VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Preventivna

https://forum.viry.cz:443/viewtopic.php?t=119934

Stránka 1 z 2

Preventivna

Napsal: 26 úno 2012 15:53
od owen26
Logfile of random's system information tool 1.09 (written by random/random)
Run by Ali at 2012-02-26 15:45:58
Microsoft Windows 7 Ultimate Service Pack 3
System drive C: has 6 GB (13%) free of 43 GB
Total RAM: 3069 MB (62% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:46:54, on 26. 2. 2012
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\wamp\wampmanager.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
D:\Program Files\DAEMON Tools Lite\DTLite.exe
D:\Program Files\Stardock\ObjectDock\ObjectDock.exe
C:\Users\Ali\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Ali\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\rundll32.exe
C:\Users\Ali\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
C:\Program Files\ICQ7.7\ICQ.exe
C:\Users\Ali\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Ali\Desktop\RSIT.exe
C:\Program Files\trend micro\Ali.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/skins/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - D:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: LinkAirBrowserHelper HistoryTriggerBHO - {21A88CB9-84D2-4020-A2D1-B25A21034884} - D:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\LinkAirBrowserHelper.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - D:\Program Files\TRANSLAT\WebIE.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - D:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - D:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - D:\Program Files\TRANSLAT\WebIE.dll
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [localhost] "C:\wamp\wampmanager.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - Startup: Stardock ObjectDock.lnk = D:\Program Files\Stardock\ObjectDock\ObjectDock.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://D:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Previesť cieľ odkazu do formátu Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Previesť do Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Prevziať pomocou FDM - file://D:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Prevziať video pomocou FDM - file://D:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Prevziať vybrané pomocou FDM - file://D:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Prevziať všetko pomocou FDM - file://D:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Pridať cieľ odkazu do existujúceho súboru PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Pridať do existujúceho súboru PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Se&nd to OneNote - res:///105
O9 - Extra button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe
O9 - Extra button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - D:\Program Files\TRANSLAT\WebIE.dll
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - D:\Program Files\TRANSLAT\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastaviť prekladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - D:\Program Files\TRANSLAT\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - D:\Program Files\TRANSLAT\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - D:\Program Files\TRANSLAT\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - D:\Program Files\TRANSLAT\WebIE.dll
O9 - Extra 'Tools' menuitem: Preložiť &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - D:\Program Files\TRANSLAT\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - D:\Program Files\TRANSLAT\WebIE.dll
O9 - Extra 'Tools' menuitem: Preložiť &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - D:\Program Files\TRANSLAT\WebIE.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{87576F4C-2082-45FC-B80E-0DEB21CC9ADA}: NameServer = 192.168.1.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\system32\guard32.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Company - C:\Windows\system32\Hpservice.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Aktivátor Správce výběru OS Acronis (Správce výběru OS) - Unknown owner - D:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.17\bin\httpd.exe
O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.5.8\bin\mysqld.exe

--
End of file - 9905 bytes

======Scheduled tasks folder======

C:\Windows\tasks\AutoKMS.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2791954077-2039642415-460783259-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2791954077-2039642415-460783259-1000UA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Ali\AppData\Roaming\Mozilla\Firefox\Profiles\lhd8j68j.default

prefs.js - "browser.search.suggest.enabled" - false
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://localhost/"
prefs.js - "extensions.enabledItems" - "{b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.4, {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}:6.0.14, {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15, {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}:6.0.17, {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}:6.0.19, {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20, {01A8CA0A-4C96-465b-A49B-65C46FAD54F9}:6.0, {003D3EDC-99B9-4a34-9C20-60CB94F7E829}:2010.21, {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21, vshare@toolbar:1.0.0, {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {75CEEE46-9B64-46f8-94BF-54012DE155F0}:0.4.6, {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23, plugin@gameplaylabs.com:1.0, {c8f71e5b-88f8-42a7-98bb-e4c506161de9}:0.4, chromifox@altmusictv.com:3.6.5, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.15"
prefs.js - "keyword.URL" - "http://www.google.com/search?q="

"{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}"=D:\Program Files\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=D:\Program Files\Magic Video Converter\codec\real\browser\plugins\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69]
"Description"=6.0.12.69
"Path"=D:\Program Files\Magic Video Converter\codec\real\browser\plugins\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

D:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

D:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nppl3260.xpt
nsIQTScriptablePlugin.xpt
nsJSRealPlayerPlugin.xpt

D:\Program Files\Mozilla Firefox\plugins\
libdivx.dll
np-mswmp.dll
np32dsw.dll
npContribute.dll
npdeployJava1.dll
npdivx32.dll
npdivx32.xpt
npDivxPlayerPlugin.dll
nppdf32.dll
nppl3260.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
nprpjplug.dll
nsIDivxPlayerPlugin.xpt
QuickTimePlugin.class
ShockwavePlugin.class
ssldivx.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

D:\Program Files\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml

C:\Users\Ali\AppData\Roaming\Mozilla\Firefox\Profiles\lhd8j68j.default\extensions\
plugin2@gameplaylabs.com
plugin@gameplaylabs.com
{003D3EDC-99B9-4a34-9C20-60CB94F7E829}
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}

C:\Users\Ali\AppData\Roaming\Mozilla\Firefox\Profiles\lhd8j68j.default\searchplugins\
icqplugin.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{074C1DC5-9320-4A9A-947D-C042949C6216}]
ContributeBHO Class - D:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll [2010-03-27 164312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-06-06 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{21A88CB9-84D2-4020-A2D1-B25A21034884}]
HistoryTriggerBHO Class - D:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\LinkAirBrowserHelper.dll [2011-01-31 35688]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - D:\Program Files\TRANSLAT\WebIE.dll [2010-07-10 503808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
FDMIECookiesBHO Class - D:\Program Files\Free Download Manager\iefdm2.dll [2008-12-30 98304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-10-18 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - Contribute Toolbar - D:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll [2010-03-27 164312]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - D:\Program Files\TRANSLAT\WebIE.dll [2010-07-10 503808]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-08-28 1557800]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [2011-12-21 6676808]
"localhost"=C:\wamp\wampmanager.exe [2010-12-31 1169920]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2011-11-01 59240]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-06-06 937920]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=D:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"AdobeBridge"= []
"OEXPRESS"= []
"LG LinkAir"= []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
D:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2008-06-11 640376]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Acrobat Speed Launcher]
D:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [2008-06-12 37232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager]
C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
D:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe /automount []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\B2C_AGENT]
C:\ProgramData\LGMOBILEAX\B2C_Client\B2CNotiAgent.exe [2011-01-13 395192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CloneCDTray]
D:\Program Files\SlySoft\CloneCD\CloneCDTray.exe [2009-01-29 57344]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Ali\AppData\Local\Google\Update\GoogleUpdate.exe [2009-12-25 135664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpqSRMon]
C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
C:\Program Files\ICQ7.7\ICQ.exe [2012-01-25 127040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2012-01-16 421736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OrderReminder]
C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2011-10-24 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2009-09-20 270336]

C:\Users\Ali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Stardock ObjectDock.lnk - D:\Program Files\Stardock\ObjectDock\ObjectDock.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" C:\Windows\system32\guard32.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
"NoDriveTypeAutoRun"=0x91000000

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"D:\Program Files\FlashFXP\FlashFXP.exe"="D:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"D:\Program Files\FlashFXP\FlashFXP.exe"="D:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3"

Re: Preventivna

Napsal: 26 úno 2012 15:53
od owen26
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.I420"=sx_cam_i420.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=yv12vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll
"vidc.tscc"=tsccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"vidc.iv50"=ir50_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iv32"=ir32_32.dll
"vidc.iv31"=ir32_32.dll
"msacm.iac2"=C:\Windows\system32\iac25_32.ax

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.txt - open - "D:\Program Files\PSPad editor\PSPad.exe" "%1"

======List of files/folders created in the last 1 month======

2012-02-26 15:45:58 ----D---- C:\rsit
2012-02-26 15:40:44 ----A---- C:\Windows\system32\FNTCACHE.DAT
2012-02-26 15:18:56 ----A---- C:\Windows\system32\fsutil.exe
2012-02-26 15:18:52 ----A---- C:\Windows\system32\drivers\amdxata.sys
2012-02-26 15:18:52 ----A---- C:\Windows\system32\drivers\amdsata.sys
2012-02-26 15:18:51 ----A---- C:\Windows\system32\drivers\nvstor.sys
2012-02-26 15:18:51 ----A---- C:\Windows\system32\drivers\nvraid.sys
2012-02-26 15:18:51 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2012-02-26 15:17:45 ----A---- C:\Windows\system32\tcpmonui.dll
2012-02-26 15:17:44 ----A---- C:\Windows\system32\tcpmib.dll
2012-02-26 15:16:50 ----A---- C:\Windows\system32\drivers\ndisuio.sys
2012-02-26 15:15:56 ----A---- C:\Windows\system32\nshwfp.dll
2012-02-26 15:15:56 ----A---- C:\Windows\system32\IKEEXT.DLL
2012-02-26 15:15:56 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2012-02-26 15:15:55 ----A---- C:\Windows\system32\drivers\wfplwf.sys
2012-02-26 15:15:55 ----A---- C:\Windows\system32\BFE.DLL
2012-02-26 15:13:18 ----A---- C:\Windows\system32\WinSATAPI.dll
2012-02-26 15:12:30 ----A---- C:\Windows\system32\drivers\storport.sys
2012-02-26 15:11:40 ----A---- C:\Windows\system32\win32k.sys
2012-02-26 15:10:51 ----A---- C:\Windows\system32\ntdll.dll
2012-02-26 15:09:18 ----A---- C:\Windows\system32\hal.dll
2012-02-26 15:09:17 ----A---- C:\Windows\system32\halmacpi.dll
2012-02-26 15:09:17 ----A---- C:\Windows\system32\halacpi.dll
2012-02-26 15:08:31 ----A---- C:\Windows\system32\shlwapi.dll
2012-02-26 15:07:45 ----A---- C:\Windows\system32\untfs.dll
2012-02-26 15:06:59 ----A---- C:\Windows\system32\samsrv.dll
2012-02-26 15:06:13 ----A---- C:\Windows\system32\rasdlg.dll
2012-02-26 15:06:13 ----A---- C:\Windows\system32\rasapi32.dll
2012-02-26 15:06:12 ----A---- C:\Windows\system32\rasplap.dll
2012-02-26 15:05:26 ----A---- C:\Windows\system32\ntshrui.dll
2012-02-26 15:03:49 ----A---- C:\Windows\system32\pdhui.dll
2012-02-26 15:03:48 ----A---- C:\Windows\system32\wvc.dll
2012-02-26 15:03:48 ----A---- C:\Windows\system32\wdc.dll
2012-02-26 15:03:03 ----A---- C:\Windows\system32\umpo.dll
2012-02-26 15:02:17 ----A---- C:\Windows\system32\fdWNet.dll
2012-02-26 15:01:32 ----A---- C:\Windows\system32\oleprn.dll
2012-02-26 15:00:48 ----A---- C:\Windows\system32\PrintBrmUi.exe
2012-02-26 15:00:03 ----A---- C:\Windows\system32\zipfldr.dll
2012-02-26 14:58:29 ----A---- C:\Windows\system32\msvcrt.dll
2012-02-26 14:57:44 ----A---- C:\Windows\system32\tzres.dll
2012-02-26 14:56:27 ----A---- C:\Windows\system32\ntkrnlpa.exe
2012-02-26 14:56:26 ----A---- C:\Windows\system32\ntoskrnl.exe
2012-02-26 14:55:42 ----A---- C:\Windows\system32\drivers\IPMIDrv.sys
2012-02-26 14:54:59 ----A---- C:\Windows\system32\quartz.dll
2012-02-26 14:54:59 ----A---- C:\Windows\system32\qdvd.dll
2012-02-26 14:54:12 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2012-02-26 14:53:29 ----A---- C:\Windows\system32\CertEnroll.dll
2012-02-26 14:52:44 ----A---- C:\Windows\system32\drivers\ndis.sys
2012-02-26 14:52:01 ----A---- C:\Windows\system32\nlaapi.dll
2012-02-26 14:52:01 ----A---- C:\Windows\system32\ncsi.dll
2012-02-26 14:52:00 ----A---- C:\Windows\system32\nlasvc.dll
2012-02-26 14:51:18 ----A---- C:\Windows\system32\drivers\rdbss.sys
2012-02-26 14:50:34 ----A---- C:\Windows\system32\drivers\usbhub.sys
2012-02-26 14:50:34 ----A---- C:\Windows\system32\drivers\usbd.sys
2012-02-26 14:50:34 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2012-02-26 14:50:33 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2012-02-26 14:50:33 ----A---- C:\Windows\system32\drivers\usbport.sys
2012-02-26 14:50:33 ----A---- C:\Windows\system32\drivers\usbohci.sys
2012-02-26 14:50:33 ----A---- C:\Windows\system32\drivers\usbehci.sys
2012-02-26 14:49:49 ----A---- C:\Windows\system32\csrsrv.dll
2012-02-26 14:48:26 ----A---- C:\Windows\system32\localspl.dll
2012-02-26 14:47:44 ----A---- C:\Windows\system32\Wldap32.dll
2012-02-26 14:47:04 ----A---- C:\Windows\system32\msi.dll
2012-02-26 14:46:22 ----A---- C:\Windows\system32\EncDec.dll
2012-02-26 14:45:40 ----A---- C:\Windows\system32\rpcrt4.dll
2012-02-26 14:44:56 ----A---- C:\Windows\system32\tabcal.exe
2012-02-26 14:44:14 ----A---- C:\Windows\system32\printui.dll
2012-02-26 14:43:34 ----A---- C:\Windows\system32\drivers\kbdhid.sys
2012-02-26 14:42:15 ----A---- C:\Windows\system32\drivers\http.sys
2012-02-26 14:41:35 ----A---- C:\Windows\system32\drivers\modem.sys
2012-02-26 14:40:54 ----A---- C:\Windows\system32\drivers\srv2.sys
2012-02-26 14:40:15 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2012-02-26 14:39:36 ----A---- C:\Windows\system32\winlogon.exe
2012-02-26 14:38:18 ----A---- C:\Windows\system32\msctf.dll
2012-02-26 14:37:39 ----A---- C:\Windows\system32\msftedit.dll
2012-02-26 14:36:59 ----A---- C:\Windows\system32\inetpp.dll
2012-02-26 14:36:19 ----A---- C:\Windows\system32\advapi32.dll
2012-02-26 14:36:18 ----A---- C:\Windows\system32\sechost.dll
2012-02-26 14:35:19 ----A---- C:\Windows\system32\winsta.dll
2012-02-26 14:35:19 ----A---- C:\Windows\system32\lsm.exe
2012-02-26 14:35:18 ----A---- C:\Windows\system32\kernel32.dll
2012-02-26 14:35:17 ----A---- C:\Windows\system32\winsrv.dll
2012-02-26 14:35:17 ----A---- C:\Windows\system32\KernelBase.dll
2012-02-26 14:35:17 ----A---- C:\Windows\system32\conhost.exe
2012-02-26 14:35:13 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-02-26 14:35:13 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-02-26 14:35:13 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-02-26 14:35:13 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2012-02-26 14:35:13 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2012-02-26 14:35:12 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-02-26 14:35:12 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-02-26 14:35:12 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2012-02-26 14:35:12 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-02-26 14:35:12 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2012-02-26 14:35:12 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2012-02-26 14:35:12 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2012-02-26 14:35:11 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2012-02-26 14:35:11 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2012-02-26 14:35:11 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2012-02-26 14:35:11 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2012-02-26 14:35:11 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2012-02-26 14:35:11 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2012-02-26 14:35:11 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2012-02-26 14:35:11 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2012-02-26 14:35:10 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-02-26 14:35:10 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-02-26 14:35:10 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2012-02-26 14:35:10 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-02-26 14:35:10 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2012-02-26 14:35:10 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-02-26 14:35:10 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2012-02-26 14:35:10 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2012-02-26 14:34:24 ----A---- C:\Windows\system32\wwansvc.dll
