corporation) MD5=C5DBBCDA07D780BDA9B685DF333BB41E -- C:\Windows\system32\drivers\null.sys
[2009.09.01 07:19:18 | 009,825,728 | ---- | M] (NVIDIA Corporation) MD5=2713392707E515EFB671751FA767EBD2 -- C:\Windows\system32\drivers\nvlddmkm.sys
[2008.01.21 03:23:21 | 000,102,968 | ---- | M] (NVIDIA Corporation) MD5=2EDF9E7751554B42CBB60116DE727101 -- C:\Windows\system32\drivers\nvraid.sys
[2008.01.21 03:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\system32\drivers\nvstor.sys
[2008.01.21 03:23:01 | 000,109,112 | ---- | M] (Microsoft Corporation) MD5=18BBDF913916B71BD54575BDB6EEAC0B -- C:\Windows\system32\drivers\NV_AGP.SYS
[2009.04.11 05:43:28 | 000,148,480 | ---- | M] (Microsoft Corporation) MD5=85C44FDFF9CF7E72A40DCB7EC06A4416 -- C:\Windows\system32\drivers\nwifi.sys
[2006.11.02 09:55:16 | 000,062,080 | ---- | M] (Microsoft Corporation) MD5=BE32DA025A0BE1878F0EE8D6D9386CD5 -- C:\Windows\system32\drivers\ohci1394.sys
[2009.04.11 05:45:51 | 000,072,192 | ---- | M] (Microsoft Corporation) MD5=99514FAA8DF93D34B5589187DB3AA0BA -- C:\Windows\system32\drivers\pacer.sys
[2006.11.02 09:51:30 | 000,079,360 | ---- | M] (Microsoft Corporation) MD5=0FA9B5055484649D63C303FE404E5F4D -- C:\Windows\system32\drivers\parport.sys
[2012.03.21 00:28:50 | 000,053,120 | ---- | M] (Microsoft Corporation) MD5=B9C2B89F08670E159F7181891E449CD9 -- C:\Windows\system32\drivers\partmgr.sys
[2006.11.02 09:51:23 | 000,008,704 | ---- | M] (Microsoft Corporation) MD5=4F9A6A8A31413180D0FCB279AD5D8112 -- C:\Windows\system32\drivers\parvdm.sys
[2007.09.17 15:53:26 | 000,021,632 | ---- | M] (Nokia) MD5=175CC28DCF819F78CAA3FBD44AD9E52A -- C:\Windows\system32\drivers\pccsmcfd.sys
[2009.04.11 07:32:55 | 000,149,480 | ---- | M] (Microsoft Corporation) MD5=941DC1D19E7E8620F40BBC206981EFDB -- C:\Windows\system32\drivers\pci.sys
[2008.01.21 03:23:00 | 000,016,440 | ---- | M] (Microsoft Corporation) MD5=FC175F5DDAB666D7F4D17449A547626F -- C:\Windows\system32\drivers\pciide.sys
[2009.04.11 07:32:52 | 000,043,496 | ---- | M] (Microsoft Corporation) MD5=6429D10C5D149AC9EB2D95052A390CFF -- C:\Windows\system32\drivers\pciidex.sys
[2006.11.02 10:51:12 | 000,167,528 | ---- | M] (Microsoft Corporation) MD5=E6F3FB1B86AA519E7698AD05E58B04E5 -- C:\Windows\system32\drivers\pcmcia.sys
[2006.11.02 10:04:35 | 000,878,080 | ---- | M] (Microsoft Corporation) MD5=6349F6ED9C623B44B52EA3C63C831A92 -- C:\Windows\system32\drivers\PEAuth.sys
[2009.04.11 05:42:50 | 000,167,936 | ---- | M] (Microsoft Corporation) MD5=218286724EC530FF252648369E05B090 -- C:\Windows\system32\drivers\portcls.sys
[2008.01.21 03:23:00 | 000,040,960 | ---- | M] (Microsoft Corporation) MD5=2027293619DD0F047C584CF2E7DF4FFD -- C:\Windows\system32\drivers\processr.sys
[2008.01.21 03:23:24 | 001,122,360 | ---- | M] (QLogic Corporation) MD5=0A6DB55AFB7820C99AA1F3A1D270F4F6 -- C:\Windows\system32\drivers\ql2300.sys
[2006.11.02 10:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) MD5=81A7E5C076E59995D54BC1ED3A16E60B -- C:\Windows\system32\drivers\ql40xx.sys
[2008.01.21 03:23:31 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=9F5E0E1926014D17486901C88ECA2DB7 -- C:\Windows\system32\drivers\qwavedrv.sys
[2008.01.21 03:24:19 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=147D7F9C556D259924351FEB0DE606C3 -- C:\Windows\system32\drivers\rasacd.sys
[2008.01.21 03:24:55 | 000,076,288 | ---- | M] (Microsoft Corporation) MD5=A214ADBAF4CB47DD2728859EF31F26B0 -- C:\Windows\system32\drivers\rasl2tp.sys
[2009.04.11 05:46:30 | 000,041,472 | ---- | M] (Microsoft Corporation) MD5=509A98DD18AF4375E1FC40BC175F1DEF -- C:\Windows\system32\drivers\raspppoe.sys
[2008.01.21 03:24:55 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=ECFFFAEC0C1ECD8DBC77F39070EA1DB1 -- C:\Windows\system32\drivers\raspptp.sys
[2009.04.11 05:46:40 | 000,069,120 | ---- | M] (Microsoft Corporation) MD5=2005F4A1E05FA09389AC85840F0A9E4D -- C:\Windows\system32\drivers\rassstp.sys
[2009.04.11 05:14:29 | 000,225,280 | ---- | M] (Microsoft Corporation) MD5=B14C9D5B9ADD2F84F70570BBBFAA7935 -- C:\Windows\system32\drivers\rdbss.sys
[2008.01.21 03:24:06 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=89E59BE9A564262A3FB6C4F4F1CD9899 -- C:\Windows\system32\drivers\RDPCDD.sys
[2008.01.21 03:23:01 | 000,248,832 | ---- | M] (Microsoft Corporation) MD5=FBC0BACD9C3D7F6956853F64A66E252D -- C:\Windows\system32\drivers\rdpdr.sys
[2008.01.21 03:24:50 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=9D91FE5286F748862ECFFA05F8A0710C -- C:\Windows\system32\drivers\RDPENCDD.sys
[2012.05.01 15:03:49 | 000,180,736 | ---- | M] (Microsoft Corporation) MD5=C127EBD5AFAB31524662C48DFCEB773A -- C:\Windows\system32\drivers\rdpwd.sys
[2009.04.11 05:45:24 | 000,113,664 | ---- | M] (Microsoft Corporation) MD5=EEC7EE5675294B03E88AA868540007C1 -- C:\Windows\system32\drivers\rmcast.sys
[2009.04.11 05:46:07 | 000,033,280 | ---- | M] (Microsoft Corporation) MD5=D9225D107E40D0FA5C5069446759C8E9 -- C:\Windows\system32\drivers\RNDISMP.sys
[2008.01.21 03:24:49 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=75E8A6BFA7374ABA833AE92BF41AE4E6 -- C:\Windows\system32\drivers\rootmdm.sys
[2008.01.21 03:24:37 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=9C508F4074A39E8B4B31D27198146FAD -- C:\Windows\system32\drivers\rspndr.sys
[2008.01.21 03:23:21 | 000,102,968 | ---- | M] (NVIDIA Corporation) MD5=2EDF9E7751554B42CBB60116DE727101 -- C:\Windows\System32\drivers\nvraid.sys
[2008.01.21 03:23:21 | 000,102,968 | ---- | M] (NVIDIA Corporation) MD5=2EDF9E7751554B42CBB60116DE727101 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvraid.sys
[2008.01.21 03:23:21 | 000,102,968 | ---- | M] (NVIDIA Corporation) MD5=2EDF9E7751554B42CBB60116DE727101 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvraid.sys
[2006.11.02 10:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) MD5=E69E946F80C1C31C53003BFBF50CBB7C -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2006.11.02 10:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys
[2008.01.21 03:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\drivers\nvstor.sys
[2008.01.21 03:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_31c3d71d\nvstor.sys
[2008.01.21 03:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys
< MD5 for: REGEDIT.EXE >
[2008.01.21 03:24:53 | 000,134,656 | ---- | M] (Microsoft Corporation) MD5=467A3B03E924B7B7EDD16D34740574B0 -- C:\Windows\regedit.exe
[2008.01.21 03:24:53 | 000,134,656 | ---- | M] (Microsoft Corporation) MD5=467A3B03E924B7B7EDD16D34740574B0 -- C:\Windows\winsxs\x86_microsoft-windows-registry-editor_31bf3856ad364e35_6.0.6001.18000_none_f42eb564dbd8a697\regedit.exe
< MD5 for: SCECLI.DLL >
[2008.01.21 03:24:50 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll
[2009.04.11 07:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\System32\scecli.dll
[2009.04.11 07:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll
< MD5 for: SERVICES.EXE >
[2008.01.21 03:24:48 | 000,279,040 | ---- | M] (Microsoft Corporation) MD5=2B336AB6286D6C81FA02CBAB914E3C6C -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_cf5fc067cd49010a\services.exe
[2009.04.11 07:27:59 | 000,279,552 | ---- | M] (Microsoft Corporation) MD5=D4E6D91C1349B7BFB3599A6ADA56851B -- C:\Windows\System32\services.exe
[2009.04.11 07:27:59 | 000,279,552 | ---- | M] (Microsoft Corporation) MD5=D4E6D91C1349B7BFB3599A6ADA56851B -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_d14b3973ca6acc56\services.exe
< MD5 for: SMSS.EXE >
[2008.01.21 03:23:50 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=6701DDAF68BEDE6BBEEA9D514D73A35B -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6001.18000_none_ac3aa7fd19319fba\smss.exe
[2009.04.11 07:28:04 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=98AF15A94CD6AC37248E72E5FE789B35 -- C:\Windows\System32\smss.exe
[2009.04.11 07:28:04 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=98AF15A94CD6AC37248E72E5FE789B35 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6002.18005_none_ae26210916536b06\smss.exe
< MD5 for: SPOOLSV.EXE >
[2010.08.17 14:32:33 | 000,126,464 | ---- | M] (Microsoft Corporation) MD5=3665F79026A3F91FBCA63F2C65A09B19 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6001.18511_none_d641dcfdc18fec21\spoolsv.exe
[2009.04.11 07:28:05 | 000,127,488 | ---- | M] (Microsoft Corporation) MD5=524BFBEA40E6E404737CCBC754647A2E -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6002.18005_none_d8371c2dbeaa9062\spoolsv.exe
[2008.01.21 03:24:45 | 000,125,952 | ---- | M] (Microsoft Corporation) MD5=846CDF9A3CF4DA9B306ADFB7D55EE4C2 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6001.18000_none_d64ba321c188c516\spoolsv.exe
[2010.08.17 15:11:37 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=8554097E5136C3BF9F69FE578A1B35F4 -- C:\Windows\System32\spoolsv.exe
[2010.08.17 15:11:37 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=8554097E5136C3BF9F69FE578A1B35F4 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6002.18294_none_d7d4d063bef46cd2\spoolsv.exe
[2010.08.17 15:20:09 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=AAE98B295E88D439A6E0F6E8929424FB -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6002.22468_none_d882e000d7f61b4c\spoolsv.exe
[2010.08.17 14:27:48 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=E807FC542C295BA256CE3567829E02A6 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6001.22743_none_d6ad0c7edac40f93\spoolsv.exe
< MD5 for: SVCHOST.EXE >
[2008.01.21 03:23:43 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\System32\svchost.exe
[2008.01.21 03:23:43 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe
< MD5 for: TCPIP.SYS >
[2008.04.26 09:08:16 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=01EC1E92595F839BEE70D439C46796E3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22167_none_b36dd19b7fae39c7\tcpip.sys
[2009.04.11 07:33:02 | 000,897,000 | ---- | M] (Microsoft Corporation) MD5=0E6B0885C3D5E4643ED2D043DE3433D8 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18005_none_b5098b5e63880c42\tcpip.sys
[2011.09.20 22:02:55 | 000,913,280 | ---- | M] (Microsoft Corporation) MD5=16731B631F28F63CD9F4CB60940E7DDD -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22719_none_b58c64c97caa1c43\tcpip.sys
[2009.12.08 21:52:30 | 000,897,624 | ---- | M] (Microsoft Corporation) MD5=1ACBB7A47E78F4CC82D2EFFB72901528 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18377_none_b2d96a966698ad63\tcpip.sys
[2009.08.15 22:30:53 | 000,816,640 | ---- | M] (Microsoft Corporation) MD5=2512B4D1353370D6688B1AF1F5AFA1CF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21108_none_6030d425ab49af00\tcpip.sys
[2009.08.14 18:01:55 | 000,900,168 | ---- | M] (Microsoft Corporation) MD5=2608E71AAD54564647D4BB984E1925AA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22497_none_b34d67897fc6850f\tcpip.sys
[2011.06.17 21:13:55 | 000,905,104 | ---- | M] (Microsoft Corporation) MD5=2756186E287139310997090797E0182B -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18484_none_b4b2134c63c9c70f\tcpip.sys
[2012.03.30 13:39:11 | 000,905,600 | ---- | M] (Microsoft Corporation) MD5=27D470DABC77BC60D0A3B0E4DEB6CB91 -- C:\Windows\System32\drivers\tcpip.sys
[2012.03.30 13:39:11 | 000,905,600 | ---- | M] (Microsoft Corporation) MD5=27D470DABC77BC60D0A3B0E4DEB6CB91 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18604_none_b50896786388e1d5\tcpip.sys
[2010.02.18 12:51:51 | 000,818,688 | ---- | M] (Microsoft Corporation) MD5=2C1F7005AA3B62721BFDB307BD5F5010 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21226_none_6019359fab5bb15b\tcpip.sys
[2010.02.18 15:49:38 | 000,898,952 | ---- | M] (Microsoft Corporation) MD5=2EAE4500984C2F8DACFB977060300A15 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18427_none_b30f7c1866701ed5\tcpip.sys
[2009.08.14 15:24:47 | 000,813,568 | ---- | M] (Microsoft Corporation) MD5=300208927321066EA53761FDC98747C6 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16908_none_5fa75f38922bdbf4\tcpip.sys
[2009.12.08 21:15:00 | 000,907,832 | ---- | M] (Microsoft Corporation) MD5=46E6685F3E92AEC743773ADD4CD54F57 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22283_none_b53aaa1b7ce8560d\tcpip.sys
[2010.02.18 15:07:16 | 000,904,576 | ---- | M] (Microsoft Corporation) MD5=48CBE6D53632D0067C2D6B20F90D84CA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18209_none_b50d905263846bec\tcpip.sys
[2010.02.18 13:05:37 | 000,815,104 | ---- | M] (Microsoft Corporation) MD5=4A82FA8F0DF67AA354580C3FAAF8BDE3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.17021_none_5f8a957c924295b7\tcpip.sys
[2009.12.08 21:37:09 | 000,900,696 | ---- | M] (Microsoft Corporation) MD5=5653230D480A9C54D169E1B080B72CF5 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22577_none_b36309477fb64a54\tcpip.sys
[2010.06.16 16:55:58 | 000,902,032 | ---- | M] (Microsoft Corporation) MD5=6216A954ED7045B62880A92D6C9B9FC7 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys
[2009.08.14 17:27:34 | 000,904,776 | ---- | M] (Microsoft Corporation) MD5=65877AA1B6A7CB797488E831698973E9 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18091_none_b4a43aea63d4a25f\tcpip.sys
[2011.06.17 21:13:55 | 000,913,296 | ---- | M] (Microsoft Corporation) MD5=6647FCE6FC4970DAAFE5C64C794513D3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22662_none_b54f51417cd8f970\tcpip.sys
[2010.06.16 17:39:32 | 000,912,776 | ---- | M] (Microsoft Corporation) MD5=6A10AFCE0B38371064BE41C1FBFD3C6B -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22425_none_b57d8e037cb5db63\tcpip.sys
[2010.06.16 16:59:54 | 000,898,952 | ---- | M] (Microsoft Corporation) MD5=782568AB6A43160A159B6215B70BCCE9 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18493_none_b2bfcb7c66ac7d10\tcpip.sys
[2011.09.20 22:02:55 | 000,905,088 | ---- | M] (Microsoft Corporation) MD5=814A1C66FBD4E1B310A517221F1456BF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18519_none_b502c618638c7f52\tcpip.sys
[2008.04.26 09:26:49 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=82E266BEE5F0167E41C6ECFDD2A79C02 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18063_none_b2e033a8669434a1\tcpip.sys
[2009.12.08 18:58:13 | 000,813,568 | ---- | M] (Microsoft Corporation) MD5=8734BD051FFDCBF8425CF222141C3741 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16973_none_5f56ae52926920d8\tcpip.sys
[2009.08.14 18:07:56 | 000,897,608 | ---- | M] (Microsoft Corporation) MD5=8A7AD2A214233F684242F289ED83EBC3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18311_none_b3144862666d6db3\tcpip.sys
[2010.02.18 18:36:50 | 000,902,024 | ---- | M] (Microsoft Corporation) MD5=93A5655CD9CD2F080EF1CB71A3666215 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys
[2010.06.16 17:04:57 | 000,905,088 | ---- | M] (Microsoft Corporation) MD5=A474879AFA4A596B3A531F3E69730DBF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18272_none_b4baded863c37e22\tcpip.sys
[2009.12.08 18:45:32 | 000,816,640 | ---- | M] (Microsoft Corporation) MD5=CA3A5756672013A66BB9D547A5A62DCA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21175_none_5fe223d3ab852692\tcpip.sys
[2010.02.18 15:22:11 | 000,910,216 | ---- | M] (Microsoft Corporation) MD5=D9F5DD5BBC8348E8F8220CCBF14C022E -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22341_none_b563eb1d7cc9b0c2\tcpip.sys
[2009.12.08 21:01:08 | 000,904,776 | ---- | M] (Microsoft Corporation) MD5=DA467E7619AE5F4588E6262C13C8940A -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18160_none_b4c3ac4a63bd325c\tcpip.sys
[2012.03.30 13:39:11 | 000,914,304 | ---- | M] (Microsoft Corporation) MD5=EE7E10BED85C312C1D5D30C435BDDA9F -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22828_none_b58096797cb31c04\tcpip.sys
[2008.01.21 03:25:03 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=FC6E2835D667774D409C7C7021EAF9C4 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_b31e1252666640f6\tcpip.sys
[2009.08.14 17:33:50 | 000,905,784 | ---- | M] (Microsoft Corporation) MD5=FF71856BD4CD6D4367F9FD84BE79A874 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22200_none_b58e289d7caa2a80\tcpip.sys
< MD5 for: TDX.SYS >
[2009.04.11 05:45:56 | 000,072,192 | ---- | M] (Microsoft Corporation) MD5=76B06EB8A01FC8624D699E7045303E54 -- C:\Windows\System32\drivers\tdx.sys
[2009.04.11 05:45:56 | 000,072,192 | ---- | M] (Microsoft Corporation) MD5=76B06EB8A01FC8624D699E7045303E54 -- C:\Windows\winsxs\x86_microsoft-windows-tdi-over-tcpip_31bf3856ad364e35_6.0.6002.18005_none_ec294157d9377403\tdx.sys
[2008.01.21 03:24:53 | 000,071,680 | ---- | M] (Microsoft Corporation) MD5=D09276B1FAB033CE1D40DCBDF303D10F -- C:\Windows\winsxs\x86_microsoft-windows-tdi-over-tcpip_31bf3856ad364e35_6.0.6001.18000_none_ea3dc84bdc15a8b7\tdx.sys
< MD5 for: USER32.DLL >
[2009.04.11 07:28:25 | 000,627,712 | ---- | M] (Microsoft Corporation) MD5=75510147B94598407666F4802797C75A -- C:\Windows\System32\user32.dll
[2009.04.11 07:28:25 | 000,627,712 | ---- | M] (Microsoft Corporation) MD5=75510147B94598407666F4802797C75A -- C:\Windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.0.6002.18005_none_cf23e54d6a7e4a7e\user32.dll
[2008.01.21 03:24:21 | 000,627,200 | ---- | M] (Microsoft Corporation) MD5=B974D9F06DC7D1908E825DC201681269 -- C:\Windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.0.6001.18000_none_cd386c416d5c7f32\user32.dll
< MD5 for: USERINIT.EXE >
[2008.01.21 03:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe
[2008.01.21 03:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe
< MD5 for: WDF01000.SYS >
[2008.01.21 03:09:48 | 000,495,160 | ---- | M] (Microsoft Corporation) MD5=42709BDB3FEB92FD7254A4005E1FFCAE -- C:\Windows\winsxs\x86_microsoft-windows-wdf-kernellibrary_31bf3856ad364e35_6.0.6000.20734_none_74da07c339f7e0f2\Wdf01000.sys
[2008.01.21 03:09:48 | 000,495,160 | ---- | M] (Microsoft Corporation) MD5=7B5F66E4A2219C7D9DAF9E738480E534 -- C:\Windows\winsxs\x86_microsoft-windows-wdf-kernellibrary_31bf3856ad364e35_6.0.6000.16609_none_7475dc2e20bd6c08\Wdf01000.sys
[2012.07.26 04:39:21 | 000,526,952 | ---- | M] (Microsoft Corporation) MD5=A840213F1ACDCC175B4D1D5AAEAC0D7A -- C:\Windows\System32\drivers\Wdf01000.sys
[2012.07.26 04:39:21 | 000,526,952 | ---- | M] (Microsoft Corporation) MD5=A840213F1ACDCC175B4D1D5AAEAC0D7A -- C:\Windows\winsxs\x86_microsoft-windows-wdf-kernellibrary_31bf3856ad364e35_6.0.6001.18703_none_765626621de95100\Wdf01000.sys
[2012.07.26 04:39:21 | 000,526,952 | ---- | M] (Microsoft Corporation) MD5=A840213F1ACDCC175B4D1D5AAEAC0D7A -- C:\Windows\winsxs\x86_microsoft-windows-wdf-kernellibrary_31bf3856ad364e35_6.0.6001.23004_none_76e09d7f37063a8a\Wdf01000.sys
[2012.07.26 04:39:21 | 000,526,952 | ---- | M] (Microsoft Corporation) MD5=A840213F1ACDCC175B4D1D5AAEAC0D7A -- C:\Windows\winsxs\x86_microsoft-windows-wdf-kernellibrary_31bf3856ad364e35_6.0.6002.18574_none_77f1eb061b478039\Wdf01000.sys
[2012.07.26 04:39:21 | 000,526,952 | ---- | M] (Microsoft Corporation) MD5=A840213F1ACDCC175B4D1D5AAEAC0D7A -- C:\Windows\winsxs\x86_microsoft-windows-wdf-kernellibrary_31bf3856ad364e35_6.0.6002.22806_none_78c93ba5342a8968\Wdf01000.sys
[2008.01.21 03:23:51 | 000,503,864 | ---- | M] (Microsoft Corporation) MD5=B6F0A7AD6D4BD325FBCD8BAC96CD8D96 -- C:\Windows\winsxs\x86_microsoft-windows-wdf-kernellibrary_31bf3856ad364e35_6.0.6001.18000_none_7653183a1dec18ea\Wdf01000.sys
< MD5 for: WIN32K.SYS >
[2010.10.18 15:01:21 | 002,037,760 | ---- | M] (Microsoft Corporation) MD5=041D6ADE410A2FAD7451DADA50B807AC -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.22778_none_b93974c5b3d5e6c3\win32k.sys
[2008.02.29 05:14:24 | 002,028,544 | ---- | M] (Microsoft Corporation) MD5=0FB1E39EE209B26B70A8C1E1A56D38DF -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6000.20782_none_b7425913b6bceacf\win32k.sys
[2012.06.13 14:20:53 | 002,055,680 | ---- | M] (Microsoft Corporation) MD5=0FC10D6827D1C7B7F0C6F8D0F24CFF75 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22876_none_bb1dedb1b0fdfdd5\win32k.sys
[2009.04.21 12:55:06 | 002,033,152 | ---- | M] (Microsoft Corporation) MD5=13D686DF9652E7A397B2C3DA89881C34 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18246_none_b8ce3f929aa1cbdc\win32k.sys
[2009.08.14 14:53:16 | 002,035,712 | ---- | M] (Microsoft Corporation) MD5=18406CE410C1A4394FE1A8246D10567F -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18311_none_b8e9afca9a8df67d\win32k.sys
[2011.06.02 13:59:29 | 002,042,368 | ---- | M] (Microsoft Corporation) MD5=1AB81DE60826E31BCA3644C34C35006D -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18653_none_b8c076609aac9064\win32k.sys
[2011.11.23 14:35:46 | 002,052,096 | ---- | M] (Microsoft Corporation) MD5=1C8C01C1E0645CC64B79B89D6529EE71 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22745_none_bb3d5b45b0e69384\win32k.sys
[2009.08.14 14:29:56 | 002,045,440 | ---- | M] (Microsoft Corporation) MD5=26AC4A647E67C7A7064309CBF1AAE3AC -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22200_none_bb639005b0cab34a\win32k.sys
[2010.06.21 14:47:04 | 002,045,952 | ---- | M] (Microsoft Corporation) MD5=2AB7745E006D3692A6B758F9A97386A8 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22428_none_bb55f649b0d3b032\win32k.sys
[2010.12.31 14:59:47 | 002,048,000 | ---- | M] (Microsoft Corporation) MD5=2EE9A7A6563BEB2D325028BFA1639A94 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22560_none_bb22b62fb0fb5265\win32k.sys
[2010.10.18 14:31:24 | 002,038,272 | ---- | M] (Microsoft Corporation) MD5=4A2D1819212071B0AA0DD47DD6D2DC7B -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18328_none_bacc597e97b61068\win32k.sys
[2011.06.02 14:12:16 | 002,051,584 | ---- | M] (Microsoft Corporation) MD5=4CD2681A8C7613567F5DFAE6EA4589C4 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22653_none_bb3088dfb0f07fa0\win32k.sys
[2010.08.31 15:33:39 | 002,046,464 | ---- | M] (Microsoft Corporation) MD5=5A259D684426F7DCBD6D435347955FF4 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22478_none_bb1fe6adb0fc3be7\win32k.sys
[2012.01.12 20:52:56 | 002,044,416 | ---- | M] (Microsoft Corporation) MD5=5A62BE9757C7D75120E7C7B2FF513379 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18569_none_baa21de497d593d1\win32k.sys
[2008.02.29 05:15:56 | 002,032,128 | ---- | M] (Microsoft Corporation) MD5=5B1E0409A9A6C415543732F21B2B7CC6 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.22125_none_b96c781fb3b0201f\win32k.sys
[2009.04.21 12:55:42 | 002,030,080 | ---- | M] (Microsoft Corporation) MD5=633B5887DC689EB3ECF2F0994F506F40 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6000.21044_none_b76f7545b69adb49\win32k.sys
[2008.01.21 03:24:35 | 002,031,616 | ---- | M] (Microsoft Corporation) MD5=664FCB81B53ECC5A1ACB325D50EB11C0 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18000_none_b8f379ba9a86c9c0\win32k.sys
[2012.05.15 20:51:08 | 002,045,440 | ---- | M] (Microsoft Corporation) MD5=6B4E654E8616A176D595DF915A426BF4 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18633_none_babc8dd297c2a51b\win32k.sys
[2010.05.01 14:53:49 | 002,036,224 | ---- | M] (Microsoft Corporation) MD5=6E78D8BB909579F9CBA6C8410C5C1697 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18468_none_b8baa41a9ab030ba\win32k.sys
[2008.02.29 05:16:38 | 002,027,008 | ---- | M] (Microsoft Corporation) MD5=6FF39E07708091C05FC748DB2DE833EA -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6000.16646_none_b6e7fd209d7b409d\win32k.sys
[2009.04.11 05:24:16 | 002,034,688 | ---- | M] (Microsoft Corporation) MD5=71C61AFCD453F3153B0EB4F988EE669D -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18005_none_badef2c697a8950c\win32k.sys
[2011.06.02 13:59:32 | 002,042,880 | ---- | M] (Microsoft Corporation) MD5=7380515AC4AD02062931817CC226486D -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.22927_none_b96e87e3b3ae3c05\win32k.sys
[2012.06.13 14:40:21 | 002,047,488 | ---- | M] (Microsoft Corporation) MD5=755A0ABC76E18B6E7707A0F2CDA6D4F3 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18647_none_bab5bf0e97c72668\win32k.sys
[2012.04.02 14:23:35 | 002,053,120 | ---- | M] (Microsoft Corporation) MD5=7A21DD418F77118E5AEE3A97A3911184 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22831_none_bb442befb0e20f5e\win32k.sys
[2012.01.12 20:29:17 | 002,052,608 | ---- | M] (Microsoft Corporation) MD5=7A3A2BAE1222EEBE7DBB0FA83DB4A971 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22777_none_bb1eec15b0fd1a05\win32k.sys
[2010.12.31 14:24:31 | 002,039,296 | ---- | M] (Microsoft Corporation) MD5=7BE33568CBC736ACD18BF868CCFDD721 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.22824_none_b96b851fb3b0f2d9\win32k.sys
[2010.12.31 14:25:17 | 002,038,784 | ---- | M] (Microsoft Corporation) MD5=7E2B88A06365DB40AB739E51DE750A1A -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18573_none_b8aad4a29abccb1f\win32k.sys
[2009.08.14 14:27:17 | 002,036,736 | ---- | M] (Microsoft Corporation) MD5=8705038245789561EE714D12CC3368CE -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18091_none_ba79a25297f52b29\win32k.sys
[2011.11.23 14:37:27 | 002,043,904 | ---- | M] (Microsoft Corporation) MD5=877DF507423D06A4F71BAB4B9C70314F -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18544_none_bab2bc4a97c9dd3c\win32k.sys
[2012.10.12 15:29:30 | 002,047,488 | ---- | M] (Microsoft Corporation) MD5=8A9E46EB3A8C3AB5450B0661437BFA27 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18709_none_bae3013897a4e679\win32k.sys
[2010.08.31 14:39:46 | 002,037,248 | ---- | M] (Microsoft Corporation) MD5=8B8F4094E0C58022F8CBA3D33E45E244 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18523_none_b8e0e43e9a943f6a\win32k.sys
[2008.02.29 05:21:49 | 002,032,128 | ---- | M] (Microsoft Corporation) MD5=8F2DA4DDC21250ABA9206352A1080299 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18027_none_b8e4dbe89a90b303\win32k.sys
[2010.05.01 21:27:32 | 002,036,736 | ---- | M] (Microsoft Corporation) MD5=92D62DCB0C488707CCDBC4044C62920C -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.22682_none_b928a137b3e36d83\win32k.sys
[2012.07.04 15:02:46 | 002,047,488 | ---- | M] (Microsoft Corporation) MD5=92D85E8A4129FE44A3266266AC8D151D -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18661_none_ba9a1d7a97dcc640\win32k.sys
[2012.02.02 16:06:28 | 002,052,608 | ---- | M] (Microsoft Corporation) MD5=930463628D0C21E4F4D752A4F4595BF4 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22790_none_bb024a37b113a086\win32k.sys
[2009.08.14 15:01:34 | 002,031,104 | ---- | M] (Microsoft Corporation) MD5=9352E049F234BFA756C840CD8BDF4FFE -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6000.16908_none_b71543169d58fafc\win32k.sys
[2012.04.02 14:36:21 | 002,044,928 | ---- | M] (Microsoft Corporation) MD5=98BB495043BD5E98B2E8D2B8239390ED -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18607_none_bae0febe97a6b6a4\win32k.sys
[2010.06.21 14:18:15 | 002,036,736 | ---- | M] (Microsoft Corporation) MD5=A0F8D73E65CD93F90FE9410FB17CD154 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18496_none_b89833c29aca51df\win32k.sys
[2009.04.21 12:39:47 | 002,034,688 | ---- | M] (Microsoft Corporation) MD5=A1696D4E327DB3FC815DAE837DC3D8B8 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18023_none_bac7525a97ba9a40\win32k.sys
[2012.05.15 20:37:08 | 002,053,120 | ---- | M] (Microsoft Corporation) MD5=A8E2159B3FE3A1F739BA7703C1AEA206 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22860_none_bb22bbe1b0fb49da\win32k.sys
[2011.03.03 13:53:48 | 002,040,832 | ---- | M] (Microsoft Corporation) MD5=A91142A46B8FC7CFBD22F78515756EF1 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18612_none_b8eab5c69a8d0749\win32k.sys
[2012.02.02 16:16:25 | 002,044,416 | ---- | M] (Microsoft Corporation) MD5=AAEFA77DFDAB01F9EF195FD881DAB235 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18580_none_ba837b7297ede7a4\win32k.sys
[2009.04.21 12:42:33 | 002,034,688 | ---- | M] (Microsoft Corporation) MD5=AB4D93D30AA6B51598ADAFB6AAAB5962 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22119_none_bb61c0cdb0cab623\win32k.sys
