Kontrola logu - pomale pc

Zpráva

Lord Seth · #1 Příspěvek od **Lord Seth** » 22 říj 2011 23:34

Dobrý den,

posílám kontrolu logu od kamarádova pc, použil jsem čistící prostředky jako ccleaner, spybot, superantispyware a norton, pc je ale stále velmi pomalé, děkuji za pomoc

zde je log:

Logfile of random's system information tool 1.09 (written by random/random)
Run by melkorn at 2011-10-22 23:57:36
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 97 GB (42%) free of 232 GB
Total RAM: 3068 MB (54% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:01:15, on 23.10.2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
C:\Program Files\Acer\Acer Bio Protection\PdtWzd.exe
C:\Program Files\Launch Manager\LManager.exe
C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe
C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\Windows\PixArt\Pac207\Monitor.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\ICQ7.4\ICQ.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
C:\Program Files\Acer\Acer VCM\AcerVCM.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
C:\Program Files\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe
C:\Users\melkorn\AppData\Local\Temp\RtkBtMnt.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe
C:\Program Files\Acer\Acer VCM\acp2HID.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Users\melkorn\Desktop\RSIT.exe
C:\Program Files\trend micro\melkorn.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... spire_6935
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = my.daemon-search.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... spire_6935
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... spire_6935
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\18.6.0.29\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\18.6.0.29\IPS\IPSBHO.DLL
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\18.6.0.29\coIEPlg.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe
O4 - HKLM\..\Run: [ProductReg] "C:\Program Files\Acer\WR_PopUp\ProductReg.exe"
O4 - HKLM\..\Run: [ZPdtWzdVitaKey MC3000] "C:\Program Files\Acer\Acer Bio Protection\PdtWzd.exe" show
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [eAudio] "C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe"
O4 - HKLM\..\Run: [ePower_DMC] C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Monitor] C:\Windows\PixArt\PAC207\Monitor.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [ICQ] "C:\Program Files\ICQ7.4\ICQ.exe" silent loginmode=4
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: Acer VCM.lnk = ?
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: McAfee Security Scan Plus.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe
O9 - Extra 'Tools' menuitem: Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files\ICQ7.4\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files\ICQ7.4\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDow ... rtScan.cab
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O20 - Winlogon Notify: AWinNotifyVitaKey MC3000 - C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: Služba Google Update (gupdate1ca2ff5973227a0) (gupdate1ca2ff5973227a0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iGroupTec Service (IGBASVC) - Unknown owner - C:\Program Files\Acer\Acer Bio Protection\BASVC.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files\Acer\Acer VCM\RS_Service.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: Validity Fingerprint Service (vfsFPService) - Validity Sensors, Inc. - C:\Windows\system32\vfsFPService.exe

--
End of file - 11500 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Google Software Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\Norton Security Scan for melkorn.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2011-08-30 61888]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Symantec NCO BHO - C:\Program Files\Norton Internet Security\Engine\18.6.0.29\coIEPlg.dll [2011-04-29 436152]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\Program Files\Norton Internet Security\Engine\18.6.0.29\IPS\IPSBHO.DLL [2011-03-31 210872]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83A2F9B1-01A2-4AA5-87D1-45B6B8505E96}]
ShowBarObj Class - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll [2008-07-29 312880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-05-04 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - Acer eDataSecurity Management - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll [2008-07-29 142896]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files\Norton Internet Security\Engine\18.6.0.29\coIEPlg.dll [2011-04-29 436152]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-07-20 182808]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-05-07 6139904]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-04-04 1037608]
"eDataSecurity Loader"=C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe [2008-07-29 526896]
"ProductReg"=C:\Program Files\Acer\WR_PopUp\ProductReg.exe [2008-09-23 6144]
"ZPdtWzdVitaKey MC3000"=C:\Program Files\Acer\Acer Bio Protection\PdtWzd.exe [2009-02-14 3719680]
"LManager"=C:\PROGRA~1\LAUNCH~1\LManager.exe [2008-06-16 809480]
"eRecoveryService"= []
"eAudio"=C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe [2008-09-11 544768]
"ePower_DMC"=C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [2008-08-01 405504]
"Monitor"=C:\Windows\PixArt\PAC207\Monitor.exe [2006-11-03 319488]
"Skytel"=C:\Windows\Skytel.exe [2007-11-20 1826816]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2010-09-16 1164584]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-04-08 254696]
"amd_dc_opt"=C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2011-08-31 40368]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-29 937920]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files\Steam\Steam.exe [2011-08-03 1242448]
"ICQ"=C:\Program Files\ICQ7.4\ICQ.exe [2011-03-01 119608]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-21 202240]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2011-10-22 4615552]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray.exe]
C:\Windows\ehome\ehTray.exe [2008-01-21 125952]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Acer VCM.lnk - C:\Program Files\Acer\Acer VCM\AcerVCM.exe
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2011-05-04 551296]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AWinNotifyVitaKey MC3000]
C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll [2009-02-14 3162624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2011-07-19 113024]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\Acer\Acer Bio Protection\PwdFilter

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSfsu.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSfsu.exe:*:Enabled:eDSfsu"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\encryption.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\encryption.exe:*:Enabled:encryption"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\decryption.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\decryption.exe:*:Enabled:decryption"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSMgr.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSMgr.exe:*:Enabled:eDSMgr"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStbmngr.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStbmngr.exe:*:Enabled:eDStbmngr"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDSfsu.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDSfsu.exe:*:Enabled:eDSfsu"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\encryption.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\encryption.exe:*:Enabled:encryption"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\decryption.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\decryption.exe:*:Enabled:decryption"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDSMgr.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDSMgr.exe:*:Enabled:eDSMgr"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDStbmngr.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDStbmngr.exe:*:Enabled:eDStbmngr"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2011-10-22 23:57:40 ----D---- C:\Program Files\trend micro
2011-10-22 23:57:36 ----D---- C:\rsit
2011-10-22 23:16:19 ----A---- C:\Windows\system32\FNTCACHE.DAT
2011-10-22 22:10:27 ----SHD---- C:\Config.Msi
2011-10-22 19:57:05 ----ASH---- C:\hiberfil.sys
2011-10-22 18:20:03 ----D---- C:\Program Files\CCleaner
2011-10-22 18:18:30 ----D---- C:\Users\melkorn\AppData\Roaming\SUPERAntiSpyware.com
2011-10-22 18:18:13 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2011-10-22 18:18:13 ----D---- C:\Program Files\SUPERAntiSpyware
2011-10-22 18:17:46 ----D---- C:\ProgramData\Spybot - Search & Destroy
2011-10-22 18:17:46 ----D---- C:\Program Files\Spybot - Search & Destroy
2011-10-22 17:49:55 ----D---- C:\ProgramData\NovaTech Network
2011-10-22 17:19:30 ----D---- C:\ProgramData\PassMark
2011-10-21 23:59:44 ----D---- C:\Program Files\Runic Games
2011-10-20 17:41:19 ----A---- C:\Windows\system32\CmdLineExt.dll
2011-10-19 16:47:35 ----D---- C:\Users\melkorn\AppData\Roaming\Might & Magic Heroes VI - Game Official Demo
2011-10-19 03:09:15 ----A---- C:\Windows\system32\mshtmled.dll
2011-10-19 03:09:14 ----A---- C:\Windows\system32\iertutil.dll
2011-10-19 03:09:13 ----A---- C:\Windows\system32\ieui.dll
2011-10-19 03:09:12 ----A---- C:\Windows\system32\wininet.dll
2011-10-19 03:09:12 ----A---- C:\Windows\system32\jscript.dll
2011-10-19 03:09:11 ----A---- C:\Windows\system32\jsproxy.dll
2011-10-19 03:09:11 ----A---- C:\Windows\system32\jscript9.dll
2011-10-19 03:09:10 ----A---- C:\Windows\system32\urlmon.dll
2011-10-19 03:09:09 ----A---- C:\Windows\system32\url.dll
2011-10-19 03:09:08 ----A---- C:\Windows\system32\ieframe.dll
2011-10-19 03:09:05 ----A---- C:\Windows\system32\mshtml.dll
2011-10-12 16:55:31 ----A---- C:\Windows\system32\win32k.sys
2011-10-12 16:55:31 ----A---- C:\Windows\system32\psisdecd.dll
2011-10-12 16:55:13 ----A---- C:\Windows\system32\UIAutomationCore.dll
2011-10-12 16:55:13 ----A---- C:\Windows\system32\oleaut32.dll
2011-10-12 16:55:13 ----A---- C:\Windows\system32\oleaccrc.dll
2011-10-12 16:55:13 ----A---- C:\Windows\system32\oleacc.dll
2011-10-09 13:00:47 ----D---- C:\Windows\506DDFBE983F4BC384B865F423B2D798.TMP
2011-10-08 22:53:26 ----D---- C:\Program Files\Common Files\PocketSoft
2011-10-08 11:00:46 ----D---- C:\Program Files\GameSpy Arcade
2011-10-07 15:17:45 ----D---- C:\Program Files\Microsoft Silverlight

======List of files/folders modified in the last 1 month======

2011-10-22 23:57:40 ----RD---- C:\Program Files
2011-10-22 23:57:40 ----D---- C:\Windows\Temp
2011-10-22 23:27:02 ----D---- C:\Program Files\Steam
2011-10-22 23:21:46 ----D---- C:\Windows
2011-10-22 23:17:35 ----SHD---- C:\System Volume Information
2011-10-22 23:16:19 ----D---- C:\Windows\System32
2011-10-22 23:16:15 ----D---- C:\Program Files\Google
2011-10-22 22:46:51 ----D---- C:\Program Files\DAEMON Tools Toolbar
2011-10-22 22:45:32 ----SHD---- C:\Windows\Installer
2011-10-22 22:45:30 ----D---- C:\Program Files\Common Files\microsoft shared
2011-10-22 22:44:06 ----D---- C:\Program Files\Acer GameZone
2011-10-22 22:42:39 ----D---- C:\ProgramData\WinZip
2011-10-22 22:41:07 ----HD---- C:\Program Files\InstallShield Installation Information
2011-10-22 22:41:05 ----D---- C:\Program Files\Cyberlink
2011-10-22 22:38:29 ----D---- C:\ProgramData\Google
2011-10-22 22:38:18 ----HD---- C:\ProgramData
2011-10-22 22:37:11 ----D---- C:\Program Files\Zrychleni Pocitace
2011-10-22 22:24:22 ----D---- C:\Windows\system32\Tasks
2011-10-22 22:24:22 ----D---- C:\Program Files\Common Files
2011-10-22 22:24:21 ----D---- C:\ProgramData\Skype
2011-10-22 22:16:11 ----D---- C:\ProgramData\Electronic Arts
2011-10-22 20:02:50 ----D---- C:\Windows\inf
2011-10-22 20:02:02 ----D---- C:\Windows\SoftwareDistribution
2011-10-22 20:00:28 ----D---- C:\Users\melkorn\AppData\Roaming\ICQ
2011-10-22 18:36:39 ----D---- C:\Windows\system32\drivers\etc
2011-10-22 18:25:15 ----D---- C:\Users\melkorn\AppData\Roaming\DAEMON Tools Lite
2011-10-22 18:25:04 ----D---- C:\Windows\Panther
2011-10-22 18:24:55 ----D---- C:\Windows\Logs
2011-10-22 18:24:55 ----D---- C:\Windows\Debug
2011-10-22 17:18:20 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-10-22 00:01:24 ----RSD---- C:\Windows\assembly
2011-10-21 23:57:34 ----D---- C:\Windows\system32\catroot2
2011-10-21 20:47:39 ----A---- C:\Users\melkorn\AppData\Roaming\QuickZip45.ini
2011-10-19 23:53:51 ----D---- C:\Program Files\Diablo II
2011-10-19 23:32:17 ----D---- C:\Program Files\Common Files\Steam
2011-10-19 03:59:48 ----D---- C:\Windows\winsxs
2011-10-19 03:59:07 ----D---- C:\Windows\Microsoft.NET
2011-10-19 03:57:12 ----D---- C:\Windows\rescache
2011-10-19 03:39:26 ----D---- C:\Windows\system32\catroot
2011-10-19 03:35:52 ----D---- C:\Windows\system32\migration
2011-10-19 03:35:51 ----D---- C:\Program Files\Internet Explorer
2011-10-19 03:35:50 ----D---- C:\Program Files\Windows Mail
2011-10-19 03:35:49 ----D---- C:\Windows\system32\cs-CZ
2011-10-19 03:10:27 ----A---- C:\Windows\system32\mrt.exe
2011-10-09 13:00:17 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2011-10-08 23:32:37 ----D---- C:\Windows\system32\drivers
2011-10-08 12:53:00 ----SHD---- C:\ProgramData\SecuROM
2011-10-08 11:33:02 ----D---- C:\Users\melkorn\AppData\Roaming\uTorrent
2011-10-08 11:32:12 ----D---- C:\Program Files\Microsoft Games
2011-10-08 11:30:24 ----D---- C:\Windows\Prefetch
2011-10-08 11:14:55 ----D---- C:\Program Files\2K Games
2011-10-08 11:13:14 ----D---- C:\ProgramData\Media Center Programs
2011-10-07 15:18:14 ----SD---- C:\ProgramData\Microsoft
2011-09-30 12:17:27 ----A---- C:\Windows\system32\apache.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AlfaFF;AlfaFF File System mini-filter; C:\Windows\system32\Drivers\AlfaFF.sys [2009-02-14 43184]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2008-07-20 324120]
R0 prohlp02;StarForce Protection Helper Driver v2; C:\Windows\System32\drivers\prohlp02.sys [2004-08-09 114016]
R0 prosync1;StarForce Protection Synchronization Driver v1; C:\Windows\System32\drivers\prosync1.sys [2004-07-19 7040]
R0 PSDFilter;PSDFilter; C:\Windows\system32\DRIVERS\psdfilter.sys [2008-07-29 18992]
R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2008-11-21 43528]
R0 sfhlp01;StarForce Protection Helper Driver; C:\Windows\System32\drivers\sfhlp01.sys [2003-12-01 4832]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\Windows\System32\drivers\sfhlp02.sys [2005-02-23 6656]
R0 sfsync02;StarForce Protection Synchronization Driver (version 2.x); C:\Windows\System32\drivers\sfsync02.sys [2004-12-03 20544]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2009-11-14 691696]
R0 SymDS;Symantec Data Store; C:\Windows\system32\drivers\NIS\1206000.01D\SYMDS.SYS [2011-01-27 340088]
R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\NIS\1206000.01D\SYMEFA.SYS [2011-03-15 744568]
R0 UBHelper;UBHelper; C:\Windows\system32\drivers\UBHelper.sys [2008-01-30 13824]
R1 BHDrvx86;BHDrvx86; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\BASHDefs\20111014.001\BHDrvx86.sys [2011-10-15 818808]
R1 DritekPortIO;Dritek General Port I/O; \??\C:\PROGRA~1\LAUNCH~1\DPortIO.sys [2006-11-02 20112]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-04-10 218688]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2011-07-28 374392]
R1 IDSVix86;IDSVix86; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\IPSDefs\20111021.030\IDSvix86.sys [2011-08-23 368248]
R1 prodrv06;StarForce Protection Environment Driver v6; C:\Windows\System32\drivers\prodrv06.sys [2004-08-09 53920]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL); C:\Windows\system32\drivers\NIS\1206000.01D\SRTSPX.SYS [2011-03-31 50168]
R1 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\NIS\1206000.01D\Ironx86.SYS [2011-01-27 136312]
R1 SYMTDIv;Symantec Vista Network Dispatch Driver; C:\Windows\System32\Drivers\NIS\1206000.01D\SYMTDIV.SYS [2011-03-22 331384]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2009-12-23 278984]
R2 int15;int15; \??\C:\Windows\system32\drivers\int15.sys [2008-08-19 15392]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2009-12-23 25416]
R2 PSDNServ;PSDNServ; C:\Windows\system32\drivers\PSDNServ.sys [2008-07-29 16944]
R2 psdvdisk;PSDVdisk; C:\Windows\system32\drivers\psdvdisk.sys [2008-07-29 60464]
R3 A310;AVerMedia A310 DVB-T; C:\Windows\system32\DRIVERS\AVerA310USB.sys [2008-07-03 26752]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2008-02-29 1202560]
R3 AmdLLD;AMD Low Level Device Driver; C:\Windows\system32\DRIVERS\AmdLLD.sys [2007-06-29 34304]
R3 BDASwCap;AVerMedia A310 BDA DVBT Capture Device; C:\Windows\system32\drivers\AVerA310Cap.sys [2008-07-03 47104]
R3 DKbFltr;Dritek Keyboard Filter Driver; C:\Windows\system32\DRIVERS\DKbFltr.sys [2006-11-02 21264]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-07-28 105592]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-05-07 2134424]
R3 itecir;ITECIR Infrared Receiver; C:\Windows\system32\DRIVERS\itecir.sys [2007-12-18 54784]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E60x86.sys [2009-08-05 48640]
R3 MSPQM;Server proxy správce kvality datových proudů Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
R3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20111021.034\NAVENG.SYS [2011-08-04 86136]
R3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20111021.034\NAVEX15.SYS [2011-08-04 1576312]
R3 NETw5v32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw5v32.sys [2008-04-28 3658752]
R3 NTIDrvr;Upper Class Filter Driver; C:\Windows\system32\DRIVERS\NTIDrvr.sys [2008-01-30 14848]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2010-09-07 123496]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2010-10-16 10084360]
R3 SRTSP;Symantec Real Time Storage Protection; C:\Windows\System32\Drivers\NIS\1206000.01D\SRTSP.SYS [2011-03-31 516216]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS [2011-05-11 126584]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2008-04-04 196784]
R3 vfs101x;vfs101x; C:\Windows\system32\drivers\vfs101x.sys [2008-05-26 40752]
S0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\Windows\System32\drivers\sfdrv01.sys [2005-03-03 48640]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-04-11 22528]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
S3 BthPort;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-21 508416]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-06-17 30208]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2007-03-29 79664]
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2007-02-27 81200]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2007-02-27 16432]
S3 drmkaud;Dekodér zvuků DRM jádra společnosti Microsoft; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-02-21 25280]
S3 hamachi_oem;PlayLinc Adapter; C:\Windows\system32\DRIVERS\gan_adapter.sys [2006-08-28 10664]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2008-01-21 987648]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2008-01-21 200704]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader; C:\Windows\system32\DRIVERS\ewdcsc.sys [2009-12-15 23424]
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2009-12-15 102912]
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys [2009-12-15 101120]
S3 IpwP;IPWireless 3G Network Adapter; C:\Windows\system32\DRIVERS\ipw3gnet.sys [2008-10-10 51040]
S3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2008-05-07 85136]
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS []
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS []
S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS []
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS []
S3 MSKSSRV;Server proxy služby datových proudů Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 PAC207;SoC PC-Camera; C:\Windows\system32\DRIVERS\PFC027.SYS [2006-12-05 507136]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-04-11 148992]
S3 silabenm;Silicon Labs CP210x USB to UART Bridge Serial Port Enumerator Driver; C:\Windows\system32\DRIVERS\silabenm.sys [2008-12-04 17920]
S3 silabser;Silicon Labs CP210x USB to UART Bridge Driver; C:\Windows\system32\DRIVERS\silabser.sys [2008-12-04 60544]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2011-02-18 41984]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgusbbus.sys [2008-11-11 13056]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgusbdiag.sys [2008-11-11 19968]
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgusbmodem.sys [2008-11-11 24832]
S3 usbvideo;Zobrazovací zařízení USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 winachsf;winachsf; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2008-01-21 654336]
S3 winusb;Služba WinUSB; C:\Windows\system32\DRIVERS\WinUSB.SYS [2009-04-11 31616]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2011-08-12 116608]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2007-12-11 12800]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2011-02-18 37664]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 eDataSecurity Service;eDataSecurity Service; C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe [2008-07-29 500784]
R2 ETService;Empowering Technology Service; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [2008-08-19 24576]
R2 EvtEng;Intel® PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2008-04-30 815104]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-07-20 354840]
R2 IGBASVC;iGroupTec Service; C:\Program Files\Acer\Acer Bio Protection\BASVC.exe [2009-02-14 3520512]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2007-01-17 61440]
R2 MobilityService;MobilityService; C:\Acer\Mobility Center\MobilityService.exe [2007-12-06 110592]
R2 NIS;Norton Internet Security; C:\Program Files\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe [2011-04-17 130008]
R2 NVSvc;NVIDIA Driver Helper Service; C:\Windows\system32\nvvsvc.exe [2010-10-16 600680]
R2 RegSrvc;Intel® PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2008-04-30 466944]
R2 RS_Service;Raw Socket Service; C:\Program Files\Acer\Acer VCM\RS_Service.exe [2008-01-10 233472]
R2 vfsFPService;Validity Fingerprint Service; C:\Windows\system32\vfsFPService.exe [2008-05-26 599344]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate1ca2ff5973227a0;Služba Google Update (gupdate1ca2ff5973227a0); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-09-07 133104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-09-07 133104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2011-03-07 820520]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2011-10-19 419624]
S3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]

-----------------EOF-----------------

#2 Příspěvek od **Mc_Murphy** » 23 říj 2011 07:34

Zdravím.