2012-02-26 14:34:24 ----A---- C:\Windows\system32\wwanprotdim.dll
2012-02-26 14:33:42 ----A---- C:\Windows\system32\vds.exe
2012-02-26 14:33:01 ----A---- C:\Windows\system32\crypt32.dll
2012-02-26 14:31:43 ----A---- C:\Windows\system32\shell32.dll
2012-02-26 14:31:04 ----A---- C:\Windows\system32\msmmsp.dll
2012-02-26 14:31:04 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2012-02-26 14:30:29 ----A---- C:\Windows\system32\drivers\udfs.sys
2012-02-26 14:29:53 ----A---- C:\Windows\system32\wksprt.exe
2012-02-26 14:29:53 ----A---- C:\Windows\system32\tsgqec.dll
2012-02-26 14:29:53 ----A---- C:\Windows\system32\mstscax.dll
2012-02-26 14:29:53 ----A---- C:\Windows\system32\mstsc.exe
2012-02-26 14:29:53 ----A---- C:\Windows\system32\aaclient.dll
2012-02-26 14:29:17 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2012-02-26 14:28:43 ----A---- C:\Windows\system32\racpldlg.dll
2012-02-26 14:28:43 ----A---- C:\Windows\system32\msra.exe
2012-02-26 14:28:09 ----A---- C:\Windows\system32\WebClnt.dll
2012-02-26 14:27:01 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2012-02-26 14:25:13 ----A---- C:\Windows\system32\rdpshell.exe
2012-02-26 14:25:13 ----A---- C:\Windows\system32\rdpinit.exe
2012-02-26 14:24:06 ----A---- C:\Windows\system32\ReAgent.dll
2012-02-26 14:23:31 ----A---- C:\Windows\system32\drivers\pci.sys
2012-02-26 14:23:31 ----A---- C:\Windows\system32\drivers\acpi.sys
2012-02-26 14:22:53 ----A---- C:\Windows\system32\userenv.dll
2012-02-26 14:22:53 ----A---- C:\Windows\system32\profsvc.dll
2012-02-26 14:22:18 ----A---- C:\Windows\system32\drivers\1394ohci.sys
2012-02-26 14:21:44 ----A---- C:\Windows\system32\iasnap.dll
2012-02-26 14:21:11 ----A---- C:\Windows\system32\FntCache.dll
2012-02-26 14:20:03 ----A---- C:\Windows\system32\DWrite.dll
2012-02-26 14:20:03 ----A---- C:\Windows\system32\d2d1.dll
2012-02-26 14:20:02 ----A---- C:\Windows\system32\d3d10warp.dll
2012-02-26 14:20:02 ----A---- C:\Windows\system32\d3d10_1core.dll
2012-02-26 14:20:02 ----A---- C:\Windows\system32\d3d10_1.dll
2012-02-26 14:19:23 ----A---- C:\Windows\system32\drivers\partmgr.sys
2012-02-26 14:19:22 ----A---- C:\Windows\system32\drivers\mpio.sys
2012-02-26 14:18:48 ----A---- C:\Windows\system32\drivers\tunnel.sys
2012-02-26 14:18:16 ----A---- C:\Windows\system32\srvsvc.dll
2012-02-26 14:17:43 ----A---- C:\Windows\system32\netlogon.dll
2012-02-26 14:17:03 ----A---- C:\Windows\system32\sspicli.dll
2012-02-26 14:17:03 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-02-26 14:17:02 ----A---- C:\Windows\system32\sspisrv.dll
2012-02-26 14:17:02 ----A---- C:\Windows\system32\secur32.dll
2012-02-26 14:17:02 ----A---- C:\Windows\system32\lsass.exe
2012-02-26 14:17:02 ----A---- C:\Windows\system32\lsasrv.dll
2012-02-26 14:17:02 ----A---- C:\Windows\system32\drivers\cng.sys
2012-02-26 14:17:01 ----A---- C:\Windows\system32\webio.dll
2012-02-26 14:17:01 ----A---- C:\Windows\system32\schannel.dll
2012-02-26 14:17:01 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2012-02-26 14:16:26 ----A---- C:\Windows\system32\mfc42u.dll
2012-02-26 14:16:26 ----A---- C:\Windows\system32\mfc42.dll
2012-02-26 14:15:54 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2012-02-26 14:15:54 ----A---- C:\Windows\system32\drivers\sffp_mmc.sys
2012-02-26 14:15:54 ----A---- C:\Windows\system32\drivers\sffdisk.sys
2012-02-26 14:15:54 ----A---- C:\Windows\system32\drivers\sdbus.sys
2012-02-26 14:15:21 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2012-02-26 14:15:21 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2012-02-26 14:15:20 ----A---- C:\Windows\system32\cdd.dll
2012-02-26 14:14:48 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2012-02-26 14:14:18 ----A---- C:\Windows\system32\packager.dll
2012-02-26 14:13:47 ----A---- C:\Windows\system32\msdtcprx.dll
2012-02-26 14:13:46 ----A---- C:\Windows\system32\xolehlp.dll
2012-02-26 14:13:46 ----A---- C:\Windows\system32\mtxclu.dll
2012-02-26 14:13:46 ----A---- C:\Windows\system32\msdtctm.dll
2012-02-26 14:13:11 ----A---- C:\Windows\system32\pla.dll
2012-02-26 14:13:11 ----A---- C:\Windows\system32\pdh.dll
2012-02-26 14:12:39 ----A---- C:\Windows\system32\mf.dll
2012-02-26 14:12:07 ----A---- C:\Windows\system32\psisdecd.dll
2012-02-26 14:11:31 ----A---- C:\Windows\system32\drivers\afd.sys
2012-02-26 14:11:01 ----A---- C:\Windows\system32\certcli.dll
2012-02-26 14:10:32 ----A---- C:\Windows\system32\version.dll
2012-02-26 14:10:01 ----A---- C:\Windows\system32\drivers\volmgrx.sys
2012-02-26 14:09:32 ----A---- C:\Windows\system32\basecsp.dll
2012-02-26 14:09:31 ----A---- C:\Windows\system32\scksp.dll
2012-02-26 14:09:03 ----A---- C:\Windows\system32\SessEnv.dll
2012-02-26 14:08:34 ----A---- C:\Windows\system32\msvbvm60.dll
2012-02-26 14:08:04 ----A---- C:\Windows\system32\drivers\fltMgr.sys
2012-02-26 14:06:30 ----A---- C:\Windows\system32\esent.dll
2012-02-26 14:06:00 ----A---- C:\Windows\system32\kerberos.dll
2012-02-26 14:05:30 ----A---- C:\Windows\system32\oleacc.dll
2012-02-26 14:05:29 ----A---- C:\Windows\system32\oleaut32.dll
2012-02-26 14:04:59 ----A---- C:\Windows\system32\regsvc.dll
2012-02-26 14:04:31 ----A---- C:\Windows\system32\xmllite.dll
2012-02-26 14:04:02 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2012-02-26 14:03:04 ----A---- C:\Windows\system32\odbcjt32.dll
2012-02-26 14:03:03 ----A---- C:\Windows\system32\odbccr32.dll
2012-02-26 14:03:02 ----A---- C:\Windows\system32\odbctrac.dll
2012-02-26 14:03:02 ----A---- C:\Windows\system32\odbccp32.dll
2012-02-26 14:03:01 ----A---- C:\Windows\system32\odbccu32.dll
2012-02-26 14:02:25 ----A---- C:\Windows\system32\authui.dll
2012-02-26 14:01:54 ----A---- C:\Windows\system32\iprtrmgr.dll
2012-02-26 14:01:26 ----A---- C:\Windows\system32\drivers\rdyboost.sys
2012-02-26 14:01:25 ----A---- C:\Windows\system32\sysmain.dll
2012-02-26 14:00:54 ----A---- C:\Windows\system32\t2embed.dll
2012-02-26 14:00:54 ----A---- C:\Windows\system32\fontsub.dll
2012-02-26 14:00:54 ----A---- C:\Windows\system32\atmlib.dll
2012-02-26 14:00:54 ----A---- C:\Windows\system32\atmfd.dll
2012-02-26 14:00:25 ----A---- C:\Windows\system32\inetcomm.dll
2012-02-26 13:59:56 ----A---- C:\Windows\system32\tcpipcfg.dll
2012-02-26 13:59:56 ----A---- C:\Windows\system32\netiougc.exe
2012-02-26 13:59:26 ----A---- C:\Windows\system32\drivers\tcpip.sys
2012-02-26 13:59:26 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2012-02-26 13:58:58 ----A---- C:\Windows\system32\umpnpmgr.dll
2012-02-26 13:58:04 ----A---- C:\Windows\system32\rastls.dll
2012-02-26 13:57:38 ----A---- C:\Windows\system32\drivers\dfsc.sys
2012-02-26 13:56:46 ----A---- C:\Windows\system32\BWContextHandler.dll
2012-02-26 13:56:20 ----A---- C:\Windows\system32\Narrator.exe
2012-02-26 13:55:50 ----A---- C:\Windows\system32\tquery.dll
2012-02-26 13:55:50 ----A---- C:\Windows\system32\SearchIndexer.exe
2012-02-26 13:55:50 ----A---- C:\Windows\system32\SearchFilterHost.exe
2012-02-26 13:55:50 ----A---- C:\Windows\system32\mssph.dll
2012-02-26 13:55:50 ----A---- C:\Windows\system32\msscntrs.dll
2012-02-26 13:55:49 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2012-02-26 13:55:49 ----A---- C:\Windows\system32\mssvp.dll
2012-02-26 13:55:49 ----A---- C:\Windows\system32\mssrch.dll
2012-02-26 13:55:49 ----A---- C:\Windows\system32\mssphtb.dll
2012-02-26 13:54:44 ----A---- C:\Windows\system32\wevtsvc.dll
2012-02-26 13:54:19 ----A---- C:\Windows\system32\cryptdll.dll
2012-02-26 13:53:25 ----A---- C:\Windows\system32\colbact.dll
2012-02-26 13:53:25 ----A---- C:\Windows\system32\clbcatq.dll
2012-02-26 13:53:25 ----A---- C:\Windows\system32\catsrv.dll
2012-02-26 13:52:57 ----A---- C:\Windows\system32\ole32.dll
2012-02-26 13:52:09 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2012-02-26 13:51:44 ----A---- C:\Windows\system32\appmgmts.dll
2012-02-26 13:51:20 ----A---- C:\Windows\system32\gpprnext.dll
2012-02-26 13:50:26 ----A---- C:\Windows\system32\tscfgwmi.dll
2012-02-26 13:50:02 ----A---- C:\Windows\system32\drivers\srvnet.sys
2012-02-26 13:50:02 ----A---- C:\Windows\system32\drivers\srv.sys
2012-02-26 13:49:32 ----A---- C:\Windows\system32\FXSCOMEX.dll
2012-02-26 13:49:06 ----A---- C:\Windows\system32\netiohlp.dll
2012-02-26 13:48:31 ----A---- C:\Windows\system32\drivers\bthport.sys
2012-02-26 13:48:30 ----A---- C:\Windows\system32\drivers\BTHUSB.SYS
2012-02-26 13:48:06 ----A---- C:\Windows\system32\spoolsv.exe
2012-02-26 13:47:20 ----A---- C:\Windows\system32\drivers\appid.sys
2012-02-26 13:47:20 ----A---- C:\Windows\system32\appidsvc.dll
2012-02-26 13:47:20 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2012-02-26 13:46:45 ----A---- C:\Windows\system32\drivers\ntfs.sys
2012-02-26 13:46:24 ----A---- C:\Windows\system32\mfreadwrite.dll
2012-02-26 13:45:59 ----A---- C:\Windows\system32\logman.exe
2012-02-26 13:45:31 ----A---- C:\Windows\system32\rdpcore.dll
2012-02-26 13:45:30 ----A---- C:\Windows\system32\rdpsign.exe
2012-02-26 13:45:29 ----A---- C:\Windows\system32\tspubwmi.dll
2012-02-26 13:44:36 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2012-02-26 13:44:12 ----A---- C:\Windows\system32\drivers\usbrpm.sys
2012-02-26 13:43:47 ----A---- C:\Windows\system32\XpsPrint.dll
2012-02-26 13:43:23 ----A---- C:\Windows\system32\WinSCard.dll
2012-02-26 13:43:03 ----A---- C:\Windows\system32\drivers\usbvideo.sys
2012-02-26 13:42:40 ----A---- C:\Windows\system32\pnrpsvc.dll
2012-02-26 13:42:40 ----A---- C:\Windows\system32\p2pnetsh.dll
2012-02-26 13:42:40 ----A---- C:\Windows\system32\P2P.dll
2012-02-26 13:42:39 ----A---- C:\Windows\system32\P2PGraph.dll
2012-02-26 13:42:39 ----A---- C:\Windows\system32\p2pcollab.dll
2012-02-26 13:42:38 ----A---- C:\Windows\system32\p2psvc.dll
2012-02-26 13:42:07 ----A---- C:\Windows\system32\wincredprovider.dll
2012-02-26 13:42:07 ----A---- C:\Windows\system32\dpapiprovider.dll
2012-02-26 13:42:07 ----A---- C:\Windows\system32\dimsjob.dll
2012-02-26 13:42:07 ----A---- C:\Windows\system32\cngprovider.dll
2012-02-26 13:42:06 ----A---- C:\Windows\system32\dimsroam.dll
2012-02-26 13:42:06 ----A---- C:\Windows\system32\capiprovider.dll
2012-02-26 13:42:06 ----A---- C:\Windows\system32\adprovider.dll
2012-02-26 13:41:40 ----A---- C:\Windows\system32\dnsrslvr.dll
2012-02-26 13:41:40 ----A---- C:\Windows\system32\dnscacheugc.exe
2012-02-26 13:41:40 ----A---- C:\Windows\system32\dnsapi.dll
2012-02-26 13:41:16 ----A---- C:\Windows\system32\msmpeg2vdec.dll
2012-02-26 13:40:29 ----A---- C:\Windows\system32\wisptis.exe
2012-02-26 13:40:29 ----A---- C:\Windows\system32\TabSvc.dll
2012-02-26 13:40:04 ----A---- C:\Windows\system32\drivers\wanarp.sys
2012-02-26 13:40:04 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2012-02-26 13:39:31 ----A---- C:\Windows\system32\winresume.exe
2012-02-26 13:39:31 ----A---- C:\Windows\system32\winload.exe
2012-02-26 13:38:54 ----A---- C:\Windows\system32\sethc.exe
2012-02-26 13:38:34 ----A---- C:\Windows\explorer.exe
2012-02-26 13:37:50 ----A---- C:\Windows\system32\msxml3.dll
2012-02-26 13:37:29 ----A---- C:\Windows\system32\WsmAuto.dll
2012-02-26 13:37:29 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2012-02-26 13:37:28 ----A---- C:\Windows\system32\WsmWmiPl.dll
2012-02-26 13:37:28 ----A---- C:\Windows\system32\WsmSvc.dll
2012-02-26 13:37:28 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2012-02-26 13:37:06 ----A---- C:\Windows\system32\wbengine.exe
2012-02-26 13:36:43 ----A---- C:\Windows\system32\drivers\bowser.sys
2012-02-26 13:36:20 ----A---- C:\Windows\system32\svchost.exe
2012-02-26 13:36:01 ----A---- C:\Windows\system32\drivers\hidbth.sys
2012-02-26 13:35:43 ----A---- C:\Windows\system32\AxInstSv.dll
2012-02-26 13:35:19 ----A---- C:\Windows\system32\ncrypt.dll
2012-02-26 13:35:03 ----A---- C:\Windows\system32\prevhost.exe
2012-02-26 13:34:28 ----A---- C:\Windows\system32\dtsh.dll
2012-02-26 13:34:11 ----A---- C:\Windows\system32\ifsutil.dll
2012-02-26 13:33:53 ----A---- C:\Windows\system32\powrprof.dll
2012-02-26 13:33:25 ----A---- C:\Windows\system32\KBDINEN.DLL
2012-02-26 13:33:25 ----A---- C:\Windows\system32\KBDINDEV.DLL
2012-02-26 13:33:24 ----A---- C:\Windows\system32\KBDINTAM.DLL
2012-02-26 13:33:24 ----A---- C:\Windows\system32\KBDINPUN.DLL
2012-02-26 13:33:24 ----A---- C:\Windows\system32\KBDINORI.DLL
2012-02-26 13:33:24 ----A---- C:\Windows\system32\KBDINGUJ.DLL
2012-02-26 13:33:24 ----A---- C:\Windows\system32\KBDINBEN.DLL
2012-02-26 13:33:23 ----A---- C:\Windows\system32\KBDINTEL.DLL
2012-02-26 13:33:23 ----A---- C:\Windows\system32\KBDINMAL.DLL
2012-02-26 13:33:23 ----A---- C:\Windows\system32\KBDINKAN.DLL
2012-02-26 13:33:23 ----A---- C:\Windows\system32\KBDINASA.DLL
2012-02-26 13:33:22 ----A---- C:\Windows\system32\KBDINMAR.DLL
2012-02-26 13:33:22 ----A---- C:\Windows\system32\KBDINHIN.DLL
2012-02-26 13:33:22 ----A---- C:\Windows\system32\KBDINBE2.DLL
2012-02-26 13:33:22 ----A---- C:\Windows\system32\KBDINBE1.DLL
2012-02-26 13:33:21 ----A---- C:\Windows\system32\usp10.dll
2012-02-26 13:32:36 ----A---- C:\Windows\system32\drivers\vwifimp.sys
2012-02-26 13:32:36 ----A---- C:\Windows\system32\drivers\vwififlt.sys
2012-02-26 13:32:19 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2012-02-26 13:32:03 ----A---- C:\Windows\system32\ftp.exe
2012-02-26 13:31:47 ----A---- C:\Windows\system32\drivers\raspppoe.sys
2012-02-26 13:31:12 ----A---- C:\Windows\system32\networkmap.dll
2012-02-26 13:31:11 ----A---- C:\Windows\system32\networkitemfactory.dll
2012-02-26 13:30:55 ----A---- C:\Windows\system32\clusapi.dll
2012-02-26 13:30:38 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2012-02-26 13:30:22 ----A---- C:\Windows\system32\win32spl.dll
2012-02-26 13:30:06 ----A---- C:\Windows\system32\w32time.dll
2012-02-26 13:29:20 ----A---- C:\Windows\system32\dot3svc.dll
2012-02-26 13:29:20 ----A---- C:\Windows\system32\dot3msm.dll
2012-02-26 13:29:20 ----A---- C:\Windows\system32\dot3dlg.dll
2012-02-26 13:29:20 ----A---- C:\Windows\system32\dot3api.dll
2012-02-26 13:29:05 ----A---- C:\Windows\system32\FXSCOVER.exe
2012-02-26 13:28:30 ----A---- C:\Windows\system32\FXSXP32.dll
2012-02-26 13:28:16 ----A---- C:\Windows\system32\fdBth.dll
2012-02-26 13:28:00 ----A---- C:\Windows\system32\certutil.exe
2012-02-26 13:27:32 ----A---- C:\Windows\system32\dot3gpclnt.dll
2012-02-26 13:27:16 ----A---- C:\Windows\system32\msasn1.dll
2012-02-26 13:27:02 ----A---- C:\Windows\system32\xpsrchvw.exe
2012-02-26 13:26:47 ----A---- C:\Windows\system32\CPFilters.dll
2012-02-26 13:26:46 ----A---- C:\Windows\system32\sbe.dll
2012-02-26 13:26:26 ----A---- C:\Windows\system32\termsrv.dll
2012-02-26 13:26:11 ----A---- C:\Windows\system32\auditcse.dll
2012-02-26 13:25:56 ----A---- C:\Windows\system32\wlaninst.dll
2012-02-26 13:25:56 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2012-02-26 13:25:39 ----A---- C:\Windows\system32\webservices.dll
2012-02-26 13:25:13 ----A---- C:\Windows\system32\netevent.dll
2012-02-26 13:24:29 ----A---- C:\Windows\system32\dui70.dll
2012-02-26 13:24:28 ----A---- C:\Windows\system32\UIAutomationCore.dll
2012-02-26 13:24:28 ----A---- C:\Windows\system32\ExplorerFrame.dll
2012-02-26 13:24:28 ----A---- C:\Windows\system32\actxprxy.dll
2012-02-26 13:24:11 ----A---- C:\Windows\system32\glu32.dll
2012-02-26 13:24:00 ----A---- C:\Windows\system32\twext.dll
2012-02-26 13:23:48 ----A---- C:\Windows\system32\drivers\bridge.sys
2012-02-26 13:23:35 ----A---- C:\Windows\system32\stobject.dll
2012-02-26 13:23:25 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2012-02-26 13:23:11 ----A---- C:\Windows\system32\drivers\msdsm.sys
2012-02-26 13:22:57 ----A---- C:\Windows\system32\dhcpcore.dll
2012-02-26 13:22:44 ----A---- C:\Windows\system32\spp.dll
2012-02-26 13:22:33 ----A---- C:\Windows\system32\AzSqlExt.dll
2012-02-26 13:22:33 ----A---- C:\Windows\system32\azroles.dll
2012-02-26 13:22:21 ----A---- C:\Windows\system32\fvewiz.dll
2012-02-26 13:22:21 ----A---- C:\Windows\system32\fvecpl.dll
2012-02-26 13:22:20 ----A---- C:\Windows\system32\fveapibase.dll
2012-02-26 13:22:20 ----A---- C:\Windows\system32\fveapi.dll
2012-02-26 13:22:09 ----A---- C:\Windows\system32\davclnt.dll
2012-02-26 13:21:58 ----A---- C:\Windows\system32\drivers\rdpdr.sys
2012-02-26 13:21:46 ----A---- C:\Windows\system32\SCardSvr.dll
2012-02-26 13:21:46 ----A---- C:\Windows\system32\drivers\scfilter.sys
2012-02-26 13:21:36 ----A---- C:\Windows\system32\evr.dll
2012-02-26 13:21:24 ----A---- C:\Windows\system32\shsvcs.dll
2012-02-26 13:21:11 ----A---- C:\Windows\system32\wsecedit.dll
2012-02-26 13:21:10 ----A---- C:\Windows\system32\scesrv.dll
2012-02-26 13:21:00 ----A---- C:\Windows\system32\rpcss.dll
2012-02-26 13:20:37 ----A---- C:\Windows\system32\drivers\msiscsi.sys
2012-02-26 13:20:28 ----A---- C:\Windows\system32\WSDMon.dll
2012-02-26 13:20:11 ----A---- C:\Windows\system32\mshtmled.dll
2012-02-26 13:20:11 ----A---- C:\Windows\system32\mshtml.dll
2012-02-26 13:20:08 ----A---- C:\Windows\system32\iertutil.dll
2012-02-26 13:20:07 ----A---- C:\Windows\system32\url.dll
2012-02-26 13:20:07 ----A---- C:\Windows\system32\jscript9.dll
2012-02-26 13:20:06 ----A---- C:\Windows\system32\jscript.dll
2012-02-26 13:19:31 ----A---- C:\Windows\system32\wininet.dll
2012-02-26 13:19:31 ----A---- C:\Windows\system32\jsproxy.dll
2012-02-26 13:19:31 ----A---- C:\Windows\system32\ieui.dll
2012-02-26 13:19:31 ----A---- C:\Windows\system32\ieframe.dll
2012-02-26 13:19:30 ----A---- C:\Windows\system32\urlmon.dll
2012-02-26 11:51:51 ----D---- C:\Windows\Profiles
2012-02-13 20:54:33 ----D---- C:\sendmail