[2010.05.01 15:26:07 | 002,045,440 | ---- | M] (Microsoft Corporation) MD5=ABC44865039F3D6B055F7418A83802CC -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22396_none_bb08445bb10e43f4\win32k.sys
[2011.06.02 14:34:49 | 002,043,392 | ---- | M] (Microsoft Corporation) MD5=AD40B88FEA23C51404C40948C3160285 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18475_none_ba934aea97e14d3f\win32k.sys
[2011.09.06 16:18:22 | 002,051,584 | ---- | M] (Microsoft Corporation) MD5=B2855D835DBB342F9B058012254DB767 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22711_none_bb59c9e1b0d1da55\win32k.sys
[2010.06.21 14:25:11 | 002,036,736 | ---- | M] (Microsoft Corporation) MD5=B39C0D9A2B67487FCCF50345E44F8125 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.22716_none_b97853b9b3a70c6f\win32k.sys
[2012.11.13 02:17:40 | 002,055,680 | ---- | M] (Microsoft Corporation) MD5=B982BB0A58B4487734712416DDB0DA87 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22977_none_bb1eefe1b0fd1453\win32k.sys
[2011.03.03 14:25:11 | 002,041,856 | ---- | M] (Microsoft Corporation) MD5=BE9AC15503AD65C35D9EF649539C4E3F -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18417_none_bad62b0697aed847\win32k.sys
[2012.07.04 14:34:55 | 002,055,680 | ---- | M] (Microsoft Corporation) MD5=C1F5D39166C2F1A7D753E372F31265BB -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22889_none_bb161ea3b10365cb\win32k.sys
[2010.08.31 14:27:38 | 002,038,272 | ---- | M] (Microsoft Corporation) MD5=C2F2451A71234D5CF5D0E6C6546FAC6D -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18305_none_badef87897a88c81\win32k.sys
[2010.06.21 14:37:03 | 002,037,760 | ---- | M] (Microsoft Corporation) MD5=C803AEA1F4ED11CBBFFBEFF2FE78D463 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18275_none_ba93471e97e152f1\win32k.sys
[2010.08.31 14:38:10 | 002,037,760 | ---- | M] (Microsoft Corporation) MD5=CFDC1586D84A187D38512528F60CA7E5 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.22754_none_b94b1375b3c94985\win32k.sys
[2009.08.14 14:46:38 | 002,036,224 | ---- | M] (Microsoft Corporation) MD5=D4F9530BB031E0BAEDBE08B21BE52ADD -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.22497_none_b922cef1b3e70dd9\win32k.sys
[2009.04.21 14:26:36 | 002,034,176 | ---- | M] (Microsoft Corporation) MD5=D8882CAF965DCBDE4278C88842D0ACFE -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.22416_none_b9784e07b3a714fa\win32k.sys
[2012.10.12 15:06:22 | 002,055,680 | ---- | M] (Microsoft Corporation) MD5=DA77701AB0FDFC077D1745367FF4B862 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22949_none_bb416039b0e2f32e\win32k.sys
[2010.05.01 15:13:48 | 002,037,248 | ---- | M] (Microsoft Corporation) MD5=DE14B77E9A30588F944163BD0911EDEA -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18253_none_baa6e66297d2e861\win32k.sys
[2009.04.21 13:04:30 | 002,028,032 | ---- | M] (Microsoft Corporation) MD5=F0F292B8E028D69ACF49A9A78FBE4B78 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6000.16849_none_b6eb01ca9d7886f0\win32k.sys
[2009.08.15 22:08:32 | 002,032,128 | ---- | M] (Microsoft Corporation) MD5=F140B984628DA0171AC67548A0515572 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6000.21108_none_b79eb803b676ce08\win32k.sys
[2012.11.13 02:36:35 | 002,048,000 | ---- | M] (Microsoft Corporation) MD5=F167606EC2C01D804FC72F8F84E73E19 -- C:\Windows\System32\win32k.sys
[2012.11.13 02:36:35 | 002,048,000 | ---- | M] (Microsoft Corporation) MD5=F167606EC2C01D804FC72F8F84E73E19 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18733_none_babc8fb897c2a242\win32k.sys
[2011.03.03 13:51:31 | 002,041,344 | ---- | M] (Microsoft Corporation) MD5=F56A9A30BA307D902C661A71B46F75F3 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.22867_none_b943464db3ceaea2\win32k.sys
[2011.09.06 14:30:12 | 002,043,392 | ---- | M] (Microsoft Corporation) MD5=FC8AC0F6116A2454DEE43680494784E4 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18512_none_bad12b7a97b356bb\win32k.sys
[2011.03.03 16:19:03 | 002,050,560 | ---- | M] (Microsoft Corporation) MD5=FCDC7F76EB218887230BE86AC6EBAC9B -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22601_none_bb6497e7b0c9c13d\win32k.sys
[2010.12.31 14:57:01 | 002,039,808 | ---- | M] (Microsoft Corporation) MD5=FD9B62599B3AD261D203040BC7DDEC65 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.18365_none_ba9e18f097d93427\win32k.sys
[2010.10.18 16:02:01 | 002,046,976 | ---- | M] (Microsoft Corporation) MD5=FDFC6B42F398A78C490616EA9DE3BCF5 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6002.22506_none_bb699773b0c542c9\win32k.sys
[2010.10.18 14:56:44 | 002,037,248 | ---- | M] (Microsoft Corporation) MD5=FEC8A2CE367AFB7D91ABC0B16478B171 -- C:\Windows\winsxs\x86_microsoft-windows-win32k_31bf3856ad364e35_6.0.6001.18539_none_b8dc160e9a96f365\win32k.sys
< MD5 for: WINLOGON.EXE >
[2009.04.11 07:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe
[2009.04.11 07:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
[2008.01.21 03:24:49 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe
< MD5 for: WINSRV.DLL >
[2009.04.11 07:28:25 | 000,375,808 | ---- | M] (Microsoft Corporation) MD5=40864DA48A14EBC68A0D6BFD08BA21EB -- C:\Windows\winsxs\x86_microsoft-windows-winsrv_31bf3856ad364e35_6.0.6002.18005_none_b86a0fae997700f7\winsrv.dll
[2011.06.17 16:19:45 | 000,375,808 | ---- | M] (Microsoft Corporation) MD5=54D17B3CF96B72929A61391E765D7D4C -- C:\Windows\winsxs\x86_microsoft-windows-winsrv_31bf3856ad364e35_6.0.6002.22662_none_b8afd591b2c7ee25\winsrv.dll
[2011.04.20 16:55:29 | 000,375,808 | ---- | M] (Microsoft Corporation) MD5=5DF01708D214FDC0075AD197F1889557 -- C:\Windows\winsxs\x86_microsoft-windows-winsrv_31bf3856ad364e35_6.0.6002.18456_none_b83507f4999e9a9f\winsrv.dll
[2011.04.20 16:13:57 | 000,375,808 | ---- | M] (Microsoft Corporation) MD5=60B351541547DE0A483926AA825D1D1D -- C:\Windows\winsxs\x86_microsoft-windows-winsrv_31bf3856ad364e35_6.0.6002.22628_none_b8e116fdb2a2166b\winsrv.dll
[2008.01.21 03:24:35 | 000,375,296 | ---- | M] (Microsoft Corporation) MD5=8B05FAF8603E6FDE90C5B103761CC3F6 -- C:\Windows\winsxs\x86_microsoft-windows-winsrv_31bf3856ad364e35_6.0.6001.18000_none_b67e96a29c5535ab\winsrv.dll
[2011.06.17 17:03:18 | 000,375,808 | ---- | M] (Microsoft Corporation) MD5=9A7A3BC8DC7E7ECABA2478CED4C38CBD -- C:\Windows\winsxs\x86_microsoft-windows-winsrv_31bf3856ad364e35_6.0.6002.18484_none_b812979c99b8bbc4\winsrv.dll
[2011.04.20 15:37:24 | 000,375,808 | ---- | M] (Microsoft Corporation) MD5=D1DE6323ADB727E9E9BFC0C4315A93E1 -- C:\Windows\winsxs\x86_microsoft-windows-winsrv_31bf3856ad364e35_6.0.6001.22904_none_b70c43c5b56f2409\winsrv.dll
[2011.11.25 16:59:48 | 000,376,320 | ---- | M] (Microsoft Corporation) MD5=D2293B069E4B63DC17B2F08D45E71124 -- C:\Windows\System32\winsrv.dll
[2011.11.25 16:59:48 | 000,376,320 | ---- | M] (Microsoft Corporation) MD5=D2293B069E4B63DC17B2F08D45E71124 -- C:\Windows\winsxs\x86_microsoft-windows-winsrv_31bf3856ad364e35_6.0.6002.18545_none_b83ed97c9997627e\winsrv.dll
[2011.11.26 20:00:25 | 000,376,320 | ---- | M] (Microsoft Corporation) MD5=ECD529277D6372E99236E9CC5AEA08DA -- C:\Windows\winsxs\x86_microsoft-windows-winsrv_31bf3856ad364e35_6.0.6002.22747_none_b8ca78c1b2b3321d\winsrv.dll
[2011.04.20 15:47:25 | 000,375,808 | ---- | M] (Microsoft Corporation) MD5=F42F8855CB5C22E203C6672B124F17FD -- C:\Windows\winsxs\x86_microsoft-windows-winsrv_31bf3856ad364e35_6.0.6001.18638_none_b66634929c664320\winsrv.dll
< MD5 for: WS2_32.DLL >
[2008.01.21 03:24:48 | 000,179,200 | ---- | M] (Microsoft Corporation) MD5=B304D47D5744BA20FCB99FB8B2C07B0B -- C:\Windows\System32\ws2_32.dll
[2008.01.21 03:24:48 | 000,179,200 | ---- | M] (Microsoft Corporation) MD5=B304D47D5744BA20FCB99FB8B2C07B0B -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.0.6001.18000_none_f2b7b0c2ce5605c4\ws2_32.dll
< MD5 for: WSCRIPT.EXE >
[2009.04.11 07:28:17 | 000,155,648 | ---- | M] (Microsoft Corporation) MD5=1259E03DCD5F265B23DB738FB075DF8C -- C:\Windows\System32\wscript.exe
[2009.04.11 07:28:17 | 000,155,648 | ---- | M] (Microsoft Corporation) MD5=1259E03DCD5F265B23DB738FB075DF8C -- C:\Windows\winsxs\x86_microsoft-windows-scripting_31bf3856ad364e35_6.0.6002.18005_none_4a53cc21fd7bbcc7\wscript.exe
[2008.01.21 03:23:41 | 000,155,648 | ---- | M] (Microsoft Corporation) MD5=518466BED4F50B1BAD32475E756CA748 -- C:\Windows\winsxs\x86_microsoft-windows-scripting_31bf3856ad364e35_6.0.6001.18000_none_486853160059f17b\wscript.exe
[2008.05.08 22:59:26 | 000,155,648 | ---- | M] (Microsoft Corporation) MD5=549FA98184D34DA75D84F9914BE2DEFB -- C:\Windows\winsxs\x86_microsoft-windows-scripting_31bf3856ad364e35_6.0.6001.18068_none_482f75de008363d9\wscript.exe
[2008.05.08 04:12:11 | 000,155,648 | ---- | M] (Microsoft Corporation) MD5=DF89C42EBCAE106EAD8657344FF9119D -- C:\Windows\winsxs\x86_microsoft-windows-scripting_31bf3856ad364e35_6.0.6001.22175_none_48ab41df19abd38f\wscript.exe
< >
< >
< %systemroot%\system32\drivers\*.sys /md5 /64 >
[2006.11.02 09:55:12 | 000,053,376 | ---- | M] (Microsoft Corporation) MD5=B46AA621E7BD4FE150BCC140DACEDA1B -- C:\Windows\system32\drivers\1394bus.sys
[2009.04.11 07:32:46 | 000,265,688 | ---- | M] (Microsoft Corporation) MD5=82B296AE1892FE3DBEE00C9CF92F8AC7 -- C:\Windows\system32\drivers\acpi.sys
[2008.01.21 03:23:21 | 000,422,968 | ---- | M] (Adaptec, Inc.) MD5=04F0FCAC69C7C71A3AC4EB97FAFC8303 -- C:\Windows\system32\drivers\adp94xx.sys
[2008.01.21 03:23:25 | 000,300,600 | ---- | M] (Adaptec, Inc.) MD5=60505E0041F7751BDBB80F88BF45C2CE -- C:\Windows\system32\drivers\adpahci.sys
[2008.01.21 03:23:26 | 000,101,432 | ---- | M] (Adaptec, Inc.) MD5=8A42779B02AEC986EAB64ECFC98F8BD7 -- C:\Windows\system32\drivers\adpu160m.sys
[2008.01.21 03:23:27 | 000,149,560 | ---- | M] (Adaptec, Inc.) MD5=241C9E37F8CE45EF51C3DE27515CA4E5 -- C:\Windows\system32\drivers\adpu320.sys
[2011.04.21 14:58:27 | 000,273,408 | ---- | M] (Microsoft Corporation) MD5=3911B972B55FEA0478476B2E777B29FA -- C:\Windows\system32\drivers\afd.sys
[2008.01.21 03:23:01 | 000,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\system32\drivers\AGP440.sys
[2007.12.19 18:45:00 | 000,170,000 | ---- | M] (AMD Technologies Inc.) MD5=0DEE2B628D4C6E23285BB91EFFDABFDE -- C:\Windows\system32\drivers\ahcix86s.sys
[2008.01.21 03:23:00 | 000,017,464 | ---- | M] (Acer Laboratories Inc.) MD5=9EAEF5FC9B8E351AFA7E78A6FAE91F91 -- C:\Windows\system32\drivers\aliide.sys
[2008.01.21 03:23:01 | 000,057,400 | ---- | M] (Microsoft Corporation) MD5=C47344BC706E5F0B9DCE369516661578 -- C:\Windows\system32\drivers\AMDAGP.SYS
[2008.01.21 03:23:00 | 000,017,976 | ---- | M] (Microsoft Corporation) MD5=9B78A39A4C173FDBC1321E0DD659B34C -- C:\Windows\system32\drivers\amdide.sys
[2008.01.21 03:23:00 | 000,041,472 | ---- | M] (Microsoft Corporation) MD5=18F29B49AD23ECEE3D2A826C725C8D48 -- C:\Windows\system32\drivers\amdk7.sys
[2008.01.21 03:23:00 | 000,044,032 | ---- | M] (Microsoft Corporation) MD5=93AE7F7DD54AB986A6F1A1B37BE7442D -- C:\Windows\system32\drivers\amdk8.sys
[2008.01.21 03:23:23 | 000,079,416 | ---- | M] (Adaptec, Inc.) MD5=5D2888182FB46632511ACEE92FDAD522 -- C:\Windows\system32\drivers\arc.sys
[2008.01.21 03:23:24 | 000,079,928 | ---- | M] (Adaptec, Inc.) MD5=5E2A321BD7C8B3624E41FDEC3E244945 -- C:\Windows\system32\drivers\arcsas.sys
[2012.10.30 23:51:56 | 000,021,256 | ---- | M] (AVAST Software) MD5=DE6ED95AEF259979B2830450072A627B -- C:\Windows\system32\drivers\aswFsBlk.sys
[2012.10.30 23:51:57 | 000,058,680 | ---- | M] (AVAST Software) MD5=62F9DCEC95F91B8E0203E85D344A7E65 -- C:\Windows\system32\drivers\aswMonFlt.sys
[2012.10.30 23:51:58 | 000,035,928 | ---- | M] (AVAST Software) MD5=7C9F0A2AB17D52261A9252A2EB320884 -- C:\Windows\system32\drivers\aswRdr.sys
[2012.10.30 23:51:58 | 000,738,504 | ---- | M] (AVAST Software) MD5=B32E9AD44A1DBB3E8095E80F8DF32B03 -- C:\Windows\system32\drivers\aswSnx.sys
[2012.10.30 23:51:58 | 000,361,032 | ---- | M] (AVAST Software) MD5=67B558895695545FB0568B7541F3BCA7 -- C:\Windows\system32\drivers\aswSP.sys
[2012.10.30 23:51:58 | 000,054,232 | ---- | M] (AVAST Software) MD5=E3E73B2B73A4DFADFDDF557192C4B08A -- C:\Windows\system32\drivers\aswTdi.sys
[2008.01.21 03:24:04 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=53B202ABEE6455406254444303E87BE1 -- C:\Windows\system32\drivers\asyncmac.sys
[2009.04.11 07:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\system32\drivers\atapi.sys
[2009.04.11 07:32:42 | 000,109,032 | ---- | M] (Microsoft Corporation) MD5=64B0052340B8EC28FA8A56B708AE71CC -- C:\Windows\system32\drivers\ataport.sys
[2008.01.21 03:23:00 | 000,028,216 | ---- | M] (Microsoft Corporation) MD5=2B8A5A8879238C3BA9A89A8E3AC4E45D -- C:\Windows\system32\drivers\battc.sys
[2008.01.21 03:23:31 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=9F5F8F2318DFA3974A6F6A5602733929 -- C:\Windows\system32\drivers\bdasup.sys
[2008.01.21 03:23:44 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=67E506B75BD5326A3EC7B70BD014DFB6 -- C:\Windows\system32\drivers\beep.sys
[2008.01.21 03:23:01 | 000,045,568 | ---- | M] (Microsoft Corporation) MD5=D4DF28447741FD3D953526E33A617397 -- C:\Windows\system32\drivers\blbdrive.sys
[2011.02.22 14:23:55 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=35F376253F687BDE63976CCB3F2108CA -- C:\Windows\system32\drivers\bowser.sys
[2006.11.02 09:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) MD5=9F9ACC7F7CCDE8A15C282D3F88B43309 -- C:\Windows\system32\drivers\BrFiltLo.sys
[2006.11.02 09:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) MD5=56801AD62213A41F6497F96DEE83755A -- C:\Windows\system32\drivers\BrFiltUp.sys
[2009.04.11 06:42:55 | 000,093,696 | ---- | M] (Microsoft Corporation) MD5=B1564976D98E91FC764D5DC28A0297DA -- C:\Windows\system32\drivers\bridge.sys
[2006.11.02 09:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) MD5=B304E75CFF293029EDDF094246747113 -- C:\Windows\system32\drivers\BrSerId.sys
[2006.11.02 09:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) MD5=203F0B1E73ADADBBB7B7B1FABD901F6B -- C:\Windows\system32\drivers\BrSerWdm.sys
[2006.11.02 09:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) MD5=BD456606156BA17E60A04E18016AE54B -- C:\Windows\system32\drivers\BrUsbMdm.sys
[2006.11.02 09:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) MD5=AF72ED54503F717A43268B3CC5FAEC2E -- C:\Windows\system32\drivers\BrUsbSer.sys
[2006.11.02 09:55:23 | 000,039,936 | ---- | M] (Microsoft Corporation) MD5=AD07C1EC6665B8B35741AB91200C6B68 -- C:\Windows\system32\drivers\bthmodem.sys
[2008.01.21 03:23:51 | 000,070,144 | ---- | M] (Microsoft Corporation) MD5=7ADD03E75BEB9E6DD102C3081D29840A -- C:\Windows\system32\drivers\cdfs.sys
[2009.04.11 05:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\system32\drivers\cdrom.sys
[2008.01.21 03:23:26 | 000,035,328 | ---- | M] (Microsoft Corporation) MD5=E5D4133F37219DBCFE102BC61072589D -- C:\Windows\system32\drivers\circlass.sys
[2009.04.11 07:32:43 | 000,125,928 | ---- | M] (Microsoft Corporation) MD5=0767B09C74D935A590B4879D14463B64 -- C:\Windows\system32\drivers\Classpnp.sys
[2008.01.21 03:23:26 | 000,014,208 | ---- | M] (Microsoft Corporation) MD5=99AFC3795B58CC478FBBBCDC658FCB56 -- C:\Windows\system32\drivers\CmBatt.sys
[2008.01.21 03:23:00 | 000,019,000 | ---- | M] (CMD Technology, Inc.) MD5=0CA25E686A4928484E9FDABD168AB629 -- C:\Windows\system32\drivers\cmdide.sys
[2008.01.21 03:23:00 | 000,020,792 | ---- | M] (Microsoft Corporation) MD5=6AFEF0B60FA25DE07C0968983EE4F60A -- C:\Windows\system32\drivers\compbatt.sys
[2009.04.11 07:32:30 | 000,035,304 | ---- | M] (Microsoft Corporation) MD5=36975327EF03949CC378AB01E316B574 -- C:\Windows\system32\drivers\crashdmp.sys
[2008.01.21 03:23:22 | 000,024,632 | ---- | M] (Microsoft Corporation) MD5=741E9DFF4F42D2D8477D0FC1DC0DF871 -- C:\Windows\system32\drivers\crcdisk.sys
[2008.01.21 03:23:00 | 000,040,960 | ---- | M] (Microsoft Corporation) MD5=1F07BECDCA750766A96CDA811BA86410 -- C:\Windows\system32\drivers\crusoe.sys
[2011.04.14 15:59:03 | 000,075,264 | ---- | M] (Microsoft Corporation) MD5=622C41A07CA7E6DD91770F50D532CB6C -- C:\Windows\system32\drivers\dfsc.sys
[2009.04.11 07:32:31 | 000,053,736 | ---- | M] (Microsoft Corporation) MD5=5D4AEFC3386920236A548271F8F1AF6A -- C:\Windows\system32\drivers\disk.sys
[2009.04.11 05:39:11 | 000,019,456 | ---- | M] (Microsoft Corporation) MD5=494075282E23D838F43A4C9FB7143959 -- C:\Windows\system32\drivers\Diskdump.sys
[2006.11.02 10:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) MD5=AE1FDF7BF7BB6C6A70F67699D880592A -- C:\Windows\system32\drivers\djsvs.sys
[2008.01.21 03:23:20 | 000,130,048 | ---- | M] (Microsoft Corporation) MD5=7BE5A3C671A2CB56E94403BFC2020A0D -- C:\Windows\system32\drivers\drmk.sys
[2008.01.21 03:23:21 | 000,005,632 | ---- | M] (Microsoft Corporation) MD5=97FEF831AB90BEE128C9AF390E243F80 -- C:\Windows\system32\drivers\drmkaud.sys
[2009.04.11 07:32:29 | 000,027,624 | ---- | M] (Microsoft Corporation) MD5=C67EBF9C05531C406E1E079FF669A2E6 -- C:\Windows\system32\drivers\Dumpata.sys
[2008.01.21 03:24:21 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=EAAAFEF04FBB45665C9576E525D45A12 -- C:\Windows\system32\drivers\dxapi.sys
[2009.04.11 05:23:23 | 000,076,288 | ---- | M] (Microsoft Corporation) MD5=C8D5369BFE193B5FB53337DCE77CE314 -- C:\Windows\system32\drivers\dxg.sys
[2011.01.20 17:37:37 | 000,638,336 | ---- | M] (Microsoft Corporation) MD5=C68AC676B0EF30CFBB1080ADCE49EB1F -- C:\Windows\system32\drivers\dxgkrnl.sys
[2008.01.21 03:23:24 | 000,118,784 | ---- | M] (Intel Corporation) MD5=5425F74AC0C1DBD96A1E04F17D63F94C -- C:\Windows\system32\drivers\E1G60I32.sys
[2009.04.11 07:32:43 | 000,141,288 | ---- | M] (Microsoft Corporation) MD5=7F64EA048DCFAC7ACF8B4D7B4E6FE371 -- C:\Windows\system32\drivers\ecache.sys
[2008.01.21 03:23:22 | 000,342,584 | ---- | M] (Emulex) MD5=23B62471681A124889978F6295B3F4C6 -- C:\Windows\system32\drivers\elxstor.sys
[2008.01.21 03:23:00 | 000,006,656 | ---- | M] (Microsoft Corporation) MD5=3DB974F3935483555D7148663F726C61 -- C:\Windows\system32\drivers\errdev.sys
[2009.04.11 05:13:53 | 000,136,704 | ---- | M] (Microsoft Corporation) MD5=22B408651F9123527BCEE54B4F6C5CAE -- C:\Windows\system32\drivers\exfat.sys
[2009.04.11 05:13:52 | 000,142,848 | ---- | M] (Microsoft Corporation) MD5=1E9B9A70D332103C52995E957DC09EF8 -- C:\Windows\system32\drivers\fastfat.sys
[2008.01.21 03:23:20 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=AFE1E8B9782A0DD7FB46BBD88E43F89A -- C:\Windows\system32\drivers\fdc.sys
[2008.01.21 03:24:04 | 000,058,936 | ---- | M] (Microsoft Corporation) MD5=A8C0139A884861E3AAE9CFE73B208A9F -- C:\Windows\system32\drivers\fileinfo.sys
[2008.01.21 03:24:21 | 000,027,648 | ---- | M] (Microsoft Corporation) MD5=0AE429A696AECBC5970E3CF2C62635AE -- C:\Windows\system32\drivers\filetrace.sys
[2008.01.21 03:23:20 | 000,020,480 | ---- | M] (Microsoft Corporation) MD5=85B7CF99D532820495D68D747FDA9EBD -- C:\Windows\system32\drivers\flpydisk.sys
[2009.04.11 07:32:46 | 000,190,424 | ---- | M] (Společnost Microsoft) MD5=01334F9EA68E6877C4EF05D3EA8ABB05 -- C:\Windows\system32\drivers\fltMgr.sys
[2012.02.29 14:32:37 | 000,012,800 | ---- | M] (Microsoft Corporation) MD5=B972A66758577E0BFD1DE0F91AAA27B5 -- C:\Windows\system32\drivers\fs_rec.sys
[2009.04.11 07:32:43 | 000,099,816 | ---- | M] (Microsoft Corporation) MD5=73594DBC99E22958150192EE99BC48CE -- C:\Windows\system32\drivers\FWPKCLNT.SYS
[2008.01.21 03:23:22 | 000,061,496 | ---- | M] (Microsoft Corporation) MD5=34582A6E6573D54A07ECE5FE24A126B5 -- C:\Windows\system32\drivers\GAGP30KX.SYS
[2009.03.18 16:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) MD5=833051C6C6C42117191935F734CFBD97 -- C:\Windows\system32\drivers\hamachi.sys
[2009.04.11 05:42:42 | 000,561,152 | ---- | M] (Microsoft Corporation) MD5=062452B7FFD68C8C042A6261FE8DFF4A -- C:\Windows\system32\drivers\hdaudbus.sys
[2006.11.02 08:36:49 | 000,235,520 | ---- | M] (Microsoft Corporation) MD5=CB04C744BE0A61B1D648FAED182C3B59 -- C:\Windows\system32\drivers\HdAudio.sys
[2006.11.02 09:55:22 | 000,029,184 | ---- | M] (Microsoft Corporation) MD5=1338520E78D90154ED6BE8F84DE5FCEB -- C:\Windows\system32\drivers\hidbth.sys
[2009.04.11 05:42:48 | 000,039,424 | ---- | M] (Microsoft Corporation) MD5=5961CADB7CAD938368D2028725EF771D -- C:\Windows\system32\drivers\hidclass.sys
[2006.11.02 09:55:01 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=FF3160C3A2445128C5A6D9B076DA519E -- C:\Windows\system32\drivers\hidir.sys
[2008.01.21 03:23:26 | 000,025,472 | ---- | M] (Microsoft Corporation) MD5=175444D3A01CA45D0E1C5DC5F48DF7CD -- C:\Windows\system32\drivers\hidparse.sys
[2009.04.11 05:42:48 | 000,012,800 | ---- | M] (Microsoft Corporation) MD5=CCA4B519B17E23A00B826C55716809CC -- C:\Windows\system32\drivers\hidusb.sys
[2008.01.21 03:23:26 | 000,040,504 | ---- | M] (Hewlett-Packard Company) MD5=16EE7B23A009E00D835CDB79574A91A6 -- C:\Windows\system32\drivers\HpCISSs.sys
[2010.02.20 21:53:34 | 000,411,648 | ---- | M] (Microsoft Corporation) MD5=F870AA3E254628EBEAFE754108D664DE -- C:\Windows\system32\drivers\http.sys
[2008.01.21 03:23:02 | 000,019,000 | ---- | M] (Microsoft Corporation) MD5=95BD3EA81EBE6B8CACAFDB6CDAB3586C -- C:\Windows\system32\drivers\i2omgmt.sys
[2008.01.21 03:23:02 | 000,030,264 | ---- | M] (Microsoft Corporation) MD5=C6B032D69650985468160FC9937CF5B4 -- C:\Windows\system32\drivers\i2omp.sys
[2008.01.21 03:23:20 | 000,054,784 | ---- | M] (Microsoft Corporation) MD5=22D56C8184586B7A1F6FA60BE5F5A2BD -- C:\Windows\system32\drivers\i8042prt.sys
[2007.09.29 23:03:12 | 000,308,248 | ---- | M] (Intel Corporation) MD5=E5A0034847537EAEE3C00349D5C34C5F -- C:\Windows\system32\drivers\iaStor.sys
[2008.01.21 03:23:23 | 000,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\system32\drivers\iaStorV.sys
[2006.11.02 10:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) MD5=2D077BF86E843F901D8DB709C95B49A5 -- C:\Windows\system32\drivers\iirsp.sys
[2008.01.21 03:23:00 | 000,017,976 | ---- | M] (Microsoft Corporation) MD5=83AA759F3189E6370C30DE5DC5590718 -- C:\Windows\system32\drivers\intelide.sys
[2008.01.21 03:23:00 | 000,041,472 | ---- | M] (Microsoft Corporation) MD5=224191001E78C89DFA78924C3EA595FF -- C:\Windows\system32\drivers\intelppm.sys
[2008.01.21 03:24:45 | 000,047,616 | ---- | M] (Microsoft Corporation) MD5=62C265C38769B864CB25B4BCF62DF6C3 -- C:\Windows\system32\drivers\ipfltdrv.sys
[2008.01.21 03:23:22 | 000,064,512 | ---- | M] (Microsoft Corporation) MD5=B25AAF203552B7B3491139D582B39AD1 -- C:\Windows\system32\drivers\IPMIDrv.sys
[2008.01.21 03:24:25 | 000,100,864 | ---- | M] (Microsoft Corporation) MD5=8793643A67B42CEC66490B2A0CF92D68 -- C:\Windows\system32\drivers\ipnat.sys
[2008.01.21 03:24:31 | 000,095,744 | ---- | M] (Microsoft Corporation) MD5=E50A95179211B12946F7E035D60AF560 -- C:\Windows\system32\drivers\irda.sys
[2008.01.21 03:23:54 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=109C0DFB82C3632FBD11949B73AEEAC9 -- C:\Windows\system32\drivers\irenum.sys
[2008.01.21 03:23:01 | 000,049,720 | ---- | M] (Microsoft Corporation) MD5=6C70698A3E5C4376C6AB5C7C17FB0614 -- C:\Windows\system32\drivers\isapnp.sys
[2006.11.02 10:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) MD5=BCED60D16156E428F8DF8CF27B0DF150 -- C:\Windows\system32\drivers\iteatapi.sys
[2006.11.02 10:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) MD5=06FA654504A498C30ADCA8BEC4E87E7E -- C:\Windows\system32\drivers\iteraid.sys
[2008.04.03 13:58:46 | 000,076,688 | ---- | M] (JMicron Technology Corp.) MD5=C36F3A1A4E8416EF43F30DEAB7701730 -- C:\Windows\system32\drivers\jraid.sys
[2008.01.21 03:23:23 | 000,035,384 | ---- | M] (Microsoft Corporation) MD5=37605E0A8CF00CBBA538E753E4344C6E -- C:\Windows\system32\drivers\kbdclass.sys
[2008.01.21 03:23:23 | 000,015,872 | ---- | M] (Microsoft Corporation) MD5=18247836959BA67E3511B62846B9C2E0 -- C:\Windows\system32\drivers\kbdhid.sys
[2009.04.11 05:38:49 | 000,149,504 | ---- | M] (Microsoft Corporation) MD5=EF73C1E29FBE7B0FD0274BF4394E346A -- C:\Windows\system32\drivers\ks.sys
[2012.06.04 16:26:04 | 000,440,704 | ---- | M] (Microsoft Corporation) MD5=4A1445EFA932A3BAF5BDB02D7131EE20 -- C:\Windows\system32\drivers\ksecdd.sys
[2008.01.21 03:24:37 | 000,047,104 | ---- | M] (Microsoft Corporation) MD5=D1C5883087A0C3F1344D9D55A44901F6 -- C:\Windows\system32\drivers\lltdio.sys
[2008.01.21 03:23:23 | 000,096,312 | ---- | M] (LSI Logic) MD5=C7E15E82879BF3235B559563D4185365 -- C:\Windows\system32\drivers\lsi_fc.sys
[2008.01.21 03:23:25 | 000,089,656 | ---- | M] (LSI Logic) MD5=EE01EBAE8C9BF0FA072E0FF68718920A -- C:\Windows\system32\drivers\lsi_sas.sys
[2008.01.21 03:23:23 | 000,096,312 | ---- | M] (LSI Logic) MD5=912A04696E9CA30146A62AFA1463DD5C -- C:\Windows\system32\drivers\lsi_scsi.sys
[2008.01.21 03:24:37 | 000,084,480 | ---- | M] (Microsoft Corporation) MD5=8F5C7426567798E62A3B3614965D62CC -- C:\Windows\system32\drivers\luafv.sys
[2005.09.23 22:18:32 | 000,171,520 | ---- | M] (Pinnacle Systems GmbH) MD5=A3E700D78EEC390F1208098CDCA5C6B6 -- C:\Windows\system32\drivers\MarvinBus.sys
[2010.01.07 16:07:04 | 000,019,160 | ---- | M] (Malwarebytes Corporation) MD5=654A3F014903DC62CAF5E037F3D316D2 -- C:\Windows\system32\drivers\mbam.sys
[2010.01.07 16:07:14 | 000,038,224 | ---- | M] (Malwarebytes Corporation) MD5=C0D40BEAA6DFC05602FC8F484696F7F5 -- C:\Windows\system32\drivers\mbamswissarmy.sys
[2008.01.21 03:24:47 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=B271EC02E71271A2DA28B3B7BC4E4F15 -- C:\Windows\system32\drivers\mcd.sys
[2008.01.21 03:23:27 | 000,031,288 | ---- | M] (LSI Corporation) MD5=0001CE609D66632FA17B84705F658879 -- C:\Windows\system32\drivers\megasas.sys
[2008.01.21 03:23:27 | 000,386,616 | ---- | M] (LSI Corporation, Inc.) MD5=C252F32CD9A49DBFC25ECF26EBD51A99 -- C:\Windows\system32\drivers\MegaSR.sys
[2008.01.21 03:24:57 | 000,031,744 | ---- | M] (Microsoft Corporation) MD5=E13B5EA0F51BA5B1512EC671393D09BA -- C:\Windows\system32\drivers\modem.sys
[2008.01.21 03:23:22 | 000,041,984 | ---- | M] (Microsoft Corporation) MD5=0A9BB33B56E294F686ABB7C1E4E2D8A8 -- C:\Windows\system32\drivers\monitor.sys
[2008.01.21 03:23:20 | 000,034,360 | ---- | M] (Microsoft Corporation) MD5=5BF6A1326A335C5298477754A506D263 -- C:\Windows\system32\drivers\mouclass.sys
[2008.01.21 03:23:20 | 000,015,872 | ---- | M] (Microsoft Corporation) MD5=93B8D4869E12CFBE663915502900876F -- C:\Windows\system32\drivers\mouhid.sys
[2008.01.21 03:23:43 | 000,057,400 | ---- | M] (Microsoft Corporation) MD5=BDAFC88AA6B92F7842416EA6A48E1600 -- C:\Windows\system32\drivers\mountmgr.sys
[2008.01.21 03:23:20 | 000,105,016 | ---- | M] (Microsoft Corporation) MD5=511D011289755DD9F9A7579FB0B064E6 -- C:\Windows\system32\drivers\mpio.sys
[2008.01.21 03:24:47 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=22241FEBA9B2DEFA669C8CB0A8DD7D2E -- C:\Windows\system32\drivers\mpsdrv.sys
[2006.11.02 10:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) MD5=4FBBB70D30FD20EC51F80061703B001E -- C:\Windows\system32\drivers\Mraid35x.sys
[2009.04.11 05:14:40 | 000,114,688 | ---- | M] (Microsoft Corporation) MD5=82CEA0395524AACFEB58BA1448E8325C -- C:\Windows\system32\drivers\mrxdav.sys
[2011.04.29 14:24:40 | 000,106,496 | ---- | M] (Microsoft Corporation) MD5=1E94971C4B446AB2290DEB71D01CF0C2 -- C:\Windows\system32\drivers\mrxsmb.sys
[2011.07.06 16:31:47 | 000,214,016 | ---- | M] (Microsoft Corporation) MD5=4FCCB34D793B116423209C0F8B7A3B03 -- C:\Windows\system32\drivers\mrxsmb10.sys
[2011.04.29 14:24:42 | 000,079,872 | ---- | M] (Microsoft Corporation) MD5=C3CB1B40AD4A0124D617A1199B0B9D7C -- C:\Windows\system32\drivers\mrxsmb20.sys
[2009.04.11 07:32:28 | 000,027,112 | ---- | M] (Microsoft Corporation) MD5=5457DCFA7C0DA43522F4D9D4049C1472 -- C:\Windows\system32\drivers\msahci.sys
[2008.01.21 03:23:21 | 000,094,776 | ---- | M] (Microsoft Corporation) MD5=4468B0F385A86ECDDAF8D3CA662EC0E7 -- C:\Windows\system32\drivers\msdsm.sys
[2008.01.21 03:23:51 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=A9927F4A46B816C92F461ACB90CF8515 -- C:\Windows\system32\drivers\msfs.sys