Dej mi minutku, hnedle se na to mrknu.

#3 Příspěvek od **Mc_Murphy** » 23 říj 2011 08:07

Má kamarád Norton Internet Security legální = zakoupená licence?!

Jako první v nabídce Přidat nebo odebrat programy odinstaluj všechny nepotřebné toolbary! Jsou to veliká "zdržovadla" systému a v případě například Ask.com Toolbar, Conduit Engine a dalších se dá hovořit už i o havěti.

Dále bych pro zrychlení počítače zrušil ze spouštění po startu systému programy ICQ a SUPERAntiSpyware.

Balíček NIS obsahuje jak antivir, tak ochranu antispy a firewall. Je pak naprosto zbytečné, aby v PC běžel SUPERAntiSpyware, McAfee a Windows Defender. Naopak, více antivirů a podobného zabezpečení bude způsobavat zpomalení systému, případně i kolize. Je-li NIS opravdu legální, nech ho tam a zbytek z toho, co jsem odinstalovat, v případě Defenderu ho disablovat. McAfee odinstaluj v každém případě.

Spybot - Search & Destroy má svá nejlepší léta již dávno za sebou a není schopen čelit aktuálním hrozbám, takže ho neinstaluj, nepoužívej.

Fixni v HJT tyto položky:

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = my.daemon-search.com
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - (no file)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\18.6.0.29\coIEPlg.dll
O4 - HKLM\..\Run: [ProductReg] "C:\Program Files\Acer\WR_PopUp\ProductReg.exe"
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - Global Startup: McAfee Security Scan Plus.lnk = ?

"Fixnout" znamená, že spustíš HJT, zvolíš možnost [Do a system scan only] a zaškrtneš čtvereček vlevo od mnou vypsaných položek. Poté klikneš na [Fix checked] a odsouhlasíš [ANO].
HJT najdeš zde: C:\Program Files\trend micro\melkorn.exe

Dále stáhni utilitu OTM z jednoho z těchto odkazů:

http://oldtimer.geekstogo.com/OTM.exe
http://oldtimer.geekstogo.com/OTM.com
http://oldtimer.geekstogo.com/OTM.scr

Ulož ji na Plochu a dvojklikem spusť.

Do levého okna Paste Instructions for Items to be Moved zkopíruj tento script:

Kód: Vybrat vše

:Services
gupdate1ca2ff5973227a0
gupdatem

:Reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"eRecoveryService"=-

:Files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp /s
C:\Windows\tasks\Google Software Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\Norton Security Scan for melkorn.job
C:\Program Files\DAEMON Tools Toolbar

:Commands
[Purity]
[ResetHosts]
[EmptyTemp]
[EmptyFlash]
[ClearAllRestorePoints]

Nyní klikni na tlačítko [MoveIt!], čímž vše spustíš.
Po restartu mi sem hoď log, který najdeš v C:\_OTM\MovedFiles\

Až provedeš tyto dva kroky, hoď mi sem kvůli dočištění ještě log z OTL.

Stáhni OTL z tohoto odkazu a ulož jej na Plochu.

Pokud používáš Win Vista či Win7, klikni na OTL pravým myšítkem a dej Run As Administrator či Spustit jako správce.
Pokud používáš 64bitový OS, zkontroluj, zda-li je zaškrtnutý čtvereček Pro 64 bitové OS. Pokud ne, zaškrtni jej.
Zaškrtni okénko Pro všechny uživatele.
Zaškrtni okénko Kontrola na havěť "LOP".
Zaškrtni okénko Kontrola na havěť "Purity".
Stáři souborů změň z 30 dnů na 7 dnů.
Do spodního okénka Vlastní skenování/opravy vlož tento script:

Kód: Vybrat vše

safebootminimal 
safebootnetwork
drivers32
savembr:0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
/md5start
scecli.dll
autochk.exe
csrss.exe
explorer.exe
lsass.exe
services.exe
smss.exe
spoolsv.exe
svchost.exe
userinit.exe
winlogon.exe
atapi.sys
cdrom.sys 
ndis.sys
ntfs.sys
tcpip.sys
%SystemDrive%\PhysicalMBR.bin
/md5stop
C:\windows\system32\spool\prtprocs|dll;true;true;true /FP
%systemroot%\system32\drivers\*.sys /5
%systemroot%\system32\drivers\*.sys /X 
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\system32\*.* /5
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\config\*.sav 
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\*.* /U /s
%systemroot%\*. /mp /s
%ALLUSERSPROFILE%\Data Aplikací\*.*
%ALLUSERSPROFILE%\Data Aplikací\*.exe /s
%ALLUSERSPROFILE%\Dáta aplikácií\*.*
%ALLUSERSPROFILE%\Dáta aplikácií\*.exe /s
%APPDATA%\*.
%APPDATA%\*.*
%APPDATA%\*.exe /s
%SYSTEMDRIVE%\*.exe
*crack* /s
*keygen* /s
*loader* /s
*nocd* /s
*activator* /s
*AutoKMS* /s
*minodlogin* /s
*tnod* /s
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /s
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager" /v BootExecute /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /v "PendingFileRenameOperations" /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

Klikni na tlačítko Prohledat.
Po dokončení skenu se objeví logy OTL.txt a Extras.txt, oba mi sem vlož.
Logy se nevejdou do jednoho, rozděl je tedy prosím do více příspěvků.

Lord Seth · #4 Příspěvek od **Lord Seth** » 24 říj 2011 16:47

má všechno legální, tudíž jsem vše promazal

mám těd trochu bordel s logama tak snad jsou správně

OTM:

All processes killed
========== SERVICES/DRIVERS ==========
Service gupdate1ca2ff5973227a0 stopped successfully!
Service gupdate1ca2ff5973227a0 deleted successfully!
Service gupdatem stopped successfully!
Service gupdatem deleted successfully!
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\eRecoveryService deleted successfully.
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
C:\Windows\45235788142C44BE8A4DDDE9A84492E5.TMP folder moved successfully.
C:\Windows\506DDFBE983F4BC384B865F423B2D798.TMP folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP16CC.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP2DF2.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5688.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5B97.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5C42.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5CA0.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP81A.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP83C0.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP8E.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9EF8.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPB726.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPE752.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPEEF0.tmp folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPFD51.tmp folder moved successfully.
C:\Windows\System32\tmp5B8B.tmp moved successfully.
C:\Windows\System32\tmp5BBA.tmp moved successfully.
C:\Windows\tasks\Google Software Updater.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job moved successfully.
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job moved successfully.
C:\Windows\tasks\Norton Security Scan for melkorn.job moved successfully.
File/Folder C:\Program Files\DAEMON Tools Toolbar not found.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56509 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: melkorn
->Temp folder emptied: 9134079 bytes
->Temporary Internet Files folder emptied: 3747862 bytes
->Java cache emptied: 950322 bytes
->Google Chrome cache emptied: 12477486 bytes
->Flash cache emptied: 56986 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 96 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 3015108 bytes
RecycleBin emptied: 1810252 bytes

Total Files Cleaned = 30,00 mb

[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: melkorn
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0,00 mb

Restore point Set: OTM Restore Point

OTM by OldTimer - Version 3.1.19.0 log created on 10232011_105257

Files moved on Reboot...

Registry entries deleted on Reboot...

Lord Seth · #5 Příspěvek od **Lord Seth** » 24 říj 2011 16:50

OTL 1/2

OTL logfile created on: 23.10.2011 11:10:33 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\melkorn\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,00 Gb Total Physical Memory | 1,69 Gb Available Physical Memory | 56,35% Memory free
6,19 Gb Paging File | 4,74 Gb Available in Paging File | 76,54% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 226,38 Gb Total Space | 94,45 Gb Free Space | 41,72% Space Free | Partition Type: NTFS
Drive D: | 222,90 Gb Total Space | 192,97 Gb Free Space | 86,57% Space Free | Partition Type: NTFS

Computer Name: MELI | User Name: melkorn | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2011.10.23 11:07:22 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\melkorn\Desktop\OTL.exe
PRC - [2011.10.23 10:58:17 | 000,204,800 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Users\melkorn\AppData\Local\Temp\RtkBtMnt.exe
PRC - [2011.10.19 03:42:06 | 000,419,624 | ---- | M] (Valve Corporation) -- C:\Program Files\Common Files\Steam\SteamService.exe
PRC - [2011.09.30 17:12:41 | 001,030,200 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2011.08.03 21:38:01 | 001,242,448 | ---- | M] (Valve Corporation) -- C:\Program Files\Steam\Steam.exe
PRC - [2011.04.17 02:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton Internet Security\Engine\18.6.0.29\ccsvchst.exe
PRC - [2011.03.01 15:28:49 | 000,119,608 | ---- | M] (ICQ, LLC.) -- C:\Program Files\ICQ7.4\ICQ.exe
PRC - [2010.10.16 13:42:38 | 000,792,680 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
PRC - [2010.09.16 22:04:06 | 001,164,584 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2009.04.11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009.02.14 00:29:43 | 003,833,640 | ---- | M] () -- C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe
PRC - [2009.02.14 00:29:38 | 003,485,696 | ---- | M] (Arachnoid Biometrics Identification Group Corp.) -- C:\Program Files\Acer\Acer Bio Protection\CompPtcVUI.exe
PRC - [2009.02.14 00:29:30 | 003,520,512 | ---- | M] () -- C:\Program Files\Acer\Acer Bio Protection\BASVC.exe
PRC - [2009.02.14 00:29:22 | 003,719,680 | ---- | M] (Arachnoid Biometrics Identification Group Corp.) -- C:\Program Files\Acer\Acer Bio Protection\PdtWzd.exe
PRC - [2008.09.11 23:46:38 | 000,544,768 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe
PRC - [2008.08.19 15:27:22 | 000,024,576 | ---- | M] () -- C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
PRC - [2008.08.01 10:51:42 | 000,405,504 | ---- | M] (Acer Inc.) -- C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
PRC - [2008.07.29 18:53:00 | 000,500,784 | ---- | M] (Egis Incorporated) -- C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
PRC - [2008.07.29 18:52:50 | 000,526,896 | ---- | M] (Egis Incorporated) -- C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
PRC - [2008.07.20 18:45:06 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2008.07.20 18:45:06 | 000,182,808 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2008.06.16 11:58:38 | 000,809,480 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\LManager.exe
PRC - [2008.05.26 06:43:58 | 000,599,344 | ---- | M] (Validity Sensors, Inc.) -- C:\Windows\System32\vfsFPService.exe
PRC - [2008.05.07 10:19:26 | 006,139,904 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2008.04.30 19:41:12 | 000,815,104 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe
PRC - [2008.04.30 19:10:10 | 000,466,944 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
PRC - [2008.03.05 12:56:30 | 001,216,512 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer VCM\AcerVCM.exe
PRC - [2008.01.10 18:03:00 | 000,233,472 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer VCM\RS_Service.exe
PRC - [2007.12.11 05:15:04 | 000,012,800 | ---- | M] (Agere Systems) -- C:\Windows\System32\agrsmsvc.exe
PRC - [2007.12.06 16:15:28 | 000,110,592 | ---- | M] () -- C:\ACER\Mobility Center\MobilityService.exe
PRC - [2007.04.24 19:50:32 | 000,723,760 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2007.03.27 13:00:32 | 000,196,608 | ---- | M] (Acer Inc.) -- C:\Program Files\Acer\Acer VCM\acp2HID.exe
PRC - [2006.11.03 11:01:16 | 000,319,488 | ---- | M] (PixArt Imaging Incorporation) -- C:\Windows\PixArt\Pac207\Monitor.exe

========== Modules (No Company Name) ==========

MOD - [2011.10.19 03:53:16 | 000,998,400 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\6bc98e9b5eedaa8f71c5454d36a4b772\System.Management.ni.dll
MOD - [2011.10.19 03:49:37 | 000,212,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\8645de531003807d00822e03986a075d\System.ServiceProcess.ni.dll
MOD - [2011.10.19 03:49:01 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\6d2f689baff5da3df134fdec0742a13c\System.Runtime.Remoting.ni.dll
MOD - [2011.10.19 03:46:45 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\c1c06a392871267db27f7cbc40e1c4fb\System.Xml.ni.dll
MOD - [2011.10.19 03:45:56 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\1363115565fff5a641243a48f396f107\System.Windows.Forms.ni.dll
MOD - [2011.10.19 03:45:29 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\367c4043efc2f32d843cb588b0dc97fc\System.Drawing.ni.dll
MOD - [2011.10.19 03:44:56 | 006,621,696 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\9e53d9921c4bb153f1ffbe1ae0e1b615\System.Data.ni.dll
MOD - [2011.10.19 03:42:23 | 007,950,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\f9c36ea806e77872dce891c77b68fac3\System.ni.dll
MOD - [2011.10.19 03:42:04 | 014,410,024 | ---- | M] () -- C:\Program Files\Steam\bin\libcef.dll
MOD - [2011.10.19 03:41:58 | 000,914,216 | ---- | M] () -- C:\Program Files\Steam\bin\avcodec-52.dll
MOD - [2011.10.19 03:41:58 | 000,194,344 | ---- | M] () -- C:\Program Files\Steam\bin\chromehtml.dll
MOD - [2011.10.19 03:41:58 | 000,155,432 | ---- | M] () -- C:\Program Files\Steam\bin\avformat-52.dll
MOD - [2011.10.19 03:41:58 | 000,091,432 | ---- | M] () -- C:\Program Files\Steam\bin\avutil-50.dll
MOD - [2011.10.19 03:41:35 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\b6632a8b2f276a8e31f5b0f6b2006cd1\mscorlib.ni.dll
MOD - [2011.09.30 17:12:40 | 000,412,728 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\14.0.835.202\ppgooglenaclpluginchrome.dll
MOD - [2011.09.30 17:12:39 | 003,696,184 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\14.0.835.202\pdf.dll
MOD - [2011.09.30 17:11:13 | 000,142,568 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\14.0.835.202\avutil-51.dll
MOD - [2011.09.30 17:11:12 | 000,253,320 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\14.0.835.202\avformat-53.dll
MOD - [2011.09.30 17:11:10 | 002,403,240 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\14.0.835.202\avcodec-53.dll
MOD - [2011.09.29 22:06:57 | 008,587,936 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\14.0.835.202\gcswf32.dll
MOD - [2010.09.16 22:04:50 | 000,095,528 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2010.09.16 22:04:06 | 001,164,584 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2010.03.15 11:28:24 | 000,141,824 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2009.03.30 06:42:17 | 002,933,760 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
MOD - [2009.02.14 00:36:24 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\Framework.Library\3.0.3010.0__3036420f80dd6947\Framework.Library.dll
MOD - [2009.02.14 00:36:24 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\Framework.Utility\3.0.3010.0__4df5dcab8860d239\Framework.Utility.dll
MOD - [2009.02.14 00:36:24 | 000,009,216 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\Framework.Model.ControllerInterface\3.0.3010.0__d842b71b4d6ed079\Framework.Model.ControllerInterface.dll
MOD - [2009.02.14 00:29:43 | 003,833,640 | ---- | M] () -- C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe
MOD - [2008.07.29 18:52:38 | 000,227,888 | ---- | M] () -- C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ShowErrMsg.dll
MOD - [2008.06.11 10:21:46 | 000,204,800 | ---- | M] () -- C:\Windows\System32\SysHook.dll
MOD - [2007.09.11 12:12:08 | 000,475,136 | ---- | M] () -- C:\Program Files\Acer\Acer VCM\AcerControl.dll
MOD - [2007.04.24 19:44:26 | 000,126,976 | ---- | M] () -- C:\Program Files\WIDCOMM\Bluetooth Software\BTKeyInd.dll
MOD - [2007.04.24 19:32:56 | 000,389,120 | ---- | M] () -- C:\Windows\System32\btwhidcs.dll
MOD - [2003.06.07 07:30:08 | 000,057,344 | ---- | M] () -- C:\Program Files\Launch Manager\PowerUtl.dll