======List of files/folders modified in the last 1 month======

2012-02-26 15:46:19 ----D---- C:\Windows\inf
2012-02-26 15:46:19 ----AD---- C:\Windows\System32
2012-02-26 15:46:19 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-02-26 15:46:04 ----D---- C:\Program Files\trend micro
2012-02-26 15:44:31 ----D---- C:\Users\Ali\AppData\Roaming\ICQ
2012-02-26 15:44:10 ----SD---- C:\Users\Ali\AppData\Roaming\Microsoft
2012-02-26 15:44:10 ----D---- C:\Users\Ali\AppData\Roaming\Adobe
2012-02-26 15:42:45 ----D---- C:\Windows\Tasks
2012-02-26 15:42:31 ----D---- C:\Windows\Prefetch
2012-02-26 15:42:03 ----D---- C:\Windows\Temp
2012-02-26 15:41:31 ----D---- C:\Windows
2012-02-26 15:41:31 ----A---- C:\Windows\KMSEmulator.exe
2012-02-26 15:39:57 ----D---- C:\Windows\system32\config
2012-02-26 15:39:30 ----D---- C:\Windows\debug
2012-02-26 15:35:16 ----D---- C:\Windows\SoftwareDistribution
2012-02-26 15:34:39 ----D---- C:\Users\Ali\AppData\Roaming\Winamp
2012-02-26 15:33:40 ----RSD---- C:\Windows\assembly
2012-02-26 15:33:40 ----D---- C:\Windows\Microsoft.NET
2012-02-26 15:30:58 ----D---- C:\Windows\winsxs
2012-02-26 15:25:44 ----D---- C:\Windows\system32\sk-SK
2012-02-26 15:25:44 ----D---- C:\Windows\system32\en-US
2012-02-26 15:25:44 ----D---- C:\Windows\system32\drivers
2012-02-26 15:25:42 ----D---- C:\Windows\system32\Setup
2012-02-26 15:25:40 ----D---- C:\Program Files\Windows Photo Viewer
2012-02-26 15:25:39 ----D---- C:\Windows\system32\migration
2012-02-26 15:25:39 ----D---- C:\Windows\ehome
2012-02-26 15:25:39 ----D---- C:\Program Files\Common Files\System
2012-02-26 15:25:38 ----D---- C:\Windows\system32\wbem
2012-02-26 15:25:26 ----RSD---- C:\Windows\Fonts
2012-02-26 15:25:22 ----D---- C:\Windows\system32\Boot
2012-02-26 15:25:18 ----D---- C:\Windows\AppPatch
2012-02-26 15:25:18 ----D---- C:\Program Files\Windows Journal
2012-02-26 15:25:17 ----D---- C:\Windows\system32\drivers\en-US
2012-02-26 15:25:13 ----D---- C:\Program Files\Internet Explorer
2012-02-26 15:25:09 ----D---- C:\Windows\system32\DriverStore
2012-02-26 15:22:50 ----D---- C:\Program Files\Hamachi
2012-02-26 15:22:50 ----D---- C:\Config.Msi
2012-02-26 15:22:13 ----D---- C:\Windows\system32\catroot
2012-02-26 15:18:41 ----D---- C:\Windows\system32\catroot2
2012-02-26 13:27:28 ----SHD---- C:\System Volume Information
2012-02-26 12:39:14 ----RD---- C:\Program Files
2012-02-26 12:35:06 ----SHD---- C:\Windows\Installer
2012-02-26 12:34:44 ----D---- C:\Program Files\Common Files\Adobe
2012-02-26 12:34:38 ----D---- C:\Program Files\Adobe
2012-02-26 12:33:48 ----D---- C:\ProgramData\Adobe
2012-02-26 12:19:58 ----D---- C:\Program Files\Recuva
2012-02-26 12:15:45 ----AD---- C:\ProgramData\TEMP
2012-02-26 12:06:54 ----D---- C:\ProgramData
2012-02-26 12:06:54 ----D---- C:\Program Files\Common Files\Nikon
2012-02-26 12:06:54 ----D---- C:\Program Files\Common Files
2012-02-26 11:51:21 ----D---- C:\Program Files\HP
2012-02-26 11:49:08 ----D---- C:\Program Files\Hewlett-Packard
2012-02-26 11:47:08 ----HD---- C:\Program Files\InstallShield Installation Information
2012-02-26 11:44:09 ----D---- C:\Program Files\Common Files\microsoft shared
2012-02-26 11:43:32 ----D---- C:\Program Files\Common Files\InstallShield
2012-02-26 11:42:16 ----D---- C:\Program Files\Common Files\Apple
2012-02-26 11:39:07 ----D---- C:\Users\Ali\AppData\Roaming\Media Player Classic
2012-02-26 11:39:07 ----D---- C:\Users\Ali\AppData\Roaming\DAEMON Tools Lite
2012-02-26 11:38:46 ----D---- C:\Windows\system32\LogFiles
2012-02-26 11:35:18 ----D---- C:\Program Files\CCleaner
2012-02-25 14:12:50 ----D---- C:\Users\Ali\AppData\Roaming\Skype
2012-02-25 13:59:36 ----D---- C:\Users\Ali\AppData\Roaming\skypePM
2012-02-20 11:16:19 ----A---- C:\Windows\NeroDigital.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdxata;amdxata; C:\Windows\system32\DRIVERS\amdxata.sys [2012-02-26 22400]
R0 CLFS;@%SystemRoot%\system32\clfs.sys,-100; C:\Windows\System32\CLFS.sys [2009-07-14 249408]
R0 CNG;CNG; C:\Windows\System32\Drivers\cng.sys [2012-02-26 369352]
R0 FileInfo;@%SystemRoot%\system32\drivers\fileinfo.sys,-100; C:\Windows\system32\drivers\fileinfo.sys [2009-07-14 58448]
R0 fvevol;@%SystemRoot%\system32\drivers\fvevol.sys,-100; C:\Windows\System32\DRIVERS\fvevol.sys [2009-07-14 194488]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 25656]
R0 hwpolicy;@%systemroot%\system32\drivers\hwpolicy.sys,-101; C:\Windows\System32\drivers\hwpolicy.sys [2009-07-14 13904]
R0 KSecPkg;KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [2012-02-26 134000]
R0 msahci;msahci; C:\Windows\system32\DRIVERS\msahci.sys [2010-08-10 27528]
R0 msisadrv;msisadrv; C:\Windows\system32\DRIVERS\msisadrv.sys [2009-07-14 13888]
R0 pcw;Performance Counters for Windows Driver; C:\Windows\System32\drivers\pcw.sys [2009-07-14 43088]
R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2009-07-09 45200]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2012-02-26 173440]
R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS\snapman.sys [2011-11-11 170080]
R0 spldr;Security Processor Loader Driver; C:\Windows\system32\drivers\spldr.sys [2009-07-14 17472]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2009-11-18 691696]
R0 storflt;@%SystemRoot%\system32\vmstorfltres.dll,-1000; C:\Windows\system32\DRIVERS\vmstorfl.sys [2009-07-14 40896]
R0 vdrvroot;Microsoft Virtual Drive Enumerator Driver; C:\Windows\system32\DRIVERS\vdrvroot.sys [2009-07-14 32832]
R0 volmgr;Volume Manager Driver; C:\Windows\system32\DRIVERS\volmgr.sys [2009-07-14 53312]
R0 volmgrx;@%SystemRoot%\system32\drivers\volmgrx.sys,-100; C:\Windows\System32\drivers\volmgrx.sys [2012-02-26 296832]
R0 Wdf01000;Kernel Mode Driver Frameworks service; C:\Windows\system32\drivers\Wdf01000.sys [2009-07-14 445008]
R0 WfpLwf;WFP Lightweight Filter; C:\Windows\system32\DRIVERS\wfplwf.sys [2012-02-26 16752]
R1 blbdrive;blbdrive; C:\Windows\system32\DRIVERS\blbdrive.sys [2009-07-14 35328]
R1 cmderd;COMODO Internet Security Eradication Driver; C:\Windows\System32\DRIVERS\cmderd.sys [2011-12-19 19600]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\System32\DRIVERS\cmdguard.sys [2012-01-17 491816]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2011-12-19 39640]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-06-12 387584]
R1 DfsC;@%systemroot%\system32\drivers\dfsc.sys,-101; C:\Windows\System32\Drivers\dfsc.sys [2012-02-26 78336]
R1 discache;@%systemroot%\system32\drivers\discache.sys,-102; C:\Windows\System32\drivers\discache.sys [2009-07-14 32256]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2009-02-17 24232]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2011-12-19 82400]
R1 nsiproxy;@%SystemRoot%\system32\drivers\nsiproxy.sys,-2; C:\Windows\system32\drivers\nsiproxy.sys [2009-07-14 16896]
R1 RDPENCDD;@%systemroot%\system32\drivers\RDPENCDD.sys,-101; C:\Windows\system32\drivers\rdpencdd.sys [2009-07-14 6656]
R1 RDPREFMP;@%systemroot%\system32\drivers\RdpRefMp.sys,-101; C:\Windows\system32\drivers\rdprefmp.sys [2009-07-14 7168]
R1 tdx;@%SystemRoot%\system32\tcpipcfg.dll,-50004; C:\Windows\system32\DRIVERS\tdx.sys [2010-05-13 74240]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2012-02-26 48640]
R1 Wanarpv6;@%systemroot%\system32\rascfg.dll,-32012; C:\Windows\system32\DRIVERS\wanarp.sys [2012-02-26 63488]
R2 lltdio;Link-Layer Topology Discovery Mapper I/O Driver; C:\Windows\system32\DRIVERS\lltdio.sys [2009-07-14 48128]
R2 luafv;@%systemroot%\system32\drivers\luafv.sys,-100; C:\Windows\system32\drivers\luafv.sys [2009-07-14 86528]
R2 PEAUTH;PEAUTH; C:\Windows\system32\drivers\peauth.sys [2009-07-14 586752]
R2 rspndr;Link-Layer Topology Discovery Responder; C:\Windows\system32\DRIVERS\rspndr.sys [2009-07-14 60928]
R2 tcpipreg;TCP/IP Registry Compatibility; C:\Windows\System32\drivers\tcpipreg.sys [2009-07-14 34816]
R3 1394ohci;1394 OHCI Compliant Host Controller; C:\Windows\system32\DRIVERS\1394ohci.sys [2012-02-26 164864]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 35896]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2009-07-13 1131008]
R3 bowser;@%systemroot%\system32\browser.dll,-102; C:\Windows\system32\DRIVERS\bowser.sys [2012-02-26 69632]
R3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
R3 BTHMODEM;Bluetooth Modem Communications Driver; C:\Windows\system32\DRIVERS\bthmodem.sys [2009-07-14 56320]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2012-02-26 60416]
R3 CompositeBus;Composite Bus Enumerator Driver; C:\Windows\system32\DRIVERS\CompositeBus.sys [2010-06-16 31232]
R3 DXGKrnl;LDDM Graphics Subsystem; C:\Windows\System32\drivers\dxgkrnl.sys [2012-02-26 729456]
R3 ElbyCDFL;ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [2007-02-16 34760]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2009-07-14 304128]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\Windows\system32\DRIVERS\HDAudBus.sys [2009-07-14 108544]
R3 HidUsb;Microsoft HID Class Driver; C:\Windows\system32\DRIVERS\hidusb.sys [2009-07-14 24064]
R3 intelppm;Intel Processor Driver; C:\Windows\system32\DRIVERS\intelppm.sys [2009-07-14 53760]
R3 LgBttPort;LGE Bluetooth TransPort; C:\Windows\system32\DRIVERS\lgbtport.sys [2009-09-29 12160]
R3 lgbusenum;LG Bluetooth Bus Enumerator; C:\Windows\system32\DRIVERS\lgbtbus.sys [2009-09-29 10496]
R3 LGVMODEM;LGE Virtual Modem; C:\Windows\system32\DRIVERS\lgvmodem.sys [2009-09-29 12928]
R3 monitor;Microsoft Monitor Class Function Driver Service; C:\Windows\system32\DRIVERS\monitor.sys [2009-07-14 23552]
R3 mouhid;Mouse HID Driver; C:\Windows\system32\DRIVERS\mouhid.sys [2009-07-14 26112]
R3 mpsdrv;@%SystemRoot%\system32\FirewallAPI.dll,-23092; C:\Windows\System32\drivers\mpsdrv.sys [2009-07-14 60416]
R3 mrxsmb10;@%systemroot%\system32\wkssvc.dll,-1004; C:\Windows\system32\DRIVERS\mrxsmb10.sys [2012-02-26 223232]
R3 mrxsmb20;@%systemroot%\system32\wkssvc.dll,-1006; C:\Windows\system32\DRIVERS\mrxsmb20.sys [2012-02-26 97280]
R3 NativeWifiP;NativeWiFi Filter; C:\Windows\system32\DRIVERS\nwifi.sys [2009-07-14 267264]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2010-01-28 68200]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2010-04-02 11610856]
R3 RasAgileVpn;WAN Miniport (IKEv2); C:\Windows\system32\DRIVERS\AgileVpn.sys [2009-07-14 49152]
R3 RasSstp;@%systemroot%\system32\sstpsvc.dll,-202; C:\Windows\system32\DRIVERS\rassstp.sys [2009-07-14 75264]
R3 rdpbus;Remote Desktop Device Redirector Bus Driver; C:\Windows\system32\DRIVERS\rdpbus.sys [2009-07-14 18944]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2012-02-26 86016]
R3 srv2;@%systemroot%\system32\srvsvc.dll,-104; C:\Windows\System32\DRIVERS\srv2.sys [2012-02-26 312320]
R3 srvnet;srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [2012-02-26 114688]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-08-28 228784]
R3 tunnel;Microsoft Tunnel Miniport Adapter Driver; C:\Windows\system32\DRIVERS\tunnel.sys [2012-02-26 108544]
R3 umbus;UMBus Enumerator Driver; C:\Windows\system32\DRIVERS\umbus.sys [2009-07-21 39936]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\Windows\system32\DRIVERS\usbccgp.sys [2012-02-26 76288]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\Windows\system32\DRIVERS\usbuhci.sys [2012-02-26 24064]
R3 usbvideo;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2012-02-26 146560]
R3 vwifibus;Virtual WiFi Bus Driver; C:\Windows\system32\DRIVERS\vwifibus.sys [2009-07-14 19968]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2012-02-26 14336]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2009-07-14 11264]
R3 WudfPf;User Mode Driver Frameworks Platform Driver; C:\Windows\system32\drivers\WudfPf.sys [2009-07-14 92672]
S2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys []
S3 AcpiPmi;ACPI Power Meter Driver; C:\Windows\system32\DRIVERS\acpipmi.sys [2009-07-14 9728]
S3 adp94xx;adp94xx; C:\Windows\system32\DRIVERS\adp94xx.sys [2009-07-14 422976]
S3 adpahci;adpahci; C:\Windows\system32\DRIVERS\adpahci.sys [2009-07-14 297552]
S3 adpu320;adpu320; C:\Windows\system32\DRIVERS\adpu320.sys [2009-07-14 146512]
S3 agp440;Intel AGP Bus Filter; C:\Windows\system32\DRIVERS\agp440.sys [2009-07-14 53312]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 amdide;amdide; C:\Windows\system32\DRIVERS\amdide.sys [2009-07-14 14912]
S3 AmdK8;AMD K8 Processor Driver; C:\Windows\system32\DRIVERS\amdk8.sys [2009-07-14 55296]
S3 AmdPPM;AMD Processor Driver; C:\Windows\system32\DRIVERS\amdppm.sys [2009-07-14 52736]
S3 amdsata;amdsata; C:\Windows\system32\DRIVERS\amdsata.sys [2012-02-26 80256]
S3 amdsbs;amdsbs; C:\Windows\system32\DRIVERS\amdsbs.sys [2009-07-14 159312]
S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; C:\Windows\system32\drivers\appid.sys [2012-02-26 50176]
S3 arc;arc; C:\Windows\system32\DRIVERS\arc.sys [2009-07-14 76368]
S3 arcsas;arcsas; C:\Windows\system32\DRIVERS\arcsas.sys [2009-07-14 86608]
S3 AVEO;AVEO USB2.0 PC Camera; C:\Windows\system32\DRIVERS\AVEOdcnt.sys []
S3 b06bdrv;Broadcom NetXtreme II VBD; C:\Windows\system32\DRIVERS\bxvbdx.sys [2009-07-13 430080]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BrFiltLo;Brother USB Mass-Storage Lower Filter Driver; C:\Windows\system32\DRIVERS\BrFiltLo.sys [2009-07-13 13568]
S3 BrFiltUp;Brother USB Mass-Storage Upper Filter Driver; C:\Windows\system32\DRIVERS\BrFiltUp.sys [2009-07-13 5248]
S3 Brserid;Brother MFC Serial Port Interface Driver (WDM); C:\Windows\System32\Drivers\Brserid.sys [2009-07-14 272128]
S3 BrSerWdm;Brother WDM Serial driver; C:\Windows\System32\Drivers\BrSerWdm.sys [2009-07-13 62336]
S3 BrUsbMdm;Brother MFC USB Fax Only Modem; C:\Windows\System32\Drivers\BrUsbMdm.sys [2009-07-13 12160]
S3 BrUsbSer;Brother MFC USB Serial WDM Driver; C:\Windows\System32\Drivers\BrUsbSer.sys [2009-07-13 11904]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-02-26 393216]
S3 catchme;catchme; \??\C:\Users\Ali\AppData\Local\Temp\catchme.sys []
S3 circlass;Consumer IR Devices; C:\Windows\system32\DRIVERS\circlass.sys [2009-07-14 37888]
S3 cpuz130;cpuz130; \??\C:\Users\Ali\AppData\Local\Temp\cpuz130\cpuz_x32.sys []
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 131072]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-09-14 16384]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 36864]
S3 ebdrv;Broadcom NetXtreme II 10 GigE VBD; C:\Windows\system32\DRIVERS\evbdx.sys [2009-07-13 3100160]
S3 elxstor;elxstor; C:\Windows\system32\DRIVERS\elxstor.sys [2009-07-14 453712]
S3 ENTECH;ENTECH; \??\C:\Windows\system32\DRIVERS\ENTECH.sys [2007-08-20 27672]
S3 epmntdrv;epmntdrv; \??\C:\Windows\system32\epmntdrv.sys [2011-07-29 14216]
S3 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\DRIVERS\errdev.sys [2009-07-14 7168]
S3 EuGdiDrv;EuGdiDrv; \??\C:\Windows\system32\EuGdiDrv.sys [2011-07-29 8456]
S3 exfat;exFAT File System Driver; C:\Windows\system32\drivers\exfat.sys [2009-07-14 142336]
S3 Filetrace;@%SystemRoot%\system32\drivers\filetrace.sys,-10001; C:\Windows\system32\drivers\filetrace.sys [2009-07-14 28160]
S3 FlashUSB;FlashUSB; C:\Windows\system32\DRIVERS\FlashUSB.sys [2010-05-12 16896]
S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; C:\Windows\System32\drivers\FsDepends.sys [2009-07-14 46160]
S3 gagp30kx;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms; C:\Windows\system32\DRIVERS\gagp30kx.sys [2009-07-14 57936]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2010-12-03 25280]
S3 hcw85cir;Hauppauge Consumer Infrared Receiver; C:\Windows\system32\drivers\hcw85cir.sys [2009-07-13 26624]
S3 HidBatt;HID UPS Battery Driver; C:\Windows\system32\DRIVERS\HidBatt.sys [2009-07-14 21504]
S3 HidBth;Microsoft Bluetooth HID Miniport; C:\Windows\system32\DRIVERS\hidbth.sys [2012-02-26 91136]
S3 HidIr;Microsoft Infrared HID Driver; C:\Windows\system32\DRIVERS\hidir.sys [2009-07-14 37888]
S3 HpSAMD;HpSAMD; C:\Windows\system32\DRIVERS\HpSAMD.sys [2009-07-14 67152]
S3 iaStorV;Intel RAID Controller Windows 7; C:\Windows\system32\DRIVERS\iaStorV.sys [2012-02-26 332160]
S3 iirsp;iirsp; C:\Windows\system32\DRIVERS\iirsp.sys [2009-07-14 41040]
S3 IPMIDRV;IPMIDRV; C:\Windows\system32\DRIVERS\IPMIDrv.sys [2012-02-26 65536]
S3 iScsiPrt;iScsiPort Driver; C:\Windows\system32\DRIVERS\msiscsi.sys [2012-02-26 233840]
S3 kbdhid;Keyboard HID Driver; C:\Windows\system32\DRIVERS\kbdhid.sys [2012-02-26 28160]
S3 LSI_FC;LSI_FC; C:\Windows\system32\DRIVERS\lsi_fc.sys [2009-07-14 95824]
S3 LSI_SAS;LSI_SAS; C:\Windows\system32\DRIVERS\lsi_sas.sys [2009-07-14 89168]
S3 LSI_SAS2;LSI_SAS2; C:\Windows\system32\DRIVERS\lsi_sas2.sys [2009-07-14 54864]
S3 LSI_SCSI;LSI_SCSI; C:\Windows\system32\DRIVERS\lsi_scsi.sys [2009-07-14 96848]
S3 megasas;megasas; C:\Windows\system32\DRIVERS\megasas.sys [2009-07-14 30800]
S3 MegaSR;MegaSR; C:\Windows\system32\DRIVERS\MegaSR.sys [2009-07-14 235584]
S3 mpio;Microsoft Multi-Path Bus Driver; C:\Windows\system32\DRIVERS\mpio.sys [2012-02-26 132464]
S3 msdsm;Microsoft Multi-Path Device Specific Module; C:\Windows\system32\DRIVERS\msdsm.sys [2012-02-26 116096]
S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; C:\Windows\System32\drivers\mshidkmdf.sys [2009-07-14 4096]
S3 MsRPC;MsRPC; C:\Windows\system32\drivers\MsRPC.sys [2009-07-14 162896]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2009-07-14 6144]
S3 MTConfig;Microsoft Input Configuration Driver; C:\Windows\system32\DRIVERS\MTConfig.sys [2009-07-14 12288]
S3 NdisCap;NDIS Capture LightWeight Filter; C:\Windows\system32\DRIVERS\ndiscap.sys [2009-07-14 27136]
S3 nfrd960;nfrd960; C:\Windows\system32\DRIVERS\nfrd960.sys [2009-07-14 44624]
S3 nv_agp;NVIDIA nForce AGP Bus Filter; C:\Windows\system32\DRIVERS\nv_agp.sys [2009-07-14 105024]
S3 nvraid;nvraid; C:\Windows\system32\DRIVERS\nvraid.sys [2012-02-26 117120]
S3 nvstor;nvstor; C:\Windows\system32\DRIVERS\nvstor.sys [2012-02-26 143744]
S3 ohci1394;1394 OHCI Compliant Host Controller (Legacy); C:\Windows\system32\DRIVERS\ohci1394.sys [2009-07-14 62464]
S3 ql2300;ql2300; C:\Windows\system32\DRIVERS\ql2300.sys [2009-07-14 1383488]
S3 ql40xx;ql40xx; C:\Windows\system32\DRIVERS\ql40xx.sys [2009-07-14 106064]
S3 QWAVEdrv;@%SystemRoot%\system32\drivers\qwavedrv.sys,-1; C:\Windows\system32\drivers\qwavedrv.sys [2009-07-14 31744]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sbp2port;SBP-2 Transport/Protocol Bus Driver; C:\Windows\system32\DRIVERS\sbp2port.sys [2010-07-08 85384]
S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; C:\Windows\System32\DRIVERS\scfilter.sys [2012-02-26 26624]
S3 sermouse;Serial Mouse Driver; C:\Windows\system32\DRIVERS\sermouse.sys [2009-07-14 19968]
S3 sffdisk;SFF Storage Class Driver; C:\Windows\system32\DRIVERS\sffdisk.sys [2012-02-26 11264]
S3 sffp_mmc;SFF Storage Protocol Driver for MMC; C:\Windows\system32\DRIVERS\sffp_mmc.sys [2012-02-26 12288]
S3 sffp_sd;SFF Storage Protocol Driver for SDBus; C:\Windows\system32\DRIVERS\sffp_sd.sys [2012-02-26 12800]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 SiSRaid2;SiSRaid2; C:\Windows\system32\DRIVERS\SiSRaid2.sys [2009-07-14 40016]
S3 SiSRaid4;SiSRaid4; C:\Windows\system32\DRIVERS\sisraid4.sys [2009-07-14 77888]
S3 Smb;@%SystemRoot%\system32\tcpipcfg.dll,-50005; C:\Windows\system32\DRIVERS\smb.sys [2009-07-14 71168]
S3 stexstor;stexstor; C:\Windows\system32\DRIVERS\stexstor.sys [2009-07-14 21072]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 TCPIP6;Microsoft IPv6 Protocol Driver; C:\Windows\system32\DRIVERS\tcpip.sys [2012-02-26 1302384]
S3 tssecsrv;@%SystemRoot%\System32\DRIVERS\tssecsrv.sys,-101; C:\Windows\System32\DRIVERS\tssecsrv.sys [2009-07-14 30208]
S3 uagp35;Microsoft AGPv3.5 Filter; C:\Windows\system32\DRIVERS\uagp35.sys [2009-07-14 55888]
S3 uliagpkx;Uli AGP Bus Filter; C:\Windows\system32\DRIVERS\uliagpkx.sys [2009-07-14 57424]
S3 UmPass;Microsoft UMPass Driver; C:\Windows\system32\DRIVERS\umpass.sys [2009-07-14 8192]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2011-05-10 42496]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgusbbus.sys []
S3 usbcir;eHome Infrared Receiver (USBCIR); C:\Windows\system32\DRIVERS\usbcir.sys [2009-07-14 86016]
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgusbdiag.sys []
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgusbmodem.sys []
S3 usbprint;Microsoft USB PRINTER Class; C:\Windows\system32\DRIVERS\usbprint.sys [2009-07-14 19968]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 USBSTOR;USB Mass Storage Driver; C:\Windows\system32\DRIVERS\USBSTOR.SYS [2012-02-26 75776]
S3 vga;vga; C:\Windows\system32\DRIVERS\vgapnp.sys [2009-07-14 26112]
S3 vhdmp;vhdmp; C:\Windows\system32\DRIVERS\vhdmp.sys [2012-02-26 160112]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S3 vsmraid;vsmraid; C:\Windows\system32\DRIVERS\vsmraid.sys [2009-07-14 141904]
S3 WacomPen;Wacom Serial Pen HID Driver; C:\Windows\system32\DRIVERS\wacompen.sys [2009-07-14 21632]
S3 Wd;Wd; C:\Windows\system32\DRIVERS\wd.sys [2009-07-14 19024]
S3 WIMMount;WIMMount; C:\Windows\system32\drivers\wimmount.sys [2009-07-14 19008]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2009-07-14 132224]
S4 crcdisk;Crcdisk Filter Driver; C:\Windows\system32\DRIVERS\crcdisk.sys [2009-07-14 22096]
S4 ws2ifsl;@%systemroot%\System32\drivers\ws2ifsl.sys,-1000; C:\Windows\system32\drivers\ws2ifsl.sys [2009-07-14 16384]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
R2 AudioEndpointBuilder;@%SystemRoot%\system32\audiosrv.dll,-204; C:\Windows\System32\svchost.exe [2012-02-26 21504]
R2 BFE;@%SystemRoot%\system32\bfe.dll,-1001; C:\Windows\system32\svchost.exe [2012-02-26 21504]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2011-12-19 1960584]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2012-02-26 21504]
R2 DPS;@%systemroot%\system32\dps.dll,-500; C:\Windows\System32\svchost.exe [2012-02-26 21504]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2012-02-26 21504]
R2 gpsvc;@gpapi.dll,-112; C:\Windows\system32\svchost.exe [2012-02-26 21504]
R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2012-02-26 21504]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 26168]
R2 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; C:\Windows\system32\svchost.exe [2012-02-26 21504]
R2 iphlpsvc;@%SystemRoot%\system32\iphlpsvc.dll,-500; C:\Windows\System32\svchost.exe [2012-02-26 21504]
R2 MpsSvc;@%SystemRoot%\system32\FirewallAPI.dll,-23090; C:\Windows\system32\svchost.exe [2012-02-26 21504]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2012-02-26 21504]
R2 NlaSvc;@%SystemRoot%\System32\nlasvc.dll,-1; C:\Windows\System32\svchost.exe [2012-02-26 21504]
R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; C:\Windows\system32\svchost.exe [2012-02-26 21504]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-04-02 129640]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2012-02-26 21504]
R2 Power;@%SystemRoot%\system32\umpo.dll,-100; C:\Windows\system32\svchost.exe [2012-02-26 21504]
R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; C:\Windows\system32\svchost.exe [2012-02-26 21504]
R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; C:\Windows\system32\svchost.exe [2012-02-26 21504]
R2 Správce výběru OS;Aktivátor Správce výběru OS Acronis; D:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe [2010-07-07 2156952]
R2 SysMain;@%SystemRoot%\system32\sysmain.dll,-1000; C:\Windows\system32\svchost.exe [2012-02-26 21504]
R2 UxSms;@%SystemRoot%\system32\dwm.exe,-2000; C:\Windows\System32\svchost.exe [2012-02-26 21504]
R2 Wlansvc;@%SystemRoot%\System32\wlansvc.dll,-257; C:\Windows\system32\svchost.exe [2012-02-26 21504]
R2 WMPNetworkSvc;@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101; C:\Program Files\Windows Media Player\wmpnetwk.exe [2009-07-14 1121280]
R2 WSearch;@%systemroot%\system32\SearchIndexer.exe,-103; C:\Windows\system32\SearchIndexer.exe [2012-02-26 428032]
R2 wudfsvc;@%SystemRoot%\system32\wudfsvc.dll,-1000; C:\Windows\system32\svchost.exe [2012-02-26 21504]
R3 AeLookupSvc;@%SystemRoot%\system32\aelupsvc.dll,-1; C:\Windows\system32\svchost.exe [2012-02-26 21504]
R3 bthserv;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2012-02-26 21504]
R3 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; C:\Windows\system32\svchost.exe [2012-02-26 21504]
R3 FDResPub;@%systemroot%\system32\fdrespub.dll,-100; C:\Windows\system32\svchost.exe [2012-02-26 21504]
R3 HomeGroupListener;@%SystemRoot%\System32\ListSvc.dll,-100; C:\Windows\System32\svchost.exe [2012-02-26 21504]
R3 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; C:\Windows\System32\svchost.exe [2012-02-26 21504]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2012-02-26 21504]
R3 KeyIso;@keyiso.dll,-100; C:\Windows\system32\lsass.exe [2012-02-26 22528]
R3 netprofm;@%SystemRoot%\system32\netprofm.dll,-202; C:\Windows\System32\svchost.exe [2012-02-26 21504]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 p2pimsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8004; C:\Windows\System32\svchost.exe [2012-02-26 21504]
R3 p2psvc;@%SystemRoot%\system32\p2psvc.dll,-8006; C:\Windows\System32\svchost.exe [2012-02-26 21504]
R3 PcaSvc;@%SystemRoot%\system32\pcasvc.dll,-1; C:\Windows\system32\svchost.exe [2012-02-26 21504]
R3 PNRPsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8000; C:\Windows\System32\svchost.exe [2012-02-26 21504]
R3 wampapache;wampapache; c:\wamp\bin\apache\apache2.2.17\bin\httpd.exe [2010-12-31 20549]
R3 wampmysqld;wampmysqld; c:\wamp\bin\mysql\mysql5.5.8\bin\mysqld.exe [2010-12-31 8133120]
R3 wcncsvc;@%SystemRoot%\system32\wcncsvc.dll,-3; C:\Windows\System32\svchost.exe [2012-02-26 21504]
R3 WdiServiceHost;@%systemroot%\system32\wdi.dll,-502; C:\Windows\System32\svchost.exe [2012-02-26 21504]
R3 WdiSystemHost;@%systemroot%\system32\wdi.dll,-500; C:\Windows\System32\svchost.exe [2012-02-26 21504]
R3 WinHttpAutoProxySvc;@%SystemRoot%\system32\winhttp.dll,-100; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-03-18 136176]
S2 MMCSS;@%systemroot%\system32\mmcss.dll,-100; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; C:\Windows\system32\sppsvc.exe [2010-07-09 3179520]
S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S3 BDESVC;@%SystemRoot%\system32\bdesvc.dll,-100; C:\Windows\System32\svchost.exe [2012-02-26 21504]
S3 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S3 EFS;@%SystemRoot%\system32\efssvc.dll,-100; C:\Windows\System32\lsass.exe [2012-02-26 22528]
S3 ehRecvr;@%SystemRoot%\ehome\ehrecvr.exe,-101; C:\Windows\ehome\ehRecvr.exe [2009-09-25 557568]
S3 ehSched;@%SystemRoot%\ehome\ehsched.exe,-101; C:\Windows\ehome\ehsched.exe [2009-07-14 94720]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2010-06-23 522752]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-05-10 655624]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2009-06-10 42856]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-03-18 136176]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;@%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8193; C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2009-06-10 878416]
S3 IPBusEnum;@%systemroot%\system32\IPBusEnum.dll,-102; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2012-01-16 821608]
S3 KtmRm;@comres.dll,-2946; C:\Windows\System32\svchost.exe [2012-02-26 21504]
S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; C:\Windows\System32\svchost.exe [2012-02-26 21504]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 MSiSCSI;@%SystemRoot%\system32\iscsidsc.dll,-5000; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2012-02-26 21504]
S3 pla;@%systemroot%\system32\pla.dll,-500; C:\Windows\System32\svchost.exe [2012-02-26 21504]
S3 PNRPAutoReg;@%SystemRoot%\system32\pnrpauto.dll,-8002; C:\Windows\System32\svchost.exe [2012-02-26 21504]
S3 QWAVE;@%SystemRoot%\system32\qwave.dll,-1; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S3 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S3 SDRSVC;@%SystemRoot%\system32\sdrsvc.dll,-107; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S3 SensrSvc;@%SystemRoot%\System32\sensrsvc.dll,-1000; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S3 SessionEnv;@%SystemRoot%\System32\SessEnv.dll,-1026; C:\Windows\System32\svchost.exe [2012-02-26 21504]
S3 SNMPTRAP;@%SystemRoot%\system32\snmptrap.exe,-3; C:\Windows\System32\snmptrap.exe [2009-07-14 12800]
S3 sppuinotify;@%SystemRoot%\system32\sppuinotify.dll,-103; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S3 SstpSvc;@%SystemRoot%\system32\sstpsvc.dll,-200; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 TabletInputService;@%SystemRoot%\system32\TabSvc.dll,-100; C:\Windows\System32\svchost.exe [2012-02-26 21504]
S3 TBS;@%SystemRoot%\system32\tbssvc.dll,-100; C:\Windows\System32\svchost.exe [2012-02-26 21504]
S3 THREADORDER;@%systemroot%\system32\mmcss.dll,-102; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S3 TrustedInstaller;@%SystemRoot%\servicing\TrustedInstaller.exe,-100; C:\Windows\servicing\TrustedInstaller.exe [2009-07-14 204800]
S3 UI0Detect;@%SystemRoot%\system32\ui0detect.exe,-101; C:\Windows\system32\UI0Detect.exe [2009-07-14 35840]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2012-02-26 21504]
S3 VaultSvc;@%SystemRoot%\system32\vaultsvc.dll,-1003; C:\Windows\system32\lsass.exe [2012-02-26 22528]
S3 vds;@%SystemRoot%\system32\vds.exe,-100; C:\Windows\System32\vds.exe [2012-02-26 453120]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2012-02-26 1203712]
S3 WbioSrvc;@%systemroot%\system32\wbiosrvc.dll,-100; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S3 WcsPlugInService;@%SystemRoot%\system32\WcsPlugInService.dll,-200; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S3 Wecsvc;@%SystemRoot%\system32\wecsvc.dll,-200; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S3 wercplsupport;@%SystemRoot%\System32\wercplsupport.dll,-101; C:\Windows\System32\svchost.exe [2012-02-26 21504]
S3 WerSvc;@%SystemRoot%\System32\wersvc.dll,-100; C:\Windows\System32\svchost.exe [2012-02-26 21504]
S3 WinDefend;@%ProgramFiles%\Windows Defender\MsMpRes.dll,-103; C:\Windows\System32\svchost.exe [2012-02-26 21504]
S3 WinRM;@%Systemroot%\system32\wsmsvc.dll,-101; C:\Windows\System32\svchost.exe [2012-02-26 21504]
S3 WPCSvc;@%SystemRoot%\system32\wpcsvc.dll,-100; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S3 WPDBusEnum;@%SystemRoot%\system32\wpdbusenum.dll,-100; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S3 WwanSvc;@%SystemRoot%\System32\wwansvc.dll,-257; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S4 clr_optimization_v2.0.50727_32;Microsoft .NET Framework NGEN v2.0.50727_X86; C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2009-06-10 66384]
S4 Mcx2Svc;@%SystemRoot%\ehome\ehres.dll,-15501; C:\Windows\system32\svchost.exe [2012-02-26 21504]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpPortSharing;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8201; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Re: Preventivna