[2008.01.21 03:23:01 | 000,016,440 | ---- | M] (Microsoft Corporation) MD5=0F400E306F385C56317357D6DEA56F62 -- C:\Windows\system32\drivers\msisadrv.sys
[2009.04.11 07:32:46 | 000,180,712 | ---- | M] (Microsoft Corporation) MD5=232FA340531D940AAC623B121A595034 -- C:\Windows\system32\drivers\msiscsi.sys
[2008.01.21 03:24:50 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=D8C63D34D9C9E56C059E24EC7185CC07 -- C:\Windows\system32\drivers\mskssrv.sys
[2008.01.21 03:24:51 | 000,005,888 | ---- | M] (Microsoft Corporation) MD5=1D373C90D62DDB641D50E55B9E78D65E -- C:\Windows\system32\drivers\mspclock.sys
[2008.01.21 03:24:51 | 000,005,504 | ---- | M] (Microsoft Corporation) MD5=B572DA05BF4E098D4BBA3A4734FB505B -- C:\Windows\system32\drivers\mspqm.sys
[2009.04.11 07:32:46 | 000,161,752 | ---- | M] (Microsoft Corporation) MD5=B49456D70555DE905C311BCDA6EC6ADB -- C:\Windows\system32\drivers\msrpc.sys
[2008.01.21 03:23:01 | 000,031,288 | ---- | M] (Microsoft Corporation) MD5=E384487CB84BE41D09711C30CA79646C -- C:\Windows\system32\drivers\mssmbios.sys
[2008.01.21 03:24:51 | 000,006,016 | ---- | M] (Microsoft Corporation) MD5=7199C1EEC1E4993CAF96B8C0A26BD58A -- C:\Windows\system32\drivers\mstee.sys
[2009.04.11 07:32:31 | 000,048,104 | ---- | M] (Microsoft Corporation) MD5=6A57B5733D4CB702C8EA4542E836B96C -- C:\Windows\system32\drivers\mup.sys
[2009.04.11 07:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\system32\drivers\ndis.sys
[2008.01.21 03:24:25 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=0E186E90404980569FB449BA7519AE61 -- C:\Windows\system32\drivers\ndistapi.sys
[2008.01.21 03:24:55 | 000,016,896 | ---- | M] (Microsoft Corporation) MD5=D6973AA34C4D5D76C0430B181C3CD389 -- C:\Windows\system32\drivers\ndisuio.sys
[2009.04.11 05:46:32 | 000,121,344 | ---- | M] (Microsoft Corporation) MD5=818F648618AE34F729FDB47EC68345C3 -- C:\Windows\system32\drivers\ndiswan.sys
[2008.01.21 03:24:25 | 000,049,664 | ---- | M] (Microsoft Corporation) MD5=71DAB552B41936358F3B541AE5997FB3 -- C:\Windows\system32\drivers\ndproxy.sys
[2008.01.21 03:24:20 | 000,035,840 | ---- | M] (Microsoft Corporation) MD5=BCD093A5A6777CF626434568DC7DBA78 -- C:\Windows\system32\drivers\netbios.sys
[2009.04.11 05:45:37 | 000,185,856 | ---- | M] (Microsoft Corporation) MD5=ECD64230A59CBD93C85F1CD1CAB9F3F6 -- C:\Windows\system32\drivers\netbt.sys
[2009.04.11 07:32:46 | 000,223,208 | ---- | M] (Microsoft Corporation) MD5=063EE4D3CB88A14EAB9901875CEE98B1 -- C:\Windows\system32\drivers\netio.sys
[2008.01.30 16:31:46 | 000,338,432 | ---- | M] (Ralink Technology, Corp.) MD5=418279DEBE43E05A6551268CD7301D6D -- C:\Windows\system32\drivers\netr28.sys
[2008.05.01 07:35:54 | 003,660,800 | ---- | M] (Intel Corporation) MD5=840D89327C45B0CB9E1AB130249046E2 -- C:\Windows\system32\drivers\NETw5v32.sys
[2006.11.02 10:50:19 | 000,045,160 | ---- | M] (IBM Corporation) MD5=2E7FB731D4790A1BC6270ACCEFACB36E -- C:\Windows\system32\drivers\nfrd960.sys
[2009.04.11 05:14:01 | 000,035,328 | ---- | M] (Microsoft Corporation) MD5=D36F239D7CCE1931598E8FB90A0DBC26 -- C:\Windows\system32\drivers\npfs.sys
[2008.01.21 03:24:47 | 000,016,384 | ---- | M] (Microsoft Corporation) MD5=609773E344A97410CE4EBF74A8914FCF -- C:\Windows\system32\drivers\nsiproxy.sys
[2009.04.11 07:32:49 | 001,083,880 | ---- | M] (Společnost Microsoft) MD5=6A4A98CEE84CF9E99564510DDA4BAA47 -- C:\Windows\system32\drivers\ntfs.sys
[2006.11.02 08:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) MD5=E875C093AEC0C978A90F30C9E0DFBB72 -- C:\Windows\system32\drivers\ntrigdigi.sys
[2008.01.21 03:23:50 | 000,004,608 | ---- | M] (Microsoft Corporation) MD5=C5DBBCDA07D780BDA9B685DF333BB41E -- C:\Windows\system32\drivers\null.sys
[2009.09.01 07:19:18 | 009,825,728 | ---- | M] (NVIDIA Corporation) MD5=2713392707E515EFB671751FA767EBD2 -- C:\Windows\system32\drivers\nvlddmkm.sys
[2008.01.21 03:23:21 | 000,102,968 | ---- | M] (NVIDIA Corporation) MD5=2EDF9E7751554B42CBB60116DE727101 -- C:\Windows\system32\drivers\nvraid.sys
[2008.01.21 03:23:21 | 000,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\system32\drivers\nvstor.sys
[2008.01.21 03:23:01 | 000,109,112 | ---- | M] (Microsoft Corporation) MD5=18BBDF913916B71BD54575BDB6EEAC0B -- C:\Windows\system32\drivers\NV_AGP.SYS
[2009.04.11 05:43:28 | 000,148,480 | ---- | M] (Microsoft Corporation) MD5=85C44FDFF9CF7E72A40DCB7EC06A4416 -- C:\Windows\system32\drivers\nwifi.sys
[2006.11.02 09:55:16 | 000,062,080 | ---- | M] (Microsoft Corporation) MD5=BE32DA025A0BE1878F0EE8D6D9386CD5 -- C:\Windows\system32\drivers\ohci1394.sys
[2009.04.11 05:45:51 | 000,072,192 | ---- | M] (Microsoft Corporation) MD5=99514FAA8DF93D34B5589187DB3AA0BA -- C:\Windows\system32\drivers\pacer.sys
[2006.11.02 09:51:30 | 000,079,360 | ---- | M] (Microsoft Corporation) MD5=0FA9B5055484649D63C303FE404E5F4D -- C:\Windows\system32\drivers\parport.sys
[2012.03.21 00:28:50 | 000,053,120 | ---- | M] (Microsoft Corporation) MD5=B9C2B89F08670E159F7181891E449CD9 -- C:\Windows\system32\drivers\partmgr.sys
[2006.11.02 09:51:23 | 000,008,704 | ---- | M] (Microsoft Corporation) MD5=4F9A6A8A31413180D0FCB279AD5D8112 -- C:\Windows\system32\drivers\parvdm.sys
[2007.09.17 15:53:26 | 000,021,632 | ---- | M] (Nokia) MD5=175CC28DCF819F78CAA3FBD44AD9E52A -- C:\Windows\system32\drivers\pccsmcfd.sys
[2009.04.11 07:32:55 | 000,149,480 | ---- | M] (Microsoft Corporation) MD5=941DC1D19E7E8620F40BBC206981EFDB -- C:\Windows\system32\drivers\pci.sys
[2008.01.21 03:23:00 | 000,016,440 | ---- | M] (Microsoft Corporation) MD5=FC175F5DDAB666D7F4D17449A547626F -- C:\Windows\system32\drivers\pciide.sys
[2009.04.11 07:32:52 | 000,043,496 | ---- | M] (Microsoft Corporation) MD5=6429D10C5D149AC9EB2D95052A390CFF -- C:\Windows\system32\drivers\pciidex.sys
[2006.11.02 10:51:12 | 000,167,528 | ---- | M] (Microsoft Corporation) MD5=E6F3FB1B86AA519E7698AD05E58B04E5 -- C:\Windows\system32\drivers\pcmcia.sys
[2006.11.02 10:04:35 | 000,878,080 | ---- | M] (Microsoft Corporation) MD5=6349F6ED9C623B44B52EA3C63C831A92 -- C:\Windows\system32\drivers\PEAuth.sys
[2009.04.11 05:42:50 | 000,167,936 | ---- | M] (Microsoft Corporation) MD5=218286724EC530FF252648369E05B090 -- C:\Windows\system32\drivers\portcls.sys
[2008.01.21 03:23:00 | 000,040,960 | ---- | M] (Microsoft Corporation) MD5=2027293619DD0F047C584CF2E7DF4FFD -- C:\Windows\system32\drivers\processr.sys
[2008.01.21 03:23:24 | 001,122,360 | ---- | M] (QLogic Corporation) MD5=0A6DB55AFB7820C99AA1F3A1D270F4F6 -- C:\Windows\system32\drivers\ql2300.sys
[2006.11.02 10:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) MD5=81A7E5C076E59995D54BC1ED3A16E60B -- C:\Windows\system32\drivers\ql40xx.sys
[2008.01.21 03:23:31 | 000,031,232 | ---- | M] (Microsoft Corporation) MD5=9F5E0E1926014D17486901C88ECA2DB7 -- C:\Windows\system32\drivers\qwavedrv.sys
[2008.01.21 03:24:19 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=147D7F9C556D259924351FEB0DE606C3 -- C:\Windows\system32\drivers\rasacd.sys
[2008.01.21 03:24:55 | 000,076,288 | ---- | M] (Microsoft Corporation) MD5=A214ADBAF4CB47DD2728859EF31F26B0 -- C:\Windows\system32\drivers\rasl2tp.sys
[2009.04.11 05:46:30 | 000,041,472 | ---- | M] (Microsoft Corporation) MD5=509A98DD18AF4375E1FC40BC175F1DEF -- C:\Windows\system32\drivers\raspppoe.sys
[2008.01.21 03:24:55 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=ECFFFAEC0C1ECD8DBC77F39070EA1DB1 -- C:\Windows\system32\drivers\raspptp.sys
[2009.04.11 05:46:40 | 000,069,120 | ---- | M] (Microsoft Corporation) MD5=2005F4A1E05FA09389AC85840F0A9E4D -- C:\Windows\system32\drivers\rassstp.sys
[2009.04.11 05:14:29 | 000,225,280 | ---- | M] (Microsoft Corporation) MD5=B14C9D5B9ADD2F84F70570BBBFAA7935 -- C:\Windows\system32\drivers\rdbss.sys
[2008.01.21 03:24:06 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=89E59BE9A564262A3FB6C4F4F1CD9899 -- C:\Windows\system32\drivers\RDPCDD.sys
[2008.01.21 03:23:01 | 000,248,832 | ---- | M] (Microsoft Corporation) MD5=FBC0BACD9C3D7F6956853F64A66E252D -- C:\Windows\system32\drivers\rdpdr.sys
[2008.01.21 03:24:50 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=9D91FE5286F748862ECFFA05F8A0710C -- C:\Windows\system32\drivers\RDPENCDD.sys
[2012.05.01 15:03:49 | 000,180,736 | ---- | M] (Microsoft Corporation) MD5=C127EBD5AFAB31524662C48DFCEB773A -- C:\Windows\system32\drivers\rdpwd.sys
[2009.04.11 05:45:24 | 000,113,664 | ---- | M] (Microsoft Corporation) MD5=EEC7EE5675294B03E88AA868540007C1 -- C:\Windows\system32\drivers\rmcast.sys
[2009.04.11 05:46:07 | 000,033,280 | ---- | M] (Microsoft Corporation) MD5=D9225D107E40D0FA5C5069446759C8E9 -- C:\Windows\system32\drivers\RNDISMP.sys
[2008.01.21 03:24:49 | 000,008,192 | ---- | M] (Microsoft Corporation) MD5=75E8A6BFA7374ABA833AE92BF41AE4E6 -- C:\Windows\system32\drivers\rootmdm.sys
[2008.01.21 03:24:37 | 000,060,416 | ---- | M] (Microsoft Corporation) MD5=9C508F4074A39E8B4B31D27198146FAD -- C:\Windows\system32\drivers\rspndr.sys
Re: Prosím o kontrolu - preventivka, RSIT, OTL
[2008.05.14 16:03:40 | 002,136,920 | ---- | M] (Realtek Semiconductor Corp.) MD5=FBBE3F1697D393BE685CD6192B1EC95A -- C:\Windows\system32\drivers\RTKVHDA.sys
[2010.06.23 09:21:32 | 000,259,176 | ---- | M] (Realtek ) MD5=2D19A7469EA19993D0C12E627F4530BC -- C:\Windows\system32\drivers\Rtlh86.sys
[2006.11.02 10:50:16 | 000,076,392 | ---- | M] (Microsoft Corporation) MD5=3CE8F073A557E172B330109436984E30 -- C:\Windows\system32\drivers\sbp2port.sys
[2008.01.21 03:23:54 | 000,142,904 | ---- | M] (Microsoft Corporation) MD5=6F5CA34AE885645ACF8A20D564DB976C -- C:\Windows\system32\drivers\scsiport.sys
[2006.11.02 07:37:21 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) MD5=90A3935D05B494A5A39D37E71F09A677 -- C:\Windows\system32\drivers\secdrv.sys
[2006.11.02 09:51:25 | 000,017,920 | ---- | M] (Microsoft Corporation) MD5=68E44E331D46F0FB38F0863A84CD1A31 -- C:\Windows\system32\drivers\serenum.sys
[2006.11.02 09:51:30 | 000,083,456 | ---- | M] (Microsoft Corporation) MD5=C70D69A918B178D3C3B06339B40C2E1B -- C:\Windows\system32\drivers\serial.sys
[2008.01.21 03:23:20 | 000,019,968 | ---- | M] (Microsoft Corporation) MD5=8AF3D28A879BF75DB53A0EE7A4289624 -- C:\Windows\system32\drivers\sermouse.sys
[2008.01.21 03:23:23 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=3EFA810BDCA87F6ECC24F9832243FE86 -- C:\Windows\system32\drivers\sffdisk.sys
[2008.01.21 03:23:23 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=E95D451F7EA3E583AEC75F3B3EE42DC5 -- C:\Windows\system32\drivers\sffp_mmc.sys
[2008.01.21 03:23:23 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=3D0EA348784B7AC9EA9BD9F317980979 -- C:\Windows\system32\drivers\sffp_sd.sys
[2006.11.02 09:51:40 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=46ED8E91793B2E6F848015445A0AC188 -- C:\Windows\system32\drivers\sfloppy.sys
[2008.01.21 03:23:01 | 000,055,864 | ---- | M] (Microsoft Corporation) MD5=1D76624A09A054F682D746B924E2DBC3 -- C:\Windows\system32\drivers\SISAGP.SYS
[2008.01.21 03:23:26 | 000,041,016 | ---- | M] (Microsoft Corporation) MD5=43CB7AA756C7DB280D01DA9B676CFDE2 -- C:\Windows\system32\drivers\sisraid2.sys
[2008.01.21 03:23:26 | 000,074,808 | ---- | M] (Silicon Integrated Systems) MD5=A99C6C8B0BAA970D8AA59DDC50B57F94 -- C:\Windows\system32\drivers\sisraid4.sys
[2009.04.11 05:45:22 | 000,066,560 | ---- | M] (Microsoft Corporation) MD5=7B75299A4D201D6A6533603D6914AB04 -- C:\Windows\system32\drivers\smb.sys
[2008.01.21 03:24:55 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=A7D7EA1771D2ED6F39A8063E79B6C3E8 -- C:\Windows\system32\drivers\smclib.sys
[2008.01.21 03:24:11 | 000,021,048 | ---- | M] (Microsoft Corporation) MD5=7AEBDEEF071FE28B0EEF2CDD69102BFF -- C:\Windows\system32\drivers\spldr.sys
[2009.04.11 03:52:40 | 000,684,032 | ---- | M] (Microsoft Corporation) MD5=A7F8BAD9590ADDC425B4003E94780DFA -- C:\Windows\system32\drivers\spsys.sys
[2012.12.17 22:46:29 | 000,466,008 | ---- | M] (Duplex Secure Ltd.) MD5=68103A2B441BBF3908EBB587F0704D6C -- C:\Windows\system32\drivers\sptd.sys
[2009.10.02 17:59:33 | 000,142,592 | ---- | M] () MD5=8831252BCF05FCFB5ABD116A22E552D8 -- C:\Windows\system32\drivers\sp_rsdrv2.sys
[2011.02.18 15:03:32 | 000,305,152 | ---- | M] (Microsoft Corporation) MD5=41987F9FC0E61ADF54F581E15029AD91 -- C:\Windows\system32\drivers\srv.sys
[2011.04.29 14:25:10 | 000,146,432 | ---- | M] (Microsoft Corporation) MD5=FF33AFF99564B1AA534F58868CBE41EF -- C:\Windows\system32\drivers\srv2.sys
[2011.04.29 14:25:09 | 000,102,400 | ---- | M] (Microsoft Corporation) MD5=7605C0E1D01A08F3ECD743F38B834A44 -- C:\Windows\system32\drivers\srvnet.sys
[2009.03.20 10:01:26 | 000,090,112 | ---- | M] (MCCI) MD5=EAA66218CD39F5BB1B4853A78C67C787 -- C:\Windows\system32\drivers\ss_bbus.sys
[2009.03.20 10:01:26 | 000,012,160 | ---- | M] (MCCI Corporation) MD5=F8A771C5A63DC641772B7A3B05AF173F -- C:\Windows\system32\drivers\ss_bcm.sys
[2009.03.20 10:01:26 | 000,012,160 | ---- | M] (MCCI Corporation) MD5=F8A771C5A63DC641772B7A3B05AF173F -- C:\Windows\system32\drivers\ss_bcmnt.sys
[2009.03.20 10:01:26 | 000,014,976 | ---- | M] (MCCI Corporation) MD5=91765F99914ED8693D8BC76524F21581 -- C:\Windows\system32\drivers\ss_bmdfl.sys
[2009.03.20 10:01:26 | 000,121,856 | ---- | M] (MCCI Corporation) MD5=840E7B738B03C10EE91D9B7D3D6EFF15 -- C:\Windows\system32\drivers\ss_bmdm.sys
[2009.03.20 10:01:26 | 000,012,160 | ---- | M] (MCCI Corporation) MD5=29B73D03AE6EDABB88E50364B066A6CA -- C:\Windows\system32\drivers\ss_bwh.sys
[2009.03.20 10:01:26 | 000,012,160 | ---- | M] (MCCI Corporation) MD5=29B73D03AE6EDABB88E50364B066A6CA -- C:\Windows\system32\drivers\ss_bwhnt.sys
[2010.02.02 10:59:40 | 000,005,632 | ---- | M] () MD5=306521935042FC0A6988D528643619B3 -- C:\Windows\system32\drivers\StarOpen.sys
[2009.04.11 07:32:54 | 000,122,344 | ---- | M] (Microsoft Corporation) MD5=47E55AFE1ED1D5AFF09690DB226F4A7A -- C:\Windows\system32\drivers\Storport.sys
[2009.04.11 05:42:47 | 000,052,992 | ---- | M] (Microsoft Corporation) MD5=70A92E46A2F459CDEDE3CA558CB26B6A -- C:\Windows\system32\drivers\stream.sys
[2008.01.21 03:23:01 | 000,015,288 | ---- | M] (Microsoft Corporation) MD5=7BA58ECF0C0A9A69D44B3DCA62BECF56 -- C:\Windows\system32\drivers\swenum.sys
[2006.11.02 10:50:05 | 000,035,944 | ---- | M] (LSI Logic) MD5=192AA3AC01DF071B541094F251DEED10 -- C:\Windows\system32\drivers\symc8xx.sys
[2006.11.02 10:49:56 | 000,031,848 | ---- | M] (LSI Logic) MD5=8C8EB8C76736EBAF3B13B633B2E64125 -- C:\Windows\system32\drivers\sym_hi.sys
[2006.11.02 10:50:03 | 000,034,920 | ---- | M] (LSI Logic) MD5=8072AF52B5FD103BBBA387A1E49F62CB -- C:\Windows\system32\drivers\sym_u3.sys
[2008.01.21 03:24:44 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=1239FD18895040D97B7CDBC19BC2075E -- C:\Windows\system32\drivers\tape.sys
[2012.03.30 13:39:11 | 000,905,600 | ---- | M] (Microsoft Corporation) MD5=27D470DABC77BC60D0A3B0E4DEB6CB91 -- C:\Windows\system32\drivers\tcpip.sys
[2009.12.08 18:26:18 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=608C345A255D82A6289C2D468EB41FD7 -- C:\Windows\system32\drivers\tcpipreg.sys
[2008.01.21 03:24:05 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=77937EFF009AC696B90E09F671F9D0A4 -- C:\Windows\system32\drivers\tdi.sys
[2008.01.21 03:24:08 | 000,017,920 | ---- | M] (Microsoft Corporation) MD5=5DCF5E267BE67A1AE926F2DF77FBCC56 -- C:\Windows\system32\drivers\tdpipe.sys
[2008.01.21 03:24:08 | 000,029,184 | ---- | M] (Microsoft Corporation) MD5=389C63E32B3CEFED425B61ED92D3F021 -- C:\Windows\system32\drivers\tdtcp.sys
[2009.04.11 05:45:56 | 000,072,192 | ---- | M] (Microsoft Corporation) MD5=76B06EB8A01FC8624D699E7045303E54 -- C:\Windows\system32\drivers\tdx.sys
[2009.04.11 07:32:52 | 000,053,224 | ---- | M] (Microsoft Corporation) MD5=3CAD38910468EAB9A6479E2F01DB43C7 -- C:\Windows\system32\drivers\termdd.sys
[2008.01.21 03:24:59 | 000,023,552 | ---- | M] (Microsoft Corporation) MD5=DCF0F056A2E4F52287264F5AB29CF206 -- C:\Windows\system32\drivers\tssecsrv.sys
[2008.01.21 03:24:25 | 000,015,360 | ---- | M] (Microsoft Corporation) MD5=CAECC0120AC49E3D2F758B9169872D38 -- C:\Windows\system32\drivers\TUNMP.SYS
[2010.02.18 12:28:13 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=300DB877AC094FEAB0BE7688C3454A9C -- C:\Windows\system32\drivers\tunnel.sys
[2008.01.21 03:23:22 | 000,059,448 | ---- | M] (Microsoft Corporation) MD5=7D33C4DB2CE363C8518D2DFCF533941F -- C:\Windows\system32\drivers\UAGP35.SYS
[2009.04.11 05:13:59 | 000,226,816 | ---- | M] (Microsoft Corporation) MD5=D9728AF68C4C7693CB100B8441CBDEC6 -- C:\Windows\system32\drivers\udfs.sys
[2008.01.21 03:23:01 | 000,060,984 | ---- | M] (Microsoft Corporation) MD5=B0ACFDC9E4AF279E9116C03E014B2B27 -- C:\Windows\system32\drivers\ULIAGPKX.SYS
[2008.01.21 03:23:20 | 000,238,648 | ---- | M] (ULi Electronics Inc.) MD5=9224BB254F591DE4CA8D572A5F0D635C -- C:\Windows\system32\drivers\uliahci.sys
[2006.11.02 10:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) MD5=8514D0E5CD0534467C5FC61BE94A569F -- C:\Windows\system32\drivers\ulsata.sys
[2008.01.21 03:23:23 | 000,115,816 | ---- | M] (Promise Technology, Inc.) MD5=38C3C6E62B157A6BC46594FADA45C62B -- C:\Windows\system32\drivers\ulsata2.sys
[2008.01.21 03:23:22 | 000,034,816 | ---- | M] (Microsoft Corporation) MD5=32CFF9F809AE9AED85464492BF3E32D2 -- C:\Windows\system32\drivers\umbus.sys
[2008.01.21 03:23:49 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=88BD96A1BAEED33EE8BDF9499C07A841 -- C:\Windows\system32\drivers\umpass.sys
[2009.04.11 05:46:08 | 000,015,872 | ---- | M] (Microsoft Corporation) MD5=830D5D8456B822C1247C1E59B4C464FA -- C:\Windows\system32\drivers\usb8023.sys
[2009.04.11 05:42:56 | 000,025,856 | ---- | M] (Microsoft Corporation) MD5=D06F193F3E9CC3B356DF97F6A43C054A -- C:\Windows\system32\drivers\USBCAMD.sys
[2009.04.11 05:42:56 | 000,025,856 | ---- | M] (Microsoft Corporation) MD5=EAE017D3AA298374A1967B96C379C5AB -- C:\Windows\system32\drivers\USBCAMD2.sys
[2008.01.21 03:23:20 | 000,073,216 | ---- | M] (Microsoft Corporation) MD5=CAF811AE4C147FFCD5B51750C7F09142 -- C:\Windows\system32\drivers\usbccgp.sys
[2006.11.02 09:55:09 | 000,068,608 | ---- | M] (Microsoft Corporation) MD5=E9476E6C486E76BC4898074768FB7131 -- C:\Windows\system32\drivers\usbcir.sys
[2008.01.21 03:23:03 | 000,005,888 | ---- | M] (Microsoft Corporation) MD5=790FDAC6D0C762DF9047C3C625A6FF6C -- C:\Windows\system32\drivers\usbd.sys
[2009.04.11 05:42:52 | 000,039,936 | ---- | M] (Microsoft Corporation) MD5=79E96C23A97CE7B8F14D310DA2DB0C9B -- C:\Windows\system32\drivers\usbehci.sys
[2009.04.11 05:43:16 | 000,196,096 | ---- | M] (Microsoft Corporation) MD5=4673BBCB006AF60E7ABDDBE7A130BA42 -- C:\Windows\system32\drivers\usbhub.sys
[2006.11.02 09:55:05 | 000,019,456 | ---- | M] (Microsoft Corporation) MD5=38DBC7DD6CC5A72011F187425384388B -- C:\Windows\system32\drivers\usbohci.sys
[2009.04.11 05:42:57 | 000,226,304 | ---- | M] (Microsoft Corporation) MD5=A1C100A87D981AD0774FBC0B4B82E913 -- C:\Windows\system32\drivers\usbport.sys
[2006.11.02 10:14:58 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=B51E52ACF758BE00EF3A58EA452FE360 -- C:\Windows\system32\drivers\usbprint.sys
[2009.04.11 05:42:55 | 000,065,536 | ---- | M] (Microsoft Corporation) MD5=BE3DA31C191BC222D9AD503C5224F2AD -- C:\Windows\system32\drivers\USBSTOR.SYS
[2008.01.21 03:23:03 | 000,023,552 | ---- | M] (Microsoft Corporation) MD5=814D653EFC4D48BE3B04A307ECEFF56F -- C:\Windows\system32\drivers\usbuhci.sys
[2008.01.21 03:23:26 | 000,134,016 | ---- | M] (Microsoft Corporation) MD5=E67998E8F14CB0627A769F6530BCB352 -- C:\Windows\system32\drivers\usbvideo.sys
[2009.05.23 00:08:32 | 000,029,696 | ---- | M] (Elaborate Bytes AG) MD5=1CDAA48CB2F7744B8D25650E050766A5 -- C:\Windows\system32\drivers\VClone.sys
[2008.01.21 03:24:50 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=2E93AC0A1D8C79D019DB6C51F036636C -- C:\Windows\system32\drivers\vga.sys
[2008.01.21 03:23:02 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=87B06E1F30B749A114F74622D013F8D4 -- C:\Windows\system32\drivers\vgapnp.sys
[2008.01.21 03:23:01 | 000,056,888 | ---- | M] (Microsoft Corporation) MD5=5D7159DEF58A800D5781BA3A879627BC -- C:\Windows\system32\drivers\VIAAGP.SYS
[2008.01.21 03:23:00 | 000,041,472 | ---- | M] (Microsoft Corporation) MD5=C4F3A691B5BAD343E6249BD8C2D45DEE -- C:\Windows\system32\drivers\viac7.sys
[2008.01.21 03:23:00 | 000,020,024 | ---- | M] (VIA Technologies, Inc.) MD5=AADF5587A4063F52C2C3FED7887426FC -- C:\Windows\system32\drivers\viaide.sys
[2008.01.21 03:23:42 | 000,110,080 | ---- | M] (Microsoft Corporation) MD5=C048D2C33D27441A0CDCAAE2651EB03D -- C:\Windows\system32\drivers\videoprt.sys
[2008.01.21 03:23:01 | 000,052,792 | ---- | M] (Microsoft Corporation) MD5=69503668AC66C77C6CD7AF86FBDF8C43 -- C:\Windows\system32\drivers\volmgr.sys
[2009.04.11 07:33:03 | 000,292,840 | ---- | M] (Microsoft Corporation) MD5=23E41B834759917BFD6B9A0D625D0C28 -- C:\Windows\system32\drivers\volmgrx.sys
[2012.08.21 12:47:42 | 000,224,640 | ---- | M] (Microsoft Corporation) MD5=786DB5771F05EF300390399F626BF30A -- C:\Windows\system32\drivers\volsnap.sys
[2008.01.21 03:23:23 | 000,130,616 | ---- | M] (VIA Technologies Inc.,Ltd) MD5=587253E09325E6BF226B299774B728A9 -- C:\Windows\system32\drivers\vsmraid.sys
[2006.11.02 09:52:52 | 000,020,608 | ---- | M] (Microsoft Corporation) MD5=48DFEE8F1AF7C8235D4E626F0C4FE031 -- C:\Windows\system32\drivers\wacompen.sys
[2008.01.21 03:24:25 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=55201897378CCA7AF8B5EFD874374A26 -- C:\Windows\system32\drivers\wanarp.sys
[2009.04.11 05:22:46 | 000,033,280 | ---- | M] (Microsoft Corporation) MD5=4A5C31E2C1646034E6A60EBA4C747FF6 -- C:\Windows\system32\drivers\watchdog.sys
[2008.01.21 03:23:24 | 000,022,072 | ---- | M] (Microsoft Corporation) MD5=78FE9542363F297B18C027B2D7E7C07F -- C:\Windows\system32\drivers\wd.sys
[2011.02.16 16:52:46 | 000,011,520 | ---- | M] (Western Digital Technologies) MD5=D6EFAF429FD30C5DF613D220E344CCE7 -- C:\Windows\system32\drivers\wdcsam.sys
[2012.07.26 04:39:21 | 000,526,952 | ---- | M] (Microsoft Corporation) MD5=A840213F1ACDCC175B4D1D5AAEAC0D7A -- C:\Windows\system32\drivers\Wdf01000.sys
[2012.07.26 04:39:21 | 000,047,720 | ---- | M] (Microsoft Corporation) MD5=48704647CD2E9DAA2EB81BDE6D029EDB -- C:\Windows\system32\drivers\WdfLdr.sys
[2008.01.21 03:23:00 | 000,011,264 | ---- | M] (Microsoft Corporation) MD5=2E7255D172DF0B8283CDFB7B433B864E -- C:\Windows\system32\drivers\wmiacpi.sys
[2008.01.21 03:23:42 | 000,017,976 | ---- | M] (Microsoft Corporation) MD5=C546864EED786304762D030FEBF6B411 -- C:\Windows\system32\drivers\wmilib.sys
[2009.10.01 02:01:54 | 000,040,448 | ---- | M] (Microsoft Corporation) MD5=DE9D36F91A4DF3D911626643DEBF11EA -- C:\Windows\system32\drivers\WpdUsb.sys
[2008.01.21 03:24:47 | 000,015,872 | ---- | M] (Microsoft Corporation) MD5=E3A3CB253C0EC2494D4A61F5E43A389C -- C:\Windows\system32\drivers\ws2ifsl.sys
[2012.07.26 03:33:43 | 000,066,560 | ---- | M] (Microsoft Corporation) MD5=06E6F32C8D0A3F66D956F57B43A2E070 -- C:\Windows\system32\drivers\WUDFPf.sys
[2012.07.26 03:32:51 | 000,155,136 | ---- | M] (Microsoft Corporation) MD5=867C301E8B790040AE9CF6486E8041DF -- C:\Windows\system32\drivers\WUDFRd.sys
< %systemroot%\system32\*.sys /md5 /64 >
[2006.11.02 08:09:42 | 000,009,029 | ---- | M] () MD5=8AAD333C876590293F72B315E162BCC7 -- C:\Windows\system32\ANSI.SYS
[2009.04.11 07:32:46 | 000,245,736 | ---- | M] (Microsoft Corporation) MD5=D7659D3B5B92C31E84E53C1431F35132 -- C:\Windows\system32\clfs.sys
[2006.11.02 08:09:45 | 000,027,097 | ---- | M] () MD5=0FE9F16075C9ACB941C957B7C649176E -- C:\Windows\system32\country.sys
[2008.06.17 20:27:28 | 000,007,168 | ---- | M] () MD5=F1785FB4B89442AAC648492B35EBCDC9 -- C:\Windows\system32\directport.sys
[2009.03.31 09:39:36 | 000,036,608 | ---- | M] () MD5=790A4CA68F44BE35967B3DF61F3E4675 -- C:\Windows\system32\FsUsbExDisk.Sys
[2009.03.18 16:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) MD5=833051C6C6C42117191935F734CFBD97 -- C:\Windows\system32\hamachi.sys
[2006.11.02 08:09:41 | 000,004,768 | ---- | M] () MD5=E6BC0F98FECEF245A0010D350C1A0B9B -- C:\Windows\system32\HIMEM.SYS
[2008.03.31 11:02:34 | 000,008,192 | ---- | M] (Windows (R) Codename Longhorn DDK provider) MD5=E48C4E69E2126AAC01888C60CC6ED966 -- C:\Windows\system32\kbfiltr.sys
[2006.11.02 08:09:44 | 000,042,809 | ---- | M] () MD5=492090267B9608C62B956CD29BE3AFB7 -- C:\Windows\system32\KEY01.SYS
[2006.11.02 08:09:44 | 000,042,537 | ---- | M] () MD5=FBBCFEC1379C5C02D88A361993EDF1B8 -- C:\Windows\system32\KEYBOARD.SYS
[2006.11.02 08:09:29 | 000,027,866 | ---- | M] () MD5=FFFF296A08DBF2AC0126C62E3778AC0D -- C:\Windows\system32\NTDOS.SYS
[2006.11.02 08:09:35 | 000,029,146 | ---- | M] () MD5=CF9ED169FF86D935E47999E82359E898 -- C:\Windows\system32\NTDOS404.SYS
[2006.11.02 08:09:38 | 000,029,370 | ---- | M] () MD5=03B945AC0481CD8BB161C3569D8ED1C3 -- C:\Windows\system32\NTDOS411.SYS
[2006.11.02 08:09:40 | 000,029,274 | ---- | M] () MD5=BBC957DC18C17CC027EB80B7C77F2AEA -- C:\Windows\system32\NTDOS412.SYS
[2006.11.02 08:09:31 | 000,029,146 | ---- | M] () MD5=3CFFAEFFF23B0D208214A6D3061A5B1B -- C:\Windows\system32\NTDOS804.SYS
[2006.11.02 08:09:20 | 000,033,952 | ---- | M] () MD5=2E4112FB7D1B76E11ADFD7487B5D0E95 -- C:\Windows\system32\NTIO.SYS
[2006.11.02 08:09:23 | 000,034,672 | ---- | M] () MD5=A98EBD4C2DF983665BF2D1AF49949974 -- C:\Windows\system32\NTIO404.SYS
[2006.11.02 08:09:24 | 000,035,776 | ---- | M] () MD5=3F7E6406EDEF197C5CAAB2240EEF6F48 -- C:\Windows\system32\NTIO411.SYS
[2006.11.02 08:09:26 | 000,035,536 | ---- | M] () MD5=3E64D681B776CC57BDC38A46D881F85B -- C:\Windows\system32\NTIO412.SYS
[2006.11.02 08:09:22 | 000,034,672 | ---- | M] () MD5=D86B6435729231C171432B4E77801BDB -- C:\Windows\system32\NTIO804.SYS
[2012.11.13 02:36:35 | 002,048,000 | ---- | M] (Microsoft Corporation) MD5=F167606EC2C01D804FC72F8F84E73E19 -- C:\Windows\system32\win32k.sys
< >
< >
< >
< %systemroot%\system32\drivers\*.sys /10 >
< %systemroot%\system32\drivers\*.sys /X >
[2008.07.03 17:49:39 | 000,000,012 | ---- | M] () -- C:\Windows\system32\drivers\FSC__PI__AMILO Pi 3540 __FUJITSU SIEMENS_F47 __Ver 1.00PARTTBL8_FSC - 6040000_1.02C__NVIDIA GeForce 9300M GS.MRK
[2006.09.18 22:26:46 | 003,440,660 | ---- | M] () -- C:\Windows\system32\drivers\gm.dls
[2006.09.18 22:26:46 | 000,000,646 | ---- | M] () -- C:\Windows\system32\drivers\gmreadme.txt
[2012.06.02 15:34:21 | 000,000,003 | ---- | M] () -- C:\Windows\system32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2012.06.02 15:57:50 | 000,000,003 | ---- | M] () -- C:\Windows\system32\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2009.09.30 18:30:36 | 000,000,000 | -H-- | M] () -- C:\Windows\system32\drivers\Msft_User_WpdFs_01_00_00.Wdf
[2009.11.18 03:15:26 | 000,000,000 | -H-- | M] () -- C:\Windows\system32\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2012.07.15 17:59:28 | 000,000,000 | -H-- | M] () -- C:\Windows\system32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
[2009.09.01 07:19:18 | 000,004,224 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvBridge.kmd
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\system32\*.* /10 >
[2012.12.28 19:36:52 | 000,003,344 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012.12.28 19:36:52 | 000,003,344 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012.12.21 18:22:28 | 000,435,680 | ---- | M] () -- C:\Windows\system32\FNTCACHE.DAT
[2012.12.19 13:06:15 | 000,136,306 | ---- | M] () -- C:\Windows\system32\perfc005.dat
[2012.12.19 13:06:15 | 000,118,778 | ---- | M] () -- C:\Windows\system32\perfc009.dat
[2012.12.19 13:06:15 | 000,642,632 | ---- | M] () -- C:\Windows\system32\perfh005.dat
[2012.12.19 13:06:15 | 000,632,152 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2012.12.19 13:06:15 | 001,524,722 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\*.* /lockedfiles >
[2012.12.28 19:36:52 | 000,003,344 | -H-- | M] () Unable to obtain MD5 -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012.12.28 19:36:52 | 000,003,344 | -H-- | M] () Unable to obtain MD5 -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