========== Win32 Services (SafeList) ==========

SRV - [2011.10.19 03:42:06 | 000,419,624 | ---- | M] (Valve Corporation) [On_Demand | Running] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011.04.17 02:45:11 | 000,130,008 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe -- (NIS)
SRV - [2009.02.14 00:29:30 | 003,520,512 | ---- | M] () [Auto | Running] -- C:\Program Files\Acer\Acer Bio Protection\BASVC.exe -- (IGBASVC)
SRV - [2008.08.19 15:27:22 | 000,024,576 | ---- | M] () [Auto | Running] -- C:\Program Files\Acer\Empowering Technology\Service\ETService.exe -- (ETService)
SRV - [2008.07.29 18:53:00 | 000,500,784 | ---- | M] (Egis Incorporated) [Auto | Running] -- C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe -- (eDataSecurity Service)
SRV - [2008.07.20 18:45:06 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel(R)
SRV - [2008.05.26 06:43:58 | 000,599,344 | ---- | M] (Validity Sensors, Inc.) [Auto | Running] -- C:\Windows\System32\vfsFPService.exe -- (vfsFPService)
SRV - [2008.04.30 19:41:12 | 000,815,104 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV - [2008.04.30 19:10:10 | 000,466,944 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV - [2008.01.21 04:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2008.01.10 18:03:00 | 000,233,472 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer VCM\RS_Service.exe -- (RS_Service)
SRV - [2007.12.11 05:15:04 | 000,012,800 | ---- | M] (Agere Systems) [Auto | Running] -- C:\Windows\System32\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2007.12.06 16:15:28 | 000,110,592 | ---- | M] () [Auto | Running] -- C:\Acer\Mobility Center\MobilityService.exe -- (MobilityService)

========== Driver Services (SafeList) ==========

DRV - [2011.10.15 01:10:08 | 000,818,808 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\BASHDefs\20111014.001\BHDrvx86.sys -- (BHDrvx86)
DRV - [2011.08.23 00:17:32 | 000,368,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\IPSDefs\20111021.030\IDSvix86.sys -- (IDSVix86)
DRV - [2011.08.04 09:52:51 | 001,576,312 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20111021.034\NAVEX15.SYS -- (NAVEX15)
DRV - [2011.08.04 09:52:50 | 000,086,136 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20111021.034\NAVENG.SYS -- (NAVENG)
DRV - [2011.07.28 15:48:09 | 000,374,392 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2011.07.28 15:48:09 | 000,105,592 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2011.05.11 14:55:40 | 000,126,584 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2011.04.10 22:26:04 | 000,218,688 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2011.03.31 05:00:09 | 000,516,216 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\Drivers\NIS\1206000.01D\SRTSP.SYS -- (SRTSP)
DRV - [2011.03.31 05:00:09 | 000,050,168 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\system32\drivers\NIS\1206000.01D\SRTSPX.SYS -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV - [2011.03.22 02:39:49 | 000,331,384 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\NIS\1206000.01D\SYMTDIV.SYS -- (SYMTDIv)
DRV - [2011.03.15 04:31:23 | 000,744,568 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\system32\drivers\NIS\1206000.01D\SYMEFA.SYS -- (SymEFA)
DRV - [2011.01.27 08:47:10 | 000,340,088 | ---- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\NIS\1206000.01D\SYMDS.SYS -- (SymDS)
DRV - [2011.01.27 07:07:05 | 000,136,312 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\system32\drivers\NIS\1206000.01D\Ironx86.SYS -- (SymIRON)
DRV - [2010.10.16 20:55:00 | 010,084,360 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2010.09.07 22:08:56 | 000,123,496 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2009.12.23 14:07:08 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\atksgt.sys -- (atksgt)
DRV - [2009.12.23 14:07:08 | 000,025,416 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2009.12.15 14:05:42 | 000,102,912 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2009.12.15 14:05:42 | 000,101,120 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewusbdev.sys -- (hwusbdev)
DRV - [2009.12.15 14:05:42 | 000,023,424 | ---- | M] (Huawei Tech. Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewdcsc.sys -- (Huawei)
DRV - [2009.11.14 16:00:31 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009.08.05 06:18:22 | 000,048,640 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L1E60x86.sys -- (L1E)
DRV - [2009.04.11 06:42:52 | 000,031,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (winusb)
DRV - [2009.02.21 11:44:59 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi)
DRV - [2009.02.14 00:29:26 | 000,043,184 | ---- | M] (Alfa Corporation) [File_System | Boot | Running] -- C:\Windows\system32\Drivers\AlfaFF.sys -- (AlfaFF)
DRV - [2008.12.04 03:30:20 | 000,060,544 | ---- | M] (Silicon Laboratories) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\silabser.sys -- (silabser)
DRV - [2008.12.04 03:30:20 | 000,017,920 | ---- | M] (Silicon Laboratories, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\silabenm.sys -- (silabenm)
DRV - [2008.11.11 13:42:00 | 000,024,832 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbmodem.sys -- (USBModem)
DRV - [2008.11.11 13:41:00 | 000,019,968 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbdiag.sys -- (UsbDiag)
DRV - [2008.11.11 13:41:00 | 000,013,056 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbbus.sys -- (usbbus)
DRV - [2008.10.10 10:10:26 | 000,051,040 | ---- | M] (IPWireless Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ipw3gnet.sys -- (IpwP)
DRV - [2008.08.19 15:23:00 | 000,015,392 | ---- | M] (Acer, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\int15.sys -- (int15)
DRV - [2008.07.03 05:24:46 | 000,026,752 | ---- | M] (AVerMedia TECHNOLOGIES, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVerA310USB.sys -- (A310)
DRV - [2008.07.03 05:24:42 | 000,047,104 | ---- | M] (AVerMedia TECHNOLOGIES, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVerA310Cap.sys -- (BDASwCap)
DRV - [2008.05.26 06:44:14 | 000,040,752 | ---- | M] (Validity Sensors, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vfs101x.sys -- (vfs101x)
DRV - [2008.05.07 12:47:36 | 000,085,136 | ---- | M] (JMicron Technology Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\jmcr.sys -- (JMCR)
DRV - [2008.04.28 00:29:26 | 003,658,752 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw5v32.sys -- (NETw5v32) Ovladač adaptéru Intel(R)
DRV - [2008.02.29 09:13:38 | 001,202,560 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2007.12.18 18:12:12 | 000,054,784 | ---- | M] (ITE Tech. Inc. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\itecir.sys -- (itecir)
DRV - [2007.06.29 14:47:34 | 000,034,304 | ---- | M] (AMD, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AmdLLD.sys -- (AmdLLD)
DRV - [2006.12.05 11:34:42 | 000,507,136 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PFC027.SYS -- (PAC207)
DRV - [2006.11.02 15:27:34 | 000,020,112 | ---- | M] (Dritek System Inc.) [Kernel | System | Running] -- C:\Program Files\Launch Manager\DPortIO.sys -- (DritekPortIO)
DRV - [2006.08.28 23:54:56 | 000,010,664 | ---- | M] (Applied Networking Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\gan_adapter.sys -- (hamachi_oem)
DRV - [2005.03.03 19:53:57 | 000,048,640 | ---- | M] (Protection Technology) [Kernel | Boot | Stopped] -- C:\Windows\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x)
DRV - [2005.02.23 17:59:54 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x)
DRV - [2004.12.03 12:20:41 | 000,020,544 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x)
DRV - [2004.08.09 13:33:26 | 000,114,016 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\prohlp02.sys -- (prohlp02)
DRV - [2004.08.09 13:29:28 | 000,053,920 | ---- | M] (Protection Technology) [Kernel | System | Running] -- C:\Windows\System32\drivers\prodrv06.sys -- (prodrv06)
DRV - [2004.07.19 16:49:54 | 000,007,040 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\prosync1.sys -- (prosync1)
DRV - [2003.12.01 17:20:52 | 000,004,832 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sfhlp01.sys -- (sfhlp01)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... spire_6935
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.acer.com/rdr.aspx?b=ACA ... spire_6935
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1053579048-2754583314-3036659907-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... spire_6935
IE - HKU\S-1-5-21-1053579048-2754583314-3036659907-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://global.acer.com [binary data]
IE - HKU\S-1-5-21-1053579048-2754583314-3036659907-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-1053579048-2754583314-3036659907-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://start.icq.com/http://www.seznam.cz/ [binary data]
IE - HKU\S-1-5-21-1053579048-2754583314-3036659907-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKU\S-1-5-21-1053579048-2754583314-3036659907-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-1053579048-2754583314-3036659907-1000\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-1053579048-2754583314-3036659907-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\IPSFFPlgn\ [2011.10.07 15:24:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\coFFPlgn_2011_7_2_3 [2011.10.23 10:57:29 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\14.0.835.202\pdf.dll
CHR - plugin: Google Gears 0.5.33.0 (Enabled) = C:\Program Files\Google\Chrome\Application\14.0.835.202\gears.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\14.0.835.202\gcswf32.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: DivX Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Updater (Enabled) = C:\Program Files\Google\Google Updater\2.4.1698.5652\npCIDetect13.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files\Google\Picasa3\npPicasa3.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.2.183.39\npGoogleOneClick8.dll
CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin

O1 HOSTS File: ([2011.10.23 10:54:41 | 000,000,098 | ---- | M]) - C:\Windows\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\18.6.0.29\coieplg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\18.6.0.29\ips\ipsbho.dll (Symantec Corporation)
O2 - BHO: (ShowBarObj Class) - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll (Egis)
O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll File not found
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\18.6.0.29\coieplg.dll (Symantec Corporation)
O3 - HKU\S-1-5-21-1053579048-2754583314-3036659907-1000\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll File not found
O3 - HKU\S-1-5-21-1053579048-2754583314-3036659907-1000\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\18.6.0.29\coieplg.dll (Symantec Corporation)
O4 - HKLM..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe (AMD)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [eAudio] C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe (Acer Incorporated)
O4 - HKLM..\Run: [eDataSecurity Loader] C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe (Egis Incorporated)
O4 - HKLM..\Run: [ePower_DMC] C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe (Acer Inc.)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [Monitor] C:\Windows\PixArt\Pac207\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [ProductReg] C:\Program Files\Acer\WR_PopUp\ProductReg.exe (Acer)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKLM..\Run: [ZPdtWzdVitaKey MC3000] C:\Program Files\Acer\Acer Bio Protection\PdtWzd.exe (Arachnoid Biometrics Identification Group Corp.)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-1053579048-2754583314-3036659907-1000..\Run: [Steam] C:\Program Files\Steam\Steam.exe (Valve Corporation)
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe ()
O9 - Extra 'Tools' menuitem : Quick-Launching Area - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\Acer\Acer Bio Protection\PwdBank.exe ()
O9 - Extra Button: ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files\ICQ7.4\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.4 - {73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - C:\Program Files\ICQ7.4\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O13 - gopher Prefix: missing
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} http://www.nvidia.com/content/DriverDow ... ab_nvd.cab (System Requirements Lab Class)
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} http://www.nvidia.com/content/DriverDow ... rtScan.cab (NVIDIA Smart Scan)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/fl ... rashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{625E3EE6-BB2D-4E4C-8E20-856081B63F19}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9DCCC928-4033-4996-AAEB-51BD154AC8C4}: DhcpNameServer = 10.0.0.138
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - File not found
O20 - Winlogon\Notify\AWinNotifyVitaKey MC3000: DllName - (C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll) - C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll (Arachnoid Biometrics Identification Group Corp.)
O24 - Desktop WallPaper: C:\Users\melkorn\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta galerie Windows Fotogalerie.jpg
O24 - Desktop BackupWallPaper: C:\Users\melkorn\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta galerie Windows Fotogalerie.jpg
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{0124d3a0-e57c-11df-be68-00a0d1ad1241}\Shell - "" = AutoRun
O33 - MountPoints2\{0124d3a0-e57c-11df-be68-00a0d1ad1241}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{50824d36-ea51-11de-a09c-00a0d1ad1241}\Shell - "" = AutoRun
O33 - MountPoints2\{50824d36-ea51-11de-a09c-00a0d1ad1241}\Shell\AutoRun\command - "" = "G:\WD SmartWare.exe" autoplay=true
O33 - MountPoints2\{698c8697-b35e-11de-9b26-00a0d1ad1241}\Shell\AutoRun\command - "" = E:\Torchlight_Setup.exe
O33 - MountPoints2\{8b5016f0-948b-11de-a15d-00a0d1ad1241}\Shell - "" = AutoRun
O33 - MountPoints2\{8b5016f0-948b-11de-a15d-00a0d1ad1241}\Shell\AutoRun\command - "" = E:\USBAutoRun.exe
O33 - MountPoints2\{b5af3f38-89bb-11de-9f88-00a0d1ad1241}\Shell - "" = AutoRun
O33 - MountPoints2\{b5af3f38-89bb-11de-9f88-00a0d1ad1241}\Shell\AutoRun\command - "" = E:\AutoRun.exe
O33 - MountPoints2\{f2379576-578e-11e0-9a9e-00a0d1ad1241}\Shell - "" = AutoRun
O33 - MountPoints2\{f2379576-578e-11e0-9a9e-00a0d1ad1241}\Shell\AutoRun\command - "" = E:\autorun.exe
O33 - MountPoints2\G\Shell - "" = AutoRun
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\USBAutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: NTDS - File not found
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