Napsal: 26 úno 2012 21:55
od vyosek
Zdravim a pekny vecer preji :)

:arrow: Stahnete na plochu CKScanner
  • Spustte a kliknete na Search for files
  • Po dokonceni skenu kliknete na Save List to File a nasledne OK
  • Na plose se Vam vytvori log s nazvem ckfiles.txt, jeho obsah mi sem vlozte

Re: Preventivna

Napsal: 27 úno 2012 09:10
od owen26
pekny den,
dakujem za odpoved :)


CKScanner - Additional Security Risks - These are not necessarily bad
c:\program files\common files\adobe\adobe contribute cs5\app\configuration\browsers\mozilla run time libraries\dist\idl\nsikeygenthread.idl
c:\program files\common files\adobe\adobe contribute cs5\app\configuration\browsers\mozilla run time libraries\dist\include\nsikeygenthread.h
hosts 127.0.0.1 activate.adobe.com
hosts 127.0.0.1 practivate.adobe.com
hosts 127.0.0.1 ereg.adobe.com
hosts 127.0.0.1 activate.wip3.adobe.com
hosts 127.0.0.1 wip3.adobe.com
hosts 127.0.0.1 3dns-3.adobe.com
hosts 127.0.0.1 3dns-2.adobe.com
hosts 127.0.0.1 adobe-dns.adobe.com
hosts 127.0.0.1 adobe-dns-2.adobe.com
hosts 127.0.0.1 adobe-dns-3.adobe.com
hosts 127.0.0.1 ereg.wip3.adobe.com
hosts 127.0.0.1 activate-sea.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip60.adobe.com
hosts 127.0.0.1 activate-sjc0.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip60.adobe.com
hosts 127.0.0.1 adobe.activate.com
hosts 127.0.0.1 wwis-dubc1-vip60.adobe.com
hosts 127.0.0.1 hl2rcv.adobe.com
hosts 127.0.0.1 3dns-1.adobe.com
hosts 127.0.0.1 3dns-2.adobe.com
hosts 127.0.0.1 3dns-3.adobe.com
hosts 127.0.0.1 3dns-4.adobe.com
hosts 127.0.0.1 activate.adobe.com
hosts 127.0.0.1 activate-sea.adobe.com
hosts 127.0.0.1 activate-sjc0.adobe.com
hosts 127.0.0.1 activate.wip.adobe.com
hosts 127.0.0.1 activate.wip1.adobe.com
hosts 127.0.0.1 activate.wip2.adobe.com
hosts 127.0.0.1 activate.wip3.adobe.com
hosts 127.0.0.1 activate.wip4.adobe.com
hosts 127.0.0.1 adobe-dns.adobe.com
hosts 127.0.0.1 adobe-dns-1.adobe.com
hosts 127.0.0.1 adobe-dns-2.adobe.com
hosts 127.0.0.1 adobe-dns-3.adobe.com
hosts 127.0.0.1 adobe-dns-4.adobe.com
hosts 127.0.0.1 ereg.adobe.com
hosts 127.0.0.1 ereg.wip.adobe.com
hosts 127.0.0.1 ereg.wip1.adobe.com
hosts 127.0.0.1 ereg.wip2.adobe.com
hosts 127.0.0.1 ereg.wip3.adobe.com
hosts 127.0.0.1 ereg.wip4.adobe.com
hosts 127.0.0.1 hl2rcv.adobe.com
hosts 127.0.0.1 http://www.wip.adobe.com
hosts 127.0.0.1 http://www.wip1.adobe.com
hosts 127.0.0.1 http://www.wip2.adobe.com
hosts 127.0.0.1 http://www.wip3.adobe.com
hosts 127.0.0.1 http://www.wip4.adobe.com
hosts 127.0.0.1 practivate.adobe.com
hosts 127.0.0.1 t3dns.adobe.com
hosts 127.0.0.1 wip.adobe.com
hosts 127.0.0.1 wip1.adobe.com
hosts 127.0.0.1 wip2.adobe.com
hosts 127.0.0.1 wip3.adobe.com
hosts 127.0.0.1 wip4.adobe.com
hosts 127.0.0.1 wwis-dubc1-vip60.adobe.com
scanner sequence 3.ZZ.11.PIAPXL
----- EOF -----

to v hosts som zakázal ja aby mi nechodiili aktualizácie

Re: Preventivna

Napsal: 27 úno 2012 09:41
od vyosek
owen26 píše:to v hosts som zakázal ja aby mi nechodiili aktualizácie
A proc nechcete mit aktualizovane produkty? resi bugy a problemy...

Aspon ze me nedelejte medvidky, tyahle upravy jsou delany z duvodu, aby nebylo mozne zjistit ze produkty adobe jsou nelegalni, je tak?

Re: Preventivna

Napsal: 27 úno 2012 11:49
od owen26
Však ja netvrdím, že sú legálne, nerobím žiadne "medvidky" ako si myslíte.
Adobe mam ilegálne, neviem aký to má súvis s mojou požiadavkou o kontrolu.

Re: Preventivna

Napsal: 27 úno 2012 12:44
od vyosek
:arrow: S pozadavkem na kontrolu nic, ale nase forum warez nepodporuje

:arrow: Dale tam vidim i nelegalni produkty od microsoftu a co samotne windows (nejvyssi licence Ultimate), ty jsou legalni :???:

Re: Preventivna

Napsal: 27 úno 2012 17:52
od owen26
Pokiaľ s tým nemá čo spoločné, tak čo to potom riešite ? Som zabudol, že vy ste čistý bez toho aby ste niečo stiahli ilegálne. Windows mám legálny, mne stačí povedať, že mi to neskontrolujete a pôjdeme si každý vlastnou cestou, chcel som iba preventívnu kontrolu! nič viac...

:arrow: :arrow: :???:

Re: Preventivna

Napsal: 27 úno 2012 18:14
od vyosek
Ptam se z duvodu, aby neporusoval pravidla fora - jaksi nemuzu porusovat neco na jehoz tvorbe jsem se sam podilel...

Ja jsem nerekl ze to neskontroluju, jen jsem pozadal o dalsi logy a dotazy abych mohl rici jestli mohu kontrolovat a zda je tam pripadne problem...

Takze, mate tedy zajem o kontrolu nebo z vaseho arogantniho postu mam chapat ze nejste ochoten spolupracovat?

Re: Preventivna

Napsal: 27 úno 2012 21:53
od owen26
Možno sa vám to zdá arogantné, ale vážne nechápem o čo tu ide. Niekedy s týmto nebol nikdy problém a zrazu... (nepoviem keby mám nelegálny antivír, firewall a pod. ale toto...)
Samozrejme, že mám záujem o kontrolu, inak by som tu nepísal.

Re: Preventivna

Napsal: 27 úno 2012 21:55
od vyosek
Napsal jste ze hosts je upraveny aby nechodily aktualizace, stacilo napsat ze je to pac je adobe je drahy, tot vse a proto ta uprava...

:arrow: Stahnete OTL http://oldtimer.geekstogo.com/OTL.exe a ulozte jej na plochu
  • Pokud pouzivate Win Vista ci W7, kliknete na OTL pravym a dejte Run As Administrator ci Spustit jako spravce
  • Pokud pouzivate 64bitovy OS, zkontrolujte, zda-li je zaskrtnuty ctverecek u Pro 64 bitové OS, pokud ne, zaskrtnete jej
  • Zaskrtnete okenko Pro vsechny uzivatele
  • Zaskrtnete okenko Kontrola na havet "LOP"
  • Zaskrtnete okenko Kontrola na havet "Purity"
  • Stari souboru zmente z 30 dnu na 7 dnu
  • Do spodniho okenka Vlastni skenovani/opravy vlozte skript nize

  • Kód: Vybrat vše

    CREATERESTOREPOINT

netsvcs
drivers32
savembr:0

/md5start
atapi.sys
autochk.exe
cdrom.sys
explorer.exe
hal.dll
scecli.dll
svchost.exe
tcpip.sys
userinit.exe
winlogon.exe
/md5stop

%systemroot%*.* /U /s
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\drivers\*.sys /3
%systemroot%\system32\*.* /3
%SYSTEMDRIVE%\*.exe

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s

%PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5
%PROGRAMFILES%\Internet Explorer\iexplore.exe /md5
%PROGRAMFILES%\Opera\opera.exe /md5
%PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5

%SystemDrive%\PhysicalMBR.bin /md5 

*crack* /s
*keygen* /s
*loader* /s
  • Kliknete na tlacitko Prohledat
  • Po dokonceni skenu (cca 10 az 15 min) se objevi logy OTL.txt a Extras.txt, oba sem vlozte

Re: Preventivna

Napsal: 27 úno 2012 23:02
od owen26
OTL logfile created on: 27. 2. 2012 22:09:48 - Run 1
OTL by OldTimer - Version 3.2.33.2 Folder = C:\Users\Ali\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy

3,00 Gb Total Physical Memory | 1,72 Gb Available Physical Memory | 57,24% Memory free
5,99 Gb Paging File | 4,36 Gb Available in Paging File | 72,80% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 41,89 Gb Total Space | 5,08 Gb Free Space | 12,13% Space Free | Partition Type: NTFS
Drive D: | 191,00 Gb Total Space | 10,36 Gb Free Space | 5,42% Space Free | Partition Type: NTFS

Computer Name: ALI | User Name: Ali | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2012/02/27 22:06:55 | 000,583,680 | ---- | M] (OldTimer Tools) -- C:\Users\Ali\Desktop\OTL.exe
PRC - [2012/02/26 13:38:34 | 002,614,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2012/01/25 21:13:44 | 000,127,040 | ---- | M] (ICQ, LLC.) -- C:\Program Files\ICQ7.7\ICQ.exe
PRC - [2012/01/03 14:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/12/21 01:41:43 | 006,676,808 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
PRC - [2011/12/19 19:58:58 | 001,960,584 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
PRC - [2011/12/09 16:16:00 | 000,161,336 | ---- | M] (Google) -- C:\Users\Ali\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
PRC - [2010/12/31 07:40:06 | 001,169,920 | ---- | M] (Aestan Software) -- C:\wamp\wampmanager.exe
PRC - [2010/12/31 07:39:54 | 008,133,120 | ---- | M] () -- c:\wamp\bin\mysql\mysql5.5.8\bin\mysqld.exe
PRC - [2010/12/31 07:39:42 | 000,020,549 | ---- | M] (Apache Software Foundation) -- C:\wamp\bin\apache\Apache2.2.17\bin\httpd.exe
PRC - [2010/12/31 07:39:42 | 000,020,549 | ---- | M] (Apache Software Foundation) -- c:\wamp\bin\apache\Apache2.2.17\bin\httpd.exe
PRC - [2010/07/07 16:17:00 | 002,156,952 | ---- | M] () -- D:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe
PRC - [2010/04/05 12:06:05 | 003,581,680 | ---- | M] (Stardock) -- D:\Program Files\Stardock\ObjectDock\ObjectDock.exe
PRC - [2010/04/01 10:16:20 | 000,357,696 | ---- | M] (DT Soft Ltd) -- D:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2009/07/14 02:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe


========== Modules (No Company Name) ==========

MOD - [2012/02/15 06:03:36 | 000,429,040 | ---- | M] () -- C:\Users\Ali\AppData\Local\Google\Chrome\Application\17.0.963.56\ppGoogleNaClPluginChrome.dll
MOD - [2012/02/15 06:03:34 | 003,772,912 | ---- | M] () -- C:\Users\Ali\AppData\Local\Google\Chrome\Application\17.0.963.56\pdf.dll
MOD - [2012/02/15 06:02:21 | 000,527,344 | ---- | M] () -- C:\Users\Ali\AppData\Local\Google\Chrome\Application\17.0.963.56\libglesv2.dll
MOD - [2012/02/15 06:02:19 | 000,114,672 | ---- | M] () -- C:\Users\Ali\AppData\Local\Google\Chrome\Application\17.0.963.56\libegl.dll
MOD - [2012/02/15 06:02:10 | 000,122,880 | ---- | M] () -- C:\Users\Ali\AppData\Local\Google\Chrome\Application\17.0.963.56\avutil-51.dll
MOD - [2012/02/15 06:02:08 | 000,220,672 | ---- | M] () -- C:\Users\Ali\AppData\Local\Google\Chrome\Application\17.0.963.56\avformat-53.dll
MOD - [2012/02/15 06:02:07 | 001,747,456 | ---- | M] () -- C:\Users\Ali\AppData\Local\Google\Chrome\Application\17.0.963.56\avcodec-53.dll
MOD - [2012/02/15 03:00:24 | 008,593,568 | ---- | M] () -- C:\Users\Ali\AppData\Local\Google\Chrome\Application\17.0.963.56\gcswf32.dll
MOD - [2012/02/15 03:00:24 | 008,593,568 | ---- | M] () -- C:\Users\Ali\AppData\Local\Google\Chrome\APPLIC~1\170963~1.56\gcswf32.dll
MOD - [2010/11/08 16:15:40 | 000,296,448 | ---- | M] () -- D:\Program Files\Notepad++\NppShell_04.dll
MOD - [2010/01/30 01:41:12 | 004,254,560 | ---- | M] () -- C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
MOD - [2009/08/16 17:06:02 | 000,141,312 | ---- | M] () -- D:\Program Files\WINrar\RarExt.dll
MOD - [2007/04/24 14:22:12 | 000,112,400 | ---- | M] () -- D:\Program Files\Stardock\ObjectDock\DockShellHook.dll
MOD - [2007/04/21 12:47:52 | 000,059,592 | ---- | M] () -- D:\Program Files\Stardock\ObjectDock\zlib.dll
MOD - [2007/04/19 13:23:48 | 000,095,944 | ---- | M] () -- D:\Program Files\Stardock\ObjectDock\CrashRpt.dll
MOD - [2002/11/19 13:11:40 | 000,139,264 | ---- | M] () -- C:\Program Files\Common Files\Stardock\ODimg.dll


========== Win32 Services (SafeList) ==========

SRV - [2012/01/03 14:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/12/19 19:58:58 | 001,960,584 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
SRV - [2010/12/31 07:39:54 | 008,133,120 | ---- | M] () [On_Demand | Running] -- c:\wamp\bin\mysql\mysql5.5.8\bin\mysqld.exe -- (wampmysqld)
SRV - [2010/12/31 07:39:42 | 000,020,549 | ---- | M] (Apache Software Foundation) [On_Demand | Running] -- c:\wamp\bin\apache\apache2.2.17\bin\httpd.exe -- (wampapache)
SRV - [2010/07/07 16:17:00 | 002,156,952 | ---- | M] () [Auto | Running] -- D:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe -- (Správce výběru OS)
SRV - [2010/05/10 19:59:24 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010/03/25 09:25:22 | 030,969,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2010/02/19 12:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
SRV - [2009/07/14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)


========== Driver Services (SafeList) ==========

DRV - [2012/02/26 13:32:36 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2012/01/17 22:00:40 | 000,491,816 | ---- | M] (COMODO) [File_System | System | Running] -- C:\Windows\System32\drivers\cmdGuard.sys -- (cmdGuard)
DRV - [2011/12/19 19:59:14 | 000,082,400 | ---- | M] (COMODO) [Kernel | System | Running] -- C:\Windows\System32\drivers\inspect.sys -- (inspect)
DRV - [2011/12/19 19:59:13 | 000,039,640 | ---- | M] (COMODO) [Kernel | System | Running] -- C:\Windows\System32\drivers\cmdhlp.sys -- (cmdHlp)
DRV - [2011/12/19 19:59:11 | 000,019,600 | ---- | M] (COMODO) [File_System | System | Running] -- C:\Windows\System32\drivers\cmderd.sys -- (cmderd)
DRV - [2011/11/11 13:52:43 | 000,170,080 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\snapman.sys -- (snapman)
DRV - [2011/07/29 13:54:56 | 000,014,216 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\epmntdrv.sys -- (epmntdrv)
DRV - [2011/07/29 13:54:56 | 000,008,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\EuGdiDrv.sys -- (EuGdiDrv)
DRV - [2011/05/13 18:57:42 | 000,025,656 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\hpdskflt.sys -- (hpdskflt)
DRV - [2011/05/13 18:57:20 | 000,035,896 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Accelerometer.sys -- (Accelerometer)
DRV - [2010/12/03 15:38:47 | 000,025,280 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi)
DRV - [2010/05/12 11:23:04 | 000,016,896 | ---- | M] (Danish Wireless Design A/S) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\FlashUSB.sys -- (FlashUSB)
DRV - [2010/04/02 17:33:23 | 011,610,856 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2010/01/28 15:25:03 | 000,068,200 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2009/11/18 17:02:14 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009/09/29 07:11:22 | 000,012,160 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\lgbtport.sys -- (LgBttPort)
DRV - [2009/09/29 07:11:20 | 000,012,928 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\lgvmodem.sys -- (LGVMODEM)
DRV - [2009/09/29 07:11:20 | 000,010,496 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\lgbtbus.sys -- (lgbusenum)
DRV - [2009/07/14 02:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus)
DRV - [2009/07/14 02:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vmstorfl.sys -- (storflt)
DRV - [2009/07/14 02:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc)
DRV - [2009/07/14 00:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009/07/14 00:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap)
DRV - [2009/07/14 00:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID)
DRV - [2007/02/16 01:57:04 | 000,034,760 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ElbyCDFL.sys -- (ElbyCDFL)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\URLSearchHook: - No CLSID value found
IE - HKLM\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found


IE - HKU\.DEFAULT\..\URLSearchHook: - No CLSID value found
IE - HKU\.DEFAULT\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-18\..\URLSearchHook: {855F3B16-6D32-4fe6-8A56-BBB695989046} - No CLSID value found
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2791954077-2039642415-460783259-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/skins/
IE - HKU\S-1-5-21-2791954077-2039642415-460783259-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 94 3A 74 E1 17 71 CA 01 [binary data]
IE - HKU\S-1-5-21-2791954077-2039642415-460783259-1000\..\URLSearchHook: - No CLSID value found
IE - HKU\S-1-5-21-2791954077-2039642415-460783259-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.suggest.enabled: false
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://localhost/"
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.4
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {01A8CA0A-4C96-465b-A49B-65C46FAD54F9}:6.0
FF - prefs.js..extensions.enabledItems: {003D3EDC-99B9-4a34-9C20-60CB94F7E829}:2010.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: vshare@toolbar:1.0.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {75CEEE46-9B64-46f8-94BF-54012DE155F0}:0.4.6
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: plugin@gameplaylabs.com:1.0
FF - prefs.js..extensions.enabledItems: {c8f71e5b-88f8-42a7-98bb-e4c506161de9}:0.4
FF - prefs.js..extensions.enabledItems: chromifox@altmusictv.com:3.6.5
FF - prefs.js..keyword.URL: "http://www.google.com/search?q="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69: D:\Program Files\Magic Video Converter\codec\real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69: D:\Program Files\Magic Video Converter\codec\real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Ali\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Ali\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Ali\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Ali\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}: D:\Program Files\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9} [2010/05/06 20:17:21 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Components: D:\Program Files\Mozilla Firefox\components [2012/02/26 12:03:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0.2\extensions\\Plugins: D:\Program Files\Mozilla Firefox\plugins [2012/02/27 08:59:21 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 10.0.2\extensions\\Components: D:\program files\Mozilla Thunderbird\components [2011/12/27 13:21:18 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 10.0.2\extensions\\Plugins: D:\program files\Mozilla Thunderbird\plugins

[2011/04/03 16:33:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ali\AppData\Roaming\mozilla\Extensions
[2011/04/03 16:33:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ali\AppData\Roaming\mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2012/02/26 12:22:48 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ali\AppData\Roaming\mozilla\Firefox\Profiles\lhd8j68j.default\extensions
[2010/07/10 17:50:23 | 000,000,000 | ---D | M] (WebTran) -- C:\Users\Ali\AppData\Roaming\mozilla\Firefox\Profiles\lhd8j68j.default\extensions\{003D3EDC-99B9-4a34-9C20-60CB94F7E829}
[2011/12/24 12:13:46 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Ali\AppData\Roaming\mozilla\Firefox\Profiles\lhd8j68j.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2011/03/09 19:59:33 | 000,000,000 | ---D | M] (GamePlayLabs Plugin) -- C:\Users\Ali\AppData\Roaming\mozilla\Firefox\Profiles\lhd8j68j.default\extensions\plugin@gameplaylabs.com
[2011/03/29 16:49:58 | 000,000,000 | ---D | M] (GamePlayLabs Plugin) -- C:\Users\Ali\AppData\Roaming\mozilla\Firefox\Profiles\lhd8j68j.default\extensions\plugin2@gameplaylabs.com
() (No name found) -- C:\USERS\ALI\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LHD8J68J.DEFAULT\EXTENSIONS\{75CEEE46-9B64-46F8-94BF-54012DE155F0}.XPI
() (No name found) -- C:\USERS\ALI\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\LHD8J68J.DEFAULT\EXTENSIONS\TABSCOPE@XULDEV.ORG.XPI