< %systemroot%\system32\config\*.sav >
[2008.07.03 18:07:17 | 028,893,184 | ---- | M] () -- C:\Windows\system32\config\COMPONENTS.SAV
[2008.07.03 18:06:46 | 000,106,496 | ---- | M] () -- C:\Windows\system32\config\DEFAULT.SAV
[2008.07.03 18:07:17 | 000,020,480 | ---- | M] () -- C:\Windows\system32\config\SECURITY.SAV
[2008.07.03 18:07:27 | 018,444,288 | ---- | M] () -- C:\Windows\system32\config\SOFTWARE.SAV
[2008.07.03 18:07:29 | 006,684,672 | ---- | M] () -- C:\Windows\system32\config\SYSTEM.SAV
< >
< >
< >
< %systemroot%\Tasks\*.job >
[2012.12.28 09:23:52 | 000,000,370 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Daily 1).job
[2012.12.28 09:23:52 | 000,000,370 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Daily 2).job
[2012.12.27 12:45:00 | 000,000,370 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Daily 3).job
[2012.12.28 09:23:52 | 000,000,370 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Daily 4).job
[2012.11.29 06:02:25 | 000,000,370 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Weekly).job
[2012.12.28 20:28:00 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2012.12.28 19:37:25 | 000,000,932 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2012.12.28 20:39:04 | 000,000,936 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2010.04.14 08:29:20 | 000,000,310 | ---- | M] () -- C:\Windows\Tasks\Install_NSS.job
[2012.12.28 09:24:32 | 000,000,366 | ---- | M] () -- C:\Windows\Tasks\ReclaimerUpdateFiles_Adam.job
[2012.12.28 09:24:22 | 000,000,362 | ---- | M] () -- C:\Windows\Tasks\ReclaimerUpdateXML_Adam.job
[2012.12.28 19:37:26 | 000,000,372 | ---- | M] () -- C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Adam.job
< %systemroot%\*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[14 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[11 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[99 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
[3 C:\Windows\Temp\_avast_\*.tmp files -> C:\Windows\Temp\_avast_\*.tmp -> ]
< %systemroot%\*. /rp /s >
< %ALLUSERSPROFILE%\Data Aplikací\*.* >
< %ALLUSERSPROFILE%\Data Aplikací\*.exe /s >
< %ALLUSERSPROFILE%\Nabídka Start\*.lnk /x >
< %ALLUSERSPROFILE%\Data Aplikácií\*.* >
< %ALLUSERSPROFILE%\Data Aplikácií\*.exe /s >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %ALLUSERSPROFILE%\Start Menu\*.lnk /x >
< %APPDATA%\*. >
[2009.11.01 17:33:09 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\2K Sports
[2009.10.10 10:59:10 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Ableton
[2010.12.12 16:32:00 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Adobe
[2010.10.19 10:11:59 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\AnvSoft
[2012.06.18 17:21:27 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Apple Computer
[2012.12.21 06:38:21 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Azureus
[2012.12.21 22:21:29 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\BSplayer
[2009.10.03 20:59:46 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\BSplayer Pro
[2009.11.14 15:26:45 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Desktop Sidebar
[2010.12.15 13:54:53 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Download Manager
[2011.03.20 10:41:49 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\FileZilla
[2010.08.15 10:19:22 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\GetRightToGo
[2012.12.03 18:45:40 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\GoPro
[2010.08.25 18:29:49 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Hamachi
[2012.11.19 21:22:18 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\ICQ
[2009.09.30 17:43:22 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Identities
[2009.11.01 17:30:05 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\InstallShield
[2010.03.23 17:51:35 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Leawo
[2009.10.02 17:53:21 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Macromedia
[2010.03.07 12:17:10 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Malwarebytes
[2006.11.02 13:37:34 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Media Center Programs
[2012.03.18 11:54:28 | 000,000,000 | --SD | M] -- C:\Users\Adam\AppData\Roaming\Microsoft
[2009.10.04 23:56:30 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Mozilla
[2009.11.18 10:51:44 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Nero
[2010.02.02 11:05:14 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\PC Suite
[2012.12.17 23:40:44 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\proDAD
[2011.03.30 12:42:20 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\PunkBuster
[2012.09.28 22:35:41 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Rayman Origins
[2012.06.16 13:06:32 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Real
[2010.02.02 10:34:59 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Samsung
[2011.04.03 19:19:57 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\ShopperReports3
[2012.12.17 22:46:00 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\SimilarSites
[2009.11.12 14:19:56 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Sinovation
[2012.11.19 21:22:14 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Skype
[2011.07.27 16:57:51 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\skypePM
[2012.12.17 15:24:03 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Sony
[2010.12.09 01:59:49 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Spyware Terminator
[2009.10.03 00:13:42 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\StreamTorrent
[2009.11.15 01:01:24 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\TVU Networks
[2010.05.06 09:12:32 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Ubisoft
[2009.10.02 19:34:53 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\WinRAR
[2010.08.05 08:50:03 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\YoudaGames
< %APPDATA%\*.* >
< %APPDATA%\*.exe /s >
[2009.11.02 15:39:24 | 010,686,001 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\Azureus\plugins\azump\mplayer.exe
[2012.12.21 06:12:27 | 007,365,072 | ---- | M] (Azureus Software, Inc.) -- C:\Users\Adam\AppData\Roaming\Azureus\tmp\AZU5822138942597003262.tmp\Vuze_4.8.1.2_win32.exe
[2009.08.11 20:21:26 | 000,087,552 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\BSplayer\AC3 Filter\ac3config.exe
[2009.08.11 20:21:30 | 000,090,112 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\BSplayer\AC3 Filter\spdif_test.exe
[2010.03.22 13:52:04 | 000,697,690 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\BSplayer\AC3 Filter\unins000.exe
[2012.10.11 09:01:20 | 001,175,371 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\BSplayer\FFDShow\unins000.exe
[2010.08.14 10:42:54 | 000,113,152 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\BSplayer\Haali media splitter\dsmux.exe
[2010.08.14 10:45:10 | 000,358,400 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\BSplayer\Haali media splitter\gdsmux.exe
[2010.08.14 10:42:06 | 000,137,728 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\BSplayer\Haali media splitter\mkv2vfr.exe
[2010.09.30 15:30:22 | 000,042,305 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\BSplayer\Haali media splitter\uninstall.exe
[2012.01.05 17:51:27 | 003,763,360 | ---- | M] (Adobe Systems, Inc.) -- C:\Users\Adam\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\fpupdatepl\fpupdatepl.exe
[2012.12.17 22:27:08 | 000,029,926 | R--- | M] () -- C:\Users\Adam\AppData\Roaming\Microsoft\Installer\{6DE721A5-5E89-4D74-994C-652BB3C0672E}\ARPPRODUCTICON.exe
[2012.12.17 23:18:57 | 000,010,134 | R--- | M] () -- C:\Users\Adam\AppData\Roaming\Microsoft\Installer\{CBF78A5F-7950-4CF1-A063-C4C7B2B82CE6}\ARPPRODUCTICON.exe
[2009.11.13 14:42:27 | 000,385,024 | R--- | M] (Macrovision Corporation) -- C:\Users\Adam\AppData\Roaming\Microsoft\Installer\{F770C509-0658-4BB9-A9A8-930E512934C2}\Amnesty_Generator._41C7F924D0BD410D9D36FCCA75058D1B_1.exe
[2009.11.13 14:42:27 | 000,385,024 | R--- | M] (Macrovision Corporation) -- C:\Users\Adam\AppData\Roaming\Microsoft\Installer\{F770C509-0658-4BB9-A9A8-930E512934C2}\Amnesty_Generator._5F8ED782BF234742A57E49338B9764EE.exe
[2009.11.13 14:42:27 | 000,010,134 | R--- | M] () -- C:\Users\Adam\AppData\Roaming\Microsoft\Installer\{F770C509-0658-4BB9-A9A8-930E512934C2}\ARPPRODUCTICON.exe
[2011.02.24 16:07:45 | 000,835,440 | R--- | M] () -- C:\Users\Adam\AppData\Roaming\PunkBuster\pbsetup\pbsvc.exe
[2012.09.28 22:23:09 | 001,110,886 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\Rayman Origins\Uninstall\unins000.exe
[2012.06.16 13:00:51 | 000,590,488 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Adam\AppData\Roaming\Real\RealPlayer\setup\AU_setup31.exe
[2010.03.08 12:53:47 | 000,439,816 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Adam\AppData\Roaming\Real\Update\setup3.10\setup.exe
[2010.06.27 14:49:54 | 000,439,816 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Adam\AppData\Roaming\Real\Update\setup3.11\setup.exe
[2010.12.09 10:08:40 | 000,506,024 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Adam\AppData\Roaming\Real\Update\setup3.13\setup.exe
[2011.01.28 10:44:32 | 000,510,120 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Adam\AppData\Roaming\Real\Update\setup3.14\setup.exe
[2012.05.12 01:01:47 | 000,315,512 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Adam\AppData\Roaming\Real\Update\temp\~Upg0\rnupgagent.exe
[2012.09.28 21:21:10 | 000,449,176 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Adam\AppData\Roaming\Real\Update\temp\~Upg1\rnupgagent.exe
[2012.12.21 06:27:03 | 000,449,176 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Adam\AppData\Roaming\Real\Update\temp\~Upg2\rnupgagent.exe
[2012.12.21 06:27:03 | 000,449,176 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Adam\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.30\agent\rnupgagent.exe
[2012.12.21 18:28:26 | 039,416,288 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Adam\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.30\agent\stub_data\RealPlayer.exe
[2012.12.21 18:26:46 | 000,765,248 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Adam\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.30\agent\stub_exe\RealPlayer.exe
[2010.02.02 10:58:23 | 089,280,248 | ---- | M] (Samsung Electronics Co., Ltd. ) -- C:\Users\Adam\AppData\Roaming\Samsung\New PC Studio\LiveUpdate\Setup_For_Full_Update_IH2_7.exe
[2010.07.10 17:09:04 | 142,139,224 | ---- | M] (Samsung Electronics Co., Ltd. ) -- C:\Users\Adam\AppData\Roaming\Samsung\New PC Studio\LiveUpdate\Setup_Full_Update_NPS2_10064_2.exe
[2012.03.28 17:05:54 | 000,212,803 | ---- | M] (SimilarSites) -- C:\Users\Adam\AppData\Roaming\SimilarSites\similarsites.exe
[2010.09.27 16:43:57 | 005,642,000 | ---- | M] (TVU networks) -- C:\Users\Adam\AppData\Roaming\TVU Networks\TVU AutoUpgrade\TVUPlayer2.5.3.1.exe
< %SYSTEMDRIVE%\*.exe >
< >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"WindowsWelcomeCenter" = rundll32.exe oobefldr.dll,ShowWelcomeCenter
"ehTray.exe" = C:\Windows\ehome\ehTray.exe -- [2008.01.21 03:25:11 | 000,125,952 | ---- | M] (Microsoft Corporation)
"DW6" = "C:\Program Files\The Weather Channel FW\Desktop\DesktopWeather.exe"
"Xvid" = C:\Program Files\Xvid\CheckUpdate.exe -- [2011.01.17 20:41:43 | 000,008,192 | ---- | M] ()
"Akamai NetSession Interface" = "C:\Users\Adam\AppData\Local\Akamai\netsession_win.exe" -- [2012.10.09 09:53:36 | 004,441,920 | ---- | M] (Akamai Technologies, Inc.)
"DW7" = "C:\Program Files\The Weather Channel\The Weather Channel App\TWCApp.exe" -- [2011.12.12 12:12:16 | 010,448,384 | ---- | M] (The Weather Channel)
"AlcoholAutomount" = "C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe" -automount -- [2012.01.05 16:42:34 | 000,075,624 | ---- | M] (Alcohol Soft Development Team)
< >
< >
< >
< type c:\boot.ini >>"C:\test.txt" /c >
< bcdedit /enum all /v >>"C:\boot.txt" /c >
Spr vce spouçtŘnˇ syst‚mu Windows
--------------------
identifik tor {9dea862c-5cdd-4e70-acc1-f32b344d4795}
device partition=C:
description Windows Boot Manager
locale cs-CZ
inherit {7ea2e1ac-2e61-4728-aaa3-896d9d0a9f0e}
default {8425ef2d-4922-11dd-af30-d39299d06cb0}
resumeobject {8425ef2e-4922-11dd-af30-d39299d06cb0}
displayorder {8425ef2d-4922-11dd-af30-d39299d06cb0}
toolsdisplayorder {b2721d73-1db4-4c62-bf78-c548a880142d}
timeout 30
resume No
Zav dŘcˇ program pro spouçtŘnˇ syst‚mu Windows
-------------------
identifik tor {572bcd56-ffa7-11d9-aae0-0007e994107d}
device ramdisk=[\Device\HarddiskVolume1]\sources\boot.wim,{ad6c7bc8-fa0f-11da-8ddf-0013200354d8}
path \windows\system32\boot\winload.exe
description Windows Recovery Environment
osdevice ramdisk=[\Device\HarddiskVolume1]\sources\boot.wim,{ad6c7bc8-fa0f-11da-8ddf-0013200354d8}
systemroot \windows
nx OptIn
detecthal Yes
winpe Yes
Zav dŘcˇ program pro spouçtŘnˇ syst‚mu Windows
-------------------
identifik tor {8425ef2d-4922-11dd-af30-d39299d06cb0}
device partition=C:
path \Windows\system32\winload.exe
description Microsoft Windows Vista
locale cs-CZ
inherit {6efb52bf-1766-41db-a6b3-0ee5eff72bd7}
recoverysequence {572bcd56-ffa7-11d9-aae0-0007e994107d}
recoveryenabled Yes
osdevice partition=C:
systemroot \Windows
resumeobject {8425ef2e-4922-11dd-af30-d39299d06cb0}
nx OptIn
Obnovenˇ z hibernace
---------------------
identifik tor {8425ef2e-4922-11dd-af30-d39299d06cb0}
device partition=C:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale cs-CZ
inherit {1afa9c49-16ab-4a5c-901b-212802da9460}
filedevice partition=C:
filepath \hiberfil.sys
pae Yes
debugoptionenabled No
Testov nˇ pamŘti syst‚mu Windows
---------------------
identifik tor {b2721d73-1db4-4c62-bf78-c548a880142d}
device partition=C:
path \boot\memtest.exe
description Diagnostika pamŘti syst‚mu Windows
locale cs-CZ
inherit {7ea2e1ac-2e61-4728-aaa3-896d9d0a9f0e}
badmemoryaccess Yes
Starçˇ zavadŘź operaźnˇho syst‚mu Windows
------------------------
identifik tor {466f5a88-0af2-4f76-9038-095b170dc21c}
device partition=C:
path \ntldr
description DýˇvŘjçˇ verze syst‚mu Windows
Nastavenˇ slu§by EMS
------------
identifik tor {0ce4991b-e6b3-4b16-b23c-5e0d9250e5d9}
bootems Yes
Nastavenˇ ladicˇho programu
-----------------
identifik tor {4636856e-540f-4170-a130-a84776f4c654}
debugtype Serial
debugport 1
baudrate 115200
Chyby pamŘti RAM
-----------
identifik tor {5189b25c-5558-4bf2-bca4-289b11bd29e2}
Glob lnˇ nastavenˇ
---------------
identifik tor {7ea2e1ac-2e61-4728-aaa3-896d9d0a9f0e}
inherit {4636856e-540f-4170-a130-a84776f4c654}
{0ce4991b-e6b3-4b16-b23c-5e0d9250e5d9}
{5189b25c-5558-4bf2-bca4-289b11bd29e2}
Nastavenˇ spouçtŘcˇho zavadŘźe
--------------------
identifik tor {6efb52bf-1766-41db-a6b3-0ee5eff72bd7}
inherit {7ea2e1ac-2e61-4728-aaa3-896d9d0a9f0e}
Nastavenˇ zavadŘźe obnovenˇ
----------------------
identifik tor {1afa9c49-16ab-4a5c-901b-212802da9460}
inherit {7ea2e1ac-2e61-4728-aaa3-896d9d0a9f0e}
Parametry zaýˇzenˇ
--------------
identifik tor {ad6c7bc8-fa0f-11da-8ddf-0013200354d8}
description Ramdisk Device Options
ramdisksdidevice partition=\Device\HarddiskVolume1
ramdisksdipath \boot\boot.sdi
< type C:\boot.txt >>"C:\test1.txt" /c >
< echo list vol > C:\prikaz.txt | diskpart /s C:\prikaz.txt > C:\test2.txt /c >
Microsoft DiskPart verze 6.0.6002
Copyright (C) 1999-2007 Microsoft Corporation.
V poźˇtaźi: ADAM-PC
Svazek ### Ltr Jmenovka Fs Typ Velikost Stav Info
---------- --- ----------- ----- ---------- -------- --------- --------
Svazek 0 E DVD-ROM 0 B ¦ dn‚ m‚d
Svazek 1 F DVD-ROM 0 B ¦ dn‚ m‚d
Svazek 2 H DVD-ROM 0 B ¦ dn‚ m‚d
Svazek 3 C SYSTEM NTFS Oddˇl 94 GB V poý dku Syst‚m
Svazek 4 D DATA NTFS Oddˇl 130 GB V poý dku
< >
< %ALLUSERSPROFILE%\*.dll /s >
[2011.03.30 18:29:02 | 000,070,584 | ---- | M] (Adobe Systems Incorporated) -- C:\ProgramData\Adobe\ARM\Reader_10.0.1\29213\AdobeExtractFiles.dll
[2012.10.04 20:02:15 | 000,211,624 | ---- | M] (Ask.com) -- C:\ProgramData\Ask\APN-Stub\PTV\Local\APNIC.dll
[2012.08.20 16:05:00 | 000,515,664 | ---- | M] () -- C:\ProgramData\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
[2006.11.02 13:34:31 | 000,015,616 | ---- | M] (Microsoft Corp.) -- C:\ProgramData\Microsoft\IdentityCRL\ppcrlconfig.dll
[2006.11.02 13:34:31 | 000,254,216 | ---- | M] (Microsoft Corp.) -- C:\ProgramData\Microsoft\IdentityCRL\ppcrlui.dll
[2012.11.08 19:00:47 | 006,812,136 | ---- | M] (Microsoft Corporation) -- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1B5695A4-3511-47B8-BEB2-29FDF3961AD9}\mpengine.dll
[2012.12.28 09:31:56 | 000,060,872 | ---- | M] () -- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1B5695A4-3511-47B8-BEB2-29FDF3961AD9}\offreg.dll
[2012.11.08 19:00:47 | 006,812,136 | ---- | M] (Microsoft Corporation) -- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
[2008.01.21 03:23:32 | 002,730,536 | ---- | M] (Microsoft Corporation) -- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\MpEngine.dll
[2008.02.08 12:22:34 | 001,347,584 | ---- | M] (Doctor Web, Ltd.) -- C:\ProgramData\Nero\DrWeb\Drweb32.dll
[2012.06.16 13:04:34 | 000,398,512 | ---- | M] (RealPlayer) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Common\rpcommon150browserrecordplugin.dll
[2012.06.16 13:04:37 | 000,035,840 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Components\nprpffbrowserrecordext.dll
[2012.06.16 13:04:37 | 000,032,256 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Components\nprpffbrowserrecordlegacyext.dll
[2012.06.16 13:04:34 | 000,028,160 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Hook\rpchrome150browserrecordhelper.dll
[2012.06.16 13:04:32 | 000,425,680 | ---- | M] (RealPlayer) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
[2012.06.16 13:04:34 | 000,095,744 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
[2012.06.16 13:04:34 | 000,019,456 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
[2012.06.16 13:04:38 | 000,045,568 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\ThinShims\rpnpshimhtml5.dll
[2012.06.16 13:04:38 | 000,045,568 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\ThinShims\rpnpshimqt.dll
[2012.06.16 13:04:38 | 000,045,568 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\ThinShims\rpnpshimrp.dll
[2012.06.16 13:04:38 | 000,045,568 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\ThinShims\rpnpshimswf.dll
[2012.06.16 13:04:38 | 000,045,568 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\ThinShims\rpnpshimwmp.dll
[2011.06.05 10:05:20 | 000,676,224 | ---- | M] (EasyBits Software AS) -- C:\ProgramData\Skype Extras\Plugins\F57B48ADF2224F088EDD1A2B9BAD84E8\Games\53F537B72987463CB06D78F5541A3239\skGamesUpdate.dll
< C:\ProgramData\*.* >
[2009.10.02 18:57:52 | 000,000,056 | -H-- | M] () -- C:\ProgramData\ezsidmv.dat
[2012.12.28 19:37:43 | 000,151,176 | ---- | M] () -- C:\ProgramData\nvModes.001
[2012.12.28 19:37:27 | 000,151,176 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2011.02.20 11:58:02 | 000,001,302 | ---- | M] () -- C:\ProgramData\ss.ini
[2012.12.17 23:10:53 | 000,001,950 | ---- | M] () -- C:\ProgramData\__wdump.txt
========== Hard Links - Junction Points - Mount Points - Symbolic Links ==========
[C:\Windows\System32\config\systemprofile\AppData\Local\Data aplikací] -> C:\Windows\system32\config\systemprofile\AppData\Local -> Junction
[C:\Windows\System32\config\systemprofile\AppData\Local\Historie] -> C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History -> Junction
[C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files] -> C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files -> Junction
[C:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu\Programy] -> C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs -> Junction
[C:\Windows\System32\config\systemprofile\Data aplikací] -> C:\Windows\system32\config\systemprofile\AppData\Roaming -> Junction
[C:\Windows\System32\config\systemprofile\Documents\Filmy] -> C:\Windows\system32\config\systemprofile\Videos -> Junction
[C:\Windows\System32\config\systemprofile\Documents\Hudba] -> C:\Windows\system32\config\systemprofile\Music -> Junction
[C:\Windows\System32\config\systemprofile\Documents\Obrázky] -> C:\Windows\system32\config\systemprofile\Pictures -> Junction
[C:\Windows\System32\config\systemprofile\Dokumenty] -> C:\Windows\system32\config\systemprofile\Documents -> Junction
[C:\Windows\System32\config\systemprofile\Local Settings] -> C:\Windows\system32\config\systemprofile\AppData\Local -> Junction
[C:\Windows\System32\config\systemprofile\Nabídka Start] -> C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu -> Junction
[C:\Windows\System32\config\systemprofile\Okolní síť] -> C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Network Shortcuts -> Junction
[C:\Windows\System32\config\systemprofile\Okolní tiskárny] -> C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Printer Shortcuts -> Junction
[C:\Windows\System32\config\systemprofile\Recent] -> C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Recent -> Junction
[C:\Windows\System32\config\systemprofile\SendTo] -> C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\SendTo -> Junction
[C:\Windows\System32\config\systemprofile\Soubory cookie] -> C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies -> Junction
[C:\Windows\System32\config\systemprofile\Šablony] -> C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Templates -> Junction
========== Alternate Data Streams ==========
@Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT
@Alternate Data Stream - 140 bytes -> C:\ProgramData\TEMP:054203E4
< End of report >
[2010.06.23 09:21:32 | 000,259,176 | ---- | M] (Realtek ) MD5=2D19A7469EA19993D0C12E627F4530BC -- C:\Windows\system32\drivers\Rtlh86.sys
[2006.11.02 10:50:16 | 000,076,392 | ---- | M] (Microsoft Corporation) MD5=3CE8F073A557E172B330109436984E30 -- C:\Windows\system32\drivers\sbp2port.sys
[2008.01.21 03:23:54 | 000,142,904 | ---- | M] (Microsoft Corporation) MD5=6F5CA34AE885645ACF8A20D564DB976C -- C:\Windows\system32\drivers\scsiport.sys
[2006.11.02 07:37:21 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) MD5=90A3935D05B494A5A39D37E71F09A677 -- C:\Windows\system32\drivers\secdrv.sys
[2006.11.02 09:51:25 | 000,017,920 | ---- | M] (Microsoft Corporation) MD5=68E44E331D46F0FB38F0863A84CD1A31 -- C:\Windows\system32\drivers\serenum.sys
[2006.11.02 09:51:30 | 000,083,456 | ---- | M] (Microsoft Corporation) MD5=C70D69A918B178D3C3B06339B40C2E1B -- C:\Windows\system32\drivers\serial.sys
[2008.01.21 03:23:20 | 000,019,968 | ---- | M] (Microsoft Corporation) MD5=8AF3D28A879BF75DB53A0EE7A4289624 -- C:\Windows\system32\drivers\sermouse.sys
[2008.01.21 03:23:23 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=3EFA810BDCA87F6ECC24F9832243FE86 -- C:\Windows\system32\drivers\sffdisk.sys
[2008.01.21 03:23:23 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=E95D451F7EA3E583AEC75F3B3EE42DC5 -- C:\Windows\system32\drivers\sffp_mmc.sys
[2008.01.21 03:23:23 | 000,011,776 | ---- | M] (Microsoft Corporation) MD5=3D0EA348784B7AC9EA9BD9F317980979 -- C:\Windows\system32\drivers\sffp_sd.sys
[2006.11.02 09:51:40 | 000,013,312 | ---- | M] (Microsoft Corporation) MD5=46ED8E91793B2E6F848015445A0AC188 -- C:\Windows\system32\drivers\sfloppy.sys
[2008.01.21 03:23:01 | 000,055,864 | ---- | M] (Microsoft Corporation) MD5=1D76624A09A054F682D746B924E2DBC3 -- C:\Windows\system32\drivers\SISAGP.SYS
[2008.01.21 03:23:26 | 000,041,016 | ---- | M] (Microsoft Corporation) MD5=43CB7AA756C7DB280D01DA9B676CFDE2 -- C:\Windows\system32\drivers\sisraid2.sys
[2008.01.21 03:23:26 | 000,074,808 | ---- | M] (Silicon Integrated Systems) MD5=A99C6C8B0BAA970D8AA59DDC50B57F94 -- C:\Windows\system32\drivers\sisraid4.sys
[2009.04.11 05:45:22 | 000,066,560 | ---- | M] (Microsoft Corporation) MD5=7B75299A4D201D6A6533603D6914AB04 -- C:\Windows\system32\drivers\smb.sys
[2008.01.21 03:24:55 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=A7D7EA1771D2ED6F39A8063E79B6C3E8 -- C:\Windows\system32\drivers\smclib.sys
[2008.01.21 03:24:11 | 000,021,048 | ---- | M] (Microsoft Corporation) MD5=7AEBDEEF071FE28B0EEF2CDD69102BFF -- C:\Windows\system32\drivers\spldr.sys
[2009.04.11 03:52:40 | 000,684,032 | ---- | M] (Microsoft Corporation) MD5=A7F8BAD9590ADDC425B4003E94780DFA -- C:\Windows\system32\drivers\spsys.sys
[2012.12.17 22:46:29 | 000,466,008 | ---- | M] (Duplex Secure Ltd.) MD5=68103A2B441BBF3908EBB587F0704D6C -- C:\Windows\system32\drivers\sptd.sys
[2009.10.02 17:59:33 | 000,142,592 | ---- | M] () MD5=8831252BCF05FCFB5ABD116A22E552D8 -- C:\Windows\system32\drivers\sp_rsdrv2.sys
[2011.02.18 15:03:32 | 000,305,152 | ---- | M] (Microsoft Corporation) MD5=41987F9FC0E61ADF54F581E15029AD91 -- C:\Windows\system32\drivers\srv.sys
[2011.04.29 14:25:10 | 000,146,432 | ---- | M] (Microsoft Corporation) MD5=FF33AFF99564B1AA534F58868CBE41EF -- C:\Windows\system32\drivers\srv2.sys
[2011.04.29 14:25:09 | 000,102,400 | ---- | M] (Microsoft Corporation) MD5=7605C0E1D01A08F3ECD743F38B834A44 -- C:\Windows\system32\drivers\srvnet.sys
[2009.03.20 10:01:26 | 000,090,112 | ---- | M] (MCCI) MD5=EAA66218CD39F5BB1B4853A78C67C787 -- C:\Windows\system32\drivers\ss_bbus.sys
[2009.03.20 10:01:26 | 000,012,160 | ---- | M] (MCCI Corporation) MD5=F8A771C5A63DC641772B7A3B05AF173F -- C:\Windows\system32\drivers\ss_bcm.sys
[2009.03.20 10:01:26 | 000,012,160 | ---- | M] (MCCI Corporation) MD5=F8A771C5A63DC641772B7A3B05AF173F -- C:\Windows\system32\drivers\ss_bcmnt.sys
[2009.03.20 10:01:26 | 000,014,976 | ---- | M] (MCCI Corporation) MD5=91765F99914ED8693D8BC76524F21581 -- C:\Windows\system32\drivers\ss_bmdfl.sys
[2009.03.20 10:01:26 | 000,121,856 | ---- | M] (MCCI Corporation) MD5=840E7B738B03C10EE91D9B7D3D6EFF15 -- C:\Windows\system32\drivers\ss_bmdm.sys
[2009.03.20 10:01:26 | 000,012,160 | ---- | M] (MCCI Corporation) MD5=29B73D03AE6EDABB88E50364B066A6CA -- C:\Windows\system32\drivers\ss_bwh.sys
[2009.03.20 10:01:26 | 000,012,160 | ---- | M] (MCCI Corporation) MD5=29B73D03AE6EDABB88E50364B066A6CA -- C:\Windows\system32\drivers\ss_bwhnt.sys
[2010.02.02 10:59:40 | 000,005,632 | ---- | M] () MD5=306521935042FC0A6988D528643619B3 -- C:\Windows\system32\drivers\StarOpen.sys
[2009.04.11 07:32:54 | 000,122,344 | ---- | M] (Microsoft Corporation) MD5=47E55AFE1ED1D5AFF09690DB226F4A7A -- C:\Windows\system32\drivers\Storport.sys
[2009.04.11 05:42:47 | 000,052,992 | ---- | M] (Microsoft Corporation) MD5=70A92E46A2F459CDEDE3CA558CB26B6A -- C:\Windows\system32\drivers\stream.sys
[2008.01.21 03:23:01 | 000,015,288 | ---- | M] (Microsoft Corporation) MD5=7BA58ECF0C0A9A69D44B3DCA62BECF56 -- C:\Windows\system32\drivers\swenum.sys
[2006.11.02 10:50:05 | 000,035,944 | ---- | M] (LSI Logic) MD5=192AA3AC01DF071B541094F251DEED10 -- C:\Windows\system32\drivers\symc8xx.sys
[2006.11.02 10:49:56 | 000,031,848 | ---- | M] (LSI Logic) MD5=8C8EB8C76736EBAF3B13B633B2E64125 -- C:\Windows\system32\drivers\sym_hi.sys
[2006.11.02 10:50:03 | 000,034,920 | ---- | M] (LSI Logic) MD5=8072AF52B5FD103BBBA387A1E49F62CB -- C:\Windows\system32\drivers\sym_u3.sys
[2008.01.21 03:24:44 | 000,024,576 | ---- | M] (Microsoft Corporation) MD5=1239FD18895040D97B7CDBC19BC2075E -- C:\Windows\system32\drivers\tape.sys
[2012.03.30 13:39:11 | 000,905,600 | ---- | M] (Microsoft Corporation) MD5=27D470DABC77BC60D0A3B0E4DEB6CB91 -- C:\Windows\system32\drivers\tcpip.sys
[2009.12.08 18:26:18 | 000,030,720 | ---- | M] (Microsoft Corporation) MD5=608C345A255D82A6289C2D468EB41FD7 -- C:\Windows\system32\drivers\tcpipreg.sys
[2008.01.21 03:24:05 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=77937EFF009AC696B90E09F671F9D0A4 -- C:\Windows\system32\drivers\tdi.sys
[2008.01.21 03:24:08 | 000,017,920 | ---- | M] (Microsoft Corporation) MD5=5DCF5E267BE67A1AE926F2DF77FBCC56 -- C:\Windows\system32\drivers\tdpipe.sys
[2008.01.21 03:24:08 | 000,029,184 | ---- | M] (Microsoft Corporation) MD5=389C63E32B3CEFED425B61ED92D3F021 -- C:\Windows\system32\drivers\tdtcp.sys