SafeBootNet: AppMgmt - Service
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: NTDS - File not found
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet: WudfPf - Driver
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\Windows\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.yv12 - C:\Windows\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2011.10.23 11:07:41 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\melkorn\Desktop\OTL.exe
[2011.10.23 10:52:57 | 000,000,000 | ---D | C] -- C:\_OTM
[2011.10.23 10:51:29 | 000,523,264 | ---- | C] (OldTimer Tools) -- C:\Users\melkorn\Desktop\OTM.exe
[2011.10.22 23:57:40 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011.10.22 23:57:36 | 000,000,000 | ---D | C] -- C:\rsit
[2011.10.22 22:10:27 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2011.10.22 18:20:03 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011.10.22 18:18:30 | 000,000,000 | ---D | C] -- C:\Users\melkorn\AppData\Roaming\SUPERAntiSpyware.com
[2011.10.22 18:18:13 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2011.10.22 18:17:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2011.10.22 18:17:46 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2011.10.22 17:49:55 | 000,000,000 | ---D | C] -- C:\ProgramData\NovaTech Network
[2011.10.22 17:22:39 | 000,000,000 | ---D | C] -- C:\Users\melkorn\Documents\PassMark
[2011.10.22 17:21:33 | 000,000,000 | ---D | C] -- C:\Users\melkorn\AppData\Local\PassMark
[2011.10.22 17:19:30 | 000,000,000 | ---D | C] -- C:\ProgramData\PassMark
[2011.10.21 23:59:44 | 000,000,000 | ---D | C] -- C:\Program Files\Runic Games
[2011.10.20 17:41:19 | 000,098,304 | ---- | C] (Sony DADC Austria AG.) -- C:\Windows\System32\CmdLineExt.dll
[2011.10.20 17:26:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft
[2011.10.19 16:47:35 | 000,000,000 | ---D | C] -- C:\Users\melkorn\AppData\Roaming\Might & Magic Heroes VI - Game Official Demo
[2011.10.19 03:09:16 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2011.10.19 03:09:13 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2011.10.19 03:09:11 | 001,798,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2011.10.19 03:09:11 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2011.10.19 03:09:09 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2011.04.19 19:28:09 | 000,172,032 | ---- | C] ( ) -- C:\Windows\System32\rsnp2uvc.dll
[2008.07.22 10:01:25 | 000,049,152 | ---- | C] ( ) -- C:\Windows\Interop.IWshRuntimeLibrary.dll
[1 C:\Users\melkorn\AppData\Local\*.tmp files -> C:\Users\melkorn\AppData\Local\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2011.10.23 11:17:59 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011.10.23 11:07:22 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\melkorn\Desktop\OTL.exe
[2011.10.23 10:57:14 | 000,000,000 | ---- | M] () -- C:\Windows\System32\LogConfigTemp.xml
[2011.10.23 10:56:57 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011.10.23 10:56:57 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011.10.23 10:56:38 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.10.23 10:56:35 | 3218,042,880 | -HS- | M] () -- C:\hiberfil.sys
[2011.10.23 10:55:38 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2011.10.23 10:54:41 | 000,000,098 | ---- | M] () -- C:\Windows\System32\drivers\etc\Hosts
[2011.10.23 10:51:18 | 000,523,264 | ---- | M] (OldTimer Tools) -- C:\Users\melkorn\Desktop\OTM.exe
[2011.10.22 23:16:35 | 000,299,384 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011.10.22 19:32:34 | 000,008,592 | ---- | M] () -- C:\Users\melkorn\AppData\Local\d3d9caps.dat
[2011.10.22 18:28:02 | 000,201,356 | ---- | M] () -- C:\Users\melkorn\Desktop\cc_20111022_182753.reg
[2011.10.22 18:20:04 | 000,000,808 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011.10.22 17:18:20 | 002,969,090 | ---- | M] () -- C:\Windows\System32\perfh005.dat
[2011.10.22 17:18:20 | 001,451,926 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011.10.22 17:18:20 | 000,960,724 | ---- | M] () -- C:\Windows\System32\perfc005.dat
[2011.10.22 17:18:20 | 000,926,016 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011.10.21 20:47:39 | 000,001,580 | ---- | M] () -- C:\Users\melkorn\AppData\Roaming\QuickZip45.ini
[2011.10.21 20:20:46 | 925,220,864 | ---- | M] () -- C:\Users\melkorn\Desktop\Torchlight-Czech.iso
[2011.10.20 23:29:00 | 000,098,304 | ---- | M] (Sony DADC Austria AG.) -- C:\Windows\System32\CmdLineExt.dll
[2011.10.19 16:19:43 | 000,109,568 | ---- | M] () -- C:\Users\melkorn\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[1 C:\Users\melkorn\AppData\Local\*.tmp files -> C:\Users\melkorn\AppData\Local\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011.10.23 11:17:59 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011.10.22 23:16:19 | 000,299,384 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2011.10.22 19:57:05 | 3218,042,880 | -HS- | C] () -- C:\hiberfil.sys
[2011.10.22 18:27:58 | 000,201,356 | ---- | C] () -- C:\Users\melkorn\Desktop\cc_20111022_182753.reg
[2011.10.22 18:20:04 | 000,000,808 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011.10.22 17:17:44 | 000,781,383 | ---- | C] () -- C:\Users\melkorn\Desktop\RSIT.exe
[2011.10.21 20:02:20 | 925,220,864 | ---- | C] () -- C:\Users\melkorn\Desktop\Torchlight-Czech.iso
[2011.09.16 16:40:35 | 000,053,248 | ---- | C] () -- C:\Windows\System32\apache.dll
[2011.07.25 16:39:06 | 000,000,000 | ---- | C] () -- C:\Users\melkorn\AppData\Local\{B17F04B2-4C40-471C-86D3-72F270C2B6F9}
[2011.06.15 21:35:23 | 000,000,008 | ---- | C] () -- C:\Users\melkorn\AppData\Roaming\DofusAppId0_4
[2011.04.19 19:28:10 | 001,749,376 | ---- | C] () -- C:\Windows\System32\snp2uvc.sys
[2011.04.19 19:28:09 | 000,028,032 | ---- | C] () -- C:\Windows\System32\sncduvc.sys
[2011.04.19 19:28:09 | 000,000,131 | ---- | C] () -- C:\Windows\System32\PidList.ini
[2011.03.20 17:25:46 | 000,000,001 | ---- | C] () -- C:\Windows\System32\SI.bin
[2011.03.09 22:20:39 | 000,097,252 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
[2010.03.28 14:35:37 | 000,000,008 | ---- | C] () -- C:\Users\melkorn\AppData\Roaming\DofusAppId0_3
[2010.03.15 19:09:01 | 000,000,008 | ---- | C] () -- C:\Users\melkorn\AppData\Roaming\DofusAppId0_2
[2010.03.15 19:07:50 | 000,000,177 | ---- | C] () -- C:\Users\melkorn\AppData\Roaming\D2Info0
[2010.03.15 19:07:50 | 000,000,008 | ---- | C] () -- C:\Users\melkorn\AppData\Roaming\DofusAppId0_1
[2010.01.02 11:59:01 | 000,053,248 | ---- | C] () -- C:\Windows\unrar.dll
[2009.12.23 16:38:09 | 000,040,960 | R--- | C] () -- C:\Windows\System32\psfind.dll
[2009.12.23 14:07:08 | 000,278,984 | ---- | C] () -- C:\Windows\System32\drivers\atksgt.sys
[2009.12.23 14:07:08 | 000,025,416 | ---- | C] () -- C:\Windows\System32\drivers\lirsgt.sys
[2009.09.24 05:16:57 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009.09.24 05:16:57 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2009.08.29 14:24:29 | 000,221,291 | ---- | C] () -- C:\Windows\Imei_dll.dll
[2009.08.29 14:24:29 | 000,040,960 | ---- | C] () -- C:\Windows\Sublock.dll
[2009.08.27 23:10:53 | 000,001,580 | ---- | C] () -- C:\Users\melkorn\AppData\Roaming\QuickZip45.ini
[2009.07.22 22:30:28 | 000,000,635 | ---- | C] () -- C:\Windows\Rtcw.INI
[2009.06.17 17:49:51 | 000,000,023 | ---- | C] () -- C:\Windows\BlendSettings.ini
[2009.06.02 22:57:36 | 000,066,872 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2009.06.02 22:57:28 | 000,138,184 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2009.06.02 22:57:24 | 000,183,112 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2009.04.21 18:54:09 | 000,000,073 | ---- | C] () -- C:\Windows\level.ini
[2009.04.21 18:54:09 | 000,000,063 | ---- | C] () -- C:\Windows\tmp2Level.ini
[2009.04.04 11:42:37 | 000,484,352 | ---- | C] () -- C:\Windows\System32\lame_enc.dll
[2009.02.15 16:29:11 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009.02.15 15:17:28 | 000,021,840 | ---- | C] () -- C:\Windows\System32\SIntfNT.dll
[2009.02.15 15:17:28 | 000,017,212 | ---- | C] () -- C:\Windows\System32\SIntf32.dll
[2009.02.15 15:17:28 | 000,012,067 | ---- | C] () -- C:\Windows\System32\SIntf16.dll
[2009.02.15 15:05:25 | 000,037,237 | ---- | C] () -- C:\Windows\DIIUnin.dat
[2009.02.14 16:52:09 | 000,008,592 | ---- | C] () -- C:\Users\melkorn\AppData\Local\d3d9caps.dat
[2009.02.14 14:26:58 | 000,109,568 | ---- | C] () -- C:\Users\melkorn\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.02.14 13:03:24 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat
[2009.02.14 00:29:51 | 000,118,784 | ---- | C] () -- C:\Windows\System32\VMC3KAPI.dll
[2009.02.14 00:17:46 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2008.07.28 13:42:11 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2008.07.28 04:51:57 | 000,001,024 | RH-- | C] () -- C:\Windows\System32\NTIOFM4.dll
[2008.07.28 04:51:57 | 000,001,024 | RH-- | C] () -- C:\Windows\System32\NTIBUN5.dll
[2008.07.28 04:33:29 | 000,204,800 | ---- | C] () -- C:\Windows\System32\SysHook.dll
[2008.07.28 04:27:16 | 000,487,424 | ---- | C] () -- C:\Windows\System32\INT15.dll
[2008.07.28 04:24:10 | 000,001,694 | ---- | C] () -- C:\Windows\RtDefLvl.ini
[2008.07.28 04:24:10 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX1.dat
[2008.07.28 04:24:10 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX0.dat
[2008.07.28 04:22:38 | 000,000,008 | ---- | C] () -- C:\Windows\System32\drivers\rtkhdaud.dat
[2008.01.21 08:46:38 | 002,969,090 | ---- | C] () -- C:\Windows\System32\perfh005.dat
[2008.01.21 08:46:38 | 000,960,724 | ---- | C] () -- C:\Windows\System32\perfc005.dat
[2008.01.21 08:46:38 | 000,286,912 | ---- | C] () -- C:\Windows\System32\perfi005.dat
[2008.01.21 08:46:38 | 000,034,724 | ---- | C] () -- C:\Windows\System32\perfd005.dat
[2007.11.14 17:17:34 | 000,204,800 | ---- | C] () -- C:\Windows\System32\CogentBioSDK.dll
[2007.04.24 19:32:56 | 000,389,120 | ---- | C] () -- C:\Windows\System32\btwhidcs.dll
[2006.11.02 14:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006.11.02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006.11.02 12:33:01 | 001,451,926 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006.11.02 12:33:01 | 000,926,016 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006.11.02 12:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006.11.02 12:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006.11.02 12:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006.11.02 10:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006.11.02 10:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006.11.02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006.11.02 09:27:46 | 000,000,518 | ---- | C] () -- C:\Windows\System32\SP207.INI
[2006.11.02 09:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006.08.28 23:54:56 | 000,010,875 | ---- | C] () -- C:\Windows\System32\nicmgr.exe
[2001.12.26 16:12:30 | 000,065,536 | ---- | C] () -- C:\Windows\System32\multiplex_vcd.dll
[2001.11.14 14:56:00 | 001,802,240 | ---- | C] () -- C:\Windows\System32\lcppn21.dll
[2001.09.03 23:46:38 | 000,110,592 | ---- | C] () -- C:\Windows\System32\Hmpg12.dll
[2001.07.30 16:33:56 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC.dll
[2001.07.23 22:04:36 | 000,118,784 | ---- | C] () -- C:\Windows\System32\HMPV2_ENC_MMX.dll

========== LOP Check ==========

[2009.07.05 13:16:00 | 000,000,000 | -HSD | M] -- C:\Users\melkorn\AppData\Roaming\.#
[2009.02.14 12:57:19 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Acer
[2008.07.28 04:50:25 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Acer GameZone Console
[2010.03.15 19:08:02 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\app
[2010.04.12 20:11:32 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Command & Conquer 3 Tiberium Wars
[2011.10.22 18:25:15 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\DAEMON Tools Lite
[2011.07.26 23:25:49 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Dofus 2
[2010.03.15 19:09:01 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Dofus-2.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[2010.03.28 14:35:37 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Dofus-3.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[2011.06.15 21:35:23 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Dofus-4.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[2010.03.15 19:07:51 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Dofus.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[2009.02.14 13:41:40 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\eSobi
[2010.07.31 11:27:03 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\FOG Downloader
[2011.10.22 20:00:28 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\ICQ
[2009.10.25 17:19:19 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Krrrk
[2009.06.02 22:51:56 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Leadertech
[2009.08.29 14:24:08 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\LG Electronics
[2011.10.19 16:59:18 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Might & Magic Heroes VI - Game Official Demo
[2010.07.17 20:25:00 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Mount&Blade
[2011.05.16 18:09:07 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Reg.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[2010.03.15 19:08:02 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\RegTesting.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[2009.11.17 16:32:11 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\runic games
[2009.11.08 23:33:57 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Secret of the Solstice
[2011.03.02 22:28:20 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Sierra
[2010.11.03 20:10:32 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Telefónica Móviles
[2010.09.01 15:56:47 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Tific
[2011.10.08 11:33:02 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\uTorrent
[2009.02.14 00:29:18 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Validity
[2011.10.23 10:55:38 | 000,032,638 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========

========== Custom Scans ==========

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Steam" = "C:\Program Files\Steam\Steam.exe" -silent -- [2011.08.03 21:38:01 | 001,242,448 | ---- | M] (Valve Corporation)
"WMPNSCFG" = C:\Program Files\Windows Media Player\WMPNSCFG.exe -- [2008.01.21 04:25:33 | 000,202,240 | ---- | M] (Microsoft Corporation)

< MD5 for: ATAPI.SYS >
[2009.04.11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_b12d8e84\atapi.sys
[2009.04.11 08:32:26 | 000,019,944 | ---- | M] (Microsoft Corporation) MD5=1F05B78AB91C9075565A9D8A4B880BC4 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6002.18005_none_df23a1261eab99e8\atapi.sys
[2008.01.21 04:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\drivers\atapi.sys
[2008.01.21 04:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_cc18792d\atapi.sys
[2008.01.21 04:23:00 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
[2006.11.02 11:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2009.04.11 08:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E99509F5E7 -- C:\Windows\System32\autochk.exe
[2009.04.11 08:27:20 | 000,643,072 | ---- | M] (Microsoft Corporation) MD5=10761177A6EBE45843F443E99509F5E7 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6002.18005_none_e3df6655bee2ee3b\autochk.exe
[2008.01.21 04:24:45 | 000,642,560 | ---- | M] (Microsoft Corporation) MD5=2FC5BE79B51714B479809358E4908FC3 -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.0.6001.18000_none_e1f3ed49c1c122ef\autochk.exe

< MD5 for: CDROM.SYS >
[2008.01.21 04:23:02 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_a29e71c6\cdrom.sys
[2008.01.21 04:23:02 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=1EC25CEA0DE6AC4718BF89F9E1778B57 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6001.18000_none_5fa95be2a3c76a4a\cdrom.sys
[2009.04.11 06:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\drivers\cdrom.sys
[2009.04.11 06:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_c949a5b6\cdrom.sys
[2009.04.11 06:39:17 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=6B4BFFB9BECD728097024276430DB314 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.0.6002.18005_none_6194d4eea0e93596\cdrom.sys
[2006.11.02 10:51:44 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=8D1866E61AF096AE8B582454F5E4D303 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_e487f727\cdrom.sys

< MD5 for: CSRSS.EXE >
[2008.01.21 04:24:54 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=ABCA209EBA02CB59233614DB83B4F50D -- C:\Windows\System32\csrss.exe
[2008.01.21 04:24:54 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=ABCA209EBA02CB59233614DB83B4F50D -- C:\Windows\winsxs\x86_microsoft-windows-csrss_31bf3856ad364e35_6.0.6001.18000_none_58e3e3d7e415ae4c\csrss.exe

< MD5 for: EXPLORER.EXE >
[2008.10.29 08:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2008.10.29 08:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2008.10.30 05:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2009.04.11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\explorer.exe
[2009.04.11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe
[2008.10.28 04:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2008.01.21 04:24:24 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe

< MD5 for: LSASS.EXE >
[2009.06.15 14:51:56 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=203D86EBD6D8E4C8501B222421E81506 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22152_none_a886901f7335e2fc\lsass.exe
[2009.09.10 16:44:14 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=2D3AC5E7AC01E905F3ABD2D745FE3A9B -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.22223_none_a8a80213731ca5a7\lsass.exe
[2009.06.15 14:48:49 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=3978F3540329E16C0AC3BCF677E5669F -- C:\Windows\System32\lsass.exe
[2009.06.15 14:48:49 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=3978F3540329E16C0AC3BCF677E5669F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18051_none_a7fbf30a5a1929db\lsass.exe
[2009.02.13 09:26:04 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=59DE082968FDD257FFF0D209B9A5B460 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16820_none_a44eb0105fb4d975\lsass.exe
[2009.06.15 15:03:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=6F1F23D3599EAE17734451936B7F17C6 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22450_none_a69e1da376115b2a\lsass.exe
[2009.06.15 14:57:59 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=A911ECAC81F94ADEAFBE8E3F7873EDB0 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18272_none_a600dfae5d0228c9\lsass.exe
[2009.02.13 06:58:37 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=AFF8A58280863629CA4FFA9E0B259F1E -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21010_none_a4e2f4e978ca9090\lsass.exe
[2009.06.15 14:59:08 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=BA9A67672E025078C77967731BCFC560 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21067_none_a4b3e75378eccda6\lsass.exe
[2009.06.15 15:10:12 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=C731B1FE449D4E9CEA358C9D55B69BE9 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.16870_none_a418a0745fdd652a\lsass.exe
[2009.09.09 13:09:38 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=CB7E838C140B4087B2DA323F2D4523C5 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22518_none_a6d1618975e9b345\lsass.exe
[2009.09.10 16:47:51 | 000,007,680 | ---- | M] (Microsoft Corporation) MD5=D09A5DA84B7C9CA9B02EBCD7FAE41C8D -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6000.21125_none_a4dd285578ce285b\lsass.exe
[2008.01.21 04:24:15 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18000_none_a64a8ac25ccb3836\lsass.exe
[2008.01.21 04:24:15 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.18215_none_a644c0145ccecd28\lsass.exe
[2008.01.21 04:24:15 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=DCF733788C7D088D814E5F80EB4B3E0F -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6002.18005_none_a83603ce59ed0382\lsass.exe
[2009.02.13 10:20:29 | 000,009,728 | ---- | M] (Microsoft Corporation) MD5=F4C62B07E5BF96F1FDCA9DB393ECED22 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.0.6001.22376_none_a68e7da1761c2def\lsass.exe

< MD5 for: NDIS.SYS >
[2009.04.11 08:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\System32\drivers\ndis.sys
[2009.04.11 08:32:49 | 000,527,848 | ---- | M] (Microsoft Corporation) MD5=1357274D1883F68300AEADD15D7BBB42 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6002.18005_none_a9b2a4d31930d864\ndis.sys
[2008.01.21 04:23:50 | 000,529,464 | ---- | M] (Microsoft Corporation) MD5=9BDC71790FA08F0A0B5F10462B1BD0B1 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6001.18000_none_a7c72bc71c0f0d18\ndis.sys

< MD5 for: NTFS.SYS >
[2009.04.11 08:32:49 | 001,083,880 | ---- | M] (Společnost Microsoft) MD5=6A4A98CEE84CF9E99564510DDA4BAA47 -- C:\Windows\System32\drivers\ntfs.sys
[2009.04.11 08:32:49 | 001,083,880 | ---- | M] (Microsoft Corporation) MD5=6A4A98CEE84CF9E99564510DDA4BAA47 -- C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6002.18005_none_a85ca2c91a0d64df\ntfs.sys
[2008.01.21 04:23:51 | 001,081,912 | ---- | M] (Microsoft Corporation) MD5=B4EFFE29EB4F15538FD8A9681108492D -- C:\Windows\winsxs\x86_microsoft-windows-ntfs_31bf3856ad364e35_6.0.6001.18000_none_a67129bd1ceb9993\ntfs.sys

< MD5 for: SCECLI.DLL >
[2008.01.21 04:24:50 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll
[2009.04.11 08:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\System32\scecli.dll
[2009.04.11 08:28:24 | 000,177,152 | ---- | M] (Microsoft Corporation) MD5=8FC182167381E9915651267044105EE1 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6002.18005_none_39f95b67d63d3a5e\scecli.dll

< MD5 for: SERVICES.EXE >
[2008.01.21 04:24:48 | 000,279,040 | ---- | M] (Microsoft Corporation) MD5=2B336AB6286D6C81FA02CBAB914E3C6C -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_cf5fc067cd49010a\services.exe
[2009.04.11 08:27:59 | 000,279,552 | ---- | M] (Microsoft Corporation) MD5=D4E6D91C1349B7BFB3599A6ADA56851B -- C:\Windows\System32\services.exe
[2009.04.11 08:27:59 | 000,279,552 | ---- | M] (Microsoft Corporation) MD5=D4E6D91C1349B7BFB3599A6ADA56851B -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_d14b3973ca6acc56\services.exe

< MD5 for: SMSS.EXE >
[2008.01.21 04:23:50 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=6701DDAF68BEDE6BBEEA9D514D73A35B -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6001.18000_none_ac3aa7fd19319fba\smss.exe
[2009.04.11 08:28:04 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=98AF15A94CD6AC37248E72E5FE789B35 -- C:\Windows\System32\smss.exe
[2009.04.11 08:28:04 | 000,064,000 | ---- | M] (Microsoft Corporation) MD5=98AF15A94CD6AC37248E72E5FE789B35 -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.0.6002.18005_none_ae26210916536b06\smss.exe

< MD5 for: SPOOLSV.EXE >
[2010.08.17 15:32:33 | 000,126,464 | ---- | M] (Microsoft Corporation) MD5=3665F79026A3F91FBCA63F2C65A09B19 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6001.18511_none_d641dcfdc18fec21\spoolsv.exe
[2009.04.11 08:28:05 | 000,127,488 | ---- | M] (Microsoft Corporation) MD5=524BFBEA40E6E404737CCBC754647A2E -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6002.18005_none_d8371c2dbeaa9062\spoolsv.exe
[2008.01.21 04:24:45 | 000,125,952 | ---- | M] (Microsoft Corporation) MD5=846CDF9A3CF4DA9B306ADFB7D55EE4C2 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6001.18000_none_d64ba321c188c516\spoolsv.exe
[2010.08.17 16:11:37 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=8554097E5136C3BF9F69FE578A1B35F4 -- C:\Windows\System32\spoolsv.exe
[2010.08.17 16:11:37 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=8554097E5136C3BF9F69FE578A1B35F4 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6002.18294_none_d7d4d063bef46cd2\spoolsv.exe
[2010.08.17 16:20:09 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=AAE98B295E88D439A6E0F6E8929424FB -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6002.22468_none_d882e000d7f61b4c\spoolsv.exe
[2010.08.17 15:27:48 | 000,128,000 | ---- | M] (Microsoft Corporation) MD5=E807FC542C295BA256CE3567829E02A6 -- C:\Windows\winsxs\x86_microsoft-windows-printing-spooler-core_31bf3856ad364e35_6.0.6001.22743_none_d6ad0c7edac40f93\spoolsv.exe

< MD5 for: SVCHOST.EXE >
[2008.01.21 04:23:43 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\System32\svchost.exe
[2008.01.21 04:23:43 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe