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Ali\AppData\Local\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Ali\AppData\Local\Google\Chrome\Application\17.0.963.56\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Ali\AppData\Local\Google\Chrome\Application\17.0.963.56\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Ali\AppData\Local\Google\Chrome\Application\17.0.963.56\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.290.11 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 6 U29 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin7.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Users\Ali\AppData\Local\Google\Chrome\Application\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Users\Ali\AppData\Local\Google\Chrome\Application\plugins\nprpjplug.dll
CHR - plugin: Google Talk Plugin (Enabled) = C:\Users\Ali\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
CHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Users\Ali\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = D:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: Shockwave for Director (Enabled) = D:\Program Files\Mozilla Firefox\plugins\np32dsw.dll
CHR - plugin: Adobe Contribute CS5 (Enabled) = D:\Program Files\Mozilla Firefox\plugins\npContribute.dll
CHR - plugin: DivX Web Player (Enabled) = D:\Program Files\Mozilla Firefox\plugins\npdivx32.dll
CHR - plugin: DivX Player Netscape Plugin (Enabled) = D:\Program Files\Mozilla Firefox\plugins\npDivxPlayerPlugin.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll
CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Users\Ali\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: H\u013Eada\u0165 v Google = C:\Users\Ali\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.17_0\
CHR - Extension: Dark atmosphere = C:\Users\Ali\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfpikgkkfdoabncoileilaglepbpdhek\1.0_0\
CHR - Extension: Gmail = C:\Users\Ali\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2011/09/18 18:43:49 | 000,002,860 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 activate.adobe.com
O1 - Hosts: 127.0.0.1 practivate.adobe.com
O1 - Hosts: 127.0.0.1 ereg.adobe.com
O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com
O1 - Hosts: 127.0.0.1 wip3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com
O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com
O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com
O1 - Hosts: 127.0.0.1 activate-sea.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 adobe.activate.com
O1 - Hosts: 127.0.0.1 adobeereg.com
O1 - Hosts: 127.0.0.1 www.adobeereg.com
O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com
O1 - Hosts: 127.0.0.1 125.252.224.90
O1 - Hosts: 127.0.0.1 125.252.224.91
O1 - Hosts: 127.0.0.1 hl2rcv.adobe.com
O1 - Hosts: 127.0.0.1 209-34-83-73.ood.opsource.net
O1 - Hosts: 127.0.0.1 3dns-1.adobe.com
O1 - Hosts: 43 more lines...
O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - D:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
O2 - BHO: (HistoryTriggerBHO Class) - {21A88CB9-84D2-4020-A2D1-B25A21034884} - D:\Program Files\LG Electronics\LG PC Suite IV\LinkAir\LinkAirBrowserHelper.dll (LG Electronics)
O2 - BHO: (WebTransBHO Class) - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - D:\Program Files\TRANSLAT\WebIE.dll ()
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O2 - BHO: (FDMIECookiesBHO Class) - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - D:\Program Files\Free Download Manager\iefdm2.dll ()
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - D:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.)
O3 - HKLM\..\Toolbar: (WebTranslator) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - D:\Program Files\TRANSLAT\WebIE.dll ()
O3 - HKU\S-1-5-21-2791954077-2039642415-460783259-1000\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO)
O4 - HKLM..\Run: [localhost] C:\wamp\wampmanager.exe (Aestan Software)
O4 - HKU\S-1-5-21-2791954077-2039642415-460783259-1000..\Run: [AdobeBridge] File not found
O4 - HKU\S-1-5-21-2791954077-2039642415-460783259-1000..\Run: [DAEMON Tools Lite] D:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-2791954077-2039642415-460783259-1000..\Run: [LG LinkAir] File not found
O4 - HKU\S-1-5-21-2791954077-2039642415-460783259-1000..\Run: [OEXPRESS] File not found
O4 - Startup: C:\Users\Ali\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stardock ObjectDock.lnk = D:\Program Files\Stardock\ObjectDock\ObjectDock.exe (Stardock)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2791954077-2039642415-460783259-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2791954077-2039642415-460783259-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-2791954077-2039642415-460783259-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 91 00 00 00 [binary data]
O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://D:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Previesť cieľ odkazu do formátu Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Previesť do Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Prevziať pomocou FDM - D:\Program Files\Free Download Manager\dllink.htm ()
O8 - Extra context menu item: Prevziať video pomocou FDM - D:\Program Files\Free Download Manager\dlfvideo.htm ()
O8 - Extra context menu item: Prevziať všetko pomocou FDM - D:\Program Files\Free Download Manager\dlall.htm ()
O8 - Extra context menu item: Prevziať vybrané pomocou FDM - D:\Program Files\Free Download Manager\dlselected.htm ()
O8 - Extra context menu item: Pridať cieľ odkazu do existujúceho súboru PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Pridať do existujúceho súboru PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Se&nd to OneNote - res:///105 File not found
O9 - Extra Button: Odoslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Od&oslať do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe (ICQ, LLC.)
O9 - Extra 'Tools' menuitem : ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files\ICQ7.7\ICQ.exe (ICQ, LLC.)
O9 - Extra Button: &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Prepojené poznámky programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra Button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - D:\Program Files\TRANSLAT\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Nastaviť prekladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - D:\Program Files\TRANSLAT\WebIE.dll ()
O9 - Extra 'Tools' menuitem : &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - D:\Program Files\TRANSLAT\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Preložiť &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - D:\Program Files\TRANSLAT\WebIE.dll ()
O9 - Extra 'Tools' menuitem : Preložiť &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - D:\Program Files\TRANSLAT\WebIE.dll ()
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_29)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{203D6253-1351-461A-AAF5-838D2046062E}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{87576F4C-2082-45FC-B80E-0DEB21CC9ADA}: NameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - AppInit_DLLs: (C:\Windows\system32\guard32.dll) - C:\Windows\System32\guard32.dll (COMODO)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{29638425-1019-11e1-9cbc-002186bc941e}\Shell - "" = AutoRun
O33 - MountPoints2\{29638425-1019-11e1-9cbc-002186bc941e}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a
O33 - MountPoints2\{652ca453-6d92-11e0-ae48-002186bc941e}\Shell - "" = AutoRun
O33 - MountPoints2\{652ca453-6d92-11e0-ae48-002186bc941e}\Shell\AutoRun\command - "" = G:\LGAutoRun.exe
O33 - MountPoints2\G\Shell - "" = AutoRun
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

Drivers32: msacm.ac3acm - C:\Windows\System32\ac3acm.acm (fccHandler)
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\Windows\System32\lameACM.acm (http://www.mp3dev.org/)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - C:\Windows\System32\ff_vfw.dll ()
Drivers32: VIDC.I420 - C:\Windows\System32\sx_cam_i420.dll (Xirlink, Inc.)
Drivers32: vidc.tscc - C:\Windows\System32\tsccvid.dll (TechSmith Corporation)
Drivers32: VIDC.XVID - C:\Windows\System32\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\Windows\System32\yv12vfw.dll (www.helixcommunity.org)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

========== Files/Folders - Created Within 7 Days ==========

[2012/02/27 22:06:55 | 000,583,680 | ---- | C] (OldTimer Tools) -- C:\Users\Ali\Desktop\OTL.exe
[2012/02/26 15:45:58 | 000,000,000 | ---D | C] -- C:\rsit
[2012/02/26 15:18:56 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fsutil.exe
[2012/02/26 15:17:45 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tcpmonui.dll
[2012/02/26 15:17:44 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tcpmib.dll
[2012/02/26 15:15:56 | 000,657,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshwfp.dll
[2012/02/26 15:15:56 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
[2012/02/26 15:13:18 | 000,335,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WinSATAPI.dll
[2012/02/26 15:12:30 | 000,149,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\storport.sys
[2012/02/26 15:11:40 | 002,350,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2012/02/26 15:09:18 | 000,194,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hal.dll
[2012/02/26 15:09:17 | 000,194,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\halmacpi.dll
[2012/02/26 15:09:17 | 000,137,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\halacpi.dll
[2012/02/26 15:07:45 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\untfs.dll
[2012/02/26 15:06:12 | 000,386,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasplap.dll
[2012/02/26 15:03:49 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pdhui.dll
[2012/02/26 15:03:48 | 001,227,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wdc.dll
[2012/02/26 15:03:48 | 000,444,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wvc.dll
[2012/02/26 15:03:48 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sysmon.ocx
[2012/02/26 15:02:17 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdWNet.dll
[2012/02/26 15:01:32 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleprn.dll
[2012/02/26 14:57:44 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2012/02/26 14:56:27 | 003,970,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2012/02/26 14:56:26 | 003,915,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2012/02/26 14:54:59 | 001,328,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2012/02/26 14:54:59 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdvd.dll
[2012/02/26 14:53:29 | 001,322,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll
[2012/02/26 14:52:01 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncsi.dll
[2012/02/26 14:50:34 | 000,005,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2012/02/26 14:50:33 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2012/02/26 14:49:49 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2012/02/26 14:46:22 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2012/02/26 14:44:56 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tabcal.exe
[2012/02/26 14:37:39 | 000,592,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll
[2012/02/26 14:35:17 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2012/02/26 14:35:17 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2012/02/26 14:35:13 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/02/26 14:35:13 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/02/26 14:35:13 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2012/02/26 14:35:13 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2012/02/26 14:35:12 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2012/02/26 14:35:12 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2012/02/26 14:35:12 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2012/02/26 14:35:12 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2012/02/26 14:35:12 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/02/26 14:35:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2012/02/26 14:35:12 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2012/02/26 14:35:11 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2012/02/26 14:35:11 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2012/02/26 14:35:11 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2012/02/26 14:35:11 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2012/02/26 14:35:11 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2012/02/26 14:35:11 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2012/02/26 14:35:11 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2012/02/26 14:35:11 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2012/02/26 14:35:10 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2012/02/26 14:35:10 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2012/02/26 14:35:10 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2012/02/26 14:35:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2012/02/26 14:35:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/02/26 14:35:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/02/26 14:35:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2012/02/26 14:35:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2012/02/26 14:34:24 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wwanprotdim.dll
[2012/02/26 14:31:04 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msmmsp.dll
[2012/02/26 14:29:53 | 000,223,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wksprt.exe
[2012/02/26 14:29:53 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aaclient.dll
[2012/02/26 14:29:53 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tsgqec.dll
[2012/02/26 14:28:43 | 000,537,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msra.exe
[2012/02/26 14:28:43 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\racpldlg.dll
[2012/02/26 14:25:13 | 000,258,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpshell.exe
[2012/02/26 14:25:13 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpinit.exe
[2012/02/26 14:24:06 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ReAgent.dll
[2012/02/26 14:21:44 | 000,157,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasnap.dll
[2012/02/26 14:20:03 | 001,077,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2012/02/26 14:20:03 | 000,739,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2012/02/26 14:20:02 | 001,170,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2012/02/26 14:20:02 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2012/02/26 14:20:02 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2012/02/26 14:17:02 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll
[2012/02/26 14:17:01 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\webio.dll
[2012/02/26 14:16:26 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll
[2012/02/26 14:16:26 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll
[2012/02/26 14:15:21 | 000,218,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgmms1.sys
[2012/02/26 14:15:20 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2012/02/26 14:14:48 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2012/02/26 14:14:18 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\packager.dll
[2012/02/26 14:13:47 | 000,579,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll
[2012/02/26 14:13:46 | 001,068,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtctm.dll
[2012/02/26 14:13:46 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xolehlp.dll
[2012/02/26 14:12:39 | 003,181,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2012/02/26 14:12:08 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax
[2012/02/26 14:12:08 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2012/02/26 14:12:08 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Mpeg2Data.ax
[2012/02/26 14:12:07 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2012/02/26 14:12:07 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSDvbNP.ax
[2012/02/26 14:09:32 | 000,147,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\basecsp.dll
[2012/02/26 14:09:31 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\scksp.dll
[2012/02/26 14:08:34 | 001,426,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvbvm60.dll
[2012/02/26 14:03:04 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcjt32.dll
[2012/02/26 14:03:03 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccr32.dll
[2012/02/26 14:03:02 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbctrac.dll
[2012/02/26 14:03:02 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccp32.dll
[2012/02/26 14:03:01 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccu32.dll
[2012/02/26 14:02:25 | 001,792,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2012/02/26 14:01:54 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iprtrmgr.dll
[2012/02/26 14:00:54 | 000,294,912 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2012/02/26 14:00:54 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2012/02/26 14:00:54 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2012/02/26 14:00:54 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2012/02/26 13:59:56 | 000,181,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tcpipcfg.dll
[2012/02/26 13:59:56 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netiougc.exe
[2012/02/26 13:59:26 | 000,187,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS
[2012/02/26 13:56:20 | 001,073,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Narrator.exe
[2012/02/26 13:55:50 | 001,553,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll
[2012/02/26 13:55:50 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssph.dll
[2012/02/26 13:55:50 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscntrs.dll
[2012/02/26 13:55:49 | 001,401,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssrch.dll
[2012/02/26 13:55:49 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll
[2012/02/26 13:55:49 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssphtb.dll
[2012/02/26 13:52:09 | 000,026,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Diskdump.sys
[2012/02/26 13:51:20 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gpprnext.dll
[2012/02/26 13:50:26 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tscfgwmi.dll
[2012/02/26 13:49:32 | 000,473,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSCOMEX.dll
[2012/02/26 13:49:06 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netiohlp.dll
[2012/02/26 13:47:20 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\appidpolicyconverter.exe
[2012/02/26 13:46:24 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2012/02/26 13:45:59 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logman.exe
[2012/02/26 13:45:31 | 000,827,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcore.dll
[2012/02/26 13:45:30 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpsign.exe
[2012/02/26 13:45:29 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tspubwmi.dll
[2012/02/26 13:44:12 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbrpm.sys
[2012/02/26 13:43:47 | 000,442,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2012/02/26 13:42:40 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\P2P.dll
[2012/02/26 13:42:40 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\p2pnetsh.dll
[2012/02/26 13:42:39 | 000,412,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\p2pcollab.dll
[2012/02/26 13:42:39 | 000,334,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\P2PGraph.dll
[2012/02/26 13:42:07 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cngprovider.dll
[2012/02/26 13:42:07 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpapiprovider.dll
[2012/02/26 13:42:07 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wincredprovider.dll
[2012/02/26 13:42:07 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dimsjob.dll
[2012/02/26 13:42:06 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\capiprovider.dll
[2012/02/26 13:42:06 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\adprovider.dll
[2012/02/26 13:42:06 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dimsroam.dll
[2012/02/26 13:41:40 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2012/02/26 13:41:16 | 002,134,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msmpeg2vdec.dll
[2012/02/26 13:39:31 | 000,507,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2012/02/26 13:39:31 | 000,443,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2012/02/26 13:38:54 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sethc.exe
[2012/02/26 13:38:34 | 002,614,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2012/02/26 13:37:29 | 000,248,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManMigrationPlugin.dll
[2012/02/26 13:37:29 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmAuto.dll
[2012/02/26 13:37:28 | 000,213,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmWmiPl.dll
[2012/02/26 13:37:28 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManHTTPConfig.exe
[2012/02/26 13:35:19 | 000,219,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2012/02/26 13:35:03 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prevhost.exe
[2012/02/26 13:34:28 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dtsh.dll
[2012/02/26 13:34:11 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ifsutil.dll
[2012/02/26 13:33:25 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINEN.DLL
[2012/02/26 13:33:25 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINDEV.DLL
[2012/02/26 13:33:24 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINPUN.DLL
[2012/02/26 13:33:24 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINGUJ.DLL
[2012/02/26 13:33:24 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINBEN.DLL
[2012/02/26 13:33:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINTAM.DLL
[2012/02/26 13:33:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINORI.DLL
[2012/02/26 13:33:23 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINMAL.DLL
[2012/02/26 13:33:23 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINASA.DLL
[2012/02/26 13:33:23 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINTEL.DLL
[2012/02/26 13:33:23 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINKAN.DLL
[2012/02/26 13:33:22 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINBE2.DLL
[2012/02/26 13:33:22 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINBE1.DLL
[2012/02/26 13:33:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINMAR.DLL
[2012/02/26 13:33:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\KBDINHIN.DLL
[2012/02/26 13:32:36 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\vwifimp.sys
[2012/02/26 13:32:03 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ftp.exe
[2012/02/26 13:31:12 | 002,130,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\networkmap.dll
[2012/02/26 13:31:11 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\networkitemfactory.dll
[2012/02/26 13:30:38 | 000,520,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcupdate_GenuineIntel.dll
[2012/02/26 13:29:20 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3msm.dll
[2012/02/26 13:29:05 | 000,191,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSCOVER.exe
[2012/02/26 13:28:30 | 000,458,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FXSXP32.dll
[2012/02/26 13:28:16 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fdBth.dll
[2012/02/26 13:28:00 | 000,890,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\certutil.exe
[2012/02/26 13:27:32 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dot3gpclnt.dll
[2012/02/26 13:27:02 | 003,405,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xpsrchvw.exe
[2012/02/26 13:26:47 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CPFilters.dll
[2012/02/26 13:26:47 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2012/02/26 13:26:46 | 000,850,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbe.dll
[2012/02/26 13:26:11 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\auditcse.dll
[2012/02/26 13:25:56 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\RNDISMP.sys
[2012/02/26 13:25:56 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlaninst.dll
[2012/02/26 13:25:39 | 000,782,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\webservices.dll
[2012/02/26 13:25:13 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2012/02/26 13:24:29 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dui70.dll
[2012/02/26 13:24:28 | 001,501,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
[2012/02/26 13:24:28 | 000,562,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAutomationCore.dll
[2012/02/26 13:24:11 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\glu32.dll
[2012/02/26 13:23:25 | 000,601,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PerfCenterCPL.dll
[2012/02/26 13:22:33 | 000,761,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\azroles.dll
[2012/02/26 13:22:33 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\AzSqlExt.dll
[2012/02/26 13:22:21 | 000,543,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fvewiz.dll
[2012/02/26 13:22:21 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fvecpl.dll
[2012/02/26 13:22:20 | 000,271,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fveapi.dll
[2012/02/26 13:22:20 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fveapibase.dll
[2012/02/26 13:21:36 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\evr.dll
[2012/02/26 13:21:11 | 001,294,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsecedit.dll
[2012/02/26 13:20:28 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDMon.dll
[2012/02/26 13:20:11 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012/02/26 13:20:09 | 001,427,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2012/02/26 13:20:07 | 001,798,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2012/02/26 13:20:07 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012/02/26 13:19:31 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012/02/26 13:19:31 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012/02/26 11:56:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Your Uninstaller! 7
[2012/02/26 11:51:51 | 000,000,000 | ---D | C] -- C:\Windows\Profiles

========== Files - Modified Within 7 Days ==========

[2012/02/27 22:13:52 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2012/02/27 22:10:55 | 001,474,832 | ---- | M] () -- C:\Windows\System32\drivers\sfi.dat
[2012/02/27 22:06:55 | 000,583,680 | ---- | M] (OldTimer Tools) -- C:\Users\Ali\Desktop\OTL.exe
[2012/02/27 21:51:00 | 000,000,938 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2791954077-2039642415-460783259-1000UA.job
[2012/02/27 21:51:00 | 000,000,918 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/02/27 21:30:57 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/02/27 17:34:31 | 000,016,624 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/02/27 17:34:31 | 000,016,624 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/02/27 17:33:35 | 000,663,320 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/02/27 17:33:35 | 000,125,450 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/02/27 17:30:52 | 000,000,292 | ---- | M] () -- C:\Windows\tasks\AutoKMS.job
[2012/02/27 17:29:42 | 000,000,914 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/02/27 17:29:34 | 000,151,552 | ---- | M] () -- C:\Windows\KMSEmulator.exe
[2012/02/27 17:28:54 | 2413,719,552 | -HS- | M] () -- C:\hiberfil.sys
[2012/02/26 16:51:01 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2791954077-2039642415-460783259-1000Core.job
[2012/02/26 15:41:09 | 003,878,448 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012/02/26 15:18:56 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fsutil.exe
[2012/02/26 15:17:45 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tcpmonui.dll
[2012/02/26 15:17:44 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tcpmib.dll
[2012/02/26 15:15:56 | 000,657,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nshwfp.dll
[2012/02/26 15:15:56 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
[2012/02/26 15:13:18 | 000,335,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WinSATAPI.dll
[2012/02/26 15:12:30 | 000,149,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\storport.sys
[2012/02/26 15:11:40 | 002,350,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2012/02/26 15:09:18 | 000,194,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hal.dll
[2012/02/26 15:09:17 | 000,194,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\halmacpi.dll
[2012/02/26 15:09:17 | 000,137,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\halacpi.dll
[2012/02/26 15:07:45 | 000,346,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\untfs.dll
[2012/02/26 15:06:12 | 000,386,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasplap.dll
[2012/02/26 15:03:49 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pdhui.dll
[2012/02/26 15:03:48 | 001,227,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wdc.dll
[2012/02/26 15:03:48 | 000,444,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wvc.dll
[2012/02/26 15:03:48 | 000,389,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sysmon.ocx
[2012/02/26 15:02:17 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fdWNet.dll
[2012/02/26 15:01:32 | 000,107,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleprn.dll
[2012/02/26 15:00:48 | 000,066,048 | ---- | M] () -- C:\Windows\System32\PrintBrmUi.exe
[2012/02/26 14:57:44 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2012/02/26 14:56:27 | 003,970,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2012/02/26 14:56:26 | 003,915,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2012/02/26 14:53:29 | 001,322,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll
[2012/02/26 14:52:01 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncsi.dll
[2012/02/26 14:50:34 | 000,005,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2012/02/26 14:50:33 | 000,284,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2012/02/26 14:49:49 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2012/02/26 14:44:56 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tabcal.exe
[2012/02/26 14:37:39 | 000,592,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll
[2012/02/26 14:35:17 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
[2012/02/26 14:35:17 | 000,169,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2012/02/26 14:35:13 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/02/26 14:35:13 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/02/26 14:35:13 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll
[2012/02/26 14:35:13 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll
[2012/02/26 14:35:12 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll
[2012/02/26 14:35:12 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll
[2012/02/26 14:35:12 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll
[2012/02/26 14:35:12 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll
[2012/02/26 14:35:12 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/02/26 14:35:12 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll
[2012/02/26 14:35:12 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll
[2012/02/26 14:35:11 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll
[2012/02/26 14:35:11 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll
[2012/02/26 14:35:11 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll
[2012/02/26 14:35:11 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll
[2012/02/26 14:35:11 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll
[2012/02/26 14:35:11 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll
[2012/02/26 14:35:11 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll
[2012/02/26 14:35:11 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll
[2012/02/26 14:35:10 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll
[2012/02/26 14:35:10 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll
[2012/02/26 14:35:10 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll
[2012/02/26 14:35:10 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll
[2012/02/26 14:35:10 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/02/26 14:35:10 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/02/26 14:35:10 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll
[2012/02/26 14:35:10 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll
[2012/02/26 14:34:24 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wwanprotdim.dll
[2012/02/26 14:31:04 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msmmsp.dll
[2012/02/26 14:29:53 | 000,223,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wksprt.exe
[2012/02/26 14:29:53 | 000,131,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aaclient.dll