[2009.04.11 05:45:56 | 000,072,192 | ---- | M] (Microsoft Corporation) MD5=76B06EB8A01FC8624D699E7045303E54 -- C:\Windows\system32\drivers\tdx.sys
[2009.04.11 07:32:52 | 000,053,224 | ---- | M] (Microsoft Corporation) MD5=3CAD38910468EAB9A6479E2F01DB43C7 -- C:\Windows\system32\drivers\termdd.sys
[2008.01.21 03:24:59 | 000,023,552 | ---- | M] (Microsoft Corporation) MD5=DCF0F056A2E4F52287264F5AB29CF206 -- C:\Windows\system32\drivers\tssecsrv.sys
[2008.01.21 03:24:25 | 000,015,360 | ---- | M] (Microsoft Corporation) MD5=CAECC0120AC49E3D2F758B9169872D38 -- C:\Windows\system32\drivers\TUNMP.SYS
[2010.02.18 12:28:13 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=300DB877AC094FEAB0BE7688C3454A9C -- C:\Windows\system32\drivers\tunnel.sys
[2008.01.21 03:23:22 | 000,059,448 | ---- | M] (Microsoft Corporation) MD5=7D33C4DB2CE363C8518D2DFCF533941F -- C:\Windows\system32\drivers\UAGP35.SYS
[2009.04.11 05:13:59 | 000,226,816 | ---- | M] (Microsoft Corporation) MD5=D9728AF68C4C7693CB100B8441CBDEC6 -- C:\Windows\system32\drivers\udfs.sys
[2008.01.21 03:23:01 | 000,060,984 | ---- | M] (Microsoft Corporation) MD5=B0ACFDC9E4AF279E9116C03E014B2B27 -- C:\Windows\system32\drivers\ULIAGPKX.SYS
[2008.01.21 03:23:20 | 000,238,648 | ---- | M] (ULi Electronics Inc.) MD5=9224BB254F591DE4CA8D572A5F0D635C -- C:\Windows\system32\drivers\uliahci.sys
[2006.11.02 10:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) MD5=8514D0E5CD0534467C5FC61BE94A569F -- C:\Windows\system32\drivers\ulsata.sys
[2008.01.21 03:23:23 | 000,115,816 | ---- | M] (Promise Technology, Inc.) MD5=38C3C6E62B157A6BC46594FADA45C62B -- C:\Windows\system32\drivers\ulsata2.sys
[2008.01.21 03:23:22 | 000,034,816 | ---- | M] (Microsoft Corporation) MD5=32CFF9F809AE9AED85464492BF3E32D2 -- C:\Windows\system32\drivers\umbus.sys
[2008.01.21 03:23:49 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=88BD96A1BAEED33EE8BDF9499C07A841 -- C:\Windows\system32\drivers\umpass.sys
[2009.04.11 05:46:08 | 000,015,872 | ---- | M] (Microsoft Corporation) MD5=830D5D8456B822C1247C1E59B4C464FA -- C:\Windows\system32\drivers\usb8023.sys
[2009.04.11 05:42:56 | 000,025,856 | ---- | M] (Microsoft Corporation) MD5=D06F193F3E9CC3B356DF97F6A43C054A -- C:\Windows\system32\drivers\USBCAMD.sys
[2009.04.11 05:42:56 | 000,025,856 | ---- | M] (Microsoft Corporation) MD5=EAE017D3AA298374A1967B96C379C5AB -- C:\Windows\system32\drivers\USBCAMD2.sys
[2008.01.21 03:23:20 | 000,073,216 | ---- | M] (Microsoft Corporation) MD5=CAF811AE4C147FFCD5B51750C7F09142 -- C:\Windows\system32\drivers\usbccgp.sys
[2006.11.02 09:55:09 | 000,068,608 | ---- | M] (Microsoft Corporation) MD5=E9476E6C486E76BC4898074768FB7131 -- C:\Windows\system32\drivers\usbcir.sys
[2008.01.21 03:23:03 | 000,005,888 | ---- | M] (Microsoft Corporation) MD5=790FDAC6D0C762DF9047C3C625A6FF6C -- C:\Windows\system32\drivers\usbd.sys
[2009.04.11 05:42:52 | 000,039,936 | ---- | M] (Microsoft Corporation) MD5=79E96C23A97CE7B8F14D310DA2DB0C9B -- C:\Windows\system32\drivers\usbehci.sys
[2009.04.11 05:43:16 | 000,196,096 | ---- | M] (Microsoft Corporation) MD5=4673BBCB006AF60E7ABDDBE7A130BA42 -- C:\Windows\system32\drivers\usbhub.sys
[2006.11.02 09:55:05 | 000,019,456 | ---- | M] (Microsoft Corporation) MD5=38DBC7DD6CC5A72011F187425384388B -- C:\Windows\system32\drivers\usbohci.sys
[2009.04.11 05:42:57 | 000,226,304 | ---- | M] (Microsoft Corporation) MD5=A1C100A87D981AD0774FBC0B4B82E913 -- C:\Windows\system32\drivers\usbport.sys
[2006.11.02 10:14:58 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=B51E52ACF758BE00EF3A58EA452FE360 -- C:\Windows\system32\drivers\usbprint.sys
[2009.04.11 05:42:55 | 000,065,536 | ---- | M] (Microsoft Corporation) MD5=BE3DA31C191BC222D9AD503C5224F2AD -- C:\Windows\system32\drivers\USBSTOR.SYS
[2008.01.21 03:23:03 | 000,023,552 | ---- | M] (Microsoft Corporation) MD5=814D653EFC4D48BE3B04A307ECEFF56F -- C:\Windows\system32\drivers\usbuhci.sys
[2008.01.21 03:23:26 | 000,134,016 | ---- | M] (Microsoft Corporation) MD5=E67998E8F14CB0627A769F6530BCB352 -- C:\Windows\system32\drivers\usbvideo.sys
[2009.05.23 00:08:32 | 000,029,696 | ---- | M] (Elaborate Bytes AG) MD5=1CDAA48CB2F7744B8D25650E050766A5 -- C:\Windows\system32\drivers\VClone.sys
[2008.01.21 03:24:50 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=2E93AC0A1D8C79D019DB6C51F036636C -- C:\Windows\system32\drivers\vga.sys
[2008.01.21 03:23:02 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=87B06E1F30B749A114F74622D013F8D4 -- C:\Windows\system32\drivers\vgapnp.sys
[2008.01.21 03:23:01 | 000,056,888 | ---- | M] (Microsoft Corporation) MD5=5D7159DEF58A800D5781BA3A879627BC -- C:\Windows\system32\drivers\VIAAGP.SYS
[2008.01.21 03:23:00 | 000,041,472 | ---- | M] (Microsoft Corporation) MD5=C4F3A691B5BAD343E6249BD8C2D45DEE -- C:\Windows\system32\drivers\viac7.sys
[2008.01.21 03:23:00 | 000,020,024 | ---- | M] (VIA Technologies, Inc.) MD5=AADF5587A4063F52C2C3FED7887426FC -- C:\Windows\system32\drivers\viaide.sys
[2008.01.21 03:23:42 | 000,110,080 | ---- | M] (Microsoft Corporation) MD5=C048D2C33D27441A0CDCAAE2651EB03D -- C:\Windows\system32\drivers\videoprt.sys
[2008.01.21 03:23:01 | 000,052,792 | ---- | M] (Microsoft Corporation) MD5=69503668AC66C77C6CD7AF86FBDF8C43 -- C:\Windows\system32\drivers\volmgr.sys
[2009.04.11 07:33:03 | 000,292,840 | ---- | M] (Microsoft Corporation) MD5=23E41B834759917BFD6B9A0D625D0C28 -- C:\Windows\system32\drivers\volmgrx.sys
[2012.08.21 12:47:42 | 000,224,640 | ---- | M] (Microsoft Corporation) MD5=786DB5771F05EF300390399F626BF30A -- C:\Windows\system32\drivers\volsnap.sys
[2008.01.21 03:23:23 | 000,130,616 | ---- | M] (VIA Technologies Inc.,Ltd) MD5=587253E09325E6BF226B299774B728A9 -- C:\Windows\system32\drivers\vsmraid.sys
[2006.11.02 09:52:52 | 000,020,608 | ---- | M] (Microsoft Corporation) MD5=48DFEE8F1AF7C8235D4E626F0C4FE031 -- C:\Windows\system32\drivers\wacompen.sys
[2008.01.21 03:24:25 | 000,062,464 | ---- | M] (Microsoft Corporation) MD5=55201897378CCA7AF8B5EFD874374A26 -- C:\Windows\system32\drivers\wanarp.sys
[2009.04.11 05:22:46 | 000,033,280 | ---- | M] (Microsoft Corporation) MD5=4A5C31E2C1646034E6A60EBA4C747FF6 -- C:\Windows\system32\drivers\watchdog.sys
[2008.01.21 03:23:24 | 000,022,072 | ---- | M] (Microsoft Corporation) MD5=78FE9542363F297B18C027B2D7E7C07F -- C:\Windows\system32\drivers\wd.sys
[2011.02.16 16:52:46 | 000,011,520 | ---- | M] (Western Digital Technologies) MD5=D6EFAF429FD30C5DF613D220E344CCE7 -- C:\Windows\system32\drivers\wdcsam.sys
[2012.07.26 04:39:21 | 000,526,952 | ---- | M] (Microsoft Corporation) MD5=A840213F1ACDCC175B4D1D5AAEAC0D7A -- C:\Windows\system32\drivers\Wdf01000.sys
[2012.07.26 04:39:21 | 000,047,720 | ---- | M] (Microsoft Corporation) MD5=48704647CD2E9DAA2EB81BDE6D029EDB -- C:\Windows\system32\drivers\WdfLdr.sys
[2008.01.21 03:23:00 | 000,011,264 | ---- | M] (Microsoft Corporation) MD5=2E7255D172DF0B8283CDFB7B433B864E -- C:\Windows\system32\drivers\wmiacpi.sys
[2008.01.21 03:23:42 | 000,017,976 | ---- | M] (Microsoft Corporation) MD5=C546864EED786304762D030FEBF6B411 -- C:\Windows\system32\drivers\wmilib.sys
[2009.10.01 02:01:54 | 000,040,448 | ---- | M] (Microsoft Corporation) MD5=DE9D36F91A4DF3D911626643DEBF11EA -- C:\Windows\system32\drivers\WpdUsb.sys
[2008.01.21 03:24:47 | 000,015,872 | ---- | M] (Microsoft Corporation) MD5=E3A3CB253C0EC2494D4A61F5E43A389C -- C:\Windows\system32\drivers\ws2ifsl.sys
[2012.07.26 03:33:43 | 000,066,560 | ---- | M] (Microsoft Corporation) MD5=06E6F32C8D0A3F66D956F57B43A2E070 -- C:\Windows\system32\drivers\WUDFPf.sys
[2012.07.26 03:32:51 | 000,155,136 | ---- | M] (Microsoft Corporation) MD5=867C301E8B790040AE9CF6486E8041DF -- C:\Windows\system32\drivers\WUDFRd.sys
< %systemroot%\system32\*.sys /md5 /64 >
[2006.11.02 08:09:42 | 000,009,029 | ---- | M] () MD5=8AAD333C876590293F72B315E162BCC7 -- C:\Windows\system32\ANSI.SYS
[2009.04.11 07:32:46 | 000,245,736 | ---- | M] (Microsoft Corporation) MD5=D7659D3B5B92C31E84E53C1431F35132 -- C:\Windows\system32\clfs.sys
[2006.11.02 08:09:45 | 000,027,097 | ---- | M] () MD5=0FE9F16075C9ACB941C957B7C649176E -- C:\Windows\system32\country.sys
[2008.06.17 20:27:28 | 000,007,168 | ---- | M] () MD5=F1785FB4B89442AAC648492B35EBCDC9 -- C:\Windows\system32\directport.sys
[2009.03.31 09:39:36 | 000,036,608 | ---- | M] () MD5=790A4CA68F44BE35967B3DF61F3E4675 -- C:\Windows\system32\FsUsbExDisk.Sys
[2009.03.18 16:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) MD5=833051C6C6C42117191935F734CFBD97 -- C:\Windows\system32\hamachi.sys
[2006.11.02 08:09:41 | 000,004,768 | ---- | M] () MD5=E6BC0F98FECEF245A0010D350C1A0B9B -- C:\Windows\system32\HIMEM.SYS
[2008.03.31 11:02:34 | 000,008,192 | ---- | M] (Windows (R) Codename Longhorn DDK provider) MD5=E48C4E69E2126AAC01888C60CC6ED966 -- C:\Windows\system32\kbfiltr.sys
[2006.11.02 08:09:44 | 000,042,809 | ---- | M] () MD5=492090267B9608C62B956CD29BE3AFB7 -- C:\Windows\system32\KEY01.SYS
[2006.11.02 08:09:44 | 000,042,537 | ---- | M] () MD5=FBBCFEC1379C5C02D88A361993EDF1B8 -- C:\Windows\system32\KEYBOARD.SYS
[2006.11.02 08:09:29 | 000,027,866 | ---- | M] () MD5=FFFF296A08DBF2AC0126C62E3778AC0D -- C:\Windows\system32\NTDOS.SYS
[2006.11.02 08:09:35 | 000,029,146 | ---- | M] () MD5=CF9ED169FF86D935E47999E82359E898 -- C:\Windows\system32\NTDOS404.SYS
[2006.11.02 08:09:38 | 000,029,370 | ---- | M] () MD5=03B945AC0481CD8BB161C3569D8ED1C3 -- C:\Windows\system32\NTDOS411.SYS
[2006.11.02 08:09:40 | 000,029,274 | ---- | M] () MD5=BBC957DC18C17CC027EB80B7C77F2AEA -- C:\Windows\system32\NTDOS412.SYS
[2006.11.02 08:09:31 | 000,029,146 | ---- | M] () MD5=3CFFAEFFF23B0D208214A6D3061A5B1B -- C:\Windows\system32\NTDOS804.SYS
[2006.11.02 08:09:20 | 000,033,952 | ---- | M] () MD5=2E4112FB7D1B76E11ADFD7487B5D0E95 -- C:\Windows\system32\NTIO.SYS
[2006.11.02 08:09:23 | 000,034,672 | ---- | M] () MD5=A98EBD4C2DF983665BF2D1AF49949974 -- C:\Windows\system32\NTIO404.SYS
[2006.11.02 08:09:24 | 000,035,776 | ---- | M] () MD5=3F7E6406EDEF197C5CAAB2240EEF6F48 -- C:\Windows\system32\NTIO411.SYS
[2006.11.02 08:09:26 | 000,035,536 | ---- | M] () MD5=3E64D681B776CC57BDC38A46D881F85B -- C:\Windows\system32\NTIO412.SYS
[2006.11.02 08:09:22 | 000,034,672 | ---- | M] () MD5=D86B6435729231C171432B4E77801BDB -- C:\Windows\system32\NTIO804.SYS
[2012.11.13 02:36:35 | 002,048,000 | ---- | M] (Microsoft Corporation) MD5=F167606EC2C01D804FC72F8F84E73E19 -- C:\Windows\system32\win32k.sys
< >
< >
< >
< %systemroot%\system32\drivers\*.sys /10 >
< %systemroot%\system32\drivers\*.sys /X >
[2008.07.03 17:49:39 | 000,000,012 | ---- | M] () -- C:\Windows\system32\drivers\FSC__PI__AMILO Pi 3540 __FUJITSU SIEMENS_F47 __Ver 1.00PARTTBL8_FSC - 6040000_1.02C__NVIDIA GeForce 9300M GS.MRK
[2006.09.18 22:26:46 | 003,440,660 | ---- | M] () -- C:\Windows\system32\drivers\gm.dls
[2006.09.18 22:26:46 | 000,000,646 | ---- | M] () -- C:\Windows\system32\drivers\gmreadme.txt
[2012.06.02 15:34:21 | 000,000,003 | ---- | M] () -- C:\Windows\system32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2012.06.02 15:57:50 | 000,000,003 | ---- | M] () -- C:\Windows\system32\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2009.09.30 18:30:36 | 000,000,000 | -H-- | M] () -- C:\Windows\system32\drivers\Msft_User_WpdFs_01_00_00.Wdf
[2009.11.18 03:15:26 | 000,000,000 | -H-- | M] () -- C:\Windows\system32\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2012.07.15 17:59:28 | 000,000,000 | -H-- | M] () -- C:\Windows\system32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
[2009.09.01 07:19:18 | 000,004,224 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvBridge.kmd
< %systemroot%\system32\drivers\*.sys /lockedfiles >
< %systemroot%\system32\*.* /10 >
[2012.12.28 19:36:52 | 000,003,344 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012.12.28 19:36:52 | 000,003,344 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012.12.21 18:22:28 | 000,435,680 | ---- | M] () -- C:\Windows\system32\FNTCACHE.DAT
[2012.12.19 13:06:15 | 000,136,306 | ---- | M] () -- C:\Windows\system32\perfc005.dat
[2012.12.19 13:06:15 | 000,118,778 | ---- | M] () -- C:\Windows\system32\perfc009.dat
[2012.12.19 13:06:15 | 000,642,632 | ---- | M] () -- C:\Windows\system32\perfh005.dat
[2012.12.19 13:06:15 | 000,632,152 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2012.12.19 13:06:15 | 001,524,722 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\system32\*.* /lockedfiles >
[2012.12.28 19:36:52 | 000,003,344 | -H-- | M] () Unable to obtain MD5 -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012.12.28 19:36:52 | 000,003,344 | -H-- | M] () Unable to obtain MD5 -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
< %systemroot%\system32\config\*.sav >
[2008.07.03 18:07:17 | 028,893,184 | ---- | M] () -- C:\Windows\system32\config\COMPONENTS.SAV
[2008.07.03 18:06:46 | 000,106,496 | ---- | M] () -- C:\Windows\system32\config\DEFAULT.SAV
[2008.07.03 18:07:17 | 000,020,480 | ---- | M] () -- C:\Windows\system32\config\SECURITY.SAV
[2008.07.03 18:07:27 | 018,444,288 | ---- | M] () -- C:\Windows\system32\config\SOFTWARE.SAV
[2008.07.03 18:07:29 | 006,684,672 | ---- | M] () -- C:\Windows\system32\config\SYSTEM.SAV
< >
< >
< >
< %systemroot%\Tasks\*.job >
[2012.12.28 09:23:52 | 000,000,370 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Daily 1).job
[2012.12.28 09:23:52 | 000,000,370 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Daily 2).job
[2012.12.27 12:45:00 | 000,000,370 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Daily 3).job
[2012.12.28 09:23:52 | 000,000,370 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Daily 4).job
[2012.11.29 06:02:25 | 000,000,370 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Weekly).job
[2012.12.28 20:28:00 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job
[2012.12.28 19:37:25 | 000,000,932 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2012.12.28 20:39:04 | 000,000,936 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2010.04.14 08:29:20 | 000,000,310 | ---- | M] () -- C:\Windows\Tasks\Install_NSS.job
[2012.12.28 09:24:32 | 000,000,366 | ---- | M] () -- C:\Windows\Tasks\ReclaimerUpdateFiles_Adam.job
[2012.12.28 09:24:22 | 000,000,362 | ---- | M] () -- C:\Windows\Tasks\ReclaimerUpdateXML_Adam.job
[2012.12.28 19:37:26 | 000,000,372 | ---- | M] () -- C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Adam.job
< %systemroot%\*.* /U /s >
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[14 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[11 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[99 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
[3 C:\Windows\Temp\_avast_\*.tmp files -> C:\Windows\Temp\_avast_\*.tmp -> ]
< %systemroot%\*. /rp /s >
< %ALLUSERSPROFILE%\Data Aplikací\*.* >
< %ALLUSERSPROFILE%\Data Aplikací\*.exe /s >
< %ALLUSERSPROFILE%\Nabídka Start\*.lnk /x >
< %ALLUSERSPROFILE%\Data Aplikácií\*.* >
< %ALLUSERSPROFILE%\Data Aplikácií\*.exe /s >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %ALLUSERSPROFILE%\Start Menu\*.lnk /x >
< %APPDATA%\*. >
[2009.11.01 17:33:09 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\2K Sports
[2009.10.10 10:59:10 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Ableton
[2010.12.12 16:32:00 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Adobe
[2010.10.19 10:11:59 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\AnvSoft
[2012.06.18 17:21:27 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Apple Computer
[2012.12.21 06:38:21 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Azureus
[2012.12.21 22:21:29 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\BSplayer
[2009.10.03 20:59:46 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\BSplayer Pro
[2009.11.14 15:26:45 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Desktop Sidebar
[2010.12.15 13:54:53 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Download Manager
[2011.03.20 10:41:49 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\FileZilla
[2010.08.15 10:19:22 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\GetRightToGo
[2012.12.03 18:45:40 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\GoPro
[2010.08.25 18:29:49 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Hamachi
[2012.11.19 21:22:18 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\ICQ
[2009.09.30 17:43:22 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Identities
[2009.11.01 17:30:05 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\InstallShield
[2010.03.23 17:51:35 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Leawo
[2009.10.02 17:53:21 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Macromedia
[2010.03.07 12:17:10 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Malwarebytes
[2006.11.02 13:37:34 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Media Center Programs
[2012.03.18 11:54:28 | 000,000,000 | --SD | M] -- C:\Users\Adam\AppData\Roaming\Microsoft
[2009.10.04 23:56:30 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Mozilla
[2009.11.18 10:51:44 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Nero
[2010.02.02 11:05:14 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\PC Suite
[2012.12.17 23:40:44 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\proDAD
[2011.03.30 12:42:20 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\PunkBuster
[2012.09.28 22:35:41 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Rayman Origins
[2012.06.16 13:06:32 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Real
[2010.02.02 10:34:59 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Samsung
[2011.04.03 19:19:57 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\ShopperReports3
[2012.12.17 22:46:00 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\SimilarSites
[2009.11.12 14:19:56 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Sinovation
[2012.11.19 21:22:14 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Skype
[2011.07.27 16:57:51 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\skypePM
[2012.12.17 15:24:03 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Sony
[2010.12.09 01:59:49 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Spyware Terminator
[2009.10.03 00:13:42 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\StreamTorrent
[2009.11.15 01:01:24 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\TVU Networks
[2010.05.06 09:12:32 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\Ubisoft
[2009.10.02 19:34:53 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\WinRAR
[2010.08.05 08:50:03 | 000,000,000 | ---D | M] -- C:\Users\Adam\AppData\Roaming\YoudaGames
< %APPDATA%\*.* >
< %APPDATA%\*.exe /s >
[2009.11.02 15:39:24 | 010,686,001 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\Azureus\plugins\azump\mplayer.exe
[2012.12.21 06:12:27 | 007,365,072 | ---- | M] (Azureus Software, Inc.) -- C:\Users\Adam\AppData\Roaming\Azureus\tmp\AZU5822138942597003262.tmp\Vuze_4.8.1.2_win32.exe
[2009.08.11 20:21:26 | 000,087,552 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\BSplayer\AC3 Filter\ac3config.exe
[2009.08.11 20:21:30 | 000,090,112 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\BSplayer\AC3 Filter\spdif_test.exe
[2010.03.22 13:52:04 | 000,697,690 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\BSplayer\AC3 Filter\unins000.exe
[2012.10.11 09:01:20 | 001,175,371 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\BSplayer\FFDShow\unins000.exe
[2010.08.14 10:42:54 | 000,113,152 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\BSplayer\Haali media splitter\dsmux.exe
[2010.08.14 10:45:10 | 000,358,400 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\BSplayer\Haali media splitter\gdsmux.exe
[2010.08.14 10:42:06 | 000,137,728 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\BSplayer\Haali media splitter\mkv2vfr.exe
[2010.09.30 15:30:22 | 000,042,305 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\BSplayer\Haali media splitter\uninstall.exe
[2012.01.05 17:51:27 | 003,763,360 | ---- | M] (Adobe Systems, Inc.) -- C:\Users\Adam\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\fpupdatepl\fpupdatepl.exe
[2012.12.17 22:27:08 | 000,029,926 | R--- | M] () -- C:\Users\Adam\AppData\Roaming\Microsoft\Installer\{6DE721A5-5E89-4D74-994C-652BB3C0672E}\ARPPRODUCTICON.exe
[2012.12.17 23:18:57 | 000,010,134 | R--- | M] () -- C:\Users\Adam\AppData\Roaming\Microsoft\Installer\{CBF78A5F-7950-4CF1-A063-C4C7B2B82CE6}\ARPPRODUCTICON.exe
[2009.11.13 14:42:27 | 000,385,024 | R--- | M] (Macrovision Corporation) -- C:\Users\Adam\AppData\Roaming\Microsoft\Installer\{F770C509-0658-4BB9-A9A8-930E512934C2}\Amnesty_Generator._41C7F924D0BD410D9D36FCCA75058D1B_1.exe
[2009.11.13 14:42:27 | 000,385,024 | R--- | M] (Macrovision Corporation) -- C:\Users\Adam\AppData\Roaming\Microsoft\Installer\{F770C509-0658-4BB9-A9A8-930E512934C2}\Amnesty_Generator._5F8ED782BF234742A57E49338B9764EE.exe
[2009.11.13 14:42:27 | 000,010,134 | R--- | M] () -- C:\Users\Adam\AppData\Roaming\Microsoft\Installer\{F770C509-0658-4BB9-A9A8-930E512934C2}\ARPPRODUCTICON.exe
[2011.02.24 16:07:45 | 000,835,440 | R--- | M] () -- C:\Users\Adam\AppData\Roaming\PunkBuster\pbsetup\pbsvc.exe
[2012.09.28 22:23:09 | 001,110,886 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\Rayman Origins\Uninstall\unins000.exe
[2012.06.16 13:00:51 | 000,590,488 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Adam\AppData\Roaming\Real\RealPlayer\setup\AU_setup31.exe
[2010.03.08 12:53:47 | 000,439,816 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Adam\AppData\Roaming\Real\Update\setup3.10\setup.exe
[2010.06.27 14:49:54 | 000,439,816 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Adam\AppData\Roaming\Real\Update\setup3.11\setup.exe
[2010.12.09 10:08:40 | 000,506,024 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Adam\AppData\Roaming\Real\Update\setup3.13\setup.exe
[2011.01.28 10:44:32 | 000,510,120 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Adam\AppData\Roaming\Real\Update\setup3.14\setup.exe
[2012.05.12 01:01:47 | 000,315,512 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Adam\AppData\Roaming\Real\Update\temp\~Upg0\rnupgagent.exe
[2012.09.28 21:21:10 | 000,449,176 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Adam\AppData\Roaming\Real\Update\temp\~Upg1\rnupgagent.exe
[2012.12.21 06:27:03 | 000,449,176 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Adam\AppData\Roaming\Real\Update\temp\~Upg2\rnupgagent.exe
[2012.12.21 06:27:03 | 000,449,176 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Adam\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.30\agent\rnupgagent.exe
[2012.12.21 18:28:26 | 039,416,288 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Adam\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.30\agent\stub_data\RealPlayer.exe
[2012.12.21 18:26:46 | 000,765,248 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Adam\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.30\agent\stub_exe\RealPlayer.exe
[2010.02.02 10:58:23 | 089,280,248 | ---- | M] (Samsung Electronics Co., Ltd. ) -- C:\Users\Adam\AppData\Roaming\Samsung\New PC Studio\LiveUpdate\Setup_For_Full_Update_IH2_7.exe
[2010.07.10 17:09:04 | 142,139,224 | ---- | M] (Samsung Electronics Co., Ltd. ) -- C:\Users\Adam\AppData\Roaming\Samsung\New PC Studio\LiveUpdate\Setup_Full_Update_NPS2_10064_2.exe
[2012.03.28 17:05:54 | 000,212,803 | ---- | M] (SimilarSites) -- C:\Users\Adam\AppData\Roaming\SimilarSites\similarsites.exe
[2010.09.27 16:43:57 | 005,642,000 | ---- | M] (TVU networks) -- C:\Users\Adam\AppData\Roaming\TVU Networks\TVU AutoUpgrade\TVUPlayer2.5.3.1.exe
< %SYSTEMDRIVE%\*.exe >
< >
< >
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"WindowsWelcomeCenter" = rundll32.exe oobefldr.dll,ShowWelcomeCenter
"ehTray.exe" = C:\Windows\ehome\ehTray.exe -- [2008.01.21 03:25:11 | 000,125,952 | ---- | M] (Microsoft Corporation)
"DW6" = "C:\Program Files\The Weather Channel FW\Desktop\DesktopWeather.exe"
"Xvid" = C:\Program Files\Xvid\CheckUpdate.exe -- [2011.01.17 20:41:43 | 000,008,192 | ---- | M] ()
"Akamai NetSession Interface" = "C:\Users\Adam\AppData\Local\Akamai\netsession_win.exe" -- [2012.10.09 09:53:36 | 004,441,920 | ---- | M] (Akamai Technologies, Inc.)
"DW7" = "C:\Program Files\The Weather Channel\The Weather Channel App\TWCApp.exe" -- [2011.12.12 12:12:16 | 010,448,384 | ---- | M] (The Weather Channel)
"AlcoholAutomount" = "C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe" -automount -- [2012.01.05 16:42:34 | 000,075,624 | ---- | M] (Alcohol Soft Development Team)
< >
< >
< >
< type c:\boot.ini >>"C:\test.txt" /c >
< bcdedit /enum all /v >>"C:\boot.txt" /c >
Spr vce spouçtŘnˇ syst‚mu Windows
--------------------
identifik tor {9dea862c-5cdd-4e70-acc1-f32b344d4795}
device partition=C:
description Windows Boot Manager
locale cs-CZ
inherit {7ea2e1ac-2e61-4728-aaa3-896d9d0a9f0e}
default {8425ef2d-4922-11dd-af30-d39299d06cb0}
resumeobject {8425ef2e-4922-11dd-af30-d39299d06cb0}
displayorder {8425ef2d-4922-11dd-af30-d39299d06cb0}
toolsdisplayorder {b2721d73-1db4-4c62-bf78-c548a880142d}
timeout 30
resume No
Zav dŘcˇ program pro spouçtŘnˇ syst‚mu Windows
-------------------
identifik tor {572bcd56-ffa7-11d9-aae0-0007e994107d}
device ramdisk=[\Device\HarddiskVolume1]\sources\boot.wim,{ad6c7bc8-fa0f-11da-8ddf-0013200354d8}
path \windows\system32\boot\winload.exe
description Windows Recovery Environment
osdevice ramdisk=[\Device\HarddiskVolume1]\sources\boot.wim,{ad6c7bc8-fa0f-11da-8ddf-0013200354d8}
systemroot \windows
nx OptIn
detecthal Yes
winpe Yes
Zav dŘcˇ program pro spouçtŘnˇ syst‚mu Windows
-------------------
identifik tor {8425ef2d-4922-11dd-af30-d39299d06cb0}
device partition=C:
path \Windows\system32\winload.exe
description Microsoft Windows Vista
locale cs-CZ
inherit {6efb52bf-1766-41db-a6b3-0ee5eff72bd7}
recoverysequence {572bcd56-ffa7-11d9-aae0-0007e994107d}
recoveryenabled Yes
osdevice partition=C:
systemroot \Windows
resumeobject {8425ef2e-4922-11dd-af30-d39299d06cb0}
nx OptIn
Obnovenˇ z hibernace
---------------------
identifik tor {8425ef2e-4922-11dd-af30-d39299d06cb0}
device partition=C:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale cs-CZ
inherit {1afa9c49-16ab-4a5c-901b-212802da9460}
filedevice partition=C:
filepath \hiberfil.sys
pae Yes
debugoptionenabled No
Testov nˇ pamŘti syst‚mu Windows
---------------------
identifik tor {b2721d73-1db4-4c62-bf78-c548a880142d}
device partition=C:
path \boot\memtest.exe
description Diagnostika pamŘti syst‚mu Windows
locale cs-CZ
inherit {7ea2e1ac-2e61-4728-aaa3-896d9d0a9f0e}
badmemoryaccess Yes
Starçˇ zavadŘź operaźnˇho syst‚mu Windows
------------------------
identifik tor {466f5a88-0af2-4f76-9038-095b170dc21c}
device partition=C:
path \ntldr
description DýˇvŘjçˇ verze syst‚mu Windows
Nastavenˇ slu§by EMS
------------
identifik tor {0ce4991b-e6b3-4b16-b23c-5e0d9250e5d9}
bootems Yes
Nastavenˇ ladicˇho programu
-----------------
identifik tor {4636856e-540f-4170-a130-a84776f4c654}
debugtype Serial
debugport 1
baudrate 115200
Chyby pamŘti RAM
-----------
identifik tor {5189b25c-5558-4bf2-bca4-289b11bd29e2}
Glob lnˇ nastavenˇ
---------------
identifik tor {7ea2e1ac-2e61-4728-aaa3-896d9d0a9f0e}
inherit {4636856e-540f-4170-a130-a84776f4c654}
{0ce4991b-e6b3-4b16-b23c-5e0d9250e5d9}
{5189b25c-5558-4bf2-bca4-289b11bd29e2}
Nastavenˇ spouçtŘcˇho zavadŘźe
--------------------
identifik tor {6efb52bf-1766-41db-a6b3-0ee5eff72bd7}
inherit {7ea2e1ac-2e61-4728-aaa3-896d9d0a9f0e}
Nastavenˇ zavadŘźe obnovenˇ
----------------------
identifik tor {1afa9c49-16ab-4a5c-901b-212802da9460}
inherit {7ea2e1ac-2e61-4728-aaa3-896d9d0a9f0e}
Parametry zaýˇzenˇ
--------------
identifik tor {ad6c7bc8-fa0f-11da-8ddf-0013200354d8}
description Ramdisk Device Options
ramdisksdidevice partition=\Device\HarddiskVolume1
ramdisksdipath \boot\boot.sdi
< type C:\boot.txt >>"C:\test1.txt" /c >
< echo list vol > C:\prikaz.txt | diskpart /s C:\prikaz.txt > C:\test2.txt /c >
Microsoft DiskPart verze 6.0.6002
Copyright (C) 1999-2007 Microsoft Corporation.