< MD5 for: TCPIP.SYS >
[2008.04.26 10:08:16 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=01EC1E92595F839BEE70D439C46796E3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22167_none_b36dd19b7fae39c7\tcpip.sys
[2009.04.11 08:33:02 | 000,897,000 | ---- | M] (Microsoft Corporation) MD5=0E6B0885C3D5E4643ED2D043DE3433D8 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18005_none_b5098b5e63880c42\tcpip.sys
[2009.12.08 22:52:30 | 000,897,624 | ---- | M] (Microsoft Corporation) MD5=1ACBB7A47E78F4CC82D2EFFB72901528 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18377_none_b2d96a966698ad63\tcpip.sys
[2009.08.15 23:30:53 | 000,816,640 | ---- | M] (Microsoft Corporation) MD5=2512B4D1353370D6688B1AF1F5AFA1CF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21108_none_6030d425ab49af00\tcpip.sys
[2009.08.14 19:01:55 | 000,900,168 | ---- | M] (Microsoft Corporation) MD5=2608E71AAD54564647D4BB984E1925AA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22497_none_b34d67897fc6850f\tcpip.sys
[2011.06.17 22:13:55 | 000,905,104 | ---- | M] (Microsoft Corporation) MD5=2756186E287139310997090797E0182B -- C:\Windows\System32\drivers\tcpip.sys
[2011.06.17 22:13:55 | 000,905,104 | ---- | M] (Microsoft Corporation) MD5=2756186E287139310997090797E0182B -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18484_none_b4b2134c63c9c70f\tcpip.sys
[2010.02.18 13:51:51 | 000,818,688 | ---- | M] (Microsoft Corporation) MD5=2C1F7005AA3B62721BFDB307BD5F5010 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21226_none_6019359fab5bb15b\tcpip.sys
[2010.02.18 16:49:38 | 000,898,952 | ---- | M] (Microsoft Corporation) MD5=2EAE4500984C2F8DACFB977060300A15 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18427_none_b30f7c1866701ed5\tcpip.sys
[2009.08.14 16:24:47 | 000,813,568 | ---- | M] (Microsoft Corporation) MD5=300208927321066EA53761FDC98747C6 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16908_none_5fa75f38922bdbf4\tcpip.sys
[2009.12.08 22:15:00 | 000,907,832 | ---- | M] (Microsoft Corporation) MD5=46E6685F3E92AEC743773ADD4CD54F57 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22283_none_b53aaa1b7ce8560d\tcpip.sys
[2010.02.18 16:07:16 | 000,904,576 | ---- | M] (Microsoft Corporation) MD5=48CBE6D53632D0067C2D6B20F90D84CA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18209_none_b50d905263846bec\tcpip.sys
[2010.02.18 14:05:37 | 000,815,104 | ---- | M] (Microsoft Corporation) MD5=4A82FA8F0DF67AA354580C3FAAF8BDE3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.17021_none_5f8a957c924295b7\tcpip.sys
[2009.12.08 22:37:09 | 000,900,696 | ---- | M] (Microsoft Corporation) MD5=5653230D480A9C54D169E1B080B72CF5 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22577_none_b36309477fb64a54\tcpip.sys
[2010.06.16 17:55:58 | 000,902,032 | ---- | M] (Microsoft Corporation) MD5=6216A954ED7045B62880A92D6C9B9FC7 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22713_none_b39feb737f8937a0\tcpip.sys
[2009.08.14 18:27:34 | 000,904,776 | ---- | M] (Microsoft Corporation) MD5=65877AA1B6A7CB797488E831698973E9 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18091_none_b4a43aea63d4a25f\tcpip.sys
[2011.06.17 22:13:55 | 000,913,296 | ---- | M] (Microsoft Corporation) MD5=6647FCE6FC4970DAAFE5C64C794513D3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22662_none_b54f51417cd8f970\tcpip.sys
[2010.06.16 18:39:32 | 000,912,776 | ---- | M] (Microsoft Corporation) MD5=6A10AFCE0B38371064BE41C1FBFD3C6B -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22425_none_b57d8e037cb5db63\tcpip.sys
[2010.06.16 17:59:54 | 000,898,952 | ---- | M] (Microsoft Corporation) MD5=782568AB6A43160A159B6215B70BCCE9 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18493_none_b2bfcb7c66ac7d10\tcpip.sys
[2008.04.26 10:26:49 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=82E266BEE5F0167E41C6ECFDD2A79C02 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18063_none_b2e033a8669434a1\tcpip.sys
[2009.12.08 19:58:13 | 000,813,568 | ---- | M] (Microsoft Corporation) MD5=8734BD051FFDCBF8425CF222141C3741 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.16973_none_5f56ae52926920d8\tcpip.sys
[2009.08.14 19:07:56 | 000,897,608 | ---- | M] (Microsoft Corporation) MD5=8A7AD2A214233F684242F289ED83EBC3 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18311_none_b3144862666d6db3\tcpip.sys
[2010.02.18 19:36:50 | 000,902,024 | ---- | M] (Microsoft Corporation) MD5=93A5655CD9CD2F080EF1CB71A3666215 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys
[2010.06.16 18:04:57 | 000,905,088 | ---- | M] (Microsoft Corporation) MD5=A474879AFA4A596B3A531F3E69730DBF -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18272_none_b4baded863c37e22\tcpip.sys
[2009.12.08 19:45:32 | 000,816,640 | ---- | M] (Microsoft Corporation) MD5=CA3A5756672013A66BB9D547A5A62DCA -- C:\Windows\winsxs\x86_microsoft-windows-tcpip_31bf3856ad364e35_6.0.6000.21175_none_5fe223d3ab852692\tcpip.sys
[2010.02.18 16:22:11 | 000,910,216 | ---- | M] (Microsoft Corporation) MD5=D9F5DD5BBC8348E8F8220CCBF14C022E -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22341_none_b563eb1d7cc9b0c2\tcpip.sys
[2009.12.08 22:01:08 | 000,904,776 | ---- | M] (Microsoft Corporation) MD5=DA467E7619AE5F4588E6262C13C8940A -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.18160_none_b4c3ac4a63bd325c\tcpip.sys
[2008.01.21 04:25:03 | 000,891,448 | ---- | M] (Microsoft Corporation) MD5=FC6E2835D667774D409C7C7021EAF9C4 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.18000_none_b31e1252666640f6\tcpip.sys
[2009.08.14 18:33:50 | 000,905,784 | ---- | M] (Microsoft Corporation) MD5=FF71856BD4CD6D4367F9FD84BE79A874 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6002.22200_none_b58e289d7caa2a80\tcpip.sys

< MD5 for: USERINIT.EXE >
[2008.01.21 04:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe
[2008.01.21 04:24:49 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe

< MD5 for: WINLOGON.EXE >
[2009.04.11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe
[2009.04.11 08:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
[2008.01.21 04:24:49 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe

< C:\windows\system32\spool\prtprocs|dll;true;true;true /FP >
[2006.11.02 14:35:48 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\jnwppr.dll
[2006.10.26 19:56:12 | 000,033,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll
[2008.01.21 08:40:30 | 000,003,584 | ---- | M] (Lexmark International Inc.) -- C:\Windows\System32\spool\prtprocs\w32x86\cs-CZ\LMPRTPRC.DLL.mui

Lord Seth · #6 Příspěvek od **Lord Seth** » 24 říj 2011 16:51

OTL 2/2

< %systemroot%\system32\drivers\*.sys /5 >

< %systemroot%\system32\drivers\*.sys /X >
[2008.05.19 09:04:00 | 000,000,008 | ---- | M] () -- C:\Windows\system32\drivers\1025_ACER_AS6935G.MRK
[2006.09.18 23:26:46 | 003,440,660 | ---- | M] () -- C:\Windows\system32\drivers\gm.dls
[2006.09.18 23:26:46 | 000,000,646 | ---- | M] () -- C:\Windows\system32\drivers\gmreadme.txt
[2008.05.19 09:04:03 | 000,002,028 | ---- | M] () -- C:\Windows\system32\drivers\MOD01SET050000001B.enc
[2008.01.21 04:23:51 | 000,000,003 | ---- | M] () -- C:\Windows\system32\drivers\MsftWdf_Kernel_01007_Inbox_Critical.Wdf
[2009.12.24 23:44:58 | 000,000,000 | -H-- | M] () -- C:\Windows\system32\drivers\Msft_Kernel_silabser_01005.Wdf
[2008.07.28 04:27:31 | 000,000,000 | -H-- | M] () -- C:\Windows\system32\drivers\Msft_Kernel_SynTP_01000.Wdf
[2009.02.15 13:38:21 | 000,000,000 | -H-- | M] () -- C:\Windows\system32\drivers\Msft_User_WpdFs_01_00_00.Wdf
[2009.11.18 09:03:14 | 000,000,000 | -H-- | M] () -- C:\Windows\system32\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2009.04.04 10:05:49 | 000,000,000 | -H-- | M] () -- C:\Windows\system32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
[2009.11.18 09:03:39 | 000,000,000 | -H-- | M] () -- C:\Windows\system32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
[2010.10.16 20:55:00 | 000,010,920 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvBridge.kmd
[2005.06.26 23:29:50 | 000,000,520 | ---- | M] () -- C:\Windows\system32\drivers\RTEQEX0.dat
[2005.06.26 23:29:28 | 000,000,520 | ---- | M] () -- C:\Windows\system32\drivers\RTEQEX1.dat
[2007.07.13 08:11:56 | 000,000,008 | ---- | M] () -- C:\Windows\system32\drivers\rtkhdaud.dat
[2011.05.11 14:55:40 | 000,007,468 | ---- | M] () -- C:\Windows\system32\drivers\SYMEVENT.CAT
[2011.05.11 14:55:40 | 000,000,806 | ---- | M] () -- C:\Windows\system32\drivers\SYMEVENT.INF
[2008.01.21 04:23:23 | 000,133,972 | ---- | M] () -- C:\Windows\system32\drivers\VSTDProf.cty
[2008.01.21 04:23:23 | 000,133,528 | ---- | M] () -- C:\Windows\system32\drivers\VSTEProf.cty
[2008.01.21 04:23:22 | 000,141,611 | ---- | M] () -- C:\Windows\system32\drivers\VSTProf.cty
[2008.01.21 04:23:23 | 000,141,572 | ---- | M] () -- C:\Windows\system32\drivers\VSTSProf.cty

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2009.11.14 16:00:31 | 000,691,696 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sptd.sys

< %systemroot%\system32\*.* /5 >
[2011.10.23 10:56:57 | 000,003,216 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011.10.23 10:56:57 | 000,003,216 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011.10.20 23:29:00 | 000,098,304 | ---- | M] (Sony DADC Austria AG.) -- C:\Windows\system32\CmdLineExt.dll
[2011.10.22 23:16:35 | 000,299,384 | ---- | M] () -- C:\Windows\system32\FNTCACHE.DAT
[2011.10.22 23:18:24 | 000,072,832 | ---- | M] () -- C:\Windows\system32\GDIPFONTCACHEV1.DAT
[2011.10.23 10:57:14 | 000,000,000 | ---- | M] () -- C:\Windows\system32\LogConfigTemp.xml
[2011.10.19 03:10:27 | 048,324,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mrt.exe
[2011.10.22 17:18:20 | 000,960,724 | ---- | M] () -- C:\Windows\system32\perfc005.dat
[2011.10.22 17:18:20 | 000,926,016 | ---- | M] () -- C:\Windows\system32\perfc009.dat
[2011.10.22 17:18:20 | 002,969,090 | ---- | M] () -- C:\Windows\system32\perfh005.dat
[2011.10.22 17:18:20 | 001,451,926 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2011.10.22 17:18:20 | 000,005,576 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\config\*.sav >
[2008.01.21 05:14:18 | 016,846,848 | ---- | M] () -- C:\Windows\system32\config\COMPONENTS.SAV
[2008.01.21 05:14:08 | 000,106,496 | ---- | M] () -- C:\Windows\system32\config\DEFAULT.SAV
[2008.01.21 05:14:18 | 000,020,480 | ---- | M] () -- C:\Windows\system32\config\SECURITY.SAV
[2006.11.02 12:34:08 | 010,133,504 | ---- | M] () -- C:\Windows\system32\config\SOFTWARE.SAV
[2006.11.02 12:34:08 | 001,826,816 | ---- | M] () -- C:\Windows\system32\config\SYSTEM.SAV

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\*.* /U /s >

< %systemroot%\*. /mp /s >

< %ALLUSERSPROFILE%\Data Aplikací\*.* >

< %ALLUSERSPROFILE%\Data Aplikací\*.exe /s >

< %ALLUSERSPROFILE%\Dáta aplikácií\*.* >

< %ALLUSERSPROFILE%\Dáta aplikácií\*.exe /s >

< %APPDATA%\*. >
[2009.07.05 13:16:00 | 000,000,000 | -HSD | M] -- C:\Users\melkorn\AppData\Roaming\.#
[2009.02.14 12:57:19 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Acer
[2008.07.28 04:50:25 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Acer GameZone Console
[2010.03.15 18:06:55 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Adobe
[2010.03.15 19:08:02 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\app
[2011.03.08 23:52:06 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Apple Computer
[2010.04.12 20:11:32 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Command & Conquer 3 Tiberium Wars
[2009.03.24 19:28:23 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\CyberLink
[2011.10.22 18:25:15 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\DAEMON Tools Lite
[2010.11.09 21:10:05 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\DivX
[2011.07.26 23:25:49 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Dofus 2
[2010.03.15 19:09:01 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Dofus-2.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[2010.03.28 14:35:37 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Dofus-3.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[2011.06.15 21:35:23 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Dofus-4.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[2010.03.15 19:07:51 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Dofus.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[2009.02.14 13:41:40 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\eSobi
[2010.07.31 11:27:03 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\FOG Downloader
[2009.02.14 13:17:57 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Google
[2009.09.20 20:58:35 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Hamachi
[2011.10.22 20:00:28 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\ICQ
[2009.02.14 00:10:52 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Identities
[2009.02.14 00:33:29 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\InstallShield
[2010.11.08 20:37:48 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Intel
[2009.10.25 17:19:19 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Krrrk
[2009.06.02 22:51:56 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Leadertech
[2009.08.29 14:24:08 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\LG Electronics
[2009.02.14 12:57:41 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Macromedia
[2006.11.02 14:37:34 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Media Center Programs
[2011.06.11 23:35:08 | 000,000,000 | --SD | M] -- C:\Users\melkorn\AppData\Roaming\Microsoft
[2011.10.19 16:59:18 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Might & Magic Heroes VI - Game Official Demo
[2010.11.03 22:14:54 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Motive
[2010.07.17 20:25:00 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Mount&Blade
[2009.02.14 16:05:30 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Mozilla
[2011.01.22 01:32:49 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\NVIDIA
[2011.05.16 18:09:07 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Reg.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[2010.03.15 19:08:02 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\RegTesting.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[2009.11.17 16:32:11 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\runic games
[2009.11.08 23:33:57 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Secret of the Solstice
[2009.02.15 17:57:12 | 000,000,000 | RH-D | M] -- C:\Users\melkorn\AppData\Roaming\SecuROM
[2011.03.02 22:28:20 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Sierra
[2010.09.19 10:45:21 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\skypePM
[2011.10.22 18:18:30 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\SUPERAntiSpyware.com
[2010.11.03 20:10:32 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Telefónica Móviles
[2010.09.01 15:56:47 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Tific
[2011.10.08 11:33:02 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\uTorrent
[2009.02.14 00:29:18 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\Validity
[2010.08.28 19:11:42 | 000,000,000 | ---D | M] -- C:\Users\melkorn\AppData\Roaming\WinRAR

< %APPDATA%\*.* >
[2011.09.10 13:55:51 | 000,000,177 | ---- | M] () -- C:\Users\melkorn\AppData\Roaming\D2Info0
[2011.08.23 19:26:02 | 000,000,008 | ---- | M] () -- C:\Users\melkorn\AppData\Roaming\DofusAppId0_1
[2011.08.23 19:31:28 | 000,000,008 | ---- | M] () -- C:\Users\melkorn\AppData\Roaming\DofusAppId0_2
[2011.09.10 13:57:11 | 000,000,008 | ---- | M] () -- C:\Users\melkorn\AppData\Roaming\DofusAppId0_3
[2011.06.15 21:43:43 | 000,000,008 | ---- | M] () -- C:\Users\melkorn\AppData\Roaming\DofusAppId0_4
[2011.10.21 20:47:39 | 000,001,580 | ---- | M] () -- C:\Users\melkorn\AppData\Roaming\QuickZip45.ini

< %APPDATA%\*.exe /s >
[2011.06.13 19:08:40 | 000,010,134 | R--- | M] () -- C:\Users\melkorn\AppData\Roaming\Microsoft\Installer\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}\ARPPRODUCTICON.exe
[2011.06.11 23:35:08 | 000,011,502 | R--- | M] () -- C:\Users\melkorn\AppData\Roaming\Microsoft\Installer\{C884B05A-F5D9-4AE4-9D84-E6BD9F6E7890}\ARPPRODUCTICON.exe
[2011.06.11 23:35:08 | 000,053,248 | R--- | M] (InstallShield Software Corp.) -- C:\Users\melkorn\AppData\Roaming\Microsoft\Installer\{C884B05A-F5D9-4AE4-9D84-E6BD9F6E7890}\FlatOut2.exe1_C884B05AF5D94AE49D84E6BD9F6E7890.exe
[2011.06.11 23:35:08 | 000,053,248 | R--- | M] (InstallShield Software Corp.) -- C:\Users\melkorn\AppData\Roaming\Microsoft\Installer\{C884B05A-F5D9-4AE4-9D84-E6BD9F6E7890}\FlatOut2.exe_C884B05AF5D94AE49D84E6BD9F6E7890.exe
[2011.06.11 23:35:09 | 000,015,086 | R--- | M] () -- C:\Users\melkorn\AppData\Roaming\Microsoft\Installer\{C884B05A-F5D9-4AE4-9D84-E6BD9F6E7890}\NewShortcut5_C884B05AF5D94AE49D84E6BD9F6E7890.exe
[2011.06.11 23:35:09 | 000,008,854 | R--- | M] () -- C:\Users\melkorn\AppData\Roaming\Microsoft\Installer\{C884B05A-F5D9-4AE4-9D84-E6BD9F6E7890}\Uninstall_FlatOut2_C884B05AF5D94AE49D84E6BD9F6E7890.exe
[2008.12.02 08:40:14 | 000,028,672 | R--- | M] () -- C:\Users\melkorn\AppData\Roaming\Microsoft\Windows\Templates\G\UninstallMSI.exe
[2008.12.01 13:29:00 | 000,014,336 | R--- | M] () -- C:\Users\melkorn\AppData\Roaming\Microsoft\Windows\Templates\G\UninstallMSI32.exe
[2008.12.01 13:29:00 | 000,016,896 | R--- | M] () -- C:\Users\melkorn\AppData\Roaming\Microsoft\Windows\Templates\G\UninstallMSI64.exe
[2009.03.20 07:09:32 | 001,360,008 | R--- | M] () -- C:\Users\melkorn\AppData\Roaming\Microsoft\Windows\Templates\G\USBAutoRun.exe