Re: Preventivna

Napsal: 27 úno 2012 23:03
od owen26
[2012/02/26 14:29:53 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tsgqec.dll
[2012/02/26 14:28:43 | 000,537,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msra.exe
[2012/02/26 14:28:43 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\racpldlg.dll
[2012/02/26 14:25:13 | 000,258,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rdpshell.exe
[2012/02/26 14:25:13 | 000,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rdpinit.exe
[2012/02/26 14:24:06 | 000,247,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ReAgent.dll
[2012/02/26 14:21:44 | 000,157,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iasnap.dll
[2012/02/26 14:20:03 | 001,077,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2012/02/26 14:20:03 | 000,739,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2012/02/26 14:20:02 | 001,170,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2012/02/26 14:20:02 | 000,218,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2012/02/26 14:20:02 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2012/02/26 14:17:02 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll
[2012/02/26 14:17:01 | 000,314,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\webio.dll
[2012/02/26 14:16:26 | 001,164,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll
[2012/02/26 14:16:26 | 001,137,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc42.dll
[2012/02/26 14:15:21 | 000,218,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgmms1.sys
[2012/02/26 14:15:20 | 000,107,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2012/02/26 14:14:48 | 000,285,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2012/02/26 14:14:18 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\packager.dll
[2012/02/26 14:13:47 | 000,579,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll
[2012/02/26 14:13:46 | 001,068,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdtctm.dll
[2012/02/26 14:13:46 | 000,047,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xolehlp.dll
[2012/02/26 14:12:39 | 003,181,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2012/02/26 14:12:08 | 000,204,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax
[2012/02/26 14:12:08 | 000,075,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2012/02/26 14:12:08 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Mpeg2Data.ax
[2012/02/26 14:12:07 | 000,465,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2012/02/26 14:12:07 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MSDvbNP.ax
[2012/02/26 14:09:32 | 000,147,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\basecsp.dll
[2012/02/26 14:09:31 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\scksp.dll
[2012/02/26 14:08:34 | 001,426,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvbvm60.dll
[2012/02/26 14:03:04 | 000,319,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbcjt32.dll
[2012/02/26 14:03:03 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbccr32.dll
[2012/02/26 14:03:02 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbctrac.dll
[2012/02/26 14:03:02 | 000,122,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbccp32.dll
[2012/02/26 14:03:01 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbccu32.dll
[2012/02/26 14:02:25 | 001,792,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2012/02/26 14:01:54 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iprtrmgr.dll
[2012/02/26 14:00:54 | 000,294,912 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2012/02/26 14:00:54 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2012/02/26 14:00:54 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2012/02/26 14:00:54 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2012/02/26 13:59:56 | 000,181,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tcpipcfg.dll
[2012/02/26 13:59:56 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netiougc.exe
[2012/02/26 13:59:26 | 000,187,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\FWPKCLNT.SYS
[2012/02/26 13:56:46 | 000,064,000 | ---- | M] () -- C:\Windows\System32\BWContextHandler.dll
[2012/02/26 13:56:20 | 001,073,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Narrator.exe
[2012/02/26 13:55:50 | 001,553,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll
[2012/02/26 13:55:50 | 000,337,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssph.dll
[2012/02/26 13:55:50 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscntrs.dll
[2012/02/26 13:55:49 | 001,401,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssrch.dll
[2012/02/26 13:55:49 | 000,666,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll
[2012/02/26 13:55:49 | 000,197,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssphtb.dll
[2012/02/26 13:52:09 | 000,026,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\Diskdump.sys
[2012/02/26 13:51:20 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gpprnext.dll
[2012/02/26 13:50:26 | 000,153,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tscfgwmi.dll
[2012/02/26 13:49:32 | 000,473,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSCOMEX.dll
[2012/02/26 13:49:06 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netiohlp.dll
[2012/02/26 13:47:20 | 000,097,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\appidpolicyconverter.exe
[2012/02/26 13:46:24 | 000,196,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2012/02/26 13:45:59 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\logman.exe
[2012/02/26 13:45:31 | 000,827,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rdpcore.dll
[2012/02/26 13:45:30 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rdpsign.exe
[2012/02/26 13:45:29 | 000,130,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tspubwmi.dll
[2012/02/26 13:44:12 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbrpm.sys
[2012/02/26 13:43:47 | 000,442,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2012/02/26 13:42:40 | 000,217,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\P2P.dll
[2012/02/26 13:42:40 | 000,137,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\p2pnetsh.dll
[2012/02/26 13:42:39 | 000,412,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\p2pcollab.dll
[2012/02/26 13:42:39 | 000,334,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\P2PGraph.dll
[2012/02/26 13:42:07 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cngprovider.dll
[2012/02/26 13:42:07 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpapiprovider.dll
[2012/02/26 13:42:07 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wincredprovider.dll
[2012/02/26 13:42:07 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dimsjob.dll
[2012/02/26 13:42:06 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\capiprovider.dll
[2012/02/26 13:42:06 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\adprovider.dll
[2012/02/26 13:42:06 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dimsroam.dll
[2012/02/26 13:41:40 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2012/02/26 13:41:16 | 002,134,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msmpeg2vdec.dll
[2012/02/26 13:39:31 | 000,507,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2012/02/26 13:39:31 | 000,443,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2012/02/26 13:38:54 | 000,270,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sethc.exe
[2012/02/26 13:38:34 | 002,614,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2012/02/26 13:37:29 | 000,248,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSManMigrationPlugin.dll
[2012/02/26 13:37:29 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WsmAuto.dll
[2012/02/26 13:37:28 | 000,213,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WsmWmiPl.dll
[2012/02/26 13:37:28 | 000,198,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSManHTTPConfig.exe
[2012/02/26 13:35:19 | 000,219,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
[2012/02/26 13:35:03 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\prevhost.exe
[2012/02/26 13:34:28 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dtsh.dll
[2012/02/26 13:34:11 | 000,148,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ifsutil.dll
[2012/02/26 13:33:25 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINEN.DLL
[2012/02/26 13:33:25 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINDEV.DLL
[2012/02/26 13:33:24 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINPUN.DLL
[2012/02/26 13:33:24 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINGUJ.DLL
[2012/02/26 13:33:24 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINBEN.DLL
[2012/02/26 13:33:24 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINTAM.DLL
[2012/02/26 13:33:24 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINORI.DLL
[2012/02/26 13:33:23 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINMAL.DLL
[2012/02/26 13:33:23 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINASA.DLL
[2012/02/26 13:33:23 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINTEL.DLL
[2012/02/26 13:33:23 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINKAN.DLL
[2012/02/26 13:33:22 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINBE2.DLL
[2012/02/26 13:33:22 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINBE1.DLL
[2012/02/26 13:33:22 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINMAR.DLL
[2012/02/26 13:33:22 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KBDINHIN.DLL
[2012/02/26 13:32:36 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\vwifimp.sys
[2012/02/26 13:32:03 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ftp.exe
[2012/02/26 13:31:12 | 002,130,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\networkmap.dll
[2012/02/26 13:31:11 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\networkitemfactory.dll
[2012/02/26 13:30:38 | 000,520,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mcupdate_GenuineIntel.dll
[2012/02/26 13:29:20 | 000,115,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dot3msm.dll
[2012/02/26 13:29:05 | 000,191,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSCOVER.exe
[2012/02/26 13:28:30 | 000,458,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSXP32.dll
[2012/02/26 13:28:16 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fdBth.dll
[2012/02/26 13:28:00 | 000,890,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\certutil.exe
[2012/02/26 13:27:32 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dot3gpclnt.dll
[2012/02/26 13:27:02 | 003,405,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xpsrchvw.exe
[2012/02/26 13:26:47 | 000,642,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CPFilters.dll
[2012/02/26 13:26:47 | 000,199,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2012/02/26 13:26:11 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\auditcse.dll
[2012/02/26 13:25:56 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\RNDISMP.sys
[2012/02/26 13:25:56 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlaninst.dll
[2012/02/26 13:25:39 | 000,782,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\webservices.dll
[2012/02/26 13:25:14 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\en-US\bfe.dll.mui
[2012/02/26 13:25:13 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2012/02/26 13:24:29 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dui70.dll
[2012/02/26 13:24:28 | 001,501,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
[2012/02/26 13:24:28 | 000,562,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIAutomationCore.dll
[2012/02/26 13:24:11 | 000,130,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\glu32.dll
[2012/02/26 13:23:25 | 000,601,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PerfCenterCPL.dll
[2012/02/26 13:22:33 | 000,761,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\azroles.dll
[2012/02/26 13:22:33 | 000,028,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AzSqlExt.dll
[2012/02/26 13:22:21 | 000,543,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fvewiz.dll
[2012/02/26 13:22:21 | 000,175,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fvecpl.dll
[2012/02/26 13:22:20 | 000,271,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fveapi.dll
[2012/02/26 13:22:20 | 000,104,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fveapibase.dll
[2012/02/26 13:21:36 | 000,488,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\evr.dll
[2012/02/26 13:21:11 | 001,294,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wsecedit.dll
[2012/02/26 13:20:28 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSDMon.dll
[2012/02/26 13:20:11 | 002,382,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012/02/26 13:20:09 | 001,427,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2012/02/26 13:20:07 | 001,798,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2012/02/26 13:20:07 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012/02/26 13:19:31 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012/02/26 13:19:31 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012/02/26 12:13:56 | 000,000,000 | ---- | M] () -- C:\Windows\XXLGSC
[2012/02/26 12:06:45 | 000,000,000 | -H-- | M] () -- C:\ProgramData\PKP_DLdu.DAT
[2012/02/26 12:06:45 | 000,000,000 | ---- | M] () -- C:\Users\Ali\AppData\Roaming\Framework
[2012/02/26 12:06:45 | 000,000,000 | ---- | M] () -- C:\ProgramData\Fonts
[2012/02/26 11:50:20 | 000,000,000 | -H-- | M] () -- C:\ProgramData\PKP_DLer.DAT
[2012/02/26 11:50:20 | 000,000,000 | ---- | M] () -- C:\Users\Ali\AppData\Roaming\Galaxy Swirl
[2012/02/25 12:49:19 | 000,001,456 | ---- | M] () -- C:\Users\Ali\AppData\Local\Adobe Save for Web 12.0 Prefs
[2012/02/25 12:48:03 | 002,930,268 | ---- | M] () -- C:\Users\Ali\Desktop\kurier.psd
[2012/02/25 12:48:01 | 000,376,640 | ---- | M] () -- C:\Users\Ali\Desktop\kurierbratislava.jpg
[2012/02/23 09:42:44 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl

========== Files Created - No Company Name ==========

[2012/02/27 22:13:52 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2012/02/26 15:40:44 | 003,878,448 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2012/02/26 15:00:48 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2012/02/26 13:56:46 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2012/02/26 12:34:44 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2012/02/26 12:06:45 | 000,000,000 | ---- | C] () -- C:\ProgramData\Fonts
[2012/02/25 12:48:00 | 000,376,640 | ---- | C] () -- C:\Users\Ali\Desktop\kurierbratislava.jpg
[2012/02/25 11:40:44 | 002,930,268 | ---- | C] () -- C:\Users\Ali\Desktop\kurier.psd
[2011/12/19 15:01:27 | 000,151,552 | ---- | C] () -- C:\Windows\KMSEmulator.exe
[2011/11/12 19:36:33 | 000,000,000 | ---- | C] () -- C:\Users\Ali\AppData\Local\{DD6C5728-5613-4BCE-9EEE-50B4981E8F6C}
[2011/11/10 17:42:13 | 002,469,760 | ---- | C] () -- C:\Windows\System32\BootMan.exe
[2011/11/10 17:42:13 | 000,086,408 | ---- | C] () -- C:\Windows\System32\setupempdrv03.exe
[2011/11/10 17:42:13 | 000,019,840 | ---- | C] () -- C:\Windows\System32\EuEpmGdi.dll
[2011/11/10 17:42:13 | 000,008,456 | ---- | C] () -- C:\Windows\System32\EuGdiDrv.sys
[2011/11/10 17:42:12 | 000,014,216 | ---- | C] () -- C:\Windows\System32\epmntdrv.sys
[2011/06/01 11:57:37 | 000,000,000 | ---- | C] () -- C:\Users\Ali\AppData\Local\{DE99D444-8BF2-4427-AFCB-ED34B5C5D04B}
[2011/05/21 12:29:28 | 000,000,091 | ---- | C] () -- C:\Users\Ali\AppData\Local\fusioncache.dat
[2011/05/19 12:02:22 | 000,000,000 | ---- | C] () -- C:\Users\Ali\AppData\Local\{A0DCAE46-C64B-415E-9195-E08B5460A60F}
[2011/05/12 15:48:00 | 000,000,161 | ---- | C] () -- C:\Windows\AutoKMS.ini
[2011/04/23 15:24:45 | 000,053,248 | ---- | C] () -- C:\Windows\System32\CommonDL.dll
[2011/04/23 15:24:45 | 000,002,413 | ---- | C] () -- C:\Windows\System32\lgAxconfig.ini
[2011/04/03 16:33:14 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2010/12/13 19:32:13 | 001,474,832 | ---- | C] () -- C:\Windows\System32\drivers\sfi.dat
[2010/11/03 17:26:36 | 000,000,992 | ---- | C] () -- C:\Users\Ali\AppData\Local\SRDownloader.nast
[2010/11/03 17:25:56 | 000,020,229 | ---- | C] () -- C:\Users\Ali\AppData\Local\SRDownloader.err
[2010/10/08 16:31:27 | 000,000,132 | ---- | C] () -- C:\Users\Ali\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2010/10/05 00:59:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\StarOpen.sys
[2010/07/10 18:00:36 | 000,000,088 | ---- | C] () -- C:\Windows\STXKBD32.INI
[2010/07/10 17:46:59 | 000,002,455 | ---- | C] () -- C:\Windows\TRNCOM.INI
[2010/06/20 21:28:45 | 000,442,368 | R--- | C] () -- C:\Windows\System32\zshp1018.exe
[2010/06/20 21:28:45 | 000,106,496 | R--- | C] () -- C:\Windows\System32\vshp1018.dll
[2010/05/26 21:17:15 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
[2010/05/26 21:17:15 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2010/05/26 21:17:15 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2010/05/26 21:17:15 | 000,077,312 | ---- | C] () -- C:\Windows\MBR.exe
[2010/05/26 21:17:15 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2010/05/07 08:16:29 | 000,001,456 | ---- | C] () -- C:\Users\Ali\AppData\Local\Adobe Save for Web 12.0 Prefs
[2010/04/02 10:57:00 | 000,095,994 | ---- | C] () -- C:\Windows\System32\nvcoproc.bin
[2010/03/21 20:33:48 | 000,000,389 | ---- | C] () -- C:\Windows\XMailer.INI
[2010/03/08 13:47:49 | 000,000,246 | ---- | C] () -- C:\Windows\pwc.INI

========== LOP Check ==========

[2010/04/26 18:31:21 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\2K Sports
[2011/10/10 17:36:00 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\abgx360
[2010/02/17 22:57:37 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Audacity
[2011/01/17 20:46:13 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2012/02/26 11:39:07 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\DAEMON Tools Lite
[2011/07/21 12:35:04 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Free Download Manager
[2010/12/13 19:13:29 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\GameRanger
[2011/02/12 14:43:58 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Helios
[2012/02/27 21:35:40 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\ICQ
[2011/10/12 19:32:54 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\ImgBurn
[2010/07/10 17:58:22 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\LangSoft
[2010/01/15 10:10:13 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Leadertech
[2012/01/25 11:35:55 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\MAXON
[2009/11/28 17:43:45 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Nikon
[2011/11/12 20:09:33 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Notepad++
[2010/03/22 18:19:46 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\OpenOffice.org
[2009/12/25 13:38:28 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Opera
[2010/06/18 16:29:02 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Publish Providers
[2010/05/06 20:43:47 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\ResourceCentral.E6E1B28A311BC518DB6C6883EA3757FDE0E90ADC.1
[2010/06/18 16:28:58 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Sony
[2010/10/08 17:05:50 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Sports Interactive
[2010/11/24 11:33:37 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2010/11/06 22:02:03 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Summer Athletics 2009
[2011/01/19 20:16:31 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\TeamViewer
[2011/04/03 16:33:14 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Thunderbird
[2010/04/26 19:10:44 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Ubisoft
[2009/12/25 16:15:19 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\URSoft
[2011/02/07 11:12:08 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\ytbSoft
[2010/09/08 07:52:26 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Z-Software
[2012/02/27 17:30:52 | 000,000,292 | ---- | M] () -- C:\Windows\Tasks\AutoKMS.job
[2011/12/02 13:21:32 | 000,032,606 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Custom Scans ==========


< >

< >


< MD5 for: ATAPI.SYS >
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\ERDNT\cache\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_6f03dc4684b4aef0\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_f64b9c35a3a5be81\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.20776_none_dda3f0f09bf1f8b2\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2009/07/14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\System32\autochk.exe
[2009/07/14 02:14:12 | 000,668,160 | ---- | M] (Microsoft Corporation) MD5=41E4C8EBA464E7D6A5BA5E8827732AEB -- C:\Windows\winsxs\x86_microsoft-windows-autochk_31bf3856ad364e35_6.1.7600.16385_none_e1ca436d2314b860\autochk.exe

< MD5 for: CDROM.SYS >
[2009/07/21 07:32:54 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=656D1EC977E3C5316A62DBBE52CB9663 -- C:\Windows\System32\drivers\cdrom.sys
[2009/07/21 07:32:54 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=656D1EC977E3C5316A62DBBE52CB9663 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_70196a0a47ff6d0e\cdrom.sys
[2009/07/21 07:32:54 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=656D1EC977E3C5316A62DBBE52CB9663 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7600.16397_none_5f76e2ae05214e5a\cdrom.sys
[2009/07/21 07:20:49 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=A26D70218A51D85E6AA74CA1DA8EFBE2 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7600.20493_none_5ffc7e511e4288c8\cdrom.sys
[2009/07/14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_db87d184bc84f910\cdrom.sys
[2009/07/14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_5f7fb206051affbb\cdrom.sys

< MD5 for: EXPLORER.EXE >
[2012/02/26 13:38:33 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2009/07/14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\ERDNT\cache\explorer.exe
[2009/07/14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2012/02/26 13:38:34 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=255CF508D7CFB10E0794D6AC93280BD8 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_525b5180f3f95373\explorer.exe
[2012/02/26 13:38:34 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\explorer.exe
[2012/02/26 13:38:34 | 002,614,784 | ---- | M] (Microsoft Corporation) MD5=2AF58D15EDC06EC6FDACCE1F19482BBF -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_51a3a583dafd0cef\explorer.exe
[2012/02/26 13:38:34 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe
[2009/08/03 06:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\SoftwareDistribution\Download\c1f17c80c3b916714e96cf873d95fd6d\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe
[2009/08/03 06:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\SoftwareDistribution\Download\c1f17c80c3b916714e96cf873d95fd6d\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe

< MD5 for: HAL.DLL >
[2012/02/26 15:09:18 | 000,194,416 | ---- | M] (Microsoft Corporation) MD5=1E5B1D91DAE34315C747FF9855AD2C7E -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7601.21855_none_ad8fbdc0d1297393\hal.dll
[2012/02/26 15:09:18 | 000,194,416 | ---- | M] (Microsoft Corporation) MD5=5C9149D5C7DAA35C2858546F36205D9C -- C:\Windows\System32\hal.dll
[2012/02/26 15:09:18 | 000,194,416 | ---- | M] (Microsoft Corporation) MD5=5C9149D5C7DAA35C2858546F36205D9C -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.21085_none_ab88c732d41b9195\hal.dll
[2009/07/21 11:10:58 | 000,194,648 | ---- | M] (Microsoft Corporation) MD5=6F833EE5199FD74456CAF6CD36F86A49 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.20493_none_ab7c1512d42555d3\hal.dll
[2009/07/21 11:15:33 | 000,194,632 | ---- | M] (Microsoft Corporation) MD5=7AB01A67D710FAC0AAA7AA46C21B4138 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16397_none_aaf6796fbb041b65\hal.dll
[2009/07/14 02:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) MD5=9A557EAE64ABAB3BA67A9BB035D24CB9 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_aaff48c7bafdccc6\hal.dll

< MD5 for: SCECLI.DLL >
[2009/07/14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\ERDNT\cache\scecli.dll
[2009/07/14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\System32\scecli.dll
[2009/07/14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll

< MD5 for: SVCHOST.EXE >
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\ERDNT\cache\svchost.exe
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
[2012/02/26 13:36:20 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=8C81307975B3EA558946BA96D63AF904 -- C:\Windows\System32\svchost.exe
[2012/02/26 13:36:20 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=8C81307975B3EA558946BA96D63AF904 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16770_none_b59785d6669dad4e\svchost.exe
[2012/02/26 13:36:20 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=90494B53228E2E4D5C8AFB2218BA4F6C -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.20912_none_b66404a37f88d547\svchost.exe
[2012/02/26 13:36:20 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=A91A288C91F9D9F1CFA4FAA9893C4D55 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7601.21671_none_b8087ff17ce0d25b\svchost.exe
[2012/02/26 13:36:20 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=ECDB182F885292145826C58252B53000 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7601.17568_none_b790b51863b4c801\svchost.exe

< MD5 for: TCPIP.SYS >
[2009/07/14 02:19:10 | 001,285,712 | ---- | M] (Microsoft Corporation) MD5=2CC3D75488ABD3EC628BBB9A4FC84EFC -- C:\Windows\ERDNT\cache\tcpip.sys
[2009/07/14 02:19:10 | 001,285,712 | ---- | M] (Microsoft Corporation) MD5=2CC3D75488ABD3EC628BBB9A4FC84EFC -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_b2f46875c7b9d667\tcpip.sys
[2009/07/24 10:29:34 | 001,285,208 | ---- | M] (Microsoft Corporation) MD5=45FF95E8ED2171DD27EACD75A480957B -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20496_none_b374359ee0deab79\tcpip.sys
[2012/02/26 13:25:16 | 001,299,328 | ---- | M] (Microsoft Corporation) MD5=4AA93F6ACA15ABCDA686FE3D8A008298 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21645_none_b58fa98edddd66f5\tcpip.sys
[2012/02/26 13:22:56 | 001,301,360 | ---- | M] (Microsoft Corporation) MD5=614D656559F0FEDD3F4E38EAF157F37E -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21027_none_b3c0c6fce0a5263e\tcpip.sys
[2012/02/26 13:49:05 | 001,301,376 | ---- | M] (Microsoft Corporation) MD5=7EC30C9F6D376EC87DFD099AE191D41F -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20971_none_b384dd82e0d2e6a7\tcpip.sys
[2009/07/24 10:18:15 | 001,285,208 | ---- | M] (Microsoft Corporation) MD5=A1EDFAE89BC8956C925B99950E3558AD -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16400_none_b345e849c77d7553\tcpip.sys
[2012/02/26 13:59:27 | 001,303,920 | ---- | M] (Microsoft Corporation) MD5=CE197C5A444941CE0BD6A4713C70948D -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21855_none_b584dd6edde57d34\tcpip.sys
[2012/02/26 13:22:57 | 001,303,920 | ---- | M] (Microsoft Corporation) MD5=DEB39B9561044164A1F40449CE95F361 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21789_none_b5686cecddfa393c\tcpip.sys
[2012/02/26 13:25:12 | 001,298,304 | ---- | M] (Microsoft Corporation) MD5=E2092C63707B37F85296896C253F1A35 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20884_none_b37d0c8ee0d85176\tcpip.sys
[2012/02/26 13:59:26 | 001,302,384 | ---- | M] (Microsoft Corporation) MD5=E3982A867BB2182C68B4E1DECC205F45 -- C:\Windows\System32\drivers\tcpip.sys
[2012/02/26 13:59:26 | 001,302,384 | ---- | M] (Microsoft Corporation) MD5=E3982A867BB2182C68B4E1DECC205F45 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.21085_none_b37de6e0e0d79b36\tcpip.sys
[2012/02/26 13:49:07 | 001,303,424 | ---- | M] (Microsoft Corporation) MD5=F99E3D57EE87286AE9BFAFC157F53616 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7601.21732_none_b5977a82ddd7fc26\tcpip.sys

< MD5 for: USERINIT.EXE >
[2009/07/14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\ERDNT\cache\userinit.exe
[2009/07/14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\System32\userinit.exe
[2009/07/14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe

< MD5 for: WINLOGON.EXE >
[2012/02/26 14:39:36 | 000,287,232 | ---- | M] (Microsoft Corporation) MD5=7295110E1BF93885D29480D29D967E0F -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.21820_none_72453a854c5ce5ad\winlogon.exe
[2012/02/26 14:39:36 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=7AE48005690C7F59C9E19BF0E0DC6D83 -- C:\Windows\System32\winlogon.exe
[2012/02/26 14:39:36 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=7AE48005690C7F59C9E19BF0E0DC6D83 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.21055_none_704345694f4a8262\winlogon.exe
[2009/07/14 02:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\ERDNT\cache\winlogon.exe
[2009/07/14 02:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe

< >

< %systemroot%*.* /U /s >
[2 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
[12 C:\Windows\Installer\*.tmp files -> C:\Windows\Installer\*.tmp -> ]
[1 C:\Windows\Installer\{FD8E178D-8B4E-42DA-B434-EFF270329B1C}\*.tmp files -> C:\Windows\Installer\{FD8E178D-8B4E-42DA-B434-EFF270329B1C}\*.tmp -> ]
[2 C:\Windows\SoftwareDistribution\AuthCabs\7971f918-a847-4430-9279-4a52d1efe18d\*.tmp files -> C:\Windows\SoftwareDistribution\AuthCabs\7971f918-a847-4430-9279-4a52d1efe18d\*.tmp -> ]
[5 C:\Windows\Temp\*.tmp files -> C:\Windows\Temp\*.tmp -> ]
[1 C:\Windows\twain_32\*.tmp files -> C:\Windows\twain_32\*.tmp -> ]

< %SYSTEMDRIVE%\*.exe >

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2010/04/26 18:31:21 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\2K Sports
[2011/10/10 17:36:00 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\abgx360
[2012/02/26 15:44:10 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Adobe
[2010/11/24 11:33:38 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Adobe Mini Bridge CS5
[2009/11/25 19:48:35 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Ahead
[2012/01/05 15:42:31 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Apple Computer
[2010/02/24 18:11:09 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\ArcSoft
[2010/02/17 22:57:37 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Audacity
[2011/01/17 20:46:13 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2012/02/26 11:39:07 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\DAEMON Tools Lite
[2011/07/21 12:35:04 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Free Download Manager
[2010/12/13 19:13:29 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\GameRanger
[2010/12/04 20:39:45 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Hamachi
[2011/02/12 14:43:58 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Helios
[2009/12/16 19:35:09 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\HP
[2012/02/27 21:35:40 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\ICQ
[2009/11/18 16:19:30 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Identities
[2011/10/12 19:32:54 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\ImgBurn
[2010/07/10 17:58:22 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\LangSoft
[2010/01/15 10:10:13 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Leadertech
[2009/11/18 16:44:22 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Macromedia
[2012/01/25 11:35:55 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\MAXON
[2009/07/14 08:50:20 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Media Center Programs
[2012/02/26 11:39:07 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Media Player Classic
[2012/02/26 15:44:10 | 000,000,000 | --SD | M] -- C:\Users\Ali\AppData\Roaming\Microsoft
[2012/01/22 20:15:01 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Mozilla
[2009/11/28 17:43:45 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Nikon
[2011/11/12 20:09:33 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Notepad++
[2010/08/17 19:11:15 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\NVIDIA
[2010/03/22 18:19:46 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\OpenOffice.org
[2009/12/25 13:38:28 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Opera
[2009/11/18 22:09:44 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\PSpad
[2010/06/18 16:29:02 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Publish Providers
[2010/01/29 16:57:57 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Real
[2010/05/06 20:43:47 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\ResourceCentral.E6E1B28A311BC518DB6C6883EA3757FDE0E90ADC.1
[2012/02/27 22:38:09 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Skype
[2012/02/27 21:38:17 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\skypePM
[2010/06/18 16:28:58 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Sony
[2010/10/08 17:05:50 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Sports Interactive
[2010/11/24 11:33:37 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2010/11/06 22:02:03 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Summer Athletics 2009
[2011/01/19 20:16:31 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\TeamViewer
[2011/04/03 16:33:14 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Thunderbird
[2010/04/26 19:10:44 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Ubisoft
[2009/12/25 16:15:19 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\URSoft
[2012/02/26 18:07:16 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Winamp
[2009/11/18 18:04:03 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\WinRAR
[2011/02/07 11:12:08 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\ytbSoft
[2010/09/08 07:52:26 | 000,000,000 | ---D | M] -- C:\Users\Ali\AppData\Roaming\Z-Software