V poźˇtaźi: ADAM-PC
Svazek ### Ltr Jmenovka Fs Typ Velikost Stav Info
---------- --- ----------- ----- ---------- -------- --------- --------
Svazek 0 E DVD-ROM 0 B ¦ dn‚ m‚d
Svazek 1 F DVD-ROM 0 B ¦ dn‚ m‚d
Svazek 2 H DVD-ROM 0 B ¦ dn‚ m‚d
Svazek 3 C SYSTEM NTFS Oddˇl 94 GB V poý dku Syst‚m
Svazek 4 D DATA NTFS Oddˇl 130 GB V poý dku
< >
< %ALLUSERSPROFILE%\*.dll /s >
[2011.03.30 18:29:02 | 000,070,584 | ---- | M] (Adobe Systems Incorporated) -- C:\ProgramData\Adobe\ARM\Reader_10.0.1\29213\AdobeExtractFiles.dll
[2012.10.04 20:02:15 | 000,211,624 | ---- | M] (Ask.com) -- C:\ProgramData\Ask\APN-Stub\PTV\Local\APNIC.dll
[2012.08.20 16:05:00 | 000,515,664 | ---- | M] () -- C:\ProgramData\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
[2006.11.02 13:34:31 | 000,015,616 | ---- | M] (Microsoft Corp.) -- C:\ProgramData\Microsoft\IdentityCRL\ppcrlconfig.dll
[2006.11.02 13:34:31 | 000,254,216 | ---- | M] (Microsoft Corp.) -- C:\ProgramData\Microsoft\IdentityCRL\ppcrlui.dll
[2012.11.08 19:00:47 | 006,812,136 | ---- | M] (Microsoft Corporation) -- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1B5695A4-3511-47B8-BEB2-29FDF3961AD9}\mpengine.dll
[2012.12.28 09:31:56 | 000,060,872 | ---- | M] () -- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1B5695A4-3511-47B8-BEB2-29FDF3961AD9}\offreg.dll
[2012.11.08 19:00:47 | 006,812,136 | ---- | M] (Microsoft Corporation) -- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
[2008.01.21 03:23:32 | 002,730,536 | ---- | M] (Microsoft Corporation) -- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\MpEngine.dll
[2008.02.08 12:22:34 | 001,347,584 | ---- | M] (Doctor Web, Ltd.) -- C:\ProgramData\Nero\DrWeb\Drweb32.dll
[2012.06.16 13:04:34 | 000,398,512 | ---- | M] (RealPlayer) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Common\rpcommon150browserrecordplugin.dll
[2012.06.16 13:04:37 | 000,035,840 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Components\nprpffbrowserrecordext.dll
[2012.06.16 13:04:37 | 000,032,256 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext\Components\nprpffbrowserrecordlegacyext.dll
[2012.06.16 13:04:34 | 000,028,160 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Hook\rpchrome150browserrecordhelper.dll
[2012.06.16 13:04:32 | 000,425,680 | ---- | M] (RealPlayer) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
[2012.06.16 13:04:34 | 000,095,744 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
[2012.06.16 13:04:34 | 000,019,456 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
[2012.06.16 13:04:38 | 000,045,568 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\ThinShims\rpnpshimhtml5.dll
[2012.06.16 13:04:38 | 000,045,568 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\ThinShims\rpnpshimqt.dll
[2012.06.16 13:04:38 | 000,045,568 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\ThinShims\rpnpshimrp.dll
[2012.06.16 13:04:38 | 000,045,568 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\ThinShims\rpnpshimswf.dll
[2012.06.16 13:04:38 | 000,045,568 | ---- | M] (RealNetworks, Inc.) -- C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\ThinShims\rpnpshimwmp.dll
[2011.06.05 10:05:20 | 000,676,224 | ---- | M] (EasyBits Software AS) -- C:\ProgramData\Skype Extras\Plugins\F57B48ADF2224F088EDD1A2B9BAD84E8\Games\53F537B72987463CB06D78F5541A3239\skGamesUpdate.dll
< C:\ProgramData\*.* >
[2009.10.02 18:57:52 | 000,000,056 | -H-- | M] () -- C:\ProgramData\ezsidmv.dat
[2012.12.28 19:37:43 | 000,151,176 | ---- | M] () -- C:\ProgramData\nvModes.001
[2012.12.28 19:37:27 | 000,151,176 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2011.02.20 11:58:02 | 000,001,302 | ---- | M] () -- C:\ProgramData\ss.ini
[2012.12.17 23:10:53 | 000,001,950 | ---- | M] () -- C:\ProgramData\__wdump.txt
========== Hard Links - Junction Points - Mount Points - Symbolic Links ==========
[C:\Windows\System32\config\systemprofile\AppData\Local\Data aplikací] -> C:\Windows\system32\config\systemprofile\AppData\Local -> Junction
[C:\Windows\System32\config\systemprofile\AppData\Local\Historie] -> C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History -> Junction
[C:\Windows\System32\config\systemprofile\AppData\Local\Temporary Internet Files] -> C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files -> Junction
[C:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu\Programy] -> C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu\Programs -> Junction
[C:\Windows\System32\config\systemprofile\Data aplikací] -> C:\Windows\system32\config\systemprofile\AppData\Roaming -> Junction
[C:\Windows\System32\config\systemprofile\Documents\Filmy] -> C:\Windows\system32\config\systemprofile\Videos -> Junction
[C:\Windows\System32\config\systemprofile\Documents\Hudba] -> C:\Windows\system32\config\systemprofile\Music -> Junction
[C:\Windows\System32\config\systemprofile\Documents\Obrázky] -> C:\Windows\system32\config\systemprofile\Pictures -> Junction
[C:\Windows\System32\config\systemprofile\Dokumenty] -> C:\Windows\system32\config\systemprofile\Documents -> Junction
[C:\Windows\System32\config\systemprofile\Local Settings] -> C:\Windows\system32\config\systemprofile\AppData\Local -> Junction
[C:\Windows\System32\config\systemprofile\Nabídka Start] -> C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Start Menu -> Junction
[C:\Windows\System32\config\systemprofile\Okolní síť] -> C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Network Shortcuts -> Junction
[C:\Windows\System32\config\systemprofile\Okolní tiskárny] -> C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Printer Shortcuts -> Junction
[C:\Windows\System32\config\systemprofile\Recent] -> C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Recent -> Junction
[C:\Windows\System32\config\systemprofile\SendTo] -> C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\SendTo -> Junction
[C:\Windows\System32\config\systemprofile\Soubory cookie] -> C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies -> Junction
[C:\Windows\System32\config\systemprofile\Šablony] -> C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Templates -> Junction
========== Alternate Data Streams ==========
@Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT
@Alternate Data Stream - 140 bytes -> C:\ProgramData\TEMP:054203E4
< End of report >
Re: Prosím o kontrolu - preventivka, RSIT, OTL
Extras.txt:
OTL Extras logfile created on: 28.12.2012 20:34:26 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Adam\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,99 Gb Total Physical Memory | 1,39 Gb Available Physical Memory | 46,31% Memory free
6,21 Gb Paging File | 4,77 Gb Available in Paging File | 76,84% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 94,16 Gb Total Space | 5,38 Gb Free Space | 5,72% Space Free | Partition Type: NTFS
Drive D: | 129,94 Gb Total Space | 15,03 Gb Free Space | 11,57% Space Free | Partition Type: NTFS
Computer Name: ADAM-PC | User Name: Adam | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 14 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-2452340871-1716036081-418109285-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{088360BE-717A-439F-96EB-6A8D37A9C662}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{0944B0A7-E8A2-4FD0-A318-67AB2B77A639}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{0D1E950D-C025-45B5-987C-1DFE389866C1}" = rport=137 | protocol=17 | dir=out | app=system |
"{137E423F-0D7C-45C5-8EF9-ADDFF746F81D}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{23B4F221-CF19-43E4-83A8-E76A6AADB971}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{25B26D8B-A5C0-46B2-A523-038004AEA6D7}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{29D0611E-9969-458B-9FE1-B2BF988F53C3}" = lport=445 | protocol=6 | dir=in | app=system |
"{2FBABB25-305F-45B9-946C-23CD50B58B37}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{76BFF388-72DE-4E4C-9AA1-B2E67E462839}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{9F8D47D9-6C39-4144-970F-EF4C11283064}" = rport=445 | protocol=6 | dir=out | app=system |
"{A3A4CAA3-54EA-42E8-8AFA-05ADD0238C91}" = lport=138 | protocol=17 | dir=in | app=system |
"{A5064537-8BBD-4774-9F4E-5502CD568D50}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{B6FB0633-B0D1-490C-BD41-E74BB5568880}" = rport=138 | protocol=17 | dir=out | app=system |
"{D391DBAE-86D0-445E-9F73-BAD23FE63C86}" = lport=137 | protocol=17 | dir=in | app=system |
"{DC964498-85AE-4C35-83AF-431FB6BD2706}" = rport=139 | protocol=6 | dir=out | app=system |
"{E8ACBC4F-27F5-4455-86E6-908A603E46A0}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{EBC930D3-E535-4DDB-A49D-0D53B1E52464}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{FFEB303F-98CD-44E9-A895-AFDAAE97E560}" = lport=139 | protocol=6 | dir=in | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01D0D4B6-D35C-4477-89E2-AC46E0F68F31}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{030041B9-4AFF-4FED-8D93-0C6904A6FA4D}" = protocol=6 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{048BEFAF-B655-42C6-918C-40102C114758}" = protocol=6 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{078413FF-A3BC-46FA-A659-05474F9B4592}" = protocol=17 | dir=in | app=c:\program files\vuze\azureus.exe |
"{0C815FB9-6E4C-411D-A28A-B2FD96E8AC22}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{0F68A4B9-D651-41DC-B93F-EE8101C41C8D}" = protocol=17 | dir=in | app=c:\program files\raptr\raptr_im.exe |
"{11CC7947-6062-4752-A339-0488E4C03E48}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{12DFBD03-4934-417E-A3A0-ADCB679E9C65}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{132D2513-ABF5-48D2-802C-0C07D9BB4065}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{14ACB89D-B88A-4BEA-8D92-05B620BEFFE8}" = protocol=6 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{16E4A1D5-1740-471F-8456-18BFA81E9983}" = protocol=6 | dir=in | app=c:\program files\vuze\azureus.exe |
"{1E8364F6-E843-4418-908B-1648C7420268}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{238903B9-375E-4DDF-81C6-FF4DBBA149E8}" = protocol=17 | dir=in | app=d:\assassin's creed brotherhood\acbmp.exe |
"{2EF9680D-247E-4985-A3F0-79A060E76609}" = protocol=6 | dir=in | app=c:\program files\vuze\azureus.exe |
"{2F9A5B08-B4E5-49F7-8B68-A35C13523DCE}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{303476D9-962A-4870-B64D-65145106AF13}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 14\programs\studio.exe |
"{3B0140EC-7E37-4C76-8E9D-E0B0264CB3A8}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{3D2103C3-D1FE-455E-AFF7-BDBB39BAF47C}" = protocol=17 | dir=in | app=c:\program files\pandora.tv\panservice\pandoraservice.exe |
"{3EE0EBFE-42FE-4D22-AA6F-4B1771E0429E}" = protocol=17 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{422BD92F-89AB-46EF-98ED-CD5374DE6E60}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 14\programs\rm.exe |
"{42F611A8-6E85-41D2-9F0F-0EAC0FC94073}" = protocol=17 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsasvr.exe |
"{4B13F1EB-2BA9-46FC-8DE2-A8BAAD74CA7A}" = protocol=17 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{4D384606-EB3B-432D-BE07-9208A51E5E75}" = protocol=17 | dir=in | app=c:\program files\raptr\raptr.exe |
"{54D4E5DC-1D2F-43D0-8FB7-B267DAFE91C1}" = protocol=6 | dir=in | app=c:\users\adam\appdata\local\akamai\netsession_win.exe |
"{56A73D8E-C1FA-4095-8C9D-7A4A17F539ED}" = protocol=6 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{581CF41E-430D-42E8-A3FB-2151C16EE56C}" = protocol=17 | dir=in | app=d:\assassin's creed revelations\acrmp.exe |
"{58CC4CF1-8F5B-47BC-8A37-DC54DE75358C}" = protocol=17 | dir=in | app=c:\program files\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{6AF1B646-0E6C-4B73-B74D-0E6E37B2F238}" = protocol=6 | dir=in | app=c:\program files\pandora.tv\panservice\pandoraservice.exe |
"{6B0BAADC-B038-4757-9E79-4F0791068584}" = protocol=6 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsvsvr.exe |
"{6B426BD2-66E4-4597-A7FD-4CDBCD956852}" = protocol=17 | dir=in | app=c:\users\adam\appdata\local\akamai\netsession_win.exe |
"{7D3F0B4C-AC62-4FCE-8D72-C4DDE4AE6349}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{7EFB0085-8B8F-4292-A140-ED305041CA6C}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 14\programs\studio.exe |
"{833B71A2-0C4E-4E08-A6F7-5D5E4EAB29F5}" = protocol=17 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsvsvr.exe |
"{849FC1A2-50DA-4AC2-A044-A5479CABCB60}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{8A135A96-E529-4082-BA5B-DA2909CF635D}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 14\programs\umi.exe |
"{8F6B70D7-8A07-4220-ABEB-630864854A10}" = protocol=17 | dir=in | app=c:\program files\vuze\azureus.exe |
"{959E6E90-3E4E-4D36-8FA9-7C09E01F3B68}" = protocol=6 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{A68C599D-CCBF-4941-A6EC-9E2B18B8CCDC}" = protocol=17 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{A72BFC9D-FBCD-4E89-B064-EEA473A669DA}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 14\programs\umi.exe |
"{A7E0A8A8-43EB-498D-84F5-33CF539D7824}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{AA3EC020-FEB8-44AC-B839-E5DE71E4B4A1}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{AA4E9640-7280-4598-BF94-20E429149EA1}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{AF545C28-94C9-4955-A010-BD1CE2B2EC22}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 14\programs\rm.exe |
"{B7516533-FAF2-47A7-873C-A3BCA4B1438B}" = protocol=6 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsasvr.exe |
"{BC4EE248-1FAF-4FC9-98EC-370E36C06E8E}" = protocol=6 | dir=in | app=c:\program files\raptr\raptr.exe |
"{BD858B74-81EA-4074-87C6-D12B48A7F12A}" = protocol=17 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{C4028976-9774-47F4-997E-F16AFAC31DFC}" = protocol=6 | dir=in | app=d:\assassin's creed brotherhood\acbmp.exe |
"{D61CDD73-F818-4187-8E22-74C2194F4A20}" = protocol=6 | dir=in | app=c:\program files\raptr\raptr_im.exe |
"{DA4EC67B-CB34-40F5-A980-FD3C4669F927}" = protocol=6 | dir=in | app=c:\program files\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{E2E99DB7-0761-4758-80A2-D56DAF9F7CFE}" = protocol=17 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{E41E1F3A-AAA2-4A3B-9A88-594FAAF0D414}" = protocol=6 | dir=in | app=d:\assassin's creed revelations\acrmp.exe |
"{E4E7B1AD-52CF-4243-8C47-13A81F744826}" = protocol=6 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{FEC483C6-10BC-47CA-B882-9813951EDE2B}" = protocol=17 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"TCP Query User{0299A889-2D18-46F6-9CE0-D91E2311FEAE}C:\program files\ea sports\mvp baseball 2005\mvp2005.exe" = protocol=6 | dir=in | app=c:\program files\ea sports\mvp baseball 2005\mvp2005.exe |
"TCP Query User{0C4272C7-297A-4302-900D-D34BB07E183C}C:\program files\tvants\tvants.exe" = protocol=6 | dir=in | app=c:\program files\tvants\tvants.exe |
"TCP Query User{152D55E3-5D01-4B4F-BC1C-E7717E9C958C}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{1B16F133-2190-4E8A-85F9-B65707C385C5}C:\program files\google\google desktop search\googledesktop.exe" = protocol=6 | dir=in | app=c:\program files\google\google desktop search\googledesktop.exe |
"TCP Query User{1CBEFD89-8AA1-4A37-BA88-462E047DD5E3}C:\program files\streamtorrent 1.0\streamtorrent.exe" = protocol=6 | dir=in | app=c:\program files\streamtorrent 1.0\streamtorrent.exe |
"TCP Query User{207AF093-86B1-46A1-8D72-AF8F9363BD1A}C:\program files\tvuplayer\tvuplayer.exe" = protocol=6 | dir=in | app=c:\program files\tvuplayer\tvuplayer.exe |
"TCP Query User{2EF2D78B-B124-458A-A7A2-D57E77AC6369}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{3ABC90DD-B507-499B-B7A5-53AF05721580}C:\program files\sopcast\adv\sopadver.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe |
"TCP Query User{4B854D8B-99CE-43C9-969B-45323FE4750C}D:\rayman origins\rayman origins.exe" = protocol=6 | dir=in | app=d:\rayman origins\rayman origins.exe |
"TCP Query User{58B1C807-4231-4300-A95C-3384D73AB28D}C:\program files\sopcast\sopcast.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\sopcast.exe |
"TCP Query User{6B345C1E-B403-4E3A-AB5C-EAC7F8DC2B8E}C:\program files\streamtorrent ne 1.0\streamtorrent.exe" = protocol=6 | dir=in | app=c:\program files\streamtorrent ne 1.0\streamtorrent.exe |
"TCP Query User{81150EAC-1F73-4949-A8F1-E5E981134953}C:\program files\sopcast\adv\sopadver.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe |
"TCP Query User{8A25E399-34E5-4DFC-8133-2CAA1DBA2C5D}D:\assassin's creed revelations\acrpr.exe" = protocol=6 | dir=in | app=d:\assassin's creed revelations\acrpr.exe |
"TCP Query User{8CB9391C-635D-483E-B5AF-A6D5B785D73E}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"TCP Query User{9635C8FD-BE9E-4A3B-9B9A-188D02531F98}C:\program files\tvants\tvants.exe" = protocol=6 | dir=in | app=c:\program files\tvants\tvants.exe |
"TCP Query User{A4ABAAF1-D0ED-4B1C-A963-E241291647DC}C:\program files\streamtorrent 1.0\streamtorrent.exe" = protocol=6 | dir=in | app=c:\program files\streamtorrent 1.0\streamtorrent.exe |
"TCP Query User{A54DE1C6-41B3-4BB6-BBDF-B67D34E63612}C:\program files\valve\hl.exe" = protocol=6 | dir=in | app=c:\program files\valve\hl.exe |
"TCP Query User{A7AC35DA-3764-4A87-B80D-88E56239DC5D}C:\program files\sopcast\sopcast.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\sopcast.exe |
"TCP Query User{AF9492D2-6F17-4ABC-9713-EB4266A9D442}C:\program files\spyware terminator\spywareterminatorupdate.exe" = protocol=6 | dir=in | app=c:\program files\spyware terminator\spywareterminatorupdate.exe |
"TCP Query User{C8E46D3D-23E8-4FCF-8B92-200A09CD9049}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"TCP Query User{CEB6AA2A-FA2E-4EA7-A1CA-5C3B95C6712A}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{D3DEEDB1-CCBB-4D28-898E-F6499751F2CD}C:\program files\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"TCP Query User{DC915DE0-122E-40ED-9227-36EBD4AF58B2}C:\program files\city interactive\sniper ghost warrior\sniper_x86.exe" = protocol=6 | dir=in | app=c:\program files\city interactive\sniper ghost warrior\sniper_x86.exe |
"TCP Query User{E03E0FD2-ED5A-4768-94EA-E3B07124E14F}C:\program files\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"TCP Query User{F15771C5-E5B7-494E-BEE3-CF4288B0445F}C:\program files\webteh\bsplayer\bsplayer.exe" = protocol=6 | dir=in | app=c:\program files\webteh\bsplayer\bsplayer.exe |
"TCP Query User{F2CF338B-A841-4E96-BC26-887C09F82586}C:\Program Files\Java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{F3479BA4-A487-4B0D-ABA3-7386441F79DF}C:\program files\real\realplayer\realplay.exe" = protocol=6 | dir=in | app=c:\program files\real\realplayer\realplay.exe |
"TCP Query User{F9FEA091-D677-4EF2-8E7B-34512CC09396}C:\users\adam\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\adam\appdata\local\akamai\netsession_win.exe |
"TCP Query User{FAC0182C-A7E8-494B-9D20-C2E6179109BA}C:\program files\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\plugin-container.exe |
"TCP Query User{FD214EC5-D4A7-4445-B86C-A7FE6CCAB4C7}C:\program files\ea sports\mvp baseball 2005\mvp2005.exe" = protocol=6 | dir=in | app=c:\program files\ea sports\mvp baseball 2005\mvp2005.exe |
"TCP Query User{FE5C7AD4-C70F-4E0E-8E89-198AB91A519E}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{05217259-A960-4114-AFE3-0D429E2244D4}C:\program files\streamtorrent 1.0\streamtorrent.exe" = protocol=17 | dir=in | app=c:\program files\streamtorrent 1.0\streamtorrent.exe |
"UDP Query User{0E22151D-FB79-482B-A7F0-A542217F972E}C:\program files\sopcast\adv\sopadver.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe |
"UDP Query User{11D31A48-E1AC-463A-9342-03E56B339CC7}C:\program files\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"UDP Query User{1319DE55-9504-4761-B538-9F8510503C08}C:\program files\sopcast\adv\sopadver.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe |
"UDP Query User{21732EBF-5059-400B-9DD3-0BC1954698C3}D:\rayman origins\rayman origins.exe" = protocol=17 | dir=in | app=d:\rayman origins\rayman origins.exe |
"UDP Query User{287CEEA4-F68B-4D3C-A96B-EDCABE0B23D0}C:\Program Files\Java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{3158A38A-F5EF-4425-B58A-AD785AB1FEAA}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{43380E41-6F8A-4AF6-9FC1-A7B77E78D214}C:\program files\sopcast\sopcast.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\sopcast.exe |
"UDP Query User{483533F0-7799-4B38-A5C2-6CE48683A2FB}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{53E6A055-D908-4C18-BCEF-55A2F3CACECF}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"UDP Query User{5C306E07-DAE5-40ED-A8EF-7ECC678F8605}C:\program files\ea sports\mvp baseball 2005\mvp2005.exe" = protocol=17 | dir=in | app=c:\program files\ea sports\mvp baseball 2005\mvp2005.exe |
"UDP Query User{5EE7FDF7-90A0-4536-9393-004A3E182AED}C:\program files\spyware terminator\spywareterminatorupdate.exe" = protocol=17 | dir=in | app=c:\program files\spyware terminator\spywareterminatorupdate.exe |
"UDP Query User{72891F4C-575E-4DB2-A50F-884597378D88}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{779769A5-9FD2-4F6C-BF04-22A63D1E2B8A}C:\program files\valve\hl.exe" = protocol=17 | dir=in | app=c:\program files\valve\hl.exe |
"UDP Query User{80527B23-AE96-4C80-B227-5E17ADD71B91}C:\program files\tvants\tvants.exe" = protocol=17 | dir=in | app=c:\program files\tvants\tvants.exe |
"UDP Query User{922A7030-9DBC-4D53-B2E4-503BA93E71B3}C:\program files\streamtorrent 1.0\streamtorrent.exe" = protocol=17 | dir=in | app=c:\program files\streamtorrent 1.0\streamtorrent.exe |
"UDP Query User{99ADD42B-F7E2-4BC5-8D5E-B22F8AF8A41D}C:\program files\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"UDP Query User{9A65CF6C-3E64-4601-B906-80D6CC1EFA85}C:\program files\sopcast\sopcast.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\sopcast.exe |
"UDP Query User{9F4FF6A0-EDC9-40D8-941E-59864B5F14A6}C:\program files\real\realplayer\realplay.exe" = protocol=17 | dir=in | app=c:\program files\real\realplayer\realplay.exe |
"UDP Query User{AF0C78C7-3F11-42F6-857A-524BB8E68D02}C:\users\adam\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\adam\appdata\local\akamai\netsession_win.exe |
"UDP Query User{B58B4F2D-6DC4-49AC-986C-5CE3549D3322}C:\program files\ea sports\mvp baseball 2005\mvp2005.exe" = protocol=17 | dir=in | app=c:\program files\ea sports\mvp baseball 2005\mvp2005.exe |
"UDP Query User{BD9EB799-3436-4C29-8310-4AD4FD141B7D}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{C3B577F8-D928-4713-9DFA-28656F8E968B}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"UDP Query User{C94BFA38-0B4F-4DA9-9483-8C8D50A640B9}C:\program files\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\plugin-container.exe |
"UDP Query User{CBAA4B1D-917C-4AF7-B2FA-BF2E92BDB2B4}C:\program files\webteh\bsplayer\bsplayer.exe" = protocol=17 | dir=in | app=c:\program files\webteh\bsplayer\bsplayer.exe |
"UDP Query User{CFB0B02F-0D73-4897-8919-555D07F5DF84}D:\assassin's creed revelations\acrpr.exe" = protocol=17 | dir=in | app=d:\assassin's creed revelations\acrpr.exe |
"UDP Query User{D38B1285-AD42-4A6F-AC18-46BF9C63B879}C:\program files\streamtorrent ne 1.0\streamtorrent.exe" = protocol=17 | dir=in | app=c:\program files\streamtorrent ne 1.0\streamtorrent.exe |
"UDP Query User{D7F6BF4D-1CA9-4F4C-9265-C2FFD3EF776B}C:\program files\google\google desktop search\googledesktop.exe" = protocol=17 | dir=in | app=c:\program files\google\google desktop search\googledesktop.exe |
"UDP Query User{E9635C32-63B4-444B-9726-F7F745F0C9EC}C:\program files\city interactive\sniper ghost warrior\sniper_x86.exe" = protocol=17 | dir=in | app=c:\program files\city interactive\sniper ghost warrior\sniper_x86.exe |
"UDP Query User{EE84868D-491F-469F-AE8F-85353A6A288A}C:\program files\tvants\tvants.exe" = protocol=17 | dir=in | app=c:\program files\tvants\tvants.exe |
"UDP Query User{FAE514D7-0CB9-4DF4-8C9F-A0C9C0FBC08B}C:\program files\tvuplayer\tvuplayer.exe" = protocol=17 | dir=in | app=c:\program files\tvuplayer\tvuplayer.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0673654C-5296-453B-9798-B61CD7E03FEB}" = SES Driver
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0A35B15C-9CCD-4C0C-BD5B-34ABF8C95813}_is1" = ICQ 7.2 Build #3159 Banner Remover 1.0
"{106B4413-ACBB-4CDE-8707-587DB9BD77EC}" = LogMeIn Hamachi
"{13B792AA-C078-43A4-8A3A-8B12D629940D}" = Counter-Strike 1.6
"{14ECAABB-C8B9-4A09-92F7-CDF1A45B6DDE}" = Google Drive
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31
"{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 9
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{2F926AE7-9FB7-4B34-906F-9C29A6D146A7}" = SystemDiagnostics
"{33286280-8617-11E1-8FF6-B8AC6F97B88E}" = Google Earth Plug-in
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3D3E663D-4E7E-4577-A560-7ECDDD45548A}" = PVSonyDll
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{45A1BF92-700A-4408-B95E-79F462E3D67D}" = Studio 11 Bonus DVD
"{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}" = Adobe AIR
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{501451DE-5808-4599-B544-8BD0915B6B24}_is1" = FreeRIP v3.5
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6DE721A5-5E89-4D74-994C-652BB3C0672E}" = Ovladače videa společnosti Pinnacle
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6}" = ICQ7.2
"{73289228-1853-4623-982A-EB17FF0270CA}" = OSD_1.16
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7D42B43A-EA63-4234-B00A-757C15B2B185}_is1" = AVI Converter version 1.2.2.2
"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{854C47D1-C2A0-4492-8655-C3F8D49C1029}" = Nero 8 Essentials
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8BF806C4-2D77-4F67-8435-D4BDCEB665A8}_is1" = Governor of Poker 2 Premium Edition v1.0 Multi
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{91110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A3BC1DBD-64D6-4EBC-0091-24C811662D40}" = Madden NFL 08
"{A92D7264-1A13-45BE-B769-88445DD04FD6}" = Desktop Sidebar
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AADD1C8F-D59F-4D55-A726-768C71A205A8}" = Pinnacle Studio 14
"{AAF4238F-7C29-451D-9925-C753271A5728}" = Microsoft Visual C++ Run Time Lib Setup
"{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.4)
"{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}" = QuickTime
"{BC3804E5-77CC-47A0-8BD5-797355A26BA3}" = WD SmartWare
"{CBF78A5F-7950-4CF1-A063-C4C7B2B82CE6}" = SoundSoap PE
"{CC874CBB-BD87-4126-9465-AE73BB62D6E0}" = Studio 11 Ultimate
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F5266D28-E0B2-4130-BFC5-EE155AD514DC}" = Apple Application Support
"{F58B763E-9FB9-4629-AF3C-CC9744BC4BA7}" = Fujitsu Siemens Computers Recovery
"{F5C372A1-40F3-49DA-A049-F75CDE9177DC}" = Pinnacle Studio Ultimate Collection Plugins
"{F770C509-0658-4BB9-A9A8-930E512934C2}" = Amnesty Generator
"{F7963BA0-EE1C-11D4-9FA5-00A0C9E6A342}" = Commandos 2: Men of Courage
"{FEC7CD2E-2BB5-40C3-9592-078F64677E6C}" = PC TWIN SHOCK
"0B624A43DD66DBF5CF3EDFA9741A364E688062A4" = Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices (03/07/2012 )
"3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F" = Balíček ovladače systému Windows - Nokia pccsmcfd (10/12/2007 6.85.4.0)
"4F6D5E84-5826-4394-9F40-3A9A19165651_is1" = Pandora Service
"8461-7759-5462-8226" = Vuze
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Akamai" = Akamai NetSession Interface Service
"Any Audio Converter_is1" = Any Audio Converter 3.0.7
"avast" = avast! Free Antivirus
"BSPlayerf" = BS.Player FREE
"CCleaner" = CCleaner
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.02
"FileZilla Client" = FileZilla Client 3.3.5.1
"Free MP3 WMA WAV Converter_is1" = Free MP3 WMA WAV Converter v2.0
"Google Desktop" = Google Desktop
"GoPro CineForm Studio" = GoPro CineForm Studio 1.3.2
"HijackThis" = HijackThis 2.0.2
"InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"Knoll Light Factory EZ Studio" = Knoll Light Factory EZ Studio
"LogMeIn Hamachi" = LogMeIn Hamachi
"Magic Bullet Looks Studio" = Magic Bullet Looks Studio
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Mozilla Firefox 17.0.1 (x86 cs)" = Mozilla Firefox 17.0.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"musicjacker for MySpace1.2.2" = musicjacker for MySpace
"NirSoft WebVideoCap" = NirSoft WebVideoCap
"NVIDIA Drivers" = NVIDIA Drivers
"OpenAL" = OpenAL
"proDAD-Heroglyph-2.5" = proDAD Heroglyph 2.5
"proDAD-Vitascene-1.0" = proDAD Vitascene 1.0
"PunkBusterSvc" = PunkBuster Services
"Rayman Origins_R.G. Mechanics_is1" = Rayman Origins
"RealPlayer 15.0" = RealPlayer
"Red Giant ToonIt Studio" = Red Giant ToonIt Studio
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile Modem Device" = Samsung Mobile Modem Device Software
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"SAMSUNG USB Mobile Device" = SAMSUNG USB Mobile Device Software
"SimilarSites" = SimilarSites
"SopCast" = SopCast 3.2.4
"Spyware Terminator_is1" = Spyware Terminator
"StreamTorrent 1.0" = StreamTorrent 1.0
"StreamTorrent NE_is1" = StreamTorrent NE 1.0
"The KMPlayer" = The KMPlayer (remove only)
"The Weather Channel App" = The Weather Channel App
"The Weather Channel Desktop 6" = The Weather Channel Desktop 6
"Trapcode 3DStroke Studio" = Trapcode 3DStroke Studio
"Trapcode Particular Studio" = Trapcode Particular Studio
"Trapcode Shine Studio" = Trapcode Shine Studio
"TVAnts 1.0" = TVAnts 1.0
"TVUPlayer" = TVUPlayer 2.5.3.1
"Veetle TV" = Veetle TV 0.9.17
"Vuze_Remote Toolbar" = Vuze_Remote Toolbar
"WinRAR archiver" = WinRAR
"WM Downloader_is1" = WM Downloader 3.0.1.1 2008.11.23
"Xvid Video Codec 1.3.1" = Xvid Video Codec
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-2452340871-1716036081-418109285-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Akamai" = Akamai NetSession Interface
"UnityWebPlayer" = Unity Web Player
========== Last 20 Event Log Errors ==========
[ Antivirus Events ]
Error - 28.11.2009 9:09:52 | Computer Name = Adam-PC | Source = avast! | ID = 33554522
Description =
Error - 7.3.2010 10:34:32 | Computer Name = Adam-PC | Source = avast! | ID = 33554522
Description =
Error - 7.3.2010 16:45:17 | Computer Name = Adam-PC | Source = avast! | ID = 33554522
Description =
Error - 9.3.2010 7:24:14 | Computer Name = Adam-PC | Source = avast! | ID = 33554522
Description =
Error - 2.5.2010 15:18:39 | Computer Name = Adam-PC | Source = avast! | ID = 33554522
Description =
Error - 2.5.2010 15:18:39 | Computer Name = Adam-PC | Source = avast! | ID = 33554522
Description =
Error - 2.5.2010 15:18:39 | Computer Name = Adam-PC | Source = avast! | ID = 33554522
Description =
Error - 2.5.2010 15:18:39 | Computer Name = Adam-PC | Source = avast! | ID = 33554522
Description =
Error - 2.5.2010 15:18:39 | Computer Name = Adam-PC | Source = avast! | ID = 33554522
Description =
Error - 2.5.2010 15:18:39 | Computer Name = Adam-PC | Source = avast! | ID = 33554522
Description =
[ Application Events ]
Error - 23.8.2012 10:53:49 | Computer Name = Adam-PC | Source = WinMgmt | ID = 10
Description =
Error - 27.8.2012 16:53:12 | Computer Name = Adam-PC | Source = Application Hang | ID = 1002
Description = Program Explorer.EXE verze 6.0.6002.18005 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Oznámení a řešení
problémů. ID procesu: e44 Čas zahájení: 01cd813efac12c1c Čas ukončení: 263
Error - 28.8.2012 11:11:50 | Computer Name = Adam-PC | Source = WinMgmt | ID = 10
Description =
Error - 29.8.2012 10:50:43 | Computer Name = Adam-PC | Source = WinMgmt | ID = 10
Description =
Error - 31.8.2012 15:02:50 | Computer Name = Adam-PC | Source = Application Hang | ID = 1002
Description = Program firefox.exe verze 14.0.1.4577 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Oznámení a řešení problémů.
ID
procesu: 14e8 Čas zahájení: 01cd86e9dd8204c0 Čas ukončení: 27
Error - 1.9.2012 10:53:33 | Computer Name = Adam-PC | Source = WinMgmt | ID = 10
Description =
Error - 2.9.2012 3:33:02 | Computer Name = Adam-PC | Source = WinMgmt | ID = 10
Description =
Error - 4.9.2012 10:49:20 | Computer Name = Adam-PC | Source = WinMgmt | ID = 10
Description =
Error - 4.9.2012 23:59:21 | Computer Name = Adam-PC | Source = WinMgmt | ID = 10
Description =
Error - 5.9.2012 11:39:03 | Computer Name = Adam-PC | Source = WinMgmt | ID = 10
Description =
[ System Events ]
Error - 28.12.2012 6:20:20 | Computer Name = Adam-PC | Source = Service Control Manager | ID = 7026
Description =
Error - 28.12.2012 6:24:46 | Computer Name = Adam-PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (11:22:53, 28.12.2012) bylo neočekávané.
Error - 28.12.2012 6:26:25 | Computer Name = Adam-PC | Source = Service Control Manager | ID = 7026
Description =
Error - 28.12.2012 6:29:20 | Computer Name = Adam-PC | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description =
Error - 28.12.2012 6:57:37 | Computer Name = Adam-PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (11:29:35, 28.12.2012) bylo neočekávané.
Error - 28.12.2012 6:57:48 | Computer Name = Adam-PC | Source = Dhcp | ID = 1002
Description = Zapůjčení adresy IP 10.0.0.2 pro síťovou kartu s adresou 001644E4DD5B
byla serverem DHCP 10.0.0.138 odmítnuta. (Server DHCP odeslal zprávu DHCPNACK).
Error - 28.12.2012 14:36:45 | Computer Name = Adam-PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (11:59:29, 28.12.2012) bylo neočekávané.
Error - 28.12.2012 14:38:32 | Computer Name = Adam-PC | Source = Service Control Manager | ID = 7026
Description =
Error - 28.12.2012 14:41:07 | Computer Name = Adam-PC | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description =
Error - 28.12.2012 14:45:28 | Computer Name = Adam-PC | Source = volsnap | ID = 393252
Description = Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného
uživatelem se nepodařilo zvětšit úložiště stínové kopie.