< %SYSTEMDRIVE%\*.exe >

< *crack* /s >
[2008.07.28 04:40:20 | 001,815,511 | ---- | M] () -- \Program Files\Acer GameZone\Agatha Christie Death on the Nile\gameres\images\bonus_rosary\bead_crack.png

< *keygen* /s >

< *loader* /s >
[2008.07.28 05:03:49 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20080728.log
[2009.02.14 00:11:17 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090213.log
[2009.02.14 12:48:56 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090214.log
[2009.02.15 09:16:48 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090215.log
[2009.02.16 07:52:04 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090216.log
[2009.02.17 17:20:44 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090217.log
[2009.02.18 17:25:53 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090218.log
[2009.02.19 17:36:16 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090219.log
[2009.02.20 17:33:11 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090220.log
[2009.02.21 11:21:10 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090221.log
[2009.02.22 13:38:28 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090222.log
[2009.02.23 17:10:31 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090223.log
[2009.02.24 16:50:52 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090224.log
[2009.02.25 17:29:03 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090225.log
[2009.02.26 18:12:44 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090226.log
[2009.02.27 18:23:41 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090227.log
[2009.03.01 18:34:02 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090301.log
[2009.03.02 18:56:11 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090302.log
[2009.03.03 19:05:30 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090303.log
[2009.03.04 18:28:52 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090304.log
[2009.03.05 18:44:18 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090305.log
[2009.03.06 19:51:46 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090306.log
[2009.03.08 01:21:53 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090308.log
[2009.03.09 16:48:01 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090309.log
[2009.03.10 23:34:23 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090310.log
[2009.03.11 07:57:16 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090311.log
[2009.03.12 07:32:52 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090312.log
[2009.03.13 07:34:00 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090313.log
[2009.03.14 12:34:47 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090314.log
[2009.03.15 22:47:25 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090315.log
[2009.03.16 07:48:05 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090316.log
[2009.03.17 18:08:30 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090317.log
[2009.03.18 21:16:23 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090318.log
[2009.03.21 19:19:25 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090321.log
[2009.03.23 17:27:52 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090323.log
[2009.03.24 07:35:22 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090324.log
[2009.03.25 07:26:38 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090325.log
[2009.03.26 16:37:59 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090326.log
[2009.03.27 15:10:18 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090327.log
[2009.03.28 10:29:03 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090328.log
[2009.03.29 20:45:47 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090329.log
[2009.03.30 18:30:59 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090330.log
[2009.03.31 16:06:41 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090331.log
[2009.04.01 16:33:10 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090401.log
[2009.04.02 16:40:14 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090402.log
[2009.04.04 01:35:11 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090404.log
[2009.04.05 12:23:41 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090405.log
[2009.04.06 17:40:13 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090406.log
[2009.04.07 16:35:55 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090407.log
[2009.04.08 00:58:37 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090408.log
[2009.04.09 16:17:12 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090409.log
[2009.04.10 13:42:16 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090410.log
[2009.04.11 11:41:07 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090411.log
[2009.04.12 08:54:16 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090412.log
[2009.04.13 11:00:28 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090413.log
[2009.04.14 16:14:44 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090414.log
[2009.04.15 21:26:40 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090415.log
[2009.04.16 16:34:07 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090416.log
[2009.04.17 16:56:24 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090417.log
[2009.04.18 10:54:32 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090418.log
[2009.04.19 10:39:47 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090419.log
[2009.04.20 17:08:54 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090420.log
[2009.04.21 16:17:29 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090421.log
[2009.04.22 16:56:50 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090422.log
[2009.04.23 15:59:15 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090423.log
[2009.04.24 15:04:33 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090424.log
[2009.04.25 10:13:31 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090425.log
[2009.04.26 08:02:47 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090426.log
[2009.04.27 14:58:55 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090427.log
[2009.04.28 18:14:49 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090428.log
[2009.04.29 22:52:58 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090429.log
[2009.05.02 15:41:50 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090502.log
[2009.05.03 08:39:13 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090503.log
[2009.05.04 21:43:37 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090504.log
[2009.05.05 06:54:50 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090505.log
[2009.05.07 23:08:47 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090507.log
[2009.05.08 21:15:04 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090508.log
[2009.05.09 19:53:48 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090509.log
[2009.05.10 20:44:07 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090510.log
[2009.05.11 21:55:23 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090511.log
[2009.05.12 16:15:28 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090512.log
[2009.05.13 13:56:11 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090513.log
[2009.05.14 13:25:33 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090514.log
[2009.05.15 15:19:22 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090515.log
[2009.05.16 07:08:42 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090516.log
[2009.05.17 13:25:25 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090517.log
[2009.05.18 07:01:23 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090518.log
[2009.05.19 21:18:02 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090519.log
[2009.05.20 06:37:07 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090520.log
[2009.05.23 10:34:48 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090523.log
[2009.05.26 21:58:44 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090526.log
[2009.05.27 18:08:09 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090527.log
[2009.05.28 15:31:37 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090528.log
[2009.05.29 06:39:35 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090529.log
[2009.05.30 09:21:28 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090530.log
[2009.05.31 10:06:22 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090531.log
[2009.06.01 15:16:40 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090601.log
[2009.06.02 15:35:33 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090602.log
[2009.06.03 16:17:04 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090603.log
[2009.06.04 16:33:55 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090604.log
[2009.06.05 15:30:31 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090605.log
[2009.06.07 19:32:10 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090607.log
[2009.06.08 15:47:35 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090608.log
[2009.06.09 06:36:22 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090609.log
[2009.06.10 06:40:49 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090610.log
[2009.06.11 19:05:25 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090611.log
[2009.06.12 06:20:13 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090612.log
[2009.06.13 12:37:03 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090613.log
[2009.06.14 09:01:32 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090614.log
[2009.06.15 16:19:17 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090615.log
[2009.06.17 16:21:47 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090617.log
[2009.06.20 23:20:29 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090620.log
[2009.06.21 13:52:56 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090621.log
[2009.06.22 17:29:20 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090622.log
[2009.06.23 17:12:20 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090623.log
[2009.06.24 16:57:21 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090624.log
[2009.06.25 15:11:09 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090625.log
[2009.06.26 15:53:04 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090626.log
[2009.06.27 22:24:17 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090627.log
[2009.06.29 18:19:14 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090629.log
[2009.06.30 17:56:02 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090630.log
[2009.07.01 06:38:47 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090701.log
[2009.07.02 18:07:44 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090702.log
[2009.07.03 18:54:19 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090703.log
[2009.07.04 16:40:38 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090704.log
[2009.07.05 13:04:55 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090705.log
[2009.07.06 15:45:43 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090706.log
[2009.07.07 06:16:53 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090707.log
[2009.07.08 15:38:06 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090708.log
[2009.07.09 06:39:42 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090709.log
[2009.07.10 06:40:56 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090710.log
[2009.07.12 12:52:27 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090712.log
[2009.07.18 22:29:11 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090718.log
[2009.07.20 16:16:07 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090720.log
[2009.07.21 17:06:03 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090721.log
[2009.07.22 16:15:24 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090722.log
[2009.07.23 16:55:24 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090723.log
[2009.07.24 16:34:53 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090724.log
[2009.07.26 20:23:36 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090726.log
[2009.07.27 18:06:37 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090727.log
[2009.07.28 16:49:12 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090728.log
[2009.07.29 15:54:47 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090729.log
[2009.07.30 20:26:57 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090730.log
[2009.07.31 17:02:14 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090731.log
[2009.08.01 12:48:33 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090801.log
[2009.08.02 10:40:54 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090802.log
[2009.08.03 15:50:40 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090803.log
[2009.08.04 16:32:03 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090804.log
[2009.08.05 16:24:32 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090805.log
[2009.08.06 16:08:58 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090806.log
[2009.08.07 14:18:42 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090807.log
[2009.08.08 20:54:04 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090808.log
[2009.08.09 21:43:36 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090809.log
[2009.08.10 21:24:17 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090810.log
[2009.08.12 20:53:41 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090812.log
[2009.08.13 10:31:50 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090813.log
[2009.08.14 19:26:20 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090814.log
[2009.08.15 10:22:35 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090815.log
[2009.08.17 20:22:24 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090817.log
[2009.08.18 18:52:24 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090818.log
[2009.08.19 17:09:02 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090819.log
[2009.08.20 14:28:13 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090820.log
[2009.08.23 14:20:25 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090823.log
[2009.08.24 22:28:30 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090824.log
[2009.08.25 16:40:36 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090825.log
[2009.08.26 16:39:47 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090826.log
[2009.08.27 17:34:28 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090827.log
[2009.08.28 15:17:59 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090828.log
[2009.08.29 13:04:37 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090829.log
[2009.09.01 06:27:50 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090901.log
[2009.09.07 16:00:18 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090907.log
[2009.09.09 21:34:09 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090909.log
[2009.09.15 21:34:46 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20090915.log
[2009.10.07 17:36:43 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091007.log
[2009.10.11 17:13:58 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091011.log
[2009.10.16 17:09:52 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091016.log
[2009.10.21 14:59:20 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091021.log
[2009.10.22 16:49:13 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091022.log
[2009.10.23 14:33:02 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091023.log
[2009.10.24 22:20:57 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091024.log
[2009.10.27 17:18:39 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091027.log
[2009.10.28 20:13:20 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091028.log
[2009.10.29 20:34:45 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091029.log
[2009.10.30 22:18:25 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091030.log
[2009.10.31 23:37:08 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091031.log
[2009.11.07 09:10:04 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091107.log
[2009.11.08 08:56:16 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091108.log
[2009.11.09 17:05:13 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091109.log
[2009.11.10 17:21:14 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091110.log
[2009.11.14 10:18:10 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091114.log
[2009.11.15 10:59:54 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091115.log
[2009.11.17 15:11:06 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091117.log
[2009.11.18 20:00:26 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091118.log
[2009.11.28 13:20:39 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091128.log
[2009.12.02 17:05:21 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091202.log
[2009.12.03 15:26:20 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091203.log
[2009.12.04 01:00:59 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091204.log
[2009.12.11 16:49:50 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091211.log
[2009.12.12 18:08:30 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091212.log
[2009.12.14 17:05:54 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091214.log
[2009.12.16 16:44:50 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091216.log
[2009.12.25 19:01:36 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091225.log
[2009.12.29 21:30:10 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091229.log
[2009.12.31 00:24:39 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20091230.log
[2010.01.04 15:38:06 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100104.log
[2010.01.23 04:22:59 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100123.log
[2010.01.26 17:27:21 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100126.log
[2010.02.01 22:14:39 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100201.log
[2010.02.07 23:33:40 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100207.log
[2010.02.13 04:26:23 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100213.log
[2010.02.27 04:25:18 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100227.log
[2010.03.08 19:31:55 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100308.log
[2010.03.10 19:19:08 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100310.log
[2010.03.13 19:02:37 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100313.log
[2010.03.14 12:29:12 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100314.log
[2010.03.15 17:41:33 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100315.log
[2010.03.23 18:27:34 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100323.log
[2010.03.30 17:45:28 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100330.log
[2010.04.01 07:01:12 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100401.log
[2010.04.06 17:02:15 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100406.log
[2010.04.15 19:51:04 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100415.log
[2010.04.16 14:38:43 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100416.log
[2010.04.17 09:37:50 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100417.log
[2010.04.18 09:10:02 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100418.log
[2010.04.19 16:41:25 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100419.log
[2010.04.20 17:12:18 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100420.log
[2010.04.22 20:16:35 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100422.log
[2010.04.23 06:57:15 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100423.log
[2010.04.24 13:50:53 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100424.log
[2010.05.02 10:29:14 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100502.log
[2010.05.04 21:14:14 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100504.log
[2010.05.07 16:21:39 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100507.log
[2010.05.08 09:38:46 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100508.log
[2010.05.09 12:31:50 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100509.log
[2010.05.18 15:21:59 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100518.log
[2010.05.19 15:02:19 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100519.log
[2010.05.20 15:23:09 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100520.log
[2010.05.21 17:59:11 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100521.log
[2010.05.23 10:48:16 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100523.log
[2010.05.24 16:00:32 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100524.log
[2010.05.27 17:06:49 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100527.log
[2010.05.30 20:26:51 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100530.log
[2010.06.05 23:14:34 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100605.log
[2010.06.07 22:09:27 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100607.log
[2010.06.10 12:03:53 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100610.log
[2010.06.14 12:28:19 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100614.log
[2010.06.15 21:24:42 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100615.log
[2010.06.18 17:51:45 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100618.log
[2010.06.19 10:07:52 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100619.log
[2010.06.20 11:54:36 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100620.log
[2010.06.23 20:38:55 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100623.log
[2010.06.24 21:29:43 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100624.log
[2010.06.25 16:47:04 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100625.log
[2010.06.26 20:05:05 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100626.log
[2010.06.30 19:37:05 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100630.log
[2010.07.02 16:34:34 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100702.log
[2010.07.03 10:29:34 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100703.log
[2010.07.04 20:30:29 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100704.log
[2010.07.06 09:52:17 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100706.log
[2010.07.07 07:05:20 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100707.log
[2010.07.08 13:33:14 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100708.log
[2010.07.10 17:18:18 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100710.log
[2010.07.13 16:31:18 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100713.log
[2010.07.14 15:28:33 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100714.log
[2010.07.15 20:11:37 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100715.log
[2010.07.16 22:09:41 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100716.log
[2010.07.17 20:35:30 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100717.log
[2010.07.20 16:08:22 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100720.log
[2010.07.21 15:19:55 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100721.log
[2010.07.23 00:22:34 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100723.log
[2010.07.24 09:09:27 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100724.log
[2010.07.26 16:28:57 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100726.log
[2010.07.29 16:08:33 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100729.log
[2010.07.30 16:44:44 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100730.log
[2010.07.31 07:52:30 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100731.log
[2010.08.03 22:43:13 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100803.log
[2010.08.06 07:01:31 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100806.log
[2010.08.08 10:11:49 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100808.log
[2010.08.10 19:37:13 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100810.log
[2010.08.11 19:39:03 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100811.log
[2010.08.14 09:31:31 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100814.log
[2010.08.16 20:52:16 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100816.log
[2010.08.18 06:49:52 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100818.log
[2010.08.20 14:18:02 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100820.log
[2010.08.21 12:41:13 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100821.log
[2010.08.24 16:40:52 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100824.log
[2010.08.25 17:45:08 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100825.log
[2010.08.26 15:59:47 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100826.log
[2010.08.27 14:59:05 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100827.log
[2010.08.28 13:16:24 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100828.log
[2010.09.01 15:56:26 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100901.log
[2010.09.03 17:08:56 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100903.log
[2010.09.04 12:08:45 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100904.log
[2010.09.08 16:07:37 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100908.log
[2010.09.10 18:29:16 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100910.log
[2010.09.11 07:30:14 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100911.log
[2010.09.16 15:05:07 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100916.log
[2010.09.22 16:56:17 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100922.log
[2010.09.30 15:38:37 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20100930.log
[2010.10.01 15:42:00 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20101001.log
[2010.10.13 16:59:56 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20101013.log
[2010.10.22 17:02:03 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20101022.log
[2010.10.26 16:44:21 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20101026.log
[2010.11.01 07:54:39 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20101101.log
[2010.11.18 22:20:49 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20101118.log
[2010.11.19 17:57:41 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20101119.log
[2010.11.22 21:37:31 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20101122.log
[2010.11.28 10:18:24 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20101128.log
[2010.11.30 23:26:09 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20101130.log
[2010.12.03 17:32:20 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20101203.log
[2010.12.10 16:41:40 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20101210.log
[2010.12.25 23:25:16 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20101225.log
[2010.12.28 18:17:01 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20101228.log
[2011.01.03 00:27:17 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110102.log
[2011.01.03 16:27:41 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110103.log
[2011.01.07 16:39:35 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110107.log
[2011.01.12 18:57:37 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110112.log
[2011.01.16 20:39:49 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110116.log
[2011.01.24 20:11:09 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110124.log
[2011.02.08 21:13:59 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110208.log
[2011.02.09 21:44:18 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110209.log
[2011.02.13 23:52:50 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110213.log
[2011.02.18 16:40:23 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110218.log
[2011.02.20 18:19:17 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110220.log
[2011.02.26 13:53:57 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110226.log
[2011.03.06 16:29:06 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110306.log
[2011.03.09 18:06:25 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110309.log
[2011.03.13 22:12:24 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110313.log
[2011.03.15 00:05:31 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110314.log
[2011.03.26 11:55:07 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110326.log
[2011.04.12 20:12:01 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110412.log
[2011.04.18 21:42:33 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110418.log
[2011.04.19 19:09:54 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110419.log
[2011.04.20 16:01:18 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110420.log
[2011.04.24 17:46:50 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110424.log
[2011.05.01 14:46:09 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110501.log
[2011.05.07 09:50:08 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110507.log
[2011.05.08 20:14:18 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110508.log
[2011.05.09 16:14:53 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110509.log
[2011.05.11 14:33:52 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110511.log
[2011.05.14 19:27:10 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110514.log
[2011.05.21 13:57:21 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110521.log
[2011.05.22 13:09:30 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110522.log
[2011.05.23 16:43:19 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110523.log
[2011.05.25 22:05:36 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110525.log
[2011.05.27 16:17:02 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110527.log
[2011.05.30 16:25:48 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110530.log
[2011.06.01 20:13:53 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110601.log
[2011.06.11 21:27:52 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110611.log
[2011.06.14 22:22:43 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110614.log
[2011.06.16 20:26:26 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110616.log
[2011.06.29 19:38:11 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110629.log
[2011.07.04 18:23:30 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110704.log
[2011.07.09 23:41:47 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110709.log
[2011.07.25 16:41:03 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110725.log
[2011.07.26 16:40:07 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110726.log
[2011.07.31 13:37:49 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110731.log
[2011.08.03 21:37:14 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110803.log
[2011.08.12 15:40:17 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110812.log
[2011.08.15 11:55:16 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110815.log
[2011.08.18 22:03:30 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110818.log
[2011.08.21 23:29:04 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110821.log
[2011.08.23 17:37:41 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110823.log
[2011.08.31 17:15:36 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110831.log
[2011.09.06 19:47:26 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110906.log
[2011.09.08 17:46:57 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110908.log
[2011.09.12 20:56:26 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110912.log
[2011.09.16 17:26:41 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110916.log
[2011.09.18 16:17:39 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110918.log
[2011.09.19 16:27:28 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110919.log
[2011.09.21 19:15:47 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110921.log
[2011.09.24 18:36:27 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110924.log
[2011.09.27 15:52:46 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20110927.log
[2011.10.07 15:24:17 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20111007.log
[2011.10.08 11:45:03 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20111008.log
[2011.10.11 00:18:20 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20111011.log
[2011.10.12 17:31:18 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20111012.log
[2011.10.15 10:04:43 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20111015.log
[2011.10.18 17:18:27 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20111018.log
[2011.10.19 03:41:46 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20111019.log
[2011.10.21 20:49:59 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20111021.log
[2011.10.22 19:59:38 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20111022.log
[2011.10.23 10:58:29 | 000,000,000 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\log\LOADER-20111023.log
[2008.07.29 18:53:44 | 000,561,200 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDSLoader.exe
[2008.07.29 18:52:50 | 000,526,896 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
[2008.07.29 18:52:56 | 000,454,704 | ---- | M] () -- \Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSMSNLoader32.exe
[2011.08.12 16:21:24 | 000,000,000 | ---- | M] () -- \Program Files\Common Files\Blizzard Entertainment\BlizzardDownloader.ini
[2006.04.07 17:59:02 | 000,049,152 | ---- | M] () -- \Program Files\Gothic III\PhysXLoader.dll
[2008.12.17 15:09:12 | 000,005,795 | ---- | M] () -- \Program Files\ICQ6.5\services\icqApp\ver1\theme\IMAGES\XtraPreloader\loader.jpg
[2008.12.17 15:09:12 | 000,004,089 | ---- | M] () -- \Program Files\ICQ6.5\services\icqApp\ver1\theme\IMAGES\XtraPreloader\loader.swf
[2009.10.17 00:25:45 | 000,002,886 | ---- | M] () -- \Program Files\ICQ6.5\services\icqXtraz\ver1\content\babylon_feed\preloader01_b.swf
[2009.02.14 16:07:31 | 000,003,479 | ---- | M] () -- \Program Files\ICQ6.5\services\icqXtraz\ver1\content\contact_list\preloader04.swf
[2009.02.14 16:05:28 | 000,552,798 | ---- | M] () -- \Program Files\ICQ6.5\services\icqXtraz\ver1\theme\game_center\loaderBkg.png
[2008.01.03 15:46:51 | 000,005,795 | ---- | M] () -- \Program Files\ICQ7.0\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2008.01.03 15:46:51 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7.0\imApp\theme\IMAGES\XtraPreloader\loader.swf
[2009.12.20 09:55:30 | 000,004,180 | ---- | M] () -- \Program Files\ICQ7.0\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2008.01.03 15:46:51 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7.0\imApp\theme\MUICoreLib\xtraLoader.swf
[2010.04.20 22:32:10 | 000,002,886 | ---- | M] () -- \Program Files\ICQ7.0\Xtraz\icq\content\babylon_feed\preloader01_b.swf
[2011.03.15 22:40:37 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.0\Xtraz\icq\content\icq_profile\preloader.html
[2011.01.18 18:26:20 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.0\Xtraz\icq\content\profile_forms\preloader.html
[2011.01.18 18:26:20 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.0\Xtraz\icq\content\profile_lightboxs\preloader.html
[2010.02.13 19:24:31 | 000,552,798 | ---- | M] () -- \Program Files\ICQ7.0\Xtraz\icq\theme\game_center\loaderBkg.png
[2011.02.02 21:17:38 | 000,005,795 | ---- | M] () -- \Program Files\ICQ7.4\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2011.02.02 21:17:38 | 000,004,180 | ---- | M] () -- \Program Files\ICQ7.4\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2011.02.02 21:17:37 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7.4\imApp\theme\MUICoreLib\xtraLoader.swf
[2011.04.19 19:11:45 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.4\Xtraz\icq\content\icq_profile\preloader.html
[2011.02.02 22:52:41 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.4\Xtraz\icq\content\profile_forms\preloader.html
[2011.02.02 22:52:41 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.4\Xtraz\icq\content\profile_lightboxs\preloader.html
[2009.05.31 04:21:00 | 000,071,008 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2011.03.24 20:44:09 | 000,000,000 | ---- | M] () -- \Program Files\StarCraft II.temp\Support.temp\BlizzardDownloader.exe.temp
[2011.08.12 16:21:26 | 000,141,839 | ---- | M] () -- \Program Files\StarCraft II\Logs\Downloader.log
[2011.08.12 16:18:55 | 002,639,424 | ---- | M] () -- \Program Files\StarCraft II\Support\BlizzardDownloader.exe
[2008.02.25 08:05:22 | 000,856,064 | ---- | M] () -- \Program Files\The KMPlayer\ImLoader.dll
[2010.03.15 11:28:24 | 000,045,056 | ---- | M] () -- \Program Files\WinRAR\RarExtLoader.exe
[2010.01.02 12:38:29 | 000,536,164 | ---- | M] () -- \Users\melkorn\AppData\Local\VirtualStore\Program Files\Outbreak\LoadErr.log
[2008.07.28 04:55:47 | 000,082,784 | ---- | M] () -- \Windows\assembly\GAC\IALoader\1.7.6223.0__31bf3856ad364e35\IALoader.dll
[2008.01.21 04:23:37 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2009.10.29 06:48:56 | 000,012,532 | ---- | M] () -- \Windows\System32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2009.10.23 05:32:16 | 000,009,622 | ---- | M] () -- \Windows\System32\Macromed\Shockwave 10\shockwave_Projector_Loader.dcr
[2008.01.21 08:45:35 | 000,003,402 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6001.18000_cs-cz_33426ea9fd097a15.manifest
[2008.01.21 08:45:35 | 000,027,648 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6001.18000_cs-cz_33426ea9fd097a15_winload.exe.mui_3bc5b827
[2008.01.21 08:45:35 | 000,019,968 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6001.18000_cs-cz_33426ea9fd097a15_winresume.exe.mui_ff8b5358
[2009.11.07 09:25:49 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94.manifest
[2009.11.07 09:25:49 | 000,986,600 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94_winload.exe_75835076
[2009.11.07 09:25:50 | 000,926,184 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94_winresume.exe_85cd1215
[2008.01.21 04:26:48 | 000,003,885 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6001.18000_none_6b332839511be4b2.manifest
[2008.01.21 04:26:48 | 000,021,048 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6001.18000_none_6b332839511be4b2_spldr.sys_98bd87a0
[2008.02.29 09:26:23 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_de-de_cb9c6772f81a418b.manifest
[2008.02.29 09:19:08 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_en-us_748d3d6be6f84d50.manifest
[2008.02.29 12:05:29 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_es-es_74589a4fe71f3ef5.manifest
[2008.02.29 12:07:01 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_fr-fr_1710104ed9f15557.manifest
[2008.02.29 12:05:17 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_it-it_01380695b1233ad5.manifest
[2008.02.29 10:14:00 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_ja-jp_a35d85a2a43e4cb0.manifest
[2008.02.29 12:02:51 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.16646_nl-nl_2d992eca70004957.manifest
[2008.02.29 09:19:24 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_de-de_cbf6c366115bebbd.manifest
[2008.02.29 09:21:05 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_en-us_74e7995f0039f782.manifest
[2008.02.29 11:56:53 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_es-es_74b2f6430060e927.manifest
[2008.02.29 12:12:24 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_fr-fr_176a6c41f332ff89.manifest
[2008.02.29 12:01:15 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_it-it_01926288ca64e507.manifest
[2008.02.29 09:46:06 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_ja-jp_a3b7e195bd7ff6e2.manifest
[2008.02.29 11:17:45 | 000,003,414 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6000.20782_nl-nl_2df38abd8941f389.manifest
[2008.01.21 08:38:38 | 000,003,402 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.0.6001.18000_cs-cz_33426ea9fd097a15.manifest
[2008.02.29 09:17:27 | 000,004,858 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6000.16646_none_591b3d986f9b5725.manifest
[2008.02.29 09:13:09 | 000,004,858 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6000.20782_none_5975998b88dd0157.manifest
[2008.01.21 04:20:53 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.18000_none_5b26ba326ca6e048.manifest
[2008.02.29 10:08:07 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.18027_none_5b181c606cb0c98b.manifest
[2008.02.29 09:37:27 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6001.22125_none_5b9fb89785d036a7.manifest
[2009.04.11 00:12:44 | 000,004,864 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.0.6002.18005_none_5d12333e69c8ab94.manifest
[2006.11.02 12:13:06 | 000,003,970 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6000.16386_none_68fc663d5430d3de.manifest
[2008.01.21 04:19:11 | 000,003,885 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.0.6001.18000_none_6b332839511be4b2.manifest
[2008.01.21 04:23:37 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.0.6001.18000_none_45f41bf18fa2cf5a\dmloader.dll
[2008.01.21 04:23:37 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.0.6002.18005_none_47df94fd8cc49aa6\dmloader.dll