< %APPDATA%\*.exe /s >
[2010/05/06 20:08:52 | 000,038,784 | ---- | M] () -- C:\Users\Ali\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
[2010/02/27 19:09:36 | 001,923,880 | ---- | M] (Adobe Systems Incorporated) -- C:\Users\Ali\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\fpupdatepl\fpupdatepl.exe
[2010/05/06 20:11:55 | 000,010,134 | R--- | M] () -- C:\Users\Ali\AppData\Roaming\Microsoft\Installer\{024521CF-C07E-4F8E-8481-0D75695E03AF}\ARPPRODUCTICON.exe
[2009/11/28 17:35:32 | 000,335,872 | R--- | M] (InstallShield Software Corp.) -- C:\Users\Ali\AppData\Roaming\Microsoft\Installer\{237CD223-1B9D-47E8-A76C-E478B83CCEA2}\ARPPRODUCTICON.exe
[2010/03/22 18:18:52 | 007,424,000 | R--- | M] (OpenOffice.org) -- C:\Users\Ali\AppData\Roaming\Microsoft\Installer\{B0BDAABA-A815-4CF3-843C-405B017EF7DF}\soffice.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job >
[2012/02/27 17:30:52 | 000,000,292 | ---- | M] () -- C:\Windows\Tasks\AutoKMS.job
[2012/02/27 17:29:42 | 000,000,914 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[2012/02/27 21:51:00 | 000,000,918 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[2012/02/26 16:51:01 | 000,000,886 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2791954077-2039642415-460783259-1000Core.job
[2012/02/27 21:51:00 | 000,000,938 | ---- | M] () -- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2791954077-2039642415-460783259-1000UA.job

< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2009/11/18 17:02:14 | 000,691,696 | ---- | M] () Unable to obtain MD5 -- C:\Windows\system32\drivers\sptd.sys

< %systemroot%\System32\config\*.sav >

< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\system32\drivers\*.sys /3 >
[2012/02/26 14:22:18 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\1394ohci.sys
[2012/02/26 14:23:31 | 000,274,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\acpi.sys
[2012/02/26 14:11:31 | 000,338,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\afd.sys
[2012/02/26 15:18:52 | 000,080,256 | ---- | M] (Advanced Micro Devices) -- C:\Windows\system32\drivers\amdsata.sys
[2012/02/26 15:18:52 | 000,022,400 | ---- | M] (Advanced Micro Devices) -- C:\Windows\system32\drivers\amdxata.sys
[2012/02/26 13:47:20 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\appid.sys
[2012/02/26 13:36:43 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\bowser.sys
[2012/02/26 13:23:48 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\bridge.sys
[2012/02/26 13:48:31 | 000,393,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\bthport.sys
[2012/02/26 13:48:30 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\BTHUSB.SYS
[2012/02/26 14:17:02 | 000,369,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\cng.sys
[2012/02/26 13:57:38 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\dfsc.sys
[2012/02/26 13:52:09 | 000,026,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\Diskdump.sys
[2012/02/26 14:15:21 | 000,729,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\dxgkrnl.sys
[2012/02/26 14:15:21 | 000,218,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\dxgmms1.sys
[2012/02/26 14:08:04 | 000,198,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\fltMgr.sys
[2012/02/26 13:59:26 | 000,187,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\FWPKCLNT.SYS
[2012/02/26 13:36:01 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\hidbth.sys
[2012/02/26 14:42:15 | 000,514,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\http.sys
[2012/02/26 15:18:51 | 000,332,160 | ---- | M] (Intel Corporation) -- C:\Windows\system32\drivers\iaStorV.sys
[2012/02/26 14:55:42 | 000,065,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\IPMIDrv.sys
[2012/02/26 14:43:34 | 000,028,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\kbdhid.sys
[2012/02/26 14:17:03 | 000,067,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\ksecdd.sys
[2012/02/26 14:17:01 | 000,134,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\ksecpkg.sys
[2012/02/26 14:41:35 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\modem.sys
[2012/02/26 14:31:04 | 000,078,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\mountmgr.sys
[2012/02/26 14:19:22 | 000,132,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\mpio.sys
[2012/02/26 14:54:12 | 000,116,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\mrxdav.sys
[2012/02/26 14:04:02 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\mrxsmb.sys
[2012/02/26 14:27:01 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\mrxsmb10.sys
[2012/02/26 14:40:15 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\mrxsmb20.sys
[2012/02/26 13:23:11 | 000,116,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\msdsm.sys
[2012/02/26 13:20:37 | 000,233,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\msiscsi.sys
[2012/02/26 14:52:44 | 000,710,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\ndis.sys
[2012/02/26 15:16:50 | 000,046,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\ndisuio.sys
[2012/02/26 13:40:04 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\ndproxy.sys
[2012/02/26 13:46:45 | 001,210,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\ntfs.sys
[2012/02/26 15:18:51 | 000,117,120 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvraid.sys
[2012/02/26 15:18:51 | 000,143,744 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvstor.sys
[2012/02/26 14:19:23 | 000,056,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\partmgr.sys
[2012/02/26 14:23:31 | 000,153,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\pci.sys
[2012/02/26 13:31:47 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\raspppoe.sys
[2012/02/26 14:51:18 | 000,241,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\rdbss.sys
[2012/02/26 13:21:58 | 000,133,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\rdpdr.sys
[2012/02/26 14:01:26 | 000,173,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\rdyboost.sys
[2012/02/26 13:25:56 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\RNDISMP.sys
[2012/02/26 13:21:46 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\scfilter.sys
[2012/02/26 14:15:54 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\sdbus.sys
[2012/02/26 14:15:54 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\sffdisk.sys
[2012/02/26 14:15:54 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\sffp_mmc.sys
[2012/02/26 14:15:54 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\sffp_sd.sys
[2012/02/26 13:50:02 | 000,311,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\srv.sys
[2012/02/26 14:40:54 | 000,312,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\srv2.sys
[2012/02/26 13:50:02 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\srvnet.sys
[2012/02/26 15:12:30 | 000,149,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\storport.sys
[2012/02/26 13:59:26 | 001,302,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\tcpip.sys
[2012/02/26 14:18:48 | 000,108,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\tunnel.sys
[2012/02/26 14:30:29 | 000,246,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\udfs.sys
[2012/02/26 14:50:34 | 000,076,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\usbccgp.sys
[2012/02/26 14:50:34 | 000,005,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\usbd.sys
[2012/02/26 14:50:33 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\usbehci.sys
[2012/02/26 14:50:34 | 000,258,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\usbhub.sys
[2012/02/26 14:50:33 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\usbohci.sys
[2012/02/26 14:50:33 | 000,284,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\usbport.sys
[2012/02/26 13:44:12 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\usbrpm.sys
[2012/02/26 13:32:19 | 000,075,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\USBSTOR.SYS
[2012/02/26 14:50:33 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\usbuhci.sys
[2012/02/26 13:43:03 | 000,146,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\usbvideo.sys
[2012/02/26 14:29:17 | 000,160,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\vhdmp.sys
[2012/02/26 14:10:01 | 000,296,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\volmgrx.sys
[2012/02/26 13:32:36 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\vwififlt.sys
[2012/02/26 13:32:36 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\vwifimp.sys
[2012/02/26 13:40:04 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\wanarp.sys
[2012/02/26 15:15:55 | 000,016,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\wfplwf.sys

< %systemroot%\system32\*.* /3 >
[2012/02/27 17:34:31 | 000,016,624 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/02/27 17:34:31 | 000,016,624 | -H-- | M] () -- C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/02/26 14:29:53 | 000,131,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\aaclient.dll
[2012/02/26 13:24:28 | 000,309,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\actxprxy.dll
[2012/02/26 13:42:06 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\adprovider.dll
[2012/02/26 14:36:19 | 000,640,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\advapi32.dll
[2012/02/26 14:35:12 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
[2012/02/26 14:35:11 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
[2012/02/26 14:35:10 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
[2012/02/26 14:35:10 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
[2012/02/26 14:35:10 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
[2012/02/26 14:35:11 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
[2012/02/26 14:35:11 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
[2012/02/26 14:35:13 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
[2012/02/26 14:35:11 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
[2012/02/26 14:35:11 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
[2012/02/26 14:35:13 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
[2012/02/26 14:35:12 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
[2012/02/26 14:35:12 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
[2012/02/26 14:35:11 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
[2012/02/26 14:35:11 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
[2012/02/26 14:35:13 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
[2012/02/26 14:35:12 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
[2012/02/26 14:35:10 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
[2012/02/26 14:35:12 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
[2012/02/26 14:35:10 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012/02/26 14:35:11 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
[2012/02/26 14:35:10 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
[2012/02/26 14:35:13 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
[2012/02/26 14:35:12 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
[2012/02/26 14:35:10 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
[2012/02/26 14:35:12 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
[2012/02/26 14:35:10 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
[2012/02/26 13:47:20 | 000,097,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\appidpolicyconverter.exe
[2012/02/26 13:47:20 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\appidsvc.dll
[2012/02/26 13:51:44 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\appmgmts.dll
[2012/02/26 14:00:54 | 000,294,912 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\system32\atmfd.dll
[2012/02/26 14:00:54 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\system32\atmlib.dll
[2012/02/26 13:26:11 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\auditcse.dll
[2012/02/26 14:02:25 | 001,792,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\authui.dll
[2012/02/26 13:35:43 | 000,088,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\AxInstSv.dll
[2012/02/26 13:22:33 | 000,761,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\azroles.dll
[2012/02/26 13:22:33 | 000,028,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\AzSqlExt.dll
[2012/02/26 14:09:32 | 000,147,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\basecsp.dll
[2012/02/26 15:15:55 | 000,495,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\BFE.DLL
[2012/02/26 13:56:46 | 000,064,000 | ---- | M] () -- C:\Windows\system32\BWContextHandler.dll
[2012/02/26 13:42:06 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\capiprovider.dll
[2012/02/26 13:53:25 | 000,449,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\catsrv.dll
[2012/02/26 14:15:20 | 000,107,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\cdd.dll
[2012/02/26 14:11:01 | 000,335,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\certcli.dll
[2012/02/26 14:53:29 | 001,322,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\CertEnroll.dll
[2012/02/26 13:28:00 | 000,890,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\certutil.exe
[2012/02/26 13:53:25 | 000,522,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\clbcatq.dll
[2012/02/26 13:30:55 | 000,231,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\clusapi.dll
[2012/02/26 13:42:07 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\cngprovider.dll
[2012/02/26 13:53:25 | 000,063,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\colbact.dll
[2012/02/26 14:35:17 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\conhost.exe
[2012/02/26 13:26:47 | 000,642,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\CPFilters.dll
[2012/02/26 14:33:01 | 001,152,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\crypt32.dll
[2012/02/26 13:54:19 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\cryptdll.dll
[2012/02/26 14:49:49 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\csrsrv.dll
[2012/02/26 14:20:03 | 000,739,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\d2d1.dll
[2012/02/26 14:20:02 | 001,170,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\d3d10warp.dll
[2012/02/26 14:20:02 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\d3d10_1.dll
[2012/02/26 14:20:02 | 000,218,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\d3d10_1core.dll
[2012/02/26 13:22:09 | 000,080,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\davclnt.dll
[2012/02/26 13:22:57 | 000,254,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\dhcpcore.dll
[2012/02/26 13:42:07 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\dimsjob.dll
[2012/02/26 13:42:06 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\dimsroam.dll
[2012/02/26 13:41:40 | 000,270,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\dnsapi.dll
[2012/02/26 13:41:40 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\dnscacheugc.exe
[2012/02/26 13:41:40 | 000,132,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\dnsrslvr.dll
[2012/02/26 13:29:20 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\dot3api.dll
[2012/02/26 13:29:20 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\dot3dlg.dll
[2012/02/26 13:27:32 | 000,074,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\dot3gpclnt.dll
[2012/02/26 13:29:20 | 000,115,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\dot3msm.dll
[2012/02/26 13:29:20 | 000,215,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\dot3svc.dll
[2012/02/26 13:42:07 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\dpapiprovider.dll
[2012/02/26 13:34:28 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\dtsh.dll
[2012/02/26 13:24:29 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\dui70.dll
[2012/02/26 14:20:03 | 001,077,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DWrite.dll
[2012/02/26 14:46:22 | 000,534,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\EncDec.dll
[2012/02/26 14:06:30 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\esent.dll
[2012/02/26 13:21:36 | 000,488,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\evr.dll
[2012/02/26 13:24:28 | 001,501,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ExplorerFrame.dll
[2012/02/26 13:28:16 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\fdBth.dll
[2012/02/26 15:02:17 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\fdWNet.dll
[2012/02/26 15:41:09 | 003,878,448 | ---- | M] () -- C:\Windows\system32\FNTCACHE.DAT
[2012/02/26 14:21:11 | 000,807,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\FntCache.dll
[2012/02/26 14:00:54 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\fontsub.dll
[2012/02/26 15:18:56 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\fsutil.exe
[2012/02/26 13:32:03 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ftp.exe
[2012/02/26 13:22:20 | 000,271,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\fveapi.dll
[2012/02/26 13:22:20 | 000,104,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\fveapibase.dll
[2012/02/26 13:22:21 | 000,175,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\fvecpl.dll
[2012/02/26 13:22:21 | 000,543,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\fvewiz.dll
[2012/02/26 15:15:56 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\FWPUCLNT.DLL
[2012/02/26 13:49:32 | 000,473,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\FXSCOMEX.dll
[2012/02/26 13:29:05 | 000,191,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\FXSCOVER.exe
[2012/02/26 13:28:30 | 000,458,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\FXSXP32.dll
[2012/02/26 13:24:11 | 000,130,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\glu32.dll
[2012/02/26 13:51:20 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\gpprnext.dll
[2012/02/26 15:09:18 | 000,194,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\hal.dll
[2012/02/26 15:09:17 | 000,137,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\halacpi.dll
[2012/02/26 15:09:17 | 000,194,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\halmacpi.dll
[2012/02/26 14:21:44 | 000,157,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\iasnap.dll
[2012/02/26 13:19:31 | 009,705,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ieframe.dll
[2012/02/26 13:20:08 | 001,792,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\iertutil.dll
[2012/02/26 13:19:31 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ieui.dll
[2012/02/26 13:34:11 | 000,148,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ifsutil.dll
[2012/02/26 15:15:56 | 000,670,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\IKEEXT.DLL
[2012/02/26 14:00:25 | 000,740,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\inetcomm.dll
[2012/02/26 13:20:09 | 001,427,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\inetcpl.cpl
[2012/02/26 14:36:59 | 000,125,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\inetpp.dll
[2012/02/26 13:44:36 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\IPHLPAPI.DLL
[2012/02/26 14:01:54 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\iprtrmgr.dll
[2012/02/26 13:20:06 | 000,716,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\jscript.dll
[2012/02/26 13:20:07 | 001,798,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\jscript9.dll
[2012/02/26 13:19:31 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\jsproxy.dll
[2012/02/26 13:33:23 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\KBDINASA.DLL
[2012/02/26 13:33:22 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\KBDINBE1.DLL
[2012/02/26 13:33:22 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\KBDINBE2.DLL
[2012/02/26 13:33:24 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\KBDINBEN.DLL
[2012/02/26 13:33:25 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\KBDINDEV.DLL
[2012/02/26 13:33:25 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\KBDINEN.DLL
[2012/02/26 13:33:24 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\KBDINGUJ.DLL
[2012/02/26 13:33:22 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\KBDINHIN.DLL
[2012/02/26 13:33:23 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\KBDINKAN.DLL
[2012/02/26 13:33:23 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\KBDINMAL.DLL
[2012/02/26 13:33:22 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\KBDINMAR.DLL
[2012/02/26 13:33:24 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\KBDINORI.DLL
[2012/02/26 13:33:24 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\KBDINPUN.DLL
[2012/02/26 13:33:24 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\KBDINTAM.DLL
[2012/02/26 13:33:23 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\KBDINTEL.DLL
[2012/02/26 14:06:00 | 000,541,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\kerberos.dll
[2012/02/26 14:35:18 | 000,868,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\kernel32.dll
[2012/02/26 14:35:17 | 000,290,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\KernelBase.dll
[2012/02/26 14:26:21 | 000,419,952 | ---- | M] () -- C:\Windows\system32\locale.nls
[2012/02/26 14:48:26 | 000,769,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\localspl.dll
[2012/02/26 13:45:59 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\logman.exe
[2012/02/26 14:17:02 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\lsasrv.dll
[2012/02/26 14:17:02 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\lsass.exe
[2012/02/26 14:35:19 | 000,261,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\lsm.exe
[2012/02/26 13:30:38 | 000,520,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mcupdate_GenuineIntel.dll
[2012/02/26 14:12:39 | 003,181,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mf.dll
[2012/02/26 14:16:26 | 001,137,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mfc42.dll
[2012/02/26 14:16:26 | 001,164,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mfc42u.dll
[2012/02/26 13:46:24 | 000,196,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mfreadwrite.dll
[2012/02/26 14:12:08 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\Mpeg2Data.ax
[2012/02/26 13:26:47 | 000,199,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mpg2splt.ax
[2012/02/26 13:27:16 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msasn1.dll
[2012/02/26 14:38:18 | 000,828,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msctf.dll
[2012/02/26 14:13:47 | 000,579,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msdtcprx.dll
[2012/02/26 14:13:46 | 001,068,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msdtctm.dll
[2012/02/26 14:12:07 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\MSDvbNP.ax
[2012/02/26 14:37:39 | 000,592,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msftedit.dll
[2012/02/26 13:20:11 | 012,279,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mshtml.dll
[2012/02/26 13:20:11 | 002,382,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mshtml.tlb
[2012/02/26 13:20:11 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mshtmled.dll
[2012/02/26 14:47:04 | 002,341,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msi.dll
[2012/02/26 14:31:04 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msmmsp.dll
[2012/02/26 13:41:16 | 002,134,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msmpeg2vdec.dll
[2012/02/26 14:12:08 | 000,204,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\MSNP.ax
[2012/02/26 14:28:43 | 000,537,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msra.exe
[2012/02/26 13:55:50 | 000,059,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msscntrs.dll
[2012/02/26 13:55:50 | 000,337,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mssph.dll
[2012/02/26 13:55:49 | 000,197,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mssphtb.dll
[2012/02/26 13:55:49 | 001,401,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mssrch.dll
[2012/02/26 13:55:49 | 000,666,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mssvp.dll
[2012/02/26 14:29:53 | 001,037,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mstsc.exe
[2012/02/26 14:29:53 | 002,706,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mstscax.dll
[2012/02/26 14:08:34 | 001,426,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msvbvm60.dll
[2012/02/26 14:58:29 | 000,690,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msvcrt.dll
[2012/02/26 13:37:50 | 001,236,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\msxml3.dll
[2012/02/26 14:13:46 | 000,322,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\mtxclu.dll
[2012/02/26 13:56:20 | 001,073,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\Narrator.exe
[2012/02/26 13:35:19 | 000,219,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ncrypt.dll
[2012/02/26 14:52:01 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ncsi.dll
[2012/02/26 13:25:13 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\netevent.dll
[2012/02/26 13:49:06 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\netiohlp.dll
[2012/02/26 13:59:56 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\netiougc.exe
[2012/02/26 14:17:43 | 000,564,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\netlogon.dll
[2012/02/26 13:31:11 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\networkitemfactory.dll
[2012/02/26 13:31:12 | 002,130,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\networkmap.dll
[2012/02/26 14:52:01 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\nlaapi.dll
[2012/02/26 14:52:00 | 000,242,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\nlasvc.dll
[2012/02/26 15:15:56 | 000,657,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\nshwfp.dll
[2012/02/26 15:10:51 | 001,288,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ntdll.dll
[2012/02/26 14:56:27 | 003,970,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ntkrnlpa.exe
[2012/02/26 14:56:26 | 003,915,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ntoskrnl.exe
[2012/02/26 15:05:26 | 000,442,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ntshrui.dll
[2012/02/26 14:03:02 | 000,122,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\odbccp32.dll
[2012/02/26 14:03:03 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\odbccr32.dll
[2012/02/26 14:03:01 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\odbccu32.dll
[2012/02/26 14:03:04 | 000,319,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\odbcjt32.dll
[2012/02/26 14:03:02 | 000,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\odbctrac.dll
[2012/02/26 13:52:57 | 001,413,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ole32.dll
[2012/02/26 14:05:30 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\oleacc.dll
[2012/02/26 14:05:29 | 000,571,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\oleaut32.dll
[2012/02/26 15:01:32 | 000,107,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\oleprn.dll
[2012/02/26 13:42:40 | 000,217,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\P2P.dll
[2012/02/26 13:42:39 | 000,412,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\p2pcollab.dll
[2012/02/26 13:42:39 | 000,334,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\P2PGraph.dll
[2012/02/26 13:42:40 | 000,137,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\p2pnetsh.dll
[2012/02/26 13:42:38 | 000,327,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\p2psvc.dll
[2012/02/26 14:14:18 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\packager.dll
[2012/02/26 14:13:11 | 000,237,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\pdh.dll
[2012/02/26 15:03:49 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\pdhui.dll
[2012/02/27 17:33:35 | 000,125,450 | ---- | M] () -- C:\Windows\system32\perfc009.dat