< End of report >
OTL Extras logfile created on: 28.12.2012 20:34:26 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Adam\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy
2,99 Gb Total Physical Memory | 1,39 Gb Available Physical Memory | 46,31% Memory free
6,21 Gb Paging File | 4,77 Gb Available in Paging File | 76,84% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 94,16 Gb Total Space | 5,38 Gb Free Space | 5,72% Space Free | Partition Type: NTFS
Drive D: | 129,94 Gb Total Space | 15,03 Gb Free Space | 11,57% Space Free | Partition Type: NTFS
Computer Name: ADAM-PC | User Name: Adam | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 14 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-2452340871-1716036081-418109285-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{088360BE-717A-439F-96EB-6A8D37A9C662}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{0944B0A7-E8A2-4FD0-A318-67AB2B77A639}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{0D1E950D-C025-45B5-987C-1DFE389866C1}" = rport=137 | protocol=17 | dir=out | app=system |
"{137E423F-0D7C-45C5-8EF9-ADDFF746F81D}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{23B4F221-CF19-43E4-83A8-E76A6AADB971}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{25B26D8B-A5C0-46B2-A523-038004AEA6D7}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{29D0611E-9969-458B-9FE1-B2BF988F53C3}" = lport=445 | protocol=6 | dir=in | app=system |
"{2FBABB25-305F-45B9-946C-23CD50B58B37}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{76BFF388-72DE-4E4C-9AA1-B2E67E462839}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{9F8D47D9-6C39-4144-970F-EF4C11283064}" = rport=445 | protocol=6 | dir=out | app=system |
"{A3A4CAA3-54EA-42E8-8AFA-05ADD0238C91}" = lport=138 | protocol=17 | dir=in | app=system |
"{A5064537-8BBD-4774-9F4E-5502CD568D50}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{B6FB0633-B0D1-490C-BD41-E74BB5568880}" = rport=138 | protocol=17 | dir=out | app=system |
"{D391DBAE-86D0-445E-9F73-BAD23FE63C86}" = lport=137 | protocol=17 | dir=in | app=system |
"{DC964498-85AE-4C35-83AF-431FB6BD2706}" = rport=139 | protocol=6 | dir=out | app=system |
"{E8ACBC4F-27F5-4455-86E6-908A603E46A0}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{EBC930D3-E535-4DDB-A49D-0D53B1E52464}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{FFEB303F-98CD-44E9-A895-AFDAAE97E560}" = lport=139 | protocol=6 | dir=in | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01D0D4B6-D35C-4477-89E2-AC46E0F68F31}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{030041B9-4AFF-4FED-8D93-0C6904A6FA4D}" = protocol=6 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{048BEFAF-B655-42C6-918C-40102C114758}" = protocol=6 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{078413FF-A3BC-46FA-A659-05474F9B4592}" = protocol=17 | dir=in | app=c:\program files\vuze\azureus.exe |
"{0C815FB9-6E4C-411D-A28A-B2FD96E8AC22}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{0F68A4B9-D651-41DC-B93F-EE8101C41C8D}" = protocol=17 | dir=in | app=c:\program files\raptr\raptr_im.exe |
"{11CC7947-6062-4752-A339-0488E4C03E48}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{12DFBD03-4934-417E-A3A0-ADCB679E9C65}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{132D2513-ABF5-48D2-802C-0C07D9BB4065}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{14ACB89D-B88A-4BEA-8D92-05B620BEFFE8}" = protocol=6 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{16E4A1D5-1740-471F-8456-18BFA81E9983}" = protocol=6 | dir=in | app=c:\program files\vuze\azureus.exe |
"{1E8364F6-E843-4418-908B-1648C7420268}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{238903B9-375E-4DDF-81C6-FF4DBBA149E8}" = protocol=17 | dir=in | app=d:\assassin's creed brotherhood\acbmp.exe |
"{2EF9680D-247E-4985-A3F0-79A060E76609}" = protocol=6 | dir=in | app=c:\program files\vuze\azureus.exe |
"{2F9A5B08-B4E5-49F7-8B68-A35C13523DCE}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{303476D9-962A-4870-B64D-65145106AF13}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 14\programs\studio.exe |
"{3B0140EC-7E37-4C76-8E9D-E0B0264CB3A8}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{3D2103C3-D1FE-455E-AFF7-BDBB39BAF47C}" = protocol=17 | dir=in | app=c:\program files\pandora.tv\panservice\pandoraservice.exe |
"{3EE0EBFE-42FE-4D22-AA6F-4B1771E0429E}" = protocol=17 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{422BD92F-89AB-46EF-98ED-CD5374DE6E60}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 14\programs\rm.exe |
"{42F611A8-6E85-41D2-9F0F-0EAC0FC94073}" = protocol=17 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsasvr.exe |
"{4B13F1EB-2BA9-46FC-8DE2-A8BAAD74CA7A}" = protocol=17 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{4D384606-EB3B-432D-BE07-9208A51E5E75}" = protocol=17 | dir=in | app=c:\program files\raptr\raptr.exe |
"{54D4E5DC-1D2F-43D0-8FB7-B267DAFE91C1}" = protocol=6 | dir=in | app=c:\users\adam\appdata\local\akamai\netsession_win.exe |
"{56A73D8E-C1FA-4095-8C9D-7A4A17F539ED}" = protocol=6 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{581CF41E-430D-42E8-A3FB-2151C16EE56C}" = protocol=17 | dir=in | app=d:\assassin's creed revelations\acrmp.exe |
"{58CC4CF1-8F5B-47BC-8A37-DC54DE75358C}" = protocol=17 | dir=in | app=c:\program files\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{6AF1B646-0E6C-4B73-B74D-0E6E37B2F238}" = protocol=6 | dir=in | app=c:\program files\pandora.tv\panservice\pandoraservice.exe |
"{6B0BAADC-B038-4757-9E79-4F0791068584}" = protocol=6 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsvsvr.exe |
"{6B426BD2-66E4-4597-A7FD-4CDBCD956852}" = protocol=17 | dir=in | app=c:\users\adam\appdata\local\akamai\netsession_win.exe |
"{7D3F0B4C-AC62-4FCE-8D72-C4DDE4AE6349}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{7EFB0085-8B8F-4292-A140-ED305041CA6C}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 14\programs\studio.exe |
"{833B71A2-0C4E-4E08-A6F7-5D5E4EAB29F5}" = protocol=17 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsvsvr.exe |
"{849FC1A2-50DA-4AC2-A044-A5479CABCB60}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{8A135A96-E529-4082-BA5B-DA2909CF635D}" = protocol=17 | dir=in | app=c:\program files\pinnacle\studio 14\programs\umi.exe |
"{8F6B70D7-8A07-4220-ABEB-630864854A10}" = protocol=17 | dir=in | app=c:\program files\vuze\azureus.exe |
"{959E6E90-3E4E-4D36-8FA9-7C09E01F3B68}" = protocol=6 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{A68C599D-CCBF-4941-A6EC-9E2B18B8CCDC}" = protocol=17 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{A72BFC9D-FBCD-4E89-B064-EEA473A669DA}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 14\programs\umi.exe |
"{A7E0A8A8-43EB-498D-84F5-33CF539D7824}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{AA3EC020-FEB8-44AC-B839-E5DE71E4B4A1}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{AA4E9640-7280-4598-BF94-20E429149EA1}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{AF545C28-94C9-4955-A010-BD1CE2B2EC22}" = protocol=6 | dir=in | app=c:\program files\pinnacle\studio 14\programs\rm.exe |
"{B7516533-FAF2-47A7-873C-A3BCA4B1438B}" = protocol=6 | dir=in | app=c:\program files\samsung\samsung new pc studio\npsasvr.exe |
"{BC4EE248-1FAF-4FC9-98EC-370E36C06E8E}" = protocol=6 | dir=in | app=c:\program files\raptr\raptr.exe |
"{BD858B74-81EA-4074-87C6-D12B48A7F12A}" = protocol=17 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{C4028976-9774-47F4-997E-F16AFAC31DFC}" = protocol=6 | dir=in | app=d:\assassin's creed brotherhood\acbmp.exe |
"{D61CDD73-F818-4187-8E22-74C2194F4A20}" = protocol=6 | dir=in | app=c:\program files\raptr\raptr_im.exe |
"{DA4EC67B-CB34-40F5-A980-FD3C4669F927}" = protocol=6 | dir=in | app=c:\program files\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{E2E99DB7-0761-4758-80A2-D56DAF9F7CFE}" = protocol=17 | dir=in | app=c:\program files\icq7.2\icq.exe |
"{E41E1F3A-AAA2-4A3B-9A88-594FAAF0D414}" = protocol=6 | dir=in | app=d:\assassin's creed revelations\acrmp.exe |
"{E4E7B1AD-52CF-4243-8C47-13A81F744826}" = protocol=6 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"{FEC483C6-10BC-47CA-B882-9813951EDE2B}" = protocol=17 | dir=in | app=c:\program files\icq7.2\aolload.exe |
"TCP Query User{0299A889-2D18-46F6-9CE0-D91E2311FEAE}C:\program files\ea sports\mvp baseball 2005\mvp2005.exe" = protocol=6 | dir=in | app=c:\program files\ea sports\mvp baseball 2005\mvp2005.exe |
"TCP Query User{0C4272C7-297A-4302-900D-D34BB07E183C}C:\program files\tvants\tvants.exe" = protocol=6 | dir=in | app=c:\program files\tvants\tvants.exe |
"TCP Query User{152D55E3-5D01-4B4F-BC1C-E7717E9C958C}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{1B16F133-2190-4E8A-85F9-B65707C385C5}C:\program files\google\google desktop search\googledesktop.exe" = protocol=6 | dir=in | app=c:\program files\google\google desktop search\googledesktop.exe |
"TCP Query User{1CBEFD89-8AA1-4A37-BA88-462E047DD5E3}C:\program files\streamtorrent 1.0\streamtorrent.exe" = protocol=6 | dir=in | app=c:\program files\streamtorrent 1.0\streamtorrent.exe |
"TCP Query User{207AF093-86B1-46A1-8D72-AF8F9363BD1A}C:\program files\tvuplayer\tvuplayer.exe" = protocol=6 | dir=in | app=c:\program files\tvuplayer\tvuplayer.exe |
"TCP Query User{2EF2D78B-B124-458A-A7A2-D57E77AC6369}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{3ABC90DD-B507-499B-B7A5-53AF05721580}C:\program files\sopcast\adv\sopadver.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe |
"TCP Query User{4B854D8B-99CE-43C9-969B-45323FE4750C}D:\rayman origins\rayman origins.exe" = protocol=6 | dir=in | app=d:\rayman origins\rayman origins.exe |
"TCP Query User{58B1C807-4231-4300-A95C-3384D73AB28D}C:\program files\sopcast\sopcast.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\sopcast.exe |
"TCP Query User{6B345C1E-B403-4E3A-AB5C-EAC7F8DC2B8E}C:\program files\streamtorrent ne 1.0\streamtorrent.exe" = protocol=6 | dir=in | app=c:\program files\streamtorrent ne 1.0\streamtorrent.exe |
"TCP Query User{81150EAC-1F73-4949-A8F1-E5E981134953}C:\program files\sopcast\adv\sopadver.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe |
"TCP Query User{8A25E399-34E5-4DFC-8133-2CAA1DBA2C5D}D:\assassin's creed revelations\acrpr.exe" = protocol=6 | dir=in | app=d:\assassin's creed revelations\acrpr.exe |
"TCP Query User{8CB9391C-635D-483E-B5AF-A6D5B785D73E}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"TCP Query User{9635C8FD-BE9E-4A3B-9B9A-188D02531F98}C:\program files\tvants\tvants.exe" = protocol=6 | dir=in | app=c:\program files\tvants\tvants.exe |
"TCP Query User{A4ABAAF1-D0ED-4B1C-A963-E241291647DC}C:\program files\streamtorrent 1.0\streamtorrent.exe" = protocol=6 | dir=in | app=c:\program files\streamtorrent 1.0\streamtorrent.exe |
"TCP Query User{A54DE1C6-41B3-4BB6-BBDF-B67D34E63612}C:\program files\valve\hl.exe" = protocol=6 | dir=in | app=c:\program files\valve\hl.exe |
"TCP Query User{A7AC35DA-3764-4A87-B80D-88E56239DC5D}C:\program files\sopcast\sopcast.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\sopcast.exe |
"TCP Query User{AF9492D2-6F17-4ABC-9713-EB4266A9D442}C:\program files\spyware terminator\spywareterminatorupdate.exe" = protocol=6 | dir=in | app=c:\program files\spyware terminator\spywareterminatorupdate.exe |
"TCP Query User{C8E46D3D-23E8-4FCF-8B92-200A09CD9049}C:\program files\icq6.5\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq6.5\icq.exe |
"TCP Query User{CEB6AA2A-FA2E-4EA7-A1CA-5C3B95C6712A}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"TCP Query User{D3DEEDB1-CCBB-4D28-898E-F6499751F2CD}C:\program files\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"TCP Query User{DC915DE0-122E-40ED-9227-36EBD4AF58B2}C:\program files\city interactive\sniper ghost warrior\sniper_x86.exe" = protocol=6 | dir=in | app=c:\program files\city interactive\sniper ghost warrior\sniper_x86.exe |
"TCP Query User{E03E0FD2-ED5A-4768-94EA-E3B07124E14F}C:\program files\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"TCP Query User{F15771C5-E5B7-494E-BEE3-CF4288B0445F}C:\program files\webteh\bsplayer\bsplayer.exe" = protocol=6 | dir=in | app=c:\program files\webteh\bsplayer\bsplayer.exe |
"TCP Query User{F2CF338B-A841-4E96-BC26-887C09F82586}C:\Program Files\Java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{F3479BA4-A487-4B0D-ABA3-7386441F79DF}C:\program files\real\realplayer\realplay.exe" = protocol=6 | dir=in | app=c:\program files\real\realplayer\realplay.exe |
"TCP Query User{F9FEA091-D677-4EF2-8E7B-34512CC09396}C:\users\adam\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\adam\appdata\local\akamai\netsession_win.exe |
"TCP Query User{FAC0182C-A7E8-494B-9D20-C2E6179109BA}C:\program files\mozilla firefox\plugin-container.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\plugin-container.exe |
"TCP Query User{FD214EC5-D4A7-4445-B86C-A7FE6CCAB4C7}C:\program files\ea sports\mvp baseball 2005\mvp2005.exe" = protocol=6 | dir=in | app=c:\program files\ea sports\mvp baseball 2005\mvp2005.exe |
"TCP Query User{FE5C7AD4-C70F-4E0E-8E89-198AB91A519E}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{05217259-A960-4114-AFE3-0D429E2244D4}C:\program files\streamtorrent 1.0\streamtorrent.exe" = protocol=17 | dir=in | app=c:\program files\streamtorrent 1.0\streamtorrent.exe |
"UDP Query User{0E22151D-FB79-482B-A7F0-A542217F972E}C:\program files\sopcast\adv\sopadver.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe |
"UDP Query User{11D31A48-E1AC-463A-9342-03E56B339CC7}C:\program files\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"UDP Query User{1319DE55-9504-4761-B538-9F8510503C08}C:\program files\sopcast\adv\sopadver.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe |
"UDP Query User{21732EBF-5059-400B-9DD3-0BC1954698C3}D:\rayman origins\rayman origins.exe" = protocol=17 | dir=in | app=d:\rayman origins\rayman origins.exe |
"UDP Query User{287CEEA4-F68B-4D3C-A96B-EDCABE0B23D0}C:\Program Files\Java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{3158A38A-F5EF-4425-B58A-AD785AB1FEAA}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{43380E41-6F8A-4AF6-9FC1-A7B77E78D214}C:\program files\sopcast\sopcast.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\sopcast.exe |
"UDP Query User{483533F0-7799-4B38-A5C2-6CE48683A2FB}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{53E6A055-D908-4C18-BCEF-55A2F3CACECF}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"UDP Query User{5C306E07-DAE5-40ED-A8EF-7ECC678F8605}C:\program files\ea sports\mvp baseball 2005\mvp2005.exe" = protocol=17 | dir=in | app=c:\program files\ea sports\mvp baseball 2005\mvp2005.exe |
"UDP Query User{5EE7FDF7-90A0-4536-9393-004A3E182AED}C:\program files\spyware terminator\spywareterminatorupdate.exe" = protocol=17 | dir=in | app=c:\program files\spyware terminator\spywareterminatorupdate.exe |
"UDP Query User{72891F4C-575E-4DB2-A50F-884597378D88}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{779769A5-9FD2-4F6C-BF04-22A63D1E2B8A}C:\program files\valve\hl.exe" = protocol=17 | dir=in | app=c:\program files\valve\hl.exe |
"UDP Query User{80527B23-AE96-4C80-B227-5E17ADD71B91}C:\program files\tvants\tvants.exe" = protocol=17 | dir=in | app=c:\program files\tvants\tvants.exe |
"UDP Query User{922A7030-9DBC-4D53-B2E4-503BA93E71B3}C:\program files\streamtorrent 1.0\streamtorrent.exe" = protocol=17 | dir=in | app=c:\program files\streamtorrent 1.0\streamtorrent.exe |
"UDP Query User{99ADD42B-F7E2-4BC5-8D5E-B22F8AF8A41D}C:\program files\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\java.exe |
"UDP Query User{9A65CF6C-3E64-4601-B906-80D6CC1EFA85}C:\program files\sopcast\sopcast.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\sopcast.exe |
"UDP Query User{9F4FF6A0-EDC9-40D8-941E-59864B5F14A6}C:\program files\real\realplayer\realplay.exe" = protocol=17 | dir=in | app=c:\program files\real\realplayer\realplay.exe |
"UDP Query User{AF0C78C7-3F11-42F6-857A-524BB8E68D02}C:\users\adam\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\adam\appdata\local\akamai\netsession_win.exe |
"UDP Query User{B58B4F2D-6DC4-49AC-986C-5CE3549D3322}C:\program files\ea sports\mvp baseball 2005\mvp2005.exe" = protocol=17 | dir=in | app=c:\program files\ea sports\mvp baseball 2005\mvp2005.exe |
"UDP Query User{BD9EB799-3436-4C29-8310-4AD4FD141B7D}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe |
"UDP Query User{C3B577F8-D928-4713-9DFA-28656F8E968B}C:\program files\icq6.5\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq6.5\icq.exe |
"UDP Query User{C94BFA38-0B4F-4DA9-9483-8C8D50A640B9}C:\program files\mozilla firefox\plugin-container.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\plugin-container.exe |
"UDP Query User{CBAA4B1D-917C-4AF7-B2FA-BF2E92BDB2B4}C:\program files\webteh\bsplayer\bsplayer.exe" = protocol=17 | dir=in | app=c:\program files\webteh\bsplayer\bsplayer.exe |
"UDP Query User{CFB0B02F-0D73-4897-8919-555D07F5DF84}D:\assassin's creed revelations\acrpr.exe" = protocol=17 | dir=in | app=d:\assassin's creed revelations\acrpr.exe |
"UDP Query User{D38B1285-AD42-4A6F-AC18-46BF9C63B879}C:\program files\streamtorrent ne 1.0\streamtorrent.exe" = protocol=17 | dir=in | app=c:\program files\streamtorrent ne 1.0\streamtorrent.exe |
"UDP Query User{D7F6BF4D-1CA9-4F4C-9265-C2FFD3EF776B}C:\program files\google\google desktop search\googledesktop.exe" = protocol=17 | dir=in | app=c:\program files\google\google desktop search\googledesktop.exe |
"UDP Query User{E9635C32-63B4-444B-9726-F7F745F0C9EC}C:\program files\city interactive\sniper ghost warrior\sniper_x86.exe" = protocol=17 | dir=in | app=c:\program files\city interactive\sniper ghost warrior\sniper_x86.exe |
"UDP Query User{EE84868D-491F-469F-AE8F-85353A6A288A}C:\program files\tvants\tvants.exe" = protocol=17 | dir=in | app=c:\program files\tvants\tvants.exe |
"UDP Query User{FAE514D7-0CB9-4DF4-8C9F-A0C9C0FBC08B}C:\program files\tvuplayer\tvuplayer.exe" = protocol=17 | dir=in | app=c:\program files\tvuplayer\tvuplayer.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0673654C-5296-453B-9798-B61CD7E03FEB}" = SES Driver
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0A35B15C-9CCD-4C0C-BD5B-34ABF8C95813}_is1" = ICQ 7.2 Build #3159 Banner Remover 1.0
"{106B4413-ACBB-4CDE-8707-587DB9BD77EC}" = LogMeIn Hamachi
"{13B792AA-C078-43A4-8A3A-8B12D629940D}" = Counter-Strike 1.6
"{14ECAABB-C8B9-4A09-92F7-CDF1A45B6DDE}" = Google Drive
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31
"{26A24AE4-039D-4CA4-87B4-2F83217007FF}" = Java 7 Update 9
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{2F926AE7-9FB7-4B34-906F-9C29A6D146A7}" = SystemDiagnostics
"{33286280-8617-11E1-8FF6-B8AC6F97B88E}" = Google Earth Plug-in
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3D3E663D-4E7E-4577-A560-7ECDDD45548A}" = PVSonyDll
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{45A1BF92-700A-4408-B95E-79F462E3D67D}" = Studio 11 Bonus DVD
"{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}" = Adobe AIR
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{501451DE-5808-4599-B544-8BD0915B6B24}_is1" = FreeRIP v3.5
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6DE721A5-5E89-4D74-994C-652BB3C0672E}" = Ovladače videa společnosti Pinnacle
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{72EFBFE4-C74F-4187-AEFD-73EA3BE968D6}" = ICQ7.2
"{73289228-1853-4623-982A-EB17FF0270CA}" = OSD_1.16
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7D42B43A-EA63-4234-B00A-757C15B2B185}_is1" = AVI Converter version 1.2.2.2
"{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{854C47D1-C2A0-4492-8655-C3F8D49C1029}" = Nero 8 Essentials
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8BF806C4-2D77-4F67-8435-D4BDCEB665A8}_is1" = Governor of Poker 2 Premium Edition v1.0 Multi
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{91110405-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A3BC1DBD-64D6-4EBC-0091-24C811662D40}" = Madden NFL 08
"{A92D7264-1A13-45BE-B769-88445DD04FD6}" = Desktop Sidebar
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AADD1C8F-D59F-4D55-A726-768C71A205A8}" = Pinnacle Studio 14
"{AAF4238F-7C29-451D-9925-C753271A5728}" = Microsoft Visual C++ Run Time Lib Setup
"{AC599724-5755-48C1-ABE7-ABB857652930}" = PC Connectivity Solution
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.4)
"{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}" = QuickTime
"{BC3804E5-77CC-47A0-8BD5-797355A26BA3}" = WD SmartWare
"{CBF78A5F-7950-4CF1-A063-C4C7B2B82CE6}" = SoundSoap PE
"{CC874CBB-BD87-4126-9465-AE73BB62D6E0}" = Studio 11 Ultimate
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F5266D28-E0B2-4130-BFC5-EE155AD514DC}" = Apple Application Support
"{F58B763E-9FB9-4629-AF3C-CC9744BC4BA7}" = Fujitsu Siemens Computers Recovery
"{F5C372A1-40F3-49DA-A049-F75CDE9177DC}" = Pinnacle Studio Ultimate Collection Plugins
"{F770C509-0658-4BB9-A9A8-930E512934C2}" = Amnesty Generator
"{F7963BA0-EE1C-11D4-9FA5-00A0C9E6A342}" = Commandos 2: Men of Courage
"{FEC7CD2E-2BB5-40C3-9592-078F64677E6C}" = PC TWIN SHOCK
"0B624A43DD66DBF5CF3EDFA9741A364E688062A4" = Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices (03/07/2012 )
"3A5DEFA413DDE699DBA6EBE0A63534ACA524D30F" = Balíček ovladače systému Windows - Nokia pccsmcfd (10/12/2007 6.85.4.0)
"4F6D5E84-5826-4394-9F40-3A9A19165651_is1" = Pandora Service
"8461-7759-5462-8226" = Vuze
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Akamai" = Akamai NetSession Interface Service
"Any Audio Converter_is1" = Any Audio Converter 3.0.7
"avast" = avast! Free Antivirus
"BSPlayerf" = BS.Player FREE
"CCleaner" = CCleaner
"Cool's_Codec_pack_4.12" = Codec Pack - All In 1 6.0.3.0
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.02
"FileZilla Client" = FileZilla Client 3.3.5.1
"Free MP3 WMA WAV Converter_is1" = Free MP3 WMA WAV Converter v2.0
"Google Desktop" = Google Desktop
"GoPro CineForm Studio" = GoPro CineForm Studio 1.3.2
"HijackThis" = HijackThis 2.0.2
"InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio
"Knoll Light Factory EZ Studio" = Knoll Light Factory EZ Studio
"LogMeIn Hamachi" = LogMeIn Hamachi
"Magic Bullet Looks Studio" = Magic Bullet Looks Studio
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Mozilla Firefox 17.0.1 (x86 cs)" = Mozilla Firefox 17.0.1 (x86 cs)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"musicjacker for MySpace1.2.2" = musicjacker for MySpace
"NirSoft WebVideoCap" = NirSoft WebVideoCap
"NVIDIA Drivers" = NVIDIA Drivers
"OpenAL" = OpenAL
"proDAD-Heroglyph-2.5" = proDAD Heroglyph 2.5
"proDAD-Vitascene-1.0" = proDAD Vitascene 1.0
"PunkBusterSvc" = PunkBuster Services
"Rayman Origins_R.G. Mechanics_is1" = Rayman Origins
"RealPlayer 15.0" = RealPlayer
"Red Giant ToonIt Studio" = Red Giant ToonIt Studio
"SAMSUNG Mobile Composite Device" = SAMSUNG Mobile Composite Device Software
"SAMSUNG Mobile Modem" = SAMSUNG Mobile Modem Driver Set
"Samsung Mobile Modem Device" = Samsung Mobile Modem Device Software
"Samsung Mobile phone USB driver" = Samsung Mobile phone USB driver Software
"SAMSUNG Mobile USB Modem" = SAMSUNG Mobile USB Modem Software
"SAMSUNG Mobile USB Modem 1.0" = SAMSUNG Mobile USB Modem 1.0 Software
"SAMSUNG USB Mobile Device" = SAMSUNG USB Mobile Device Software
"SimilarSites" = SimilarSites
"SopCast" = SopCast 3.2.4
"Spyware Terminator_is1" = Spyware Terminator
"StreamTorrent 1.0" = StreamTorrent 1.0
"StreamTorrent NE_is1" = StreamTorrent NE 1.0
"The KMPlayer" = The KMPlayer (remove only)
"The Weather Channel App" = The Weather Channel App
"The Weather Channel Desktop 6" = The Weather Channel Desktop 6
"Trapcode 3DStroke Studio" = Trapcode 3DStroke Studio
"Trapcode Particular Studio" = Trapcode Particular Studio
"Trapcode Shine Studio" = Trapcode Shine Studio
"TVAnts 1.0" = TVAnts 1.0
"TVUPlayer" = TVUPlayer 2.5.3.1
"Veetle TV" = Veetle TV 0.9.17
"Vuze_Remote Toolbar" = Vuze_Remote Toolbar
"WinRAR archiver" = WinRAR
"WM Downloader_is1" = WM Downloader 3.0.1.1 2008.11.23
"Xvid Video Codec 1.3.1" = Xvid Video Codec
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-2452340871-1716036081-418109285-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Akamai" = Akamai NetSession Interface
"UnityWebPlayer" = Unity Web Player
========== Last 20 Event Log Errors ==========
[ Antivirus Events ]
Error - 28.11.2009 9:09:52 | Computer Name = Adam-PC | Source = avast! | ID = 33554522
Description =
Error - 7.3.2010 10:34:32 | Computer Name = Adam-PC | Source = avast! | ID = 33554522
Description =
Error - 7.3.2010 16:45:17 | Computer Name = Adam-PC | Source = avast! | ID = 33554522
Description =
Error - 9.3.2010 7:24:14 | Computer Name = Adam-PC | Source = avast! | ID = 33554522
Description =
Error - 2.5.2010 15:18:39 | Computer Name = Adam-PC | Source = avast! | ID = 33554522
Description =
Error - 2.5.2010 15:18:39 | Computer Name = Adam-PC | Source = avast! | ID = 33554522
Description =
Error - 2.5.2010 15:18:39 | Computer Name = Adam-PC | Source = avast! | ID = 33554522
Description =
Error - 2.5.2010 15:18:39 | Computer Name = Adam-PC | Source = avast! | ID = 33554522
Description =
Error - 2.5.2010 15:18:39 | Computer Name = Adam-PC | Source = avast! | ID = 33554522
Description =
Error - 2.5.2010 15:18:39 | Computer Name = Adam-PC | Source = avast! | ID = 33554522
Description =
[ Application Events ]
Error - 23.8.2012 10:53:49 | Computer Name = Adam-PC | Source = WinMgmt | ID = 10
Description =
Error - 27.8.2012 16:53:12 | Computer Name = Adam-PC | Source = Application Hang | ID = 1002
Description = Program Explorer.EXE verze 6.0.6002.18005 přestal spolupracovat se
systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací
o tomto problému, vyhledejte historii problému v ovládacím panelu Oznámení a řešení
problémů. ID procesu: e44 Čas zahájení: 01cd813efac12c1c Čas ukončení: 263
Error - 28.8.2012 11:11:50 | Computer Name = Adam-PC | Source = WinMgmt | ID = 10
Description =
Error - 29.8.2012 10:50:43 | Computer Name = Adam-PC | Source = WinMgmt | ID = 10
Description =
Error - 31.8.2012 15:02:50 | Computer Name = Adam-PC | Source = Application Hang | ID = 1002
Description = Program firefox.exe verze 14.0.1.4577 přestal spolupracovat se systémem
Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto
problému, vyhledejte historii problému v ovládacím panelu Oznámení a řešení problémů.
ID
procesu: 14e8 Čas zahájení: 01cd86e9dd8204c0 Čas ukončení: 27
Error - 1.9.2012 10:53:33 | Computer Name = Adam-PC | Source = WinMgmt | ID = 10
Description =
Error - 2.9.2012 3:33:02 | Computer Name = Adam-PC | Source = WinMgmt | ID = 10
Description =
Error - 4.9.2012 10:49:20 | Computer Name = Adam-PC | Source = WinMgmt | ID = 10
Description =
Error - 4.9.2012 23:59:21 | Computer Name = Adam-PC | Source = WinMgmt | ID = 10
Description =
Error - 5.9.2012 11:39:03 | Computer Name = Adam-PC | Source = WinMgmt | ID = 10
Description =
[ System Events ]
Error - 28.12.2012 6:20:20 | Computer Name = Adam-PC | Source = Service Control Manager | ID = 7026
Description =
Error - 28.12.2012 6:24:46 | Computer Name = Adam-PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (11:22:53, 28.12.2012) bylo neočekávané.
Error - 28.12.2012 6:26:25 | Computer Name = Adam-PC | Source = Service Control Manager | ID = 7026
Description =
Error - 28.12.2012 6:29:20 | Computer Name = Adam-PC | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description =
Error - 28.12.2012 6:57:37 | Computer Name = Adam-PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (11:29:35, 28.12.2012) bylo neočekávané.
Error - 28.12.2012 6:57:48 | Computer Name = Adam-PC | Source = Dhcp | ID = 1002
Description = Zapůjčení adresy IP 10.0.0.2 pro síťovou kartu s adresou 001644E4DD5B
byla serverem DHCP 10.0.0.138 odmítnuta. (Server DHCP odeslal zprávu DHCPNACK).
Error - 28.12.2012 14:36:45 | Computer Name = Adam-PC | Source = EventLog | ID = 6008
Description = Předchozí vypnutí systému (11:59:29, 28.12.2012) bylo neočekávané.
Error - 28.12.2012 14:38:32 | Computer Name = Adam-PC | Source = Service Control Manager | ID = 7026
Description =
Error - 28.12.2012 14:41:07 | Computer Name = Adam-PC | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001
Description =
Error - 28.12.2012 14:45:28 | Computer Name = Adam-PC | Source = volsnap | ID = 393252
Description = Stínové kopie svazku C: byly přerušeny, protože z důvodu limitu stanoveného
uživatelem se nepodařilo zvětšit úložiště stínové kopie.
< End of report >
Re: Prosím o kontrolu - preventivka, RSIT, OTL
Spustte znovu OTL
- Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
- Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize
Kód: Vybrat vše
:otl DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\WPRO_40_1340.sys -- (WPRO_40_1340) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt) DRV - File not found [File_System | Boot | Stopped] -- system32\DRIVERS\Lbd.sys -- (Lbd) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp) DRV - File not found [Kernel | On_Demand | Unknown] -- -- (a0nn7xso) IE - HKLM\..\URLSearchHook: - No CLSID value found IE - HKLM\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.) IE - HKLM\..\URLSearchHook: {FE69C007-C452-4d3e-86D2-1730DF8BC871} - C:\Program Files\SimilarSites\similarsites.dll (SimilarSites) IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\URLSearchHook: - No CLSID value found IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.) IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\URLSearchHook: {FE69C007-C452-4d3e-86D2-1730DF8BC871} - C:\Program Files\SimilarSites\similarsites.dll (SimilarSites) IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\SearchScopes,DefaultScope = {6552C7DD-90A4-4387-B795-F8F96747DE19} IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}: "URL" = http://www.icq.com/search/results.php?q={searchTerms}&ch_id=osd IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E}: "URL" = http://127.0.0.1:4664/search&s=3TrfiYpW ... i65Tm5g?q={searchTerms} IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1:9421;<local> FF - prefs.js..browser.search.defaultenginename: "ICQ Search" FF - prefs.js..browser.search.selectedEngine: "ICQ Search" [2009.11.09 08:53:12 | 000,000,000 | ---D | M] ("Illimitux") -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\extensions\illimitux@illimitux.net [2012.02.15 18:03:18 | 000,002,434 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\searchplugins\s-amazon-byskipity-int.xml [2012.01.20 23:55:26 | 000,002,281 | ---- | M] () -- C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\searchplugins\s-amazon.xml [2012.12.06 18:59:17 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} O2 - BHO: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (Vuze Remote Toolbar) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.) O3 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..\Toolbar\WebBrowser: (Vuze Remote Toolbar) - {BA14329E-9550-4989-B3F2-9732E92D17CC} - C:\Program Files\Vuze_Remote\tbVuze.dll (Conduit Ltd.) O13 - gopher Prefix: missing O15 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..Trusted Domains: localhost ([]http in Local intranet) O15 - HKU\S-1-5-21-2452340871-1716036081-418109285-1000\..Trusted Ranges: GD ([http] in Local intranet) [2012.12.28 09:23:52 | 000,000,370 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Daily 4).job [2012.12.28 09:23:52 | 000,000,370 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Daily 2).job [2012.12.28 09:23:52 | 000,000,370 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Daily 1).job [2012.12.27 12:45:00 | 000,000,370 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Daily 3).job [2010.04.13 16:23:39 | 000,000,310 | ---- | C] () -- C:\Windows\Tasks\Install_NSS.job [2010.09.23 02:00:11 | 000,000,932 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [2010.09.23 02:00:12 | 000,000,936 | ---- | C] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [2012.05.23 16:12:38 | 000,000,914 | ---- | C] () -- C:\Windows\Tasks\Adobe Flash Player Updater.job [2012.12.21 18:26:25 | 000,000,362 | ---- | C] () -- C:\Windows\Tasks\ReclaimerUpdateXML_Adam.job [2012.12.21 18:26:28 | 000,000,366 | ---- | C] () -- C:\Windows\Tasks\ReclaimerUpdateFiles_Adam.job [2012.12.21 18:26:34 | 000,000,372 | ---- | C] () -- C:\Windows\Tasks\RNUpgradeHelperLogonPrompt_Adam.job [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] [14 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ] [11 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ] [3 C:\Windows\Temp\_avast_\*.tmp files -> C:\Windows\Temp\_avast_\*.tmp -> ] @Alternate Data Stream - 6144 bytes -> C:\Windows\Cursors\arrow_n.cur:NEDTA.DAT @Alternate Data Stream - 140 bytes -> C:\ProgramData\TEMP:054203E4 :reg [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "NPSStartup"=- "SpywareTerminator"=- "Adobe ARM"=- "TkBellExe"=- "SunJavaUpdateSched"- "QuickTime Task"=- "LogMeIn Hamachi Ui"=- [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "DW6"=- "Xvid"- "Akamai NetSession Interface"=- "AlcoholAutomount"=- :files %windir%\system32\*.tmp.dll /s %windir%\system32\SET*.tmp /s %windir%\*.tmp :commands [RESETHOSTS] [EMPTYTEMP] [EMPTYFLASH] [EMPTYJAVA]- Nasledne kliknete na Opravit
- PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu - preventivka, RSIT, OTL
zkusil jsem to dvakrát a pokaždý se to "kouslo" ve stejný moment...když probíhalo Processing Registry Data "SunJavaUpdateSched"...
V tenhle moment to pokaždé napsalo klasické "program neodpovídá"...nechal jsem to v obou případech tak 20 minut běžet, ale nic se nedělo...po chvíli jsem program tedy vypnul a restartoval počítač...
V tenhle moment to pokaždé napsalo klasické "program neodpovídá"...nechal jsem to v obou případech tak 20 minut běžet, ale nic se nedělo...po chvíli jsem program tedy vypnul a restartoval počítač...
Re: Prosím o kontrolu - preventivka, RSIT, OTL
Jop, uz vidim chybicku...
Pouzijte tento skript nyni
Pouzijte tento skript nyni
Kód: Vybrat vše
:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NPSStartup"=-
"SpywareTerminator"=-
"Adobe ARM"=-
"TkBellExe"=-
"SunJavaUpdateSched"=-
"QuickTime Task"=-
"LogMeIn Hamachi Ui"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DW6"=-
"Xvid"=-
"Akamai NetSession Interface"=-
"AlcoholAutomount"=-
:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
:commands
[RESETHOSTS]
[EMPTYTEMP]
[EMPTYFLASH]
[EMPTYJAVA]"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu - preventivka, RSIT, OTL
Asi 10-15 minut to běželo a pak to napsalo něco ve stylu, že windows musel neočekávaně program ukončit atd...po restartu mi to vyjelo tenhle "log"...
Files\Folders moved on Reboot...
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
Files\Folders moved on Reboot...