< *nocd* /s >
[2007.08.29 01:55:54 | 000,700,562 | ---- | M] () -- \Program Files\Microsoft Office\Templates\1029\ONENOTE\12\Notebook Templates\Notebook07.onepkg
[2007.08.29 01:55:54 | 002,548,432 | ---- | M] () -- \Program Files\Microsoft Office\Templates\1029\ONENOTE\12\Notebook Templates\Notebook06.onepkg
[2007.08.29 01:55:54 | 000,064,961 | ---- | M] () -- \Program Files\Microsoft Office\Templates\1029\ONENOTE\12\Notebook Templates\Notebook03.onepkg

< *activator* /s >
[2004.11.10 17:32:40 | 000,241,940 | ---- | M] () -- \Program Files\Dreamcatcher\Dungeon Lords\grn_model\Activator_ElvenArin_basemodel.GR2
[2004.10.21 16:20:06 | 000,008,752 | ---- | M] () -- \Program Files\Dreamcatcher\Dungeon Lords\grn_model\Activator_ElvenArin_Off.GR2
[2004.10.21 16:29:06 | 000,056,412 | ---- | M] () -- \Program Files\Dreamcatcher\Dungeon Lords\grn_model\Activator_ElvenArin_On.GR2
[2004.10.21 16:28:42 | 000,056,824 | ---- | M] () -- \Program Files\Dreamcatcher\Dungeon Lords\grn_model\Activator_ElvenArin_TurnOff.GR2
[2004.11.19 17:52:18 | 000,016,356 | ---- | M] () -- \Program Files\Dreamcatcher\Dungeon Lords\grn_model\Activator_ElvenArin_TurnOn.GR2

< *AutoKMS* /s >

< *minodlogin* /s >

< *tnod* /s >
[2008.07.24 09:52:36 | 000,000,750 | ---- | M] () -- \ACER\Preload\Autorun\APP\Arcade Deluxe\PCinema\Config\CopyRightNoDTS.ini

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /s >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2011-10-19 01:20:12

< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\WUAUSERV
IMAGEPATH REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\BITS
IMAGEPATH REG_EXPAND_SZ %SystemRoot%\System32\svchost.exe -k netsvcs

< reg query "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager" /v BootExecute /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\SESSION MANAGER
BOOTEXECUTE REG_MULTI_SZ autocheck autochk *

< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /v "PendingFileRenameOperations" /c >
HKEY_LOCAL_MACHINE\SYSTEM\CURRENTCONTROLSET\CONTROL\SESSION MANAGER
PENDINGFILERENAMEOPERATIONS REG_MULTI_SZ \??\C:\msimg32.dll

< type c:\boot.ini >> test.txt /c >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2011.10.23 11:17:59 | 000,000,512 | ---- | M] () MD5=03D1E49155879AA3A1A0CE07D712C070 -- C:\PhysicalMBR.bin

========== Alternate Data Streams ==========

@Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:9F683177

< End of report >

Lord Seth · #7 Příspěvek od **Lord Seth** » 24 říj 2011 16:52

Extras:

OTL Extras logfile created on: 23.10.2011 11:10:33 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\melkorn\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000405 | Country: Česká republika | Language: CSY | Date Format: d.M.yyyy

3,00 Gb Total Physical Memory | 1,69 Gb Available Physical Memory | 56,35% Memory free
6,19 Gb Paging File | 4,74 Gb Available in Paging File | 76,54% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 226,38 Gb Total Space | 94,45 Gb Free Space | 41,72% Space Free | Partition Type: NTFS
Drive D: | 222,90 Gb Total Space | 192,97 Gb Free Space | 86,57% Space Free | Partition Type: NTFS

Computer Name: MELI | User Name: melkorn | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)

[HKEY_USERS\S-1-5-21-1053579048-2754583314-3036659907-1000\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSfsu.exe" = C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSfsu.exe:*:Enabled:eDSfsu -- (Egis Incorporated.)
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\encryption.exe" = C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\encryption.exe:*:Enabled:encryption -- ( Egis Incorporated.)
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\decryption.exe" = C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\decryption.exe:*:Enabled:decryption -- ( Egis Incorporated.)
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSMgr.exe" = C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSMgr.exe:*:Enabled:eDSMgr
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStbmngr.exe" = C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStbmngr.exe:*:Enabled:eDStbmngr -- (Egis Incorporated.)
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDSfsu.exe" = C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDSfsu.exe:*:Enabled:eDSfsu -- (Egis Incorporated.)
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\encryption.exe" = C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\encryption.exe:*:Enabled:encryption
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\decryption.exe" = C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\decryption.exe:*:Enabled:decryption
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDSMgr.exe" = C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDSMgr.exe:*:Enabled:eDSMgr
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDStbmngr.exe" = C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDStbmngr.exe:*:Enabled:eDStbmngr -- (Egis Incorporated.)