Re: Preventivna

Napsal: 27 úno 2012 23:03
od owen26
[2012/02/26 13:23:25 | 000,601,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\PerfCenterCPL.dll
[2012/02/27 17:33:35 | 000,663,320 | ---- | M] () -- C:\Windows\system32\perfh009.dat
[2012/02/27 17:33:35 | 000,795,438 | ---- | M] () -- C:\Windows\system32\PerfStringBackup.INI
[2012/02/26 14:13:11 | 001,508,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\pla.dll
[2012/02/26 13:42:40 | 000,269,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\pnrpsvc.dll
[2012/02/26 13:33:53 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\powrprof.dll
[2012/02/26 13:35:03 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\prevhost.exe
[2012/02/26 15:00:48 | 000,066,048 | ---- | M] () -- C:\Windows\system32\PrintBrmUi.exe
[2012/02/26 14:44:14 | 000,931,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\printui.dll
[2012/02/26 14:22:53 | 000,165,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\profsvc.dll
[2012/02/26 14:12:07 | 000,465,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\psisdecd.dll
[2012/02/26 14:12:08 | 000,075,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\psisrndr.ax
[2012/02/26 14:54:59 | 000,514,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\qdvd.dll
[2012/02/26 14:54:59 | 001,328,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\quartz.dll
[2012/02/26 14:28:43 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\racpldlg.dll
[2012/02/26 15:06:13 | 000,325,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\rasapi32.dll
[2012/02/26 15:06:13 | 000,772,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\rasdlg.dll
[2012/02/26 15:06:12 | 000,386,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\rasplap.dll
[2012/02/26 13:58:04 | 000,372,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\rastls.dll
[2012/02/26 13:45:31 | 000,827,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\rdpcore.dll
[2012/02/26 14:25:13 | 000,160,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\rdpinit.exe
[2012/02/26 14:25:13 | 000,258,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\rdpshell.exe
[2012/02/26 13:45:30 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\rdpsign.exe
[2012/02/26 14:24:06 | 000,247,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\ReAgent.dll
[2012/02/26 14:04:59 | 000,113,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\regsvc.dll
[2012/02/26 14:45:40 | 000,652,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\rpcrt4.dll
[2012/02/26 13:21:00 | 000,376,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\rpcss.dll
[2012/02/26 15:06:59 | 000,553,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\samsrv.dll
[2012/02/26 13:26:46 | 000,850,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\sbe.dll
[2012/02/26 13:21:46 | 000,133,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\SCardSvr.dll
[2012/02/26 13:21:10 | 000,307,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\scesrv.dll
[2012/02/26 14:17:01 | 000,224,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\schannel.dll
[2012/02/26 14:09:31 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\scksp.dll
[2012/02/26 13:55:50 | 000,086,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\SearchFilterHost.exe
[2012/02/26 13:55:50 | 000,428,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\SearchIndexer.exe
[2012/02/26 13:55:49 | 000,164,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\SearchProtocolHost.exe
[2012/02/26 14:36:18 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\sechost.dll
[2012/02/26 14:17:02 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\secur32.dll
[2012/02/26 14:09:03 | 000,099,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\SessEnv.dll
[2012/02/26 13:38:54 | 000,270,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\sethc.exe
[2012/02/26 14:31:43 | 012,871,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\shell32.dll
[2012/02/26 15:08:31 | 000,350,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\shlwapi.dll
[2012/02/26 13:21:24 | 000,329,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\shsvcs.dll
[2012/02/26 13:48:06 | 000,316,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\spoolsv.exe
[2012/02/26 13:22:44 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\spp.dll
[2012/02/26 14:18:16 | 000,168,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\srvsvc.dll
[2012/02/26 14:17:03 | 000,100,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\sspicli.dll
[2012/02/26 14:17:02 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\sspisrv.dll
[2012/02/26 13:23:35 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\stobject.dll
[2012/02/26 13:36:20 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\svchost.exe
[2012/02/26 14:01:25 | 001,169,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\sysmain.dll
[2012/02/26 15:03:48 | 000,389,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\sysmon.ocx
[2012/02/26 14:00:54 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\t2embed.dll
[2012/02/26 14:44:56 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\tabcal.exe
[2012/02/26 13:40:29 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\TabSvc.dll
[2012/02/26 13:59:56 | 000,181,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\tcpipcfg.dll
[2012/02/26 15:17:44 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\tcpmib.dll
[2012/02/26 15:17:45 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\tcpmonui.dll
[2012/02/26 13:26:26 | 000,547,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\termsrv.dll
[2012/02/26 13:55:50 | 001,553,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\tquery.dll
[2012/02/26 13:50:26 | 000,153,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\tscfgwmi.dll
[2012/02/26 14:29:53 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\tsgqec.dll
[2012/02/26 13:45:29 | 000,130,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\tspubwmi.dll
[2012/02/26 13:24:00 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\twext.dll
[2012/02/26 14:57:44 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\tzres.dll
[2012/02/26 13:24:28 | 000,562,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\UIAutomationCore.dll
[2012/02/26 13:58:58 | 000,294,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\umpnpmgr.dll
[2012/02/26 15:03:03 | 000,120,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\umpo.dll
[2012/02/26 14:41:35 | 000,281,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\unimdm.tsp
[2012/02/26 15:07:45 | 000,346,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\untfs.dll
[2012/02/26 13:20:07 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\url.dll
[2012/02/26 13:19:30 | 001,103,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\urlmon.dll
[2012/02/26 14:22:53 | 000,082,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\userenv.dll
[2012/02/26 13:33:21 | 000,627,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\usp10.dll
[2012/02/26 14:33:42 | 000,453,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\vds.exe
[2012/02/26 14:10:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\version.dll
[2012/02/26 13:30:06 | 000,288,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\w32time.dll
[2012/02/26 13:37:06 | 001,203,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wbengine.exe
[2012/02/26 15:03:48 | 001,227,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wdc.dll
[2012/02/26 14:28:09 | 000,205,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\WebClnt.dll
[2012/02/26 14:17:01 | 000,314,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\webio.dll
[2012/02/26 13:25:39 | 000,782,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\webservices.dll
[2012/02/26 13:54:44 | 001,087,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wevtsvc.dll
[2012/02/26 15:11:40 | 002,350,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\win32k.sys
[2012/02/26 13:30:22 | 000,492,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\win32spl.dll
[2012/02/26 13:42:07 | 000,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wincredprovider.dll
[2012/02/26 13:19:31 | 001,127,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wininet.dll
[2012/02/26 13:39:31 | 000,507,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\winload.exe
[2012/02/26 14:39:36 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\winlogon.exe
[2012/02/26 13:39:31 | 000,443,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\winresume.exe
[2012/02/26 15:13:18 | 000,335,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\WinSATAPI.dll
[2012/02/26 13:43:23 | 000,134,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\WinSCard.dll
[2012/02/26 13:52:33 | 000,319,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\winspool.drv
[2012/02/26 14:35:17 | 000,169,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\winsrv.dll
[2012/02/26 14:35:19 | 000,156,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\winsta.dll
[2012/02/26 13:40:29 | 000,334,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wisptis.exe
[2012/02/26 14:29:53 | 000,223,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wksprt.exe
[2012/02/26 13:25:56 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wlaninst.dll
[2012/02/26 14:47:44 | 000,269,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\Wldap32.dll
[2012/02/26 13:20:28 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\WSDMon.dll
[2012/02/26 13:21:11 | 001,294,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wsecedit.dll
[2012/02/26 13:37:28 | 000,198,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\WSManHTTPConfig.exe
[2012/02/26 13:37:29 | 000,248,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\WSManMigrationPlugin.dll
[2012/02/26 13:37:29 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\WsmAuto.dll
[2012/02/26 13:37:28 | 001,176,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\WsmSvc.dll
[2012/02/26 13:37:28 | 000,213,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\WsmWmiPl.dll
[2012/02/26 15:03:48 | 000,444,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wvc.dll
[2012/02/26 14:34:24 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wwanprotdim.dll
[2012/02/26 14:34:24 | 000,186,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\wwansvc.dll
[2012/02/26 14:04:31 | 000,180,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\xmllite.dll
[2012/02/26 14:13:46 | 000,047,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\xolehlp.dll
[2012/02/26 14:14:48 | 000,285,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\XpsGdiConverter.dll
[2012/02/26 13:43:47 | 000,442,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\XpsPrint.dll
[2012/02/26 13:27:02 | 003,405,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\xpsrchvw.exe
[2012/02/26 15:00:03 | 000,328,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\zipfldr.dll

< %SYSTEMDRIVE%\*.exe >

< >

< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"DAEMON Tools Lite" = "D:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun -- [2010/04/01 10:16:20 | 000,357,696 | ---- | M] (DT Soft Ltd)
"AdobeBridge" =
"OEXPRESS" =
"LG LinkAir" =
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\AdobeUpdater]
"" =

< >

< %PROGRAMFILES%\Mozilla Firefox\firefox.exe /md5 >

< %PROGRAMFILES%\Internet Explorer\iexplore.exe /md5 >
[2011/04/07 18:03:43 | 000,748,336 | ---- | M] (Microsoft Corporation) MD5=904E13BA41AF2E353A32CF351CA53639 -- C:\Program Files\Internet Explorer\iexplore.exe

< %PROGRAMFILES%\Opera\opera.exe /md5 >

< %PROGRAMFILES%\Google\Chrome\Application\chrome.exe /md5 >

< >

< %SystemDrive%\PhysicalMBR.bin /md5 >
[2012/02/27 22:13:52 | 000,000,512 | ---- | M] () MD5=E19BF8DF4B38E9E765B2336F832D1C79 -- C:\PhysicalMBR.bin

< >

< *crack* /s >

< *keygen* /s >
[2010/03/27 13:32:28 | 000,003,248 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\idl\nsIKeygenThread.idl
[2010/03/27 13:32:56 | 000,004,618 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\include\nsIKeygenThread.h

< *loader* /s >
[2010/03/05 10:48:54 | 000,299,216 | ---- | M] () -- \Program Files\Adobe\Adobe Media Encoder CS5\MXF_SDK_MetaMetadata_BinaryLoader_r.4.2.2.319.dll
[2010/03/05 10:48:56 | 000,540,880 | ---- | M] () -- \Program Files\Adobe\Adobe Media Encoder CS5\MXF_SDK_MetaMetadata_XSDLoader2_r.4.2.2.319.dll
[2010/03/05 10:49:00 | 000,491,728 | ---- | M] () -- \Program Files\Adobe\Adobe Media Encoder CS5\MXF_SDK_MetaMetadata_XSDLoader_r.4.2.2.319.dll
[2010/03/27 13:32:10 | 000,009,728 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\bin\TestStreamLoader.exe
[2010/03/27 13:32:12 | 000,002,713 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\bin\components\uriloader.xpt
[2010/03/27 13:32:10 | 000,026,243 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\bin\chrome\pageloader.jar
[2010/03/27 13:32:10 | 000,000,049 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\bin\chrome\pageloader.manifest
[2010/03/27 13:32:18 | 000,005,128 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\idl\imgILoader.idl
[2010/03/27 13:32:18 | 000,002,605 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\idl\mozIJSSubScriptLoader.idl
[2010/03/27 13:32:18 | 000,003,317 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\idl\nsCURILoader.idl
[2010/03/27 13:32:26 | 000,002,858 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\idl\nsIDocumentLoader.idl
[2010/03/27 13:32:26 | 000,003,462 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\idl\nsIDocumentLoaderFactory.idl
[2010/03/27 13:32:26 | 000,003,603 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\idl\nsIDownloader.idl
[2010/03/27 13:32:28 | 000,003,715 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\idl\nsIFrameLoader.idl
[2010/03/27 13:32:30 | 000,002,777 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\idl\nsIModuleLoader.idl
[2010/03/27 13:32:32 | 000,003,452 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\idl\nsIScriptLoaderObserver.idl
[2010/03/27 13:32:32 | 000,004,284 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\idl\nsIStreamLoader.idl
[2010/03/27 13:32:34 | 000,005,092 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\idl\nsIUnicharStreamLoader.idl
[2010/03/27 13:32:34 | 000,007,667 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\idl\nsIURILoader.idl
[2010/03/27 13:32:36 | 000,003,926 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\idl\nsIXPTLoader.idl
[2010/03/27 13:32:36 | 000,004,183 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\idl\xpcIJSModuleLoader.idl
[2010/03/27 13:32:38 | 000,009,035 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\include\imgILoader.h
[2010/03/27 13:32:40 | 000,003,070 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\include\mozIJSSubScriptLoader.h
[2010/03/27 13:32:42 | 000,001,749 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\include\nsCURILoader.h
[2010/03/27 13:32:42 | 000,010,911 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\include\nsDocLoader.h
[2010/03/27 13:32:46 | 000,013,419 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\include\nsICSSLoader.h
[2010/03/27 13:32:46 | 000,003,426 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\include\nsICSSLoaderObserver.h
[2010/03/27 13:32:54 | 000,004,904 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\include\nsIDocumentLoader.h
[2010/03/27 13:32:54 | 000,007,766 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\include\nsIDocumentLoaderFactory.h
[2010/03/27 13:32:54 | 000,006,884 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\include\nsIDownloader.h
[2010/03/27 13:32:56 | 000,008,783 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\include\nsIFrameLoader.h
[2010/03/27 13:32:58 | 000,003,586 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\include\nsIModuleLoader.h
[2010/03/27 13:33:02 | 000,005,474 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\include\nsIScriptLoaderObserver.h
[2010/03/27 13:33:02 | 000,008,712 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\include\nsIStreamLoader.h
[2010/03/27 13:33:04 | 000,011,248 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\include\nsIUnicharStreamLoader.h
[2010/03/27 13:33:04 | 000,011,837 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\include\nsIURILoader.h
[2010/03/27 13:33:06 | 000,007,515 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\include\nsIXPTLoader.h
[2010/03/27 13:33:08 | 000,011,156 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\include\nsScriptLoader.h
[2010/03/27 13:33:08 | 000,004,155 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\include\nsURILoader.h
[2010/03/27 13:33:12 | 000,005,504 | ---- | M] () -- \Program Files\Common Files\Adobe\Adobe Contribute CS5\App\Configuration\Browsers\Mozilla Run Time Libraries\dist\include\xpcIJSModuleLoader.h
[2010/03/24 19:12:34 | 000,249,680 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\VSTOLoader.dll
[2010/03/24 19:12:34 | 000,018,264 | ---- | M] () -- \Program Files\Common Files\microsoft shared\VSTO\10.0\1033\VSTOLoaderUI.dll
[2009/05/21 20:21:18 | 000,007,507 | ---- | M] () -- \Program Files\HP\Digital Imaging\HelpViewer\Resources\Loader.swf
[2012/01/25 21:13:42 | 000,005,795 | ---- | M] () -- \Program Files\ICQ7.7\imApp\theme\IMAGES\XtraPreloader\loader.jpg
[2012/01/25 21:13:42 | 000,004,180 | ---- | M] () -- \Program Files\ICQ7.7\imApp\theme\IMAGES\XtraPreloader\zlango-preloader.png
[2012/01/25 21:13:42 | 000,005,520 | ---- | M] () -- \Program Files\ICQ7.7\imApp\theme\MUICoreLib\xtraLoader.swf
[2012/02/06 13:07:20 | 000,002,886 | ---- | M] () -- \Program Files\ICQ7.7\Xtraz\icq\content\babylon_feed\preloader01_b.swf
[2012/01/25 21:13:59 | 000,000,402 | ---- | M] () -- \Program Files\ICQ7.7\Xtraz\icq\content\profile_lightboxs\preloader.html
[2012/01/29 16:20:38 | 000,003,830 | ---- | M] () -- \Program Files\ICQ7.7\Xtraz\icq\content\rps\preloader02.swf
[2012/02/24 20:14:58 | 000,003,830 | ---- | M] () -- \Program Files\ICQ7.7\Xtraz\icq\content\slide-a-lama\preloader02.swf
[2007/03/20 11:28:38 | 000,003,830 | ---- | M] () -- \Program Files\ICQ7.7\Xtraz\icq\content\zoopaloola\preloader02.swf
[2009/05/31 02:21:00 | 000,071,008 | ---- | M] () -- \Program Files\NVIDIA Corporation\PhysX\Common\PhysXLoader.dll
[2011/12/26 16:46:45 | 000,020,229 | ---- | M] () -- \Users\Ali\AppData\Local\SRDownloader.err
[2011/12/26 20:36:04 | 000,000,992 | ---- | M] () -- \Users\Ali\AppData\Local\SRDownloader.nast
[2008/09/09 20:27:16 | 000,000,544 | ---- | M] () -- \Users\Ali\AppData\Local\Adobe\Flash CS4\en\Configuration\Classes\FP7\MovieClipLoader.as
[2008/09/09 20:27:16 | 000,000,544 | ---- | M] () -- \Users\Ali\AppData\Local\Adobe\Flash CS4\en\Configuration\Classes\FP8\MovieClipLoader.as
[2008/09/09 20:27:16 | 000,000,576 | ---- | M] () -- \Users\Ali\AppData\Local\Adobe\Flash CS4\en\Configuration\Classes\FP9\MovieClipLoader.as
[2008/09/09 20:27:18 | 000,010,454 | ---- | M] () -- \Users\Ali\AppData\Local\Adobe\Flash CS4\en\Configuration\Classes\mx\controls\Loader.as
[2010/10/08 18:17:44 | 000,014,880 | ---- | M] () -- \Users\Ali\AppData\Local\Adobe\Flash CS5\en_US\Configuration\Classes\aso\MovieClipLoader.aso
[2010/03/27 03:58:46 | 000,000,544 | ---- | M] () -- \Users\Ali\AppData\Local\Adobe\Flash CS5\en_US\Configuration\Classes\FP7\MovieClipLoader.as
[2010/03/27 03:58:46 | 000,000,544 | ---- | M] () -- \Users\Ali\AppData\Local\Adobe\Flash CS5\en_US\Configuration\Classes\FP8\MovieClipLoader.as
[2010/03/27 03:58:46 | 000,000,576 | ---- | M] () -- \Users\Ali\AppData\Local\Adobe\Flash CS5\en_US\Configuration\Classes\FP9\MovieClipLoader.as
[2010/03/27 03:58:46 | 000,010,454 | ---- | M] () -- \Users\Ali\AppData\Local\Adobe\Flash CS5\en_US\Configuration\Classes\mx\controls\Loader.as
[2012/02/26 17:46:50 | 000,002,886 | ---- | M] () -- \Users\Ali\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\05HN585R\preloader01_b[1].swf
[2011/01/04 17:58:48 | 000,001,651 | ---- | M] () -- \wamp\apps\phpmyadmin3.3.9\libraries\PHPExcel\PHPExcel\Autoloader.php
[2011/07/06 16:08:49 | 000,014,190 | ---- | M] () -- \wamp\www\bb2\images\medals\Uploader.png
[2011/07/06 16:08:55 | 000,011,830 | ---- | M] () -- \wamp\www\bb2\images\ranks\Games_Uploader.png
[2011/07/06 16:09:00 | 000,012,843 | ---- | M] () -- \wamp\www\bb2\images\ranks\Movie_Uploader.png
[2011/07/06 16:09:01 | 000,013,177 | ---- | M] () -- \wamp\www\bb2\images\ranks\Music_Uploader.png
[2011/07/06 16:09:03 | 000,007,288 | ---- | M] () -- \wamp\www\bb2\images\ranks\REuploader.png
[2011/07/06 16:09:04 | 000,013,268 | ---- | M] () -- \wamp\www\bb2\images\ranks\Soft_Uploader.png
[2011/07/06 16:09:06 | 000,006,851 | ---- | M] () -- \wamp\www\bb2\images\ranks\Uploader.png
[2011/07/06 16:09:08 | 000,010,418 | ---- | M] () -- \wamp\www\bb2\images\ranks\XXX_Uploader.png
[2012/02/01 12:45:14 | 000,007,756 | ---- | M] () -- \wamp\www\joomla2\libraries\loader.php
[2012/02/01 12:45:14 | 000,001,786 | ---- | M] () -- \wamp\www\joomla2\libraries\cms\cmsloader.php
[2012/02/01 12:45:14 | 000,000,584 | ---- | M] () -- \wamp\www\joomla2\media\system\images\mootree_loader.gif
[2012/02/01 12:45:14 | 000,006,252 | ---- | M] () -- \wamp\www\joomla2\media\system\js\uploader-uncompressed.js
[2012/02/01 12:45:14 | 000,004,967 | ---- | M] () -- \wamp\www\joomla2\media\system\js\uploader.js
[2012/02/01 12:45:14 | 000,010,222 | ---- | M] () -- \wamp\www\joomla2\media\system\swf\uploader.swf
[2011/04/27 22:04:46 | 000,001,511 | ---- | M] () -- \wamp\www\OpenCart\system\engine\loader.php
[2008/12/01 16:37:58 | 000,003,719 | ---- | M] () -- \wamp\www\prestashop\img\loader.gif
[2011/07/25 01:39:48 | 000,011,314 | ---- | M] () -- \wamp\www\prestashop\img\admin\ajax-loader-big.gif
[2009/11/09 15:41:38 | 000,000,673 | ---- | M] () -- \wamp\www\prestashop\img\admin\ajax-loader.gif
[2011/07/21 11:34:44 | 000,000,847 | ---- | M] () -- \wamp\www\prestashop\img\admin\jquery-treeview\ajax-loader.gif
[2011/05/23 09:11:44 | 000,001,720 | ---- | M] () -- \wamp\www\prestashop\js\cropper\loader.js
[2011/01/24 14:27:20 | 000,001,849 | ---- | M] () -- \wamp\www\prestashop\modules\shopimporter\img\ajax-loader.gif
[2011/04/07 11:09:20 | 000,004,176 | ---- | M] () -- \wamp\www\prestashop\modules\twenga\ajax-loader.gif
[2011/03/02 15:50:00 | 000,003,208 | ---- | M] () -- \wamp\www\prestashop\themes\prestashop\img\ajax-loader.gif
[2011/05/23 09:11:44 | 000,000,910 | ---- | M] () -- \wamp\www\prestashop\tools\swift\Swift\ClassLoader.php
[2012/02/13 07:02:16 | 000,035,927 | ---- | M] () -- \wamp\www\wordpress\wp-includes\script-loader.php
[2012/02/13 07:02:16 | 000,001,893 | ---- | M] () -- \wamp\www\wordpress\wp-includes\template-loader.php
[2009/07/14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\System32\dmloader.dll
[2010/01/18 07:30:50 | 000,012,532 | ---- | M] () -- \Windows\System32\Adobe\Shockwave 11\shockwave_Projector_Loader.dcr
[2010/01/12 06:54:44 | 000,009,622 | ---- | M] () -- \Windows\System32\Macromed\Shockwave 10\shockwave_Projector_Loader.dcr
[2009/07/14 05:54:01 | 000,003,532 | ---- | M] () -- \Windows\System32\Tasks\Microsoft\Windows\WindowsColorSystem\Calibration Loader
[2012/02/26 13:39:44 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.21003_en-us_774d0d605e361e7d.manifest
[2012/02/26 13:39:44 | 000,033,152 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.21003_en-us_774d0d605e361e7d_winload.exe.mui_3bc5b827
[2012/02/26 13:39:44 | 000,030,080 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.21003_en-us_774d0d605e361e7d_winresume.exe.mui_ff8b5358
[2012/02/26 13:39:44 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20916_none_5bd3665ce6de5d06.manifest
[2012/02/26 13:39:45 | 000,507,880 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20916_none_5bd3665ce6de5d06_winload.exe_75835076
[2012/02/26 13:39:46 | 000,443,232 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20916_none_5bd3665ce6de5d06_winresume.exe_85cd1215
[2009/07/14 03:17:38 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009/07/14 03:17:38 | 000,017,472 | ---- | M] () -- \Windows\winsxs\Backup\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23_spldr.sys_98bd87a0
[2009/07/14 08:41:36 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.16385_en-us_766f102945576be4.manifest
[2012/02/26 13:39:17 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7600.21003_en-us_774d0d605e361e7d.manifest
[2012/02/26 13:39:17 | 000,002,883 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_en-us_78f4b3505b8b317b.manifest
[2009/07/14 02:47:46 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16385_none_5afd1055cdfa75b9.manifest
[2009/07/21 12:55:31 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16397_none_5af440fdce00c458.manifest
[2009/08/19 08:38:48 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.16411_none_5b44c087cdc549ed.manifest
[2009/07/21 11:27:31 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20493_none_5b79dca0e721fec6.manifest
[2009/08/19 08:21:21 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20509_none_5be12f8ee6d3987e.manifest
[2012/02/26 13:39:17 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7600.20916_none_5bd3665ce6de5d06.manifest
[2012/02/26 13:39:17 | 000,004,225 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-b..vironment-os-loader_31bf3856ad364e35_6.1.7601.21675_none_5d77e1aae4365a1a.manifest
[2012/02/26 13:39:17 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_cs-cz_43913ee0afad8a79.manifest
[2012/02/26 13:39:17 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_da-dk_e0cb1f07a5f38678.manifest
[2012/02/26 13:39:17 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_el-gr_868ce1d696df43a0.manifest
[2012/02/26 13:39:17 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_fi-fi_25cdebcd8be8caa6.manifest
[2012/02/26 13:39:17 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_hu-hu_70dadd676e00bdfa.manifest
[2012/02/26 13:39:17 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_ko-kr_5921af28465ead4d.manifest
[2012/02/26 13:39:18 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_nb-no_41b4305d1e83d909.manifest
[2012/02/26 13:39:18 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_pl-pl_862fd61d04d25092.manifest
[2012/02/26 13:39:18 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_pt-br_8883c0c1035be476.manifest
[2012/02/26 13:39:18 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_pt-pt_8965902d02cb5452.manifest
[2012/02/26 13:39:18 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_ru-ru_d008a1f0e7ace27e.manifest
[2012/02/26 13:39:18 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_sv-se_6c038c65ded5ecd9.manifest
[2012/02/26 13:39:18 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_tr-tr_1510d6accd91eeca.manifest
[2012/02/26 13:39:18 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_zh-cn_e66df4aa7dc9c0e9.manifest
[2012/02/26 13:39:18 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_zh-hk_e518ed387ea53379.manifest
[2012/02/26 13:39:18 | 000,002,886 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-e..os-loader.resources_31bf3856ad364e35_6.1.7601.21765_zh-tw_ea6a32007b3a9d59.manifest
[2009/07/14 02:52:31 | 000,002,894 | ---- | M] () -- \Windows\winsxs\Manifests\x86_microsoft-windows-s..ive-blackbox-loader_31bf3856ad364e35_6.1.7600.16385_none_6b097e5cb26f7a23.manifest
[2009/07/14 02:15:12 | 000,038,400 | ---- | M] () -- \Windows\winsxs\x86_microsoft-windows-audio-dmusic_31bf3856ad364e35_6.1.7600.16385_none_45ca7214f0f664cb\dmloader.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 200 bytes -> C:\ProgramData\TEMP:1CE11B51
@Alternate Data Stream - 12 bytes -> C:\Windows\System32:{4B9A1497-0817-47C4-9612-D6A1C53ACF57}
@Alternate Data Stream - 117 bytes -> C:\ProgramData\TEMP:C8B8CEBD

< End of report >

Re: Preventivna

Napsal: 27 úno 2012 23:07
od owen26
Extras.txt

OTL Extras logfile created on: 27. 2. 2012 22:09:48 - Run 1
OTL by OldTimer - Version 3.2.33.2 Folder = C:\Users\Ali\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000041b | Country: Slovenská republika | Language: SKY | Date Format: d. M. yyyy

3,00 Gb Total Physical Memory | 1,72 Gb Available Physical Memory | 57,24% Memory free
5,99 Gb Paging File | 4,36 Gb Available in Paging File | 72,80% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 41,89 Gb Total Space | 5,08 Gb Free Space | 12,13% Space Free | Partition Type: NTFS
Drive D: | 191,00 Gb Total Space | 10,36 Gb Free Space | 5,42% Space Free | Partition Type: NTFS

Computer Name: ALI | User Name: Ali | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.txt [@ = Reg Error: Value error.] -- Reg Error: Key error. File not found

[HKEY_USERS\S-1-5-21-2791954077-2039642415-460783259-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- D:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
.txt [@ = txtfile] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Bridge] -- D:\Program Files\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"D:\Program Files\FlashFXP\FlashFXP.exe" = D:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3 -- (IniCom Networks, Inc.)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"D:\Program Files\FlashFXP\FlashFXP