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
Re: Prosím o kontrolu - preventivka, RSIT, OTL
T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
- Stahnete a spustte
- Pro potvrzeni volby mackejte A, Enter
- Po pouziti utilitu smazte
- Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
OTC http://oldtimer.geekstogo.com/OTC.exe
- Stahnete a spustte
- Kliknete na CleanUp a potvrdte YES
- Program uklidi a restartuje PC
TFC http://oldtimer.geekstogo.com/TFC.exe
- Stahnete a spustte
- Kliknete na Start a potvrdte OK
- Program uklidi a restartuje pc
- Po pouziti utilitu smazte
Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478Panel čistič
- Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner
- dejte Hledej problémy
- nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
- postup opakujte dokud nebude bez problemu - vetsinou cca 3x
- Zde muzete odinstalovat nepotrebne programy
Dejte novy log z RSIT"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.Re: Prosím o kontrolu - preventivka, RSIT, OTL
Logfile of random's system information tool 1.09 (written by random/random)
Run by Adam at 2013-01-01 22:38:14
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 5 GB (6%) free of 96 GB
Total RAM: 3066 MB (55% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:38:16, on 1.1.2013
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal
Running processes:
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\OEM\OSD_1.16\osd.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
C:\Users\Adam\AppData\Local\Autobahn\nexdef.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\conime.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Adam\Desktop\RSIT.exe
C:\Program Files\trend micro\Adam.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Idea2 SidebarBrowserMonitor Class - {45AD732C-2CE2-4666-B366-B2214AD57A49} - C:\Program Files\Desktop Sidebar\sbhelp.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O3 - Toolbar: (no name) - {FE69C007-C452-4d3e-86D2-1730DF8BC871} - (no file)
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [FSCRecovery] c:\Program Files\Fujitsu Siemens Computers\Fujitsu Siemens Computers Recovery\FSCRecoveryReminder.exe
O4 - HKLM\..\Run: [OSD] C:\Program Files\OEM\OSD_1.16\osd.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [USBToolTip] C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [DW7] "C:\Program Files\The Weather Channel\The Weather Channel App\TWCApp.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [fsc-reg] C:\ProgramData\fsc-reg\fscreg.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [fsc-reg] C:\ProgramData\fsc-reg\fscreg.exe (User 'Default user')
O4 - Startup: NexDef Plug-in.lnk = C:\Users\Adam\AppData\Local\Autobahn\nexdef.exe
O4 - Global Startup: WDDMStatus.lnk = C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Subscribe in Desktop Sidebar - {09FE188B-6E85-479e-9411-51FB2220DF80} - C:\Program Files\Desktop Sidebar\sbhelp.dll
O9 - Extra 'Tools' menuitem: Subscribe in Desktop Sidebar - {09FE188B-6E85-479e-9411-51FB2220DF80} - C:\Program Files\Desktop Sidebar\sbhelp.dll
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: SimilarSites - {807DF5E0-4EF7-48a8-A405-239F3E29FFA9} - (no file)
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe
O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe
O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: OSD Service (OsdService) - TODO: <????> - C:\Program Files\OEM\OSD_1.16\OsdService.exe
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: Fujitsu Siemens Computers Diagnostic Testhandler (TestHandler) - Fujitsu Siemens Computers - C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
O23 - Service: WDDMService - WDC - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
O23 - Service: WD File Management Engine (WDFME) - Unknown owner - C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
O23 - Service: WD File Management Shadow Engine (WDSC) - Unknown owner - C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
--
End of file - 9456 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Ad-Aware Update (Weekly).job
=========Mozilla firefox=========
ProfilePath - C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "illimitux@illimitux.net:3.2, {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}:6.0.16, {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, firefox@tvunetworks.com:2, 5, 3, 1, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, vshare@toolbar:1.0.0, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, {a7c6cf7f-112c-4500-a7ea-39801a327e5f}:1.0.10, video.downloader.plugin@ffpimp.com:3.3.5, ShopperReports@ShopperReports.com:3.0.517.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"ShopperReports@ShopperReports.com"=C:\Program Files\ShopperReports3\bin\3.0.517.0\firefox\firefoxtoolbar\extensions
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.135 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.7.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pages.tvunetworks.com/WebPlayer]
"Description"=TVU Web Player Plugin
"Path"=C:\Program Files\TVUPlayer\npTVUAx.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=15.0.4.53]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=c:\program files\real\realplayer\Netscape6\nppl3260.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprjplug;version=15.0.4.53]
"Description"=RealJukebox Netscape Plugin
"Path"=c:\program files\real\realplayer\Netscape6\nprjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.4.53]
"Description"=RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.4.53]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpplugin;version=15.0.4.53]
"Description"=RealPlayer Download Plugin
"Path"=c:\program files\real\realplayer\Netscape6\nprpplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@veetle.com/vbp;version=0.9.17]
"Description"=Veetle Broadcaster Plugin
"Path"=C:\Program Files\Veetle\VLCBroadcast\npvbp.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.17]
"Description"=Veetle TV Core
"Path"=C:\Program Files\Veetle\plugins\npVeetle.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.17]
"Description"=Veetle TV Player
"Path"=C:\Program Files\Veetle\Player\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
GoogleDesktopMozilla.dll
GoogleDesktopMozillaStub.js
GoogleDesktopMozillaStub.xpt
nsILegitCheckPlugin.xpt
nsIQTScriptablePlugin.xpt
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npLegitCheckPlugin.dll
NPOFFICE.DLL
nppdf32.dll
nppl3260.dll
nppl3260.xpt
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
nprjplug.dll
nprpplugin.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
googledesktop.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\extensions\
firefox@tvunetworks.com
{20a82645-c095-46ed-80e3-08825760534b}
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-07-27 63944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{45AD732C-2CE2-4666-B366-B2214AD57A49}]
Idea2 SidebarBrowserMonitor Class - C:\Program Files\Desktop Sidebar\sbhelp.dll [2006-07-09 278528]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-09-24 449512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-10-30 1227736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-09-24 155384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-10-30 1227736]
{FE69C007-C452-4d3e-86D2-1730DF8BC871}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-05-13 6139904]
"FSCRecovery"=c:\Program Files\Fujitsu Siemens Computers\Fujitsu Siemens Computers Recovery\FSCRecoveryReminder.exe [2008-05-08 268096]
"OSD"=C:\Program Files\OEM\OSD_1.16\osd.exe [2008-06-18 376832]
"Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-08-31 30192]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-09-01 13797992]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2012-10-30 4297136]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-10-11 59280]
"USBToolTip"=C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe [2007-02-20 199752]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"WindowsWelcomeCenter"=oobefldr.dll,ShowWelcomeCenter []
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
"DW7"=C:\Program Files\The Weather Channel\The Weather Channel App\TWCApp.exe [2011-12-12 10448384]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
WDDMStatus.lnk - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
C:\Users\Adam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
NexDef Plug-in.lnk - C:\Users\Adam\AppData\Local\Autobahn\nexdef.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codecp.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
"VIDC.CFHD"=CFHD.DLL
"vidc.mjpg"=pvmjpg30.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-01-01 22:35:23 ----D---- C:\rsit
2012-12-29 01:22:34 ----SHD---- C:\RECYCLER
2012-12-29 00:33:57 ----A---- C:\PRIKAZ.TXT
2012-12-28 11:52:07 ----SHD---- C:\found.000
2012-12-21 06:38:17 ----A---- C:\Windows\system32\atmfd.dll
2012-12-21 06:38:16 ----A---- C:\Windows\system32\atmlib.dll
2012-12-17 23:41:27 ----D---- C:\ProgramData\Pinnacle Studio
2012-12-17 23:34:34 ----D---- C:\Program Files\AdorageI-SAL
2012-12-17 23:34:34 ----D---- C:\Program Files\AdorageI-GfxDatas
2012-12-17 23:34:34 ----A---- C:\adorage-protocol.txt
2012-12-17 23:18:53 ----D---- C:\Program Files\Common Files\MSSoap
2012-12-17 23:18:53 ----D---- C:\Program Files\BIAS
2012-12-17 23:17:02 ----D---- C:\Users\Adam\AppData\Roaming\proDAD
2012-12-17 23:17:00 ----D---- C:\Program Files\proDAD
2012-12-17 23:06:57 ----D---- C:\Program Files\Alcohol Soft
2012-12-17 22:46:29 ----A---- C:\Windows\system32\drivers\sptd.sys
2012-12-17 22:45:59 ----D---- C:\Users\Adam\AppData\Roaming\SimilarSites
2012-12-17 22:34:27 ----A---- C:\ProgramData\__wdump.txt
2012-12-17 22:30:39 ----A---- C:\Windows\unvise32.exe
2012-12-17 22:30:34 ----D---- C:\Program Files\LooksBuilderSE
2012-12-17 22:25:44 ----D---- C:\Program Files\Common Files\Pinnacle
2012-12-17 22:24:12 ----D---- C:\ProgramData\Pinnacle Studio Ultimate Collection
2012-12-17 22:12:07 ----D---- C:\Program Files\Common Files\Pegasus Imaging
2012-12-17 22:11:57 ----D---- C:\ProgramData\Studio 14
2012-12-17 22:11:57 ----D---- C:\ProgramData\Pinnacle Studio Plus
2012-12-17 22:11:57 ----D---- C:\Program Files\Common Files\Yahoo!
2012-12-17 22:01:49 ----D---- C:\ProgramData\Pinnacle
2012-12-17 22:01:49 ----D---- C:\Program Files\Pinnacle
2012-12-17 15:24:03 ----D---- C:\Users\Adam\AppData\Roaming\Sony
2012-12-16 08:27:40 ----ASH---- C:\pagefile.sys
2012-12-13 06:45:02 ----A---- C:\Windows\system32\vbscript.dll
2012-12-13 06:45:02 ----A---- C:\Windows\system32\mshtmled.dll
2012-12-13 06:45:01 ----A---- C:\Windows\system32\jsproxy.dll
2012-12-13 06:45:01 ----A---- C:\Windows\system32\ieUnatt.exe
2012-12-13 06:45:01 ----A---- C:\Windows\system32\ieui.dll
2012-12-13 06:45:00 ----A---- C:\Windows\system32\msfeeds.dll
2012-12-13 06:44:59 ----A---- C:\Windows\system32\wininet.dll
2012-12-13 06:44:59 ----A---- C:\Windows\system32\jscript.dll
2012-12-13 06:44:58 ----A---- C:\Windows\system32\url.dll
2012-12-13 06:44:58 ----A---- C:\Windows\system32\jscript9.dll
2012-12-13 06:44:57 ----A---- C:\Windows\system32\iertutil.dll
2012-12-13 06:44:55 ----A---- C:\Windows\system32\urlmon.dll
2012-12-13 06:44:54 ----A---- C:\Windows\system32\ieframe.dll
2012-12-13 06:44:51 ----A---- C:\Windows\system32\mshtml.dll
2012-12-13 06:38:58 ----A---- C:\Windows\system32\Wdfres.dll
2012-12-13 06:38:44 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2012-12-13 06:38:43 ----A---- C:\Windows\system32\winusb.dll
2012-12-13 06:38:43 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2012-12-13 06:38:42 ----A---- C:\Windows\system32\WUDFSvc.dll
2012-12-13 06:38:42 ----A---- C:\Windows\system32\WUDFPlatform.dll
2012-12-13 06:38:39 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2012-12-13 06:38:39 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2012-12-13 06:38:33 ----A---- C:\Windows\system32\WUDFHost.exe
2012-12-13 06:38:33 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2012-12-13 06:38:32 ----A---- C:\Windows\system32\WUDFx.dll
2012-12-13 06:12:57 ----A---- C:\Windows\system32\win32k.sys
2012-12-13 06:12:55 ----A---- C:\Windows\system32\dpnsvr.exe
2012-12-13 06:12:55 ----A---- C:\Windows\system32\dpnet.dll
2012-12-13 06:12:54 ----A---- C:\Windows\system32\drivers\volsnap.sys
2012-12-13 06:12:53 ----A---- C:\Windows\system32\kernel32.dll
2012-12-13 06:12:47 ----A---- C:\Windows\system32\tzres.dll
2012-12-12 19:07:26 ----AD---- C:\ProgramData\TEMP
2012-12-11 17:54:57 ----D---- C:\Program Files\LogMeIn Hamachi
2012-12-06 18:59:14 ----D---- C:\Program Files\Mozilla Firefox
2012-12-03 18:45:40 ----D---- C:\Users\Adam\AppData\Roaming\GoPro
2012-12-03 18:39:27 ----D---- C:\Program Files\CineForm
2012-12-03 18:37:45 ----D---- C:\Program Files\GoPro
======List of files/folders modified in the last 1 month======
2013-01-01 22:38:15 ----D---- C:\Windows\Temp
2013-01-01 22:38:15 ----D---- C:\Program Files\trend micro
2013-01-01 22:37:55 ----D---- C:\Windows\Prefetch
2013-01-01 22:32:16 ----RD---- C:\Program Files
2013-01-01 22:28:24 ----D---- C:\Windows\Minidump
2013-01-01 22:28:24 ----D---- C:\Windows\Debug
2013-01-01 22:28:24 ----D---- C:\Windows
2013-01-01 22:26:13 ----D---- C:\Program Files\CCleaner
2013-01-01 22:21:52 ----D---- C:\Program Files\Common Files\Akamai
2013-01-01 21:27:38 ----D---- C:\Windows\system32\drivers\etc
2013-01-01 20:20:31 ----SHD---- C:\Windows\Installer
2013-01-01 20:20:31 ----D---- C:\Windows\Tasks
2013-01-01 17:19:35 ----SHD---- C:\System Volume Information
2012-12-29 01:21:18 ----HD---- C:\ProgramData
2012-12-23 22:39:07 ----D---- C:\Windows\system32\Tasks
2012-12-21 22:21:29 ----D---- C:\Users\Adam\AppData\Roaming\BSplayer
2012-12-21 18:44:52 ----D---- C:\Windows\winsxs
2012-12-21 18:24:02 ----D---- C:\Windows\system32\catroot
2012-12-21 18:24:00 ----D---- C:\Windows\system32\catroot2
2012-12-21 06:56:21 ----D---- C:\Windows\System32
2012-12-21 06:38:21 ----D---- C:\Users\Adam\AppData\Roaming\Azureus
2012-12-20 19:22:37 ----D---- C:\Windows\system32\WDI
2012-12-19 13:06:15 ----D---- C:\Windows\inf
2012-12-19 13:06:15 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-12-17 23:41:23 ----RSD---- C:\Windows\Fonts
2012-12-17 23:20:59 ----HD---- C:\Program Files\InstallShield Installation Information
2012-12-17 23:18:57 ----SHD---- C:\Config.Msi
2012-12-17 23:18:53 ----D---- C:\Program Files\Common Files
2012-12-17 22:46:29 ----D---- C:\Windows\system32\drivers
2012-12-17 15:48:20 ----RSD---- C:\Windows\assembly
2012-12-13 19:18:32 ----D---- C:\Windows\rescache
2012-12-13 18:58:56 ----D---- C:\Windows\system32\migration
2012-12-13 18:58:56 ----D---- C:\Program Files\Internet Explorer
2012-12-13 18:58:55 ----D---- C:\Windows\system32\wbem
2012-12-13 18:58:55 ----D---- C:\Windows\system32\drivers\cs-CZ
2012-12-13 18:58:55 ----D---- C:\Windows\system32\cs-CZ
2012-12-13 06:46:38 ----A---- C:\Windows\win.ini
2012-12-13 06:35:29 ----A---- C:\Windows\system32\mrt.exe
2012-12-12 20:28:28 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2012-12-07 06:09:25 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-12-03 18:39:21 ----D---- C:\Program Files\DIFX
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-12-17 466008]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2012-10-30 35928]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2012-10-30 738504]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2012-10-30 361032]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2012-10-30 54232]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\Windows\system32\drivers\sp_rsdrv2.sys [2009-10-02 142592]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2012-10-30 21256]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2012-10-30 58680]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS [2009-03-31 36608]
R3 GpdDevDPort;GpdDevDPort; \??\C:\Windows\system32\directport.sys [2008-06-17 7168]
R3 GpdKbFilter;GpdKbFilter; \??\C:\Windows\system32\kbfiltr.sys [2008-03-31 8192]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-05-14 2136920]
R3 MarvinBus;Pinnacle Marvin Bus; C:\Windows\system32\DRIVERS\MarvinBus.sys [2005-09-23 171520]
R3 netr28;Ralink 802.11n Wireless Driver for Windows Vista; C:\Windows\system32\DRIVERS\netr28.sys [2008-01-30 338432]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-09-01 9825728]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2010-06-23 259176]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
S3 aov6v39f;aov6v39f; C:\Windows\system32\drivers\aov6v39f.sys []
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 NETw5v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit ; C:\Windows\system32\DRIVERS\NETw5v32.sys [2008-05-01 3660800]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2009-03-20 90112]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2009-03-20 14976]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2009-03-20 121856]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2009-05-23 29696]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam.sys [2011-02-16 11520]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
S4 ahcix86s;ahcix86s; C:\Windows\system32\drivers\ahcix86s.sys [2007-12-19 170000]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iastor.sys [2007-09-29 308248]
S4 JRAID;JRAID; C:\Windows\system32\drivers\jraid.sys [2008-04-03 76688]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
R2 Akamai;Akamai NetSession Interface; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2012-10-30 44808]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 FsUsbExService;FsUsbExService; C:\Windows\system32\FsUsbExService.Exe [2009-03-31 233472]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2012-12-10 1435568]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2008-04-29 877864]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-09-01 211560]
R2 OsdService;OSD Service; C:\Program Files\OEM\OSD_1.16\OsdService.exe [2008-02-22 94208]
R2 PanService;PandoraService; C:\Program Files\PANDORA.TV\PanService\PandoraService.exe [2012-06-22 625816]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [2006-12-19 81920]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2011-03-30 75136]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2009-10-02 487424]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 TestHandler;Fujitsu Siemens Computers Diagnostic Testhandler; C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe [2008-04-25 303104]
R2 WDDMService;WDDMService; C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2011-03-09 238592]
R2 WDFME;WD File Management Engine; C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [2011-03-09 1060864]
R2 WDSC;WD File Management Shadow Engine; C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [2011-03-09 484352]
R3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service; C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe [2012-01-05 75624]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-23 136176]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-12 250808]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-08-31 30192]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-23 136176]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-12-06 115168]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-02-28 529704]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2010-08-10 407336]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Run by Adam at 2013-01-01 22:38:14
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 5 GB (6%) free of 96 GB
Total RAM: 3066 MB (55% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:38:16, on 1.1.2013
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal
Running processes:
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\OEM\OSD_1.16\osd.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
C:\Users\Adam\AppData\Local\Autobahn\nexdef.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\conime.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Adam\Desktop\RSIT.exe
C:\Program Files\trend micro\Adam.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Idea2 SidebarBrowserMonitor Class - {45AD732C-2CE2-4666-B366-B2214AD57A49} - C:\Program Files\Desktop Sidebar\sbhelp.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O3 - Toolbar: (no name) - {FE69C007-C452-4d3e-86D2-1730DF8BC871} - (no file)
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [FSCRecovery] c:\Program Files\Fujitsu Siemens Computers\Fujitsu Siemens Computers Recovery\FSCRecoveryReminder.exe
O4 - HKLM\..\Run: [OSD] C:\Program Files\OEM\OSD_1.16\osd.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [USBToolTip] C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [DW7] "C:\Program Files\The Weather Channel\The Weather Channel App\TWCApp.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [fsc-reg] C:\ProgramData\fsc-reg\fscreg.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [fsc-reg] C:\ProgramData\fsc-reg\fscreg.exe (User 'Default user')
O4 - Startup: NexDef Plug-in.lnk = C:\Users\Adam\AppData\Local\Autobahn\nexdef.exe
O4 - Global Startup: WDDMStatus.lnk = C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Subscribe in Desktop Sidebar - {09FE188B-6E85-479e-9411-51FB2220DF80} - C:\Program Files\Desktop Sidebar\sbhelp.dll
O9 - Extra 'Tools' menuitem: Subscribe in Desktop Sidebar - {09FE188B-6E85-479e-9411-51FB2220DF80} - C:\Program Files\Desktop Sidebar\sbhelp.dll
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: SimilarSites - {807DF5E0-4EF7-48a8-A405-239F3E29FFA9} - (no file)
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe
O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe
O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: OSD Service (OsdService) - TODO: <????> - C:\Program Files\OEM\OSD_1.16\OsdService.exe
O23 - Service: PandoraService (PanService) - Pandora.TV - C:\Program Files\PANDORA.TV\PanService\PandoraService.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: Fujitsu Siemens Computers Diagnostic Testhandler (TestHandler) - Fujitsu Siemens Computers - C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe
O23 - Service: WDDMService - WDC - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
O23 - Service: WD File Management Engine (WDFME) - Unknown owner - C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
O23 - Service: WD File Management Shadow Engine (WDSC) - Unknown owner - C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
--
End of file - 9456 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Ad-Aware Update (Weekly).job
=========Mozilla firefox=========
ProfilePath - C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "illimitux@illimitux.net:3.2, {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}:6.0.16, {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, firefox@tvunetworks.com:2, 5, 3, 1, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, vshare@toolbar:1.0.0, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, {a7c6cf7f-112c-4500-a7ea-39801a327e5f}:1.0.10, video.downloader.plugin@ffpimp.com:3.3.5, ShopperReports@ShopperReports.com:3.0.517.0, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.17"
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"ShopperReports@ShopperReports.com"=C:\Program Files\ShopperReports3\bin\3.0.517.0\firefox\firefoxtoolbar\extensions
"wrc@avast.com"=C:\Program Files\Alwil Software\Avast5\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.135 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.7.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pages.tvunetworks.com/WebPlayer]
"Description"=TVU Web Player Plugin
"Path"=C:\Program Files\TVUPlayer\npTVUAx.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=15.0.4.53]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=c:\program files\real\realplayer\Netscape6\nppl3260.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprjplug;version=15.0.4.53]
"Description"=RealJukebox Netscape Plugin
"Path"=c:\program files\real\realplayer\Netscape6\nprjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.4.53]
"Description"=RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.4.53]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpplugin;version=15.0.4.53]
"Description"=RealPlayer Download Plugin
"Path"=c:\program files\real\realplayer\Netscape6\nprpplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@veetle.com/vbp;version=0.9.17]
"Description"=Veetle Broadcaster Plugin
"Path"=C:\Program Files\Veetle\VLCBroadcast\npvbp.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.17]
"Description"=Veetle TV Core
"Path"=C:\Program Files\Veetle\plugins\npVeetle.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.17]
"Description"=Veetle TV Player
"Path"=C:\Program Files\Veetle\Player\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
GoogleDesktopMozilla.dll
GoogleDesktopMozillaStub.js
GoogleDesktopMozillaStub.xpt
nsILegitCheckPlugin.xpt
nsIQTScriptablePlugin.xpt
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npLegitCheckPlugin.dll
NPOFFICE.DLL
nppdf32.dll
nppl3260.dll
nppl3260.xpt
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
nprjplug.dll
nprpplugin.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
googledesktop.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Users\Adam\AppData\Roaming\Mozilla\Firefox\Profiles\76fz5501.default\extensions\
firefox@tvunetworks.com
{20a82645-c095-46ed-80e3-08825760534b}
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-07-27 63944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{45AD732C-2CE2-4666-B366-B2214AD57A49}]
Idea2 SidebarBrowserMonitor Class - C:\Program Files\Desktop Sidebar\sbhelp.dll [2006-07-09 278528]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-09-24 449512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-10-30 1227736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-09-24 155384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! WebRep - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll [2012-10-30 1227736]
{FE69C007-C452-4d3e-86D2-1730DF8BC871}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-05-13 6139904]
"FSCRecovery"=c:\Program Files\Fujitsu Siemens Computers\Fujitsu Siemens Computers Recovery\FSCRecoveryReminder.exe [2008-05-08 268096]
"OSD"=C:\Program Files\OEM\OSD_1.16\osd.exe [2008-06-18 376832]
"Google Desktop Search"=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-08-31 30192]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-09-01 13797992]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2012-10-30 4297136]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-10-11 59280]
"USBToolTip"=C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe [2007-02-20 199752]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"WindowsWelcomeCenter"=oobefldr.dll,ShowWelcomeCenter []
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
"DW7"=C:\Program Files\The Weather Channel\The Weather Channel App\TWCApp.exe [2011-12-12 10448384]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
WDDMStatus.lnk - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
C:\Users\Adam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
NexDef Plug-in.lnk - C:\Users\Adam\AppData\Local\Autobahn\nexdef.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codecp.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
"VIDC.CFHD"=CFHD.DLL
"vidc.mjpg"=pvmjpg30.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2013-01-01 22:35:23 ----D---- C:\rsit
2012-12-29 01:22:34 ----SHD---- C:\RECYCLER
2012-12-29 00:33:57 ----A---- C:\PRIKAZ.TXT
2012-12-28 11:52:07 ----SHD---- C:\found.000
2012-12-21 06:38:17 ----A---- C:\Windows\system32\atmfd.dll
2012-12-21 06:38:16 ----A---- C:\Windows\system32\atmlib.dll
2012-12-17 23:41:27 ----D---- C:\ProgramData\Pinnacle Studio
2012-12-17 23:34:34 ----D---- C:\Program Files\AdorageI-SAL
2012-12-17 23:34:34 ----D---- C:\Program Files\AdorageI-GfxDatas
2012-12-17 23:34:34 ----A---- C:\adorage-protocol.txt
2012-12-17 23:18:53 ----D---- C:\Program Files\Common Files\MSSoap
2012-12-17 23:18:53 ----D---- C:\Program Files\BIAS
2012-12-17 23:17:02 ----D---- C:\Users\Adam\AppData\Roaming\proDAD
2012-12-17 23:17:00 ----D---- C:\Program Files\proDAD
2012-12-17 23:06:57 ----D---- C:\Program Files\Alcohol Soft
2012-12-17 22:46:29 ----A---- C:\Windows\system32\drivers\sptd.sys
2012-12-17 22:45:59 ----D---- C:\Users\Adam\AppData\Roaming\SimilarSites
2012-12-17 22:34:27 ----A---- C:\ProgramData\__wdump.txt
2012-12-17 22:30:39 ----A---- C:\Windows\unvise32.exe
2012-12-17 22:30:34 ----D---- C:\Program Files\LooksBuilderSE
2012-12-17 22:25:44 ----D---- C:\Program Files\Common Files\Pinnacle
2012-12-17 22:24:12 ----D---- C:\ProgramData\Pinnacle Studio Ultimate Collection
2012-12-17 22:12:07 ----D---- C:\Program Files\Common Files\Pegasus Imaging
2012-12-17 22:11:57 ----D---- C:\ProgramData\Studio 14
2012-12-17 22:11:57 ----D---- C:\ProgramData\Pinnacle Studio Plus
2012-12-17 22:11:57 ----D---- C:\Program Files\Common Files\Yahoo!
2012-12-17 22:01:49 ----D---- C:\ProgramData\Pinnacle
2012-12-17 22:01:49 ----D---- C:\Program Files\Pinnacle
2012-12-17 15:24:03 ----D---- C:\Users\Adam\AppData\Roaming\Sony
2012-12-16 08:27:40 ----ASH---- C:\pagefile.sys
2012-12-13 06:45:02 ----A---- C:\Windows\system32\vbscript.dll
2012-12-13 06:45:02 ----A---- C:\Windows\system32\mshtmled.dll
2012-12-13 06:45:01 ----A---- C:\Windows\system32\jsproxy.dll
2012-12-13 06:45:01 ----A---- C:\Windows\system32\ieUnatt.exe
2012-12-13 06:45:01 ----A---- C:\Windows\system32\ieui.dll
2012-12-13 06:45:00 ----A---- C:\Windows\system32\msfeeds.dll
2012-12-13 06:44:59 ----A---- C:\Windows\system32\wininet.dll
2012-12-13 06:44:59 ----A---- C:\Windows\system32\jscript.dll
2012-12-13 06:44:58 ----A---- C:\Windows\system32\url.dll
2012-12-13 06:44:58 ----A---- C:\Windows\system32\jscript9.dll
2012-12-13 06:44:57 ----A---- C:\Windows\system32\iertutil.dll
2012-12-13 06:44:55 ----A---- C:\Windows\system32\urlmon.dll
2012-12-13 06:44:54 ----A---- C:\Windows\system32\ieframe.dll
2012-12-13 06:44:51 ----A---- C:\Windows\system32\mshtml.dll
2012-12-13 06:38:58 ----A---- C:\Windows\system32\Wdfres.dll
2012-12-13 06:38:44 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2012-12-13 06:38:43 ----A---- C:\Windows\system32\winusb.dll
2012-12-13 06:38:43 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2012-12-13 06:38:42 ----A---- C:\Windows\system32\WUDFSvc.dll
2012-12-13 06:38:42 ----A---- C:\Windows\system32\WUDFPlatform.dll
2012-12-13 06:38:39 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2012-12-13 06:38:39 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2012-12-13 06:38:33 ----A---- C:\Windows\system32\WUDFHost.exe
2012-12-13 06:38:33 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2012-12-13 06:38:32 ----A---- C:\Windows\system32\WUDFx.dll
2012-12-13 06:12:57 ----A---- C:\Windows\system32\win32k.sys
2012-12-13 06:12:55 ----A---- C:\Windows\system32\dpnsvr.exe
2012-12-13 06:12:55 ----A---- C:\Windows\system32\dpnet.dll
2012-12-13 06:12:54 ----A---- C:\Windows\system32\drivers\volsnap.sys
2012-12-13 06:12:53 ----A---- C:\Windows\system32\kernel32.dll
2012-12-13 06:12:47 ----A---- C:\Windows\system32\tzres.dll
2012-12-12 19:07:26 ----AD---- C:\ProgramData\TEMP
2012-12-11 17:54:57 ----D---- C:\Program Files\LogMeIn Hamachi
2012-12-06 18:59:14 ----D---- C:\Program Files\Mozilla Firefox
2012-12-03 18:45:40 ----D---- C:\Users\Adam\AppData\Roaming\GoPro
2012-12-03 18:39:27 ----D---- C:\Program Files\CineForm
2012-12-03 18:37:45 ----D---- C:\Program Files\GoPro
======List of files/folders modified in the last 1 month======
2013-01-01 22:38:15 ----D---- C:\Windows\Temp
2013-01-01 22:38:15 ----D---- C:\Program Files\trend micro
2013-01-01 22:37:55 ----D---- C:\Windows\Prefetch
2013-01-01 22:32:16 ----RD---- C:\Program Files
2013-01-01 22:28:24 ----D---- C:\Windows\Minidump
2013-01-01 22:28:24 ----D---- C:\Windows\Debug
2013-01-01 22:28:24 ----D---- C:\Windows
2013-01-01 22:26:13 ----D---- C:\Program Files\CCleaner
2013-01-01 22:21:52 ----D---- C:\Program Files\Common Files\Akamai
2013-01-01 21:27:38 ----D---- C:\Windows\system32\drivers\etc
2013-01-01 20:20:31 ----SHD---- C:\Windows\Installer
2013-01-01 20:20:31 ----D---- C:\Windows\Tasks
2013-01-01 17:19:35 ----SHD---- C:\System Volume Information
2012-12-29 01:21:18 ----HD---- C:\ProgramData
2012-12-23 22:39:07 ----D---- C:\Windows\system32\Tasks
2012-12-21 22:21:29 ----D---- C:\Users\Adam\AppData\Roaming\BSplayer
2012-12-21 18:44:52 ----D---- C:\Windows\winsxs
2012-12-21 18:24:02 ----D---- C:\Windows\system32\catroot
2012-12-21 18:24:00 ----D---- C:\Windows\system32\catroot2
2012-12-21 06:56:21 ----D---- C:\Windows\System32
2012-12-21 06:38:21 ----D---- C:\Users\Adam\AppData\Roaming\Azureus
2012-12-20 19:22:37 ----D---- C:\Windows\system32\WDI
2012-12-19 13:06:15 ----D---- C:\Windows\inf
2012-12-19 13:06:15 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-12-17 23:41:23 ----RSD---- C:\Windows\Fonts
2012-12-17 23:20:59 ----HD---- C:\Program Files\InstallShield Installation Information
2012-12-17 23:18:57 ----SHD---- C:\Config.Msi
2012-12-17 23:18:53 ----D---- C:\Program Files\Common Files
2012-12-17 22:46:29 ----D---- C:\Windows\system32\drivers
2012-12-17 15:48:20 ----RSD---- C:\Windows\assembly
2012-12-13 19:18:32 ----D---- C:\Windows\rescache
2012-12-13 18:58:56 ----D---- C:\Windows\system32\migration
2012-12-13 18:58:56 ----D---- C:\Program Files\Internet Explorer
2012-12-13 18:58:55 ----D---- C:\Windows\system32\wbem
2012-12-13 18:58:55 ----D---- C:\Windows\system32\drivers\cs-CZ
2012-12-13 18:58:55 ----D---- C:\Windows\system32\cs-CZ
2012-12-13 06:46:38 ----A---- C:\Windows\win.ini
2012-12-13 06:35:29 ----A---- C:\Windows\system32\mrt.exe
2012-12-12 20:28:28 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2012-12-07 06:09:25 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-12-03 18:39:21 ----D---- C:\Program Files\DIFX
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-12-17 466008]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2012-10-30 35928]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2012-10-30 738504]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2012-10-30 361032]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2012-10-30 54232]
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\Windows\system32\drivers\sp_rsdrv2.sys [2009-10-02 142592]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2012-10-30 21256]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2012-10-30 58680]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS [2009-03-31 36608]
R3 GpdDevDPort;GpdDevDPort; \??\C:\Windows\system32\directport.sys [2008-06-17 7168]
R3 GpdKbFilter;GpdKbFilter; \??\C:\Windows\system32\kbfiltr.sys [2008-03-31 8192]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-05-14 2136920]
R3 MarvinBus;Pinnacle Marvin Bus; C:\Windows\system32\DRIVERS\MarvinBus.sys [2005-09-23 171520]
R3 netr28;Ralink 802.11n Wireless Driver for Windows Vista; C:\Windows\system32\DRIVERS\netr28.sys [2008-01-30 338432]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2009-09-01 9825728]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2010-06-23 259176]
R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]
S3 aov6v39f;aov6v39f; C:\Windows\system32\drivers\aov6v39f.sys []
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 NETw5v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit ; C:\Windows\system32\DRIVERS\NETw5v32.sys [2008-05-01 3660800]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2009-03-20 90112]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2009-03-20 14976]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2009-03-20 121856]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2009-05-23 29696]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam.sys [2011-02-16 11520]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]
S4 ahcix86s;ahcix86s; C:\Windows\system32\drivers\ahcix86s.sys [2007-12-19 170000]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iastor.sys [2007-09-29 308248]
S4 JRAID;JRAID; C:\Windows\system32\drivers\jraid.sys [2008-04-03 76688]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
R2 Akamai;Akamai NetSession Interface; C:\Windows\System32\svchost.exe [2008-01-21 21504]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2012-10-30 44808]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 FsUsbExService;FsUsbExService; C:\Windows\system32\FsUsbExService.Exe [2009-03-31 233472]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2012-12-10 1435568]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2008-04-29 877864]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-09-01 211560]
R2 OsdService;OSD Service; C:\Program Files\OEM\OSD_1.16\OsdService.exe [2008-02-22 94208]
R2 PanService;PandoraService; C:\Program Files\PANDORA.TV\PanService\PandoraService.exe [2012-06-22 625816]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [2006-12-19 81920]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2011-03-30 75136]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2009-10-02 487424]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 TestHandler;Fujitsu Siemens Computers Diagnostic Testhandler; C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe [2008-04-25 303104]
R2 WDDMService;WDDMService; C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2011-03-09 238592]
R2 WDFME;WD File Management Engine; C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [2011-03-09 1060864]
R2 WDSC;WD File Management Shadow Engine; C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [2011-03-09 484352]
R3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service; C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe [2012-01-05 75624]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-23 136176]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-12 250808]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-08-31 30192]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-23 136176]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-12-06 115168]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-02-28 529704]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2010-08-10 407336]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Re: Prosím o kontrolu - preventivka, RSIT, OTL
Log se mi zda OK, jak se chova PC 
"Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen od 1. února 2011.
Člen
od 1. února 2011.
Přispějete na provoz fóra?