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{14D1289D-07BF-4B89-96D4-638F1E138873}" = lport=138 | protocol=17 | dir=in | app=system |
"{156DC07A-5422-459E-B2D1-337E290D299F}" = rport=139 | protocol=6 | dir=out | app=system |
"{31BF6DB3-05C6-4CF9-B212-A2256D182FCA}" = lport=137 | protocol=17 | dir=in | app=system |
"{5F327D13-9F7C-4F8D-B03B-A6A540414714}" = rport=138 | protocol=17 | dir=out | app=system |
"{6414948F-47EE-4EB4-87F5-D27FC2788AEF}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{6C088C94-4570-4DAB-B4A7-35CCE15C7F59}" = lport=139 | protocol=6 | dir=in | app=system |
"{6E423BA1-953C-4AF9-8954-96C7BC747A8B}" = rport=137 | protocol=17 | dir=out | app=system |
"{7A424668-C86B-44C7-A5A1-87228D4819AA}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{9F769DB1-A187-4973-A9F3-3B659C2736CD}" = lport=2869 | protocol=6 | dir=in | app=system |
"{A09EDD20-872F-488E-BA0D-3369D829AB97}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{AAF1AE0A-3980-4289-B886-707B48373E8F}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B17EAF83-A7E9-429B-98DB-685D9DF305FA}" = rport=445 | protocol=6 | dir=out | app=system |
"{D25FC20D-B51A-4EDA-8EF7-D809B3C91B6E}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{E9C3990A-87BF-49D5-96EE-E952A09AA791}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{EF1CF963-A52C-4DAA-8BFF-80DA8F35E98B}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{F2843DEE-FFD8-473A-BF53-7E7B03F22721}" = rport=10243 | protocol=6 | dir=out | app=system |
"{F8AC6A3A-2726-4546-A154-2B31450C23E3}" = lport=10243 | protocol=6 | dir=in | app=system |
"{F94FDC70-E18B-4E2B-9178-3BDF5B14EFD7}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{FCE89419-9FB1-43CC-AC9F-ED55AC69D421}" = lport=445 | protocol=6 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0841806B-8783-4FA9-8319-E509738F9A06}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{0F3C8EC1-1BC9-4690-A9AC-2F5022AB4239}" = protocol=6 | dir=in | app=c:\program files\icq7.4\icq.exe |
"{15288B4D-0AD1-4813-BFDC-9D48206BAD5D}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{154CAEF9-E61E-4B14-81F3-DDA1813B5B0F}" = protocol=17 | dir=in | app=c:\program files\icq7.4\icq.exe |
"{1BD522B3-EA97-44AD-88DD-E73D458F5BFD}" = protocol=6 | dir=in | app=c:\program files\icq7.0\icq.exe |
"{211C5636-1C95-4868-848D-9C1F3F56659E}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{2B666D5C-A668-46A7-AE6E-DE6A9BD26625}" = protocol=17 | dir=in | app=c:\program files\icq7.0\icq.exe |
"{3670CDDE-0AA7-4A44-8A6B-91DBC6FFAFD7}" = protocol=17 | dir=in | app=c:\program files\icq7.0\aolload.exe |
"{3D79B063-7BA3-441C-836F-24AFA3AF314A}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{44247A31-7A23-4E1D-B315-4E5C9C85D1D0}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{444B632F-70B1-4040-936D-363287CB1ED5}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{467C7F2B-DF5C-47CB-99FE-4B98BFF35F47}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{4E13A90C-41BA-4D3D-B766-F881633E57EC}" = protocol=6 | dir=in | app=c:\program files\runic games\torchlight\torchlight.exe |
"{5C760F52-FD0D-4CF8-B21B-2C93E21FA67A}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{5F7CB75A-4A76-4011-B0BA-3C92C0C778CE}" = protocol=58 | dir=in | app=system |
"{62F07CD3-E95D-49FB-80B2-4921A7875662}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{63E5BF52-CBFA-425A-91A2-E7BE2EA8D8C8}" = protocol=6 | dir=in | app=c:\program files\deep silver\sacred 2 - fallen angel\system\s2gs.exe |
"{6405504E-219E-4A9D-8749-2E0F556F2329}" = dir=in | app=c:\program files\cyberlink\powerdirector\pdr.exe |
"{66045B2F-8916-43A1-804F-DC795DE10EA4}" = protocol=17 | dir=in | app=c:\program files\deep silver\sacred 2 - fallen angel\system\sacred2.exe |
"{668DFA82-D789-4363-8523-CB3A65FE0BD2}" = protocol=17 | dir=in | app=c:\program files\icq7.4\icq.exe |
"{7075A6AF-364F-4CB2-B4A0-CE98EC9DA564}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7142594D-3F3A-49BE-AF8D-D9FC527B90A0}" = protocol=6 | dir=in | app=c:\program files\icq7.0\aolload.exe |
"{71871074-4584-4C91-A59D-0C9DED5760B1}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{8366310A-9870-46E8-BD61-6EE9CC855E62}" = protocol=6 | dir=out | app=system |
"{85CC113F-2274-4CE5-9804-488F23F4AC61}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{A770AF3C-56ED-40A8-99DE-A50003CE7471}" = protocol=6 | dir=in | app=c:\program files\icq7.4\icq.exe |
"{AA77608A-500D-48C2-A13E-160394FCCE95}" = dir=in | app=c:\program files\acer\acer vcm\vc.exe |
"{B518A7EC-D71A-4B85-B6EE-008D4F07157E}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C1C8FF8E-09D3-434A-A0E2-0645D258B7BA}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{C76A95D5-3AE5-49D4-B137-AEB9E94636B1}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{C8AF9DC9-36CC-4A1D-ACBD-E0984AD0B15A}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{CDCF3A8A-375C-4BAA-998B-AD5791383362}" = protocol=17 | dir=in | app=c:\program files\deep silver\sacred 2 - fallen angel\system\s2gs.exe |
"{CE3ED87B-0514-46A7-BBEE-75A0628CCCBF}" = protocol=58 | dir=out | name=@iphlpsvc.dll,-203 |
"{D4D99728-ED8B-41F3-8EA4-328A1EFFDDCB}" = protocol=17 | dir=in | app=c:\program files\microsoft games\dungeon siege 2\dungeonsiege2.exe |
"{D914825D-FDA1-4BE0-9607-08888D38E807}" = protocol=17 | dir=in | app=c:\program files\runic games\torchlight\torchlight.exe |
"{D9377E0E-5E30-4639-8EA0-00D2A6E7B082}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E48BF572-A98A-4828-B24B-3B0529BA185E}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{E5E6057A-11F0-4BB7-8404-7C923B653E7D}" = protocol=6 | dir=in | app=c:\program files\deep silver\sacred 2 - fallen angel\system\sacred2.exe |
"{E9ED9DA5-9B3A-4C15-8827-2AF886A64A44}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{ECDFFDFC-2F46-4E65-8DB6-55E96C27DB52}" = protocol=6 | dir=in | app=c:\program files\microsoft games\dungeon siege 2\dungeonsiege2.exe |
"{F3DF1CE9-1025-4091-A08D-E3EA8C5731E4}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"TCP Query User{14F94579-04EA-49F1-8297-79AA7134F704}C:\program files\starcraft ii\versions\base18092\sc2.exe" = protocol=6 | dir=in | app=c:\program files\starcraft ii\versions\base18092\sc2.exe |
"TCP Query User{15629C62-6313-4F4F-9674-5D9A3070E2BD}D:\ut2004\system\ut2004.exe" = protocol=6 | dir=in | app=d:\ut2004\system\ut2004.exe |
"TCP Query User{2774508F-0DC2-4BC0-BF0D-AE5D765F335C}C:\program files\starcraft ii\versions\base17326\sc2.exe" = protocol=6 | dir=in | app=c:\program files\starcraft ii\versions\base17326\sc2.exe |
"TCP Query User{53FC66B8-2416-4A32-B2CF-6DB71AD58323}C:\program files\icq7.0\icq.exe" = protocol=6 | dir=in | app=c:\program files\icq7.0\icq.exe |
"TCP Query User{5D5ADFB7-3427-4DD1-8E92-A38CD11E6B37}C:\users\melkorn\desktop\hry\age of empires 2\empires2.exe" = protocol=6 | dir=in | app=c:\users\melkorn\desktop\hry\age of empires 2\empires2.exe |
"TCP Query User{640F6002-4205-4AE5-B008-D4D33CFDDA88}C:\program files\deep silver\sacred 2 - fallen angel\system\s2gs.exe" = protocol=6 | dir=in | app=c:\program files\deep silver\sacred 2 - fallen angel\system\s2gs.exe |
"TCP Query User{8747D3AD-58B8-4016-AF10-5971E4764134}C:\program files\thq\titan quest\titan quest.exe" = protocol=6 | dir=in | app=c:\program files\thq\titan quest\titan quest.exe |
"TCP Query User{C196837F-5E42-4BFD-8B11-00789521EC04}C:\program files\starcraft ii\versions\base17326\sc2.exe" = protocol=6 | dir=in | app=c:\program files\starcraft ii\versions\base17326\sc2.exe |
"TCP Query User{E312725C-2091-4A3A-BFC8-FA743D0B258F}C:\program files\starcraft ii\versions\base16939\sc2.exe" = protocol=6 | dir=in | app=c:\program files\starcraft ii\versions\base16939\sc2.exe |
"UDP Query User{00BF3239-46C4-4717-83C0-F17C29A74486}C:\program files\thq\titan quest\titan quest.exe" = protocol=17 | dir=in | app=c:\program files\thq\titan quest\titan quest.exe |
"UDP Query User{073B5DE0-F856-403D-B2BF-3F3873B649A9}C:\program files\icq7.0\icq.exe" = protocol=17 | dir=in | app=c:\program files\icq7.0\icq.exe |
"UDP Query User{1515BC82-4083-4711-8B0E-6D4F5DD1046B}C:\program files\deep silver\sacred 2 - fallen angel\system\s2gs.exe" = protocol=17 | dir=in | app=c:\program files\deep silver\sacred 2 - fallen angel\system\s2gs.exe |
"UDP Query User{31E41E57-375F-4AD6-B2BB-B97F8ABD6A91}C:\program files\starcraft ii\versions\base17326\sc2.exe" = protocol=17 | dir=in | app=c:\program files\starcraft ii\versions\base17326\sc2.exe |
"UDP Query User{44313341-E77C-445C-96C7-9CBCBB70F80A}C:\users\melkorn\desktop\hry\age of empires 2\empires2.exe" = protocol=17 | dir=in | app=c:\users\melkorn\desktop\hry\age of empires 2\empires2.exe |
"UDP Query User{47A6E13C-5E24-4860-937F-400BEBDD653D}C:\program files\starcraft ii\versions\base18092\sc2.exe" = protocol=17 | dir=in | app=c:\program files\starcraft ii\versions\base18092\sc2.exe |
"UDP Query User{91B34FC9-5F78-4152-B880-D9DE67AEAC5E}D:\ut2004\system\ut2004.exe" = protocol=17 | dir=in | app=d:\ut2004\system\ut2004.exe |
"UDP Query User{A265B5B5-44BB-4D15-8F08-9B0E8EAF9BB9}C:\program files\starcraft ii\versions\base17326\sc2.exe" = protocol=17 | dir=in | app=c:\program files\starcraft ii\versions\base17326\sc2.exe |
"UDP Query User{D1B96162-E05D-4088-900E-930577B1C8AA}C:\program files\starcraft ii\versions\base16939\sc2.exe" = protocol=17 | dir=in | app=c:\program files\starcraft ii\versions\base16939\sc2.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{02B244A2-7F6A-42E8-A36F-8C385D7A1625}" = Gothic III
"{03D1988F-469F-4843-8E6E-E5FE9D17889D}" = WIDCOMM Bluetooth Software 6.0.1.5000
"{047F790A-7A2A-4B6A-AD02-38092BA63DAC}" = Acer VCM
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{07BE4679-4318-4413-9701-B3D91354F10C}" = Heroes of Might & Magic V: Hammers of Fate
"{1023383E-D9F6-478C-A965-23A4657B3C9A}" = Sacred 2
"{11316260-6666-467B-AC34-183FCB5D4335}" = Acer Mobility Center Plug-In
"{13D85C14-2B85-419F-AC41-C7F21E68B25D}" = Acer eSettings Management
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2158685C-E2B3-4026-B0A1-0FFE31837AFD}" = PlayLinc
"{2413930C-8309-47A6-BC61-5EF27A4222BC}" = NTI Media Maker 8
"{26604C7E-A313-4D12-867F-7C6E7820BE4C}" = JMicron JMB38X Flash Media Controller
"{26921B2E-3E62-47F9-A514-1FC4A83BD738}" = Software Intel(R) PROSet/Wireless WiFi
"{26A24AE4-039D-4CA4-87B4-2F83216023FF}" = Java(TM) 6 Update 26
"{2A697B53-0DE3-42DA-B41D-C3F804B1C538}" = iTunes
"{2DC94AFD-A6E2-4AB4-9132-4A3F8E07B386}" = Apple Application Support
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver
"{3248F0A8-6813-11D6-A77B-00B0D0160010}" = Java(TM) SE Runtime Environment 6 Update 1
"{35CB6715-41F8-4F99-8881-6FC75BF054B0}" = Oblivion
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{40580068-9B10-40B5-9548-536CE88AB23C}" = ITECIR
"{412B69AF-C352-4F6F-A318-B92B3CB9ACC6}" = Titan Quest
"{4991FCCE-1131-4B92-B697-9EC0FCAFDA5B}" = Torchlight
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{567E8236-C414-4888-8211-3D61608D57AE}" = Validity Sensors software
"{57265292-228A-41FA-9AEC-4620CBCC2739}" = Acer eAudio Management
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{58E5844B-7CE2-413D-83D1-99294BF6C74F}" = Acer ePower Management
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{6AC4E434-8126-4840-BBD3-6B1EB78BBFF5}" = Solstice
"{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37}" = ICQ7.4
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{79DD56FC-DB8B-47F5-9C80-78B62E05F9BC}" = Acer ScreenSaver
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = Acer eRecovery Management
"{81B3EF66-BAC7-4C91-B856-3943C0196B4E}" = Duke Nukem - Manhattan Project - 1.0.1 Patch
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{8795CBED-55E2-4693-9F14-84EC446935BE}" = SpeechRedist
"{8829DAD4-8F07-4A96-B995-15498EBB8045}" = Heroes of Might and Magic V
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8F1B6239-FEA0-450A-A950-B05276CE177C}" = Acer Empowering Technology
"{90120000-0016-0405-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Czech) 2007
"{90120000-0016-0405-0000-0000000FF1CE}_HOMESTUDENTR_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0405-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Czech) 2007
"{90120000-0018-0405-0000-0000000FF1CE}_HOMESTUDENTR_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0405-0000-0000000FF1CE}" = Microsoft Office Word MUI (Czech) 2007
"{90120000-001B-0405-0000-0000000FF1CE}_HOMESTUDENTR_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0405-0000-0000000FF1CE}_HOMESTUDENTR_{294B4278-CF7B-40B9-86A1-2D3FF0C2C524}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-001F-041B-0000-0000000FF1CE}_HOMESTUDENTR_{10EC59E5-9BCE-4884-BB1A-E28627220232}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0405-0000-0000000FF1CE}" = Microsoft Office Proofing (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Czech) 2007
"{90120000-006E-0405-0000-0000000FF1CE}_HOMESTUDENTR_{E12F9D31-4025-4BC6-B1B2-AB262C5580B0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0405-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Czech) 2007
"{90120000-00A1-0405-0000-0000000FF1CE}_HOMESTUDENTR_{1FC5BC34-0301-40D2-9432-05BA220277B8}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9FD6F1A8-5550-46AF-8509-271DF0E768B5}" = Dual-Core Optimizer
"{A5633652-3795-4829-BB0B-644F0279E279}" = Acer eDataSecurity Management
"{A563C4F4-BE36-4956-BA0B-E02BDD9F70D5}" = Dungeon Siege 2 Broken World
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-A82000000003}" = Adobe Reader 8.2.0
"{AC76BA86-7AD7-1033-7B44-A83000000003}" = Adobe Reader 8.3.1
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Ovládací panel NVIDIA 260.99
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Ovladače grafiky 260.99
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Systémový software PhysX 260.99
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Ovladač HD audia 1.1.9.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B5C5C17E-FEF6-4062-8151-A427AE8AF9D7}" = Titan Quest Immortal Throne
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{C73B5B3B-F974-48CA-8B91-3E8A432AEA5B}" = Microsoft Works
"{C884B05A-F5D9-4AE4-9D84-E6BD9F6E7890}" = FlatOut2
"{CACAEB5F-174D-4C7C-AC56-A33289A807CA}" = Apple Mobile Device Support
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = CyberLink PowerDirector
"{CE111B5C-27F5-B74D-C15A-CAFDD2E21837}" = Reg (DOFUS Audio Subsystem)
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE386A4E-D0DA-4208-8235-BCE43275C694}" = LightScribe 1.4.142.1
"{DD73CA82-EA82-38AA-863D-9A24A018DC96}" = Microsoft .NET Framework 3.5 Language Pack SP1 - csy
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F41D7749-D973-42E7-BD80-64309766C39E}" = Dungeon Lords
"{FA02ACAC-9E14-4878-A257-92A22A647C2C}" = LG USB Modem Drivers
"{FDB3B167-F4FA-461D-976F-286304A57B2A}" = Adobe AIR
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Acer Acer Bio Protection 6.0.00.15" = Acer Bio Protection

AAV 6.0.00.15
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Agere Systems Soft Modem" = Agere Systems HDA Modem
"AVerMedia A310 (MiniCard, DVB-T)" = AVerMedia A310 (MiniCard, DVB-T) 1.1.0.29
"Carmageddon II Carpocalypse Now" = Carmageddon II Carpocalypse Now
"CCleaner" = CCleaner
"DAEMON Tools Lite" = DAEMON Tools Lite
"Diablo II" = Diablo II
"DivX Setup.divx.com" = DivX Setup
"DungeonSiege2" = Dungeon Siege 2
"Fallout2" = Fallout2
"Google Chrome" = Google Chrome
"GridVista" = Acer GridVista
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}" = NTI Media Maker 8
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = CyberLink PowerDirector
"LManager" = Launch Manager
"Microsoft .NET Framework 3.5 Language Pack SP1 - csy" = Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile CSY Language Pack" = Microsoft .NET Framework 4 Client Profile CSY Language Pack
"NIS" = Norton Internet Security
"NSS" = Norton Security Scan
"OpenAL" = OpenAL
"ProInst" = Intel PROSet Wireless
"Quick Zip_is1" = Quick Zip 4.60.019
"RegTesting.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1" = Reg (DOFUS Audio Subsystem)
"RTPatch_is1" = RTPatch Update
"Shockwave" = Shockwave
"SLABCOMM&10C4&EA60" = Silicon Laboratories CP210x USB to UART Bridge (Driver Removal)
"ST6UNST #1" = Hero Editor V0.90
"StarCraft II" = StarCraft II
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"SystemRequirementsLab" = System Requirements Lab
"The KMPlayer" = The KMPlayer (remove only)
"UT2004" = Unreal Tournament 2004
"WinRAR archiver" = WinRAR
"ZC DivX to DVD Creator_is1" = ZC DivX to DVD Creator 6.5.5

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1053579048-2754583314-3036659907-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

========== Last 10 Event Log Errors ==========

Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!

< End of report >

Lord Seth · #8 Příspěvek od **Lord Seth** » 24 říj 2011 16:54

a tento log je myslim z toho posledního skenu, kamárád odjel a dodělával sken doma

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s
/md5start
scecli.dll
autochk.exe
csrss.exe
explorer.exe
lsass.exe
services.exe
smss.exe
spoolsv.exe
svchost.exe
userinit.exe
winlogon.exe
atapi.sys
cdrom.sys
ndis.sys
ntfs.sys
tcpip.sys
%SystemDrive%\PhysicalMBR.bin
/md5stop
C:\windows\system32\spool\prtprocs|dll;true;true;true /FP
%systemroot%\system32\drivers\*.sys /5
%systemroot%\system32\drivers\*.sys /X
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\system32\*.* /5
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\config\*.sav
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\*.* /U /s
%systemroot%\*. /mp /s
%ALLUSERSPROFILE%\Data Aplikací\*.*
%ALLUSERSPROFILE%\Data Aplikací\*.exe /s
%ALLUSERSPROFILE%\Dáta aplikácií\*.*
%ALLUSERSPROFILE%\Dáta aplikácií\*.exe /s
%APPDATA%\*.
%APPDATA%\*.*
%APPDATA%\*.exe /s
%SYSTEMDRIVE%\*.exe
*crack* /s
*keygen* /s
*loader* /s
*nocd* /s
*activator* /s
*AutoKMS* /s
*minodlogin* /s
*tnod* /s
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU /s
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs
reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c
reg query "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager" /v BootExecute /c
reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager" /v "PendingFileRenameOperations" /c
type c:\boot.ini >> test.txt /c
%SystemDrive%\PhysicalMBR.bin /md5

#9 Příspěvek od **Mc_Murphy** » 24 říj 2011 17:22

To poslední není log, ale můj vstupní log pro OTL, ale nevadí.

Znovu spusť OTL.

Pokud používáš Win Vista či Win7, klikni na OTL pravým myšítkem a dej Run As Administrator či Spustit jako správce.
Pokud používáš 64bitový OS, zkontroluj, zda-li je zaškrtnutý čtvereček Pro 64 bitové OS. Pokud ne, zaškrtni jej.
Do spodního okénka Vlastní skenování/opravy vlož tento skript:

Kód: Vybrat vše

:OTL
IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-21-1053579048-2754583314-3036659907-1000\..\URLSearchHook: - No CLSID value found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll File not found
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\18.6.0.29\coieplg.dll (Symantec Corporation)
O3 - HKU\S-1-5-21-1053579048-2754583314-3036659907-1000\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll File not found
O3 - HKU\S-1-5-21-1053579048-2754583314-3036659907-1000\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\18.6.0.29\coieplg.dll (Symantec Corporation)
O13 - gopher Prefix: missing
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - File not found
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL File not found
@Alternate Data Stream - 133 bytes -> C:\ProgramData\Temp:9F683177

:Reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"DivXUpdate"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1"=-
"VistaSp2"=-

:Files
%windir%\*.tmp /s
%windir%\system32\SET*.tmp /s
%windir%\system32\*.tmp.dll /s

:Commands
[emptytemp]
[emptyflash]
[resethosts]
[purity]
[clearallrestorepoints]

Klikni na tlačítko [Opravit].
Po dokončení skenu se objeví log, ten mi sem vlož.
Pokud se log nevejde do jednoho příspěvku, rozděl jej na více částí.

Jak je na tom počítač?

Lord Seth · #10 Příspěvek od **Lord Seth** » 04 led 2012 13:51

k danému počítači již nemám přístup, ale po poslední kontrole bylo vše v pořádku,

děkuji za pomoc

#11 Příspěvek od **Mc_Murphy** » 04 led 2012 13:59

OK. Ještě bylo potřeba drobně dočistit, tak pokud se k tomu ještě někdy dostaneš, nebo můžeš přeposlat informace, tak aplikuj...

Spusť znovu OTL a klikni na tlačítko [CleanUp!], čímž po sobě program uklidí.

TFC http://oldtimer.geekstogo.com/TFC.exe

Stáhni a spusť.
Klikni na Start a potvrď OK.
Program uklidí a může (nemusí) restartovat PC.
Po použití utilitu smaž.

Pokud nemáš, stáhni CCleaner z tohoto odkazu.

Panel čistič
Vše nech jak je, jen dej Analyzovat a poté Spustit CCleaner.

Panel registry
Klikni na Hledej problémy.
Následně na Opravit problémy - zálohu registrů doporučuji udělat, oprav všechny problémy.
Postup opakuj, dokud nebude bez problémů - většinou cca 3x.

Panel nástroje
Zde můžeš odinstalovat nepotřebné programy.

CCleaner doporučuji používat cca jednou za týden.

... a pokud nejsou žádné dotazy, bylo by to z mé strany vše.

VIRY.CZ

Kontrola logu - pomale pc

Kontrola logu - pomale pc

Re: Kontrola logu - pomale pc

Re: Kontrola logu - pomale pc

Re: Kontrola logu - pomale pc

Re: Kontrola logu - pomale pc

Re: Kontrola logu - pomale pc

Re: Kontrola logu - pomale pc

Re: Kontrola logu - pomale pc

Re: Kontrola logu - pomale pc

Re: Kontrola logu - pomale pc

Re: Kontrola logu - pomale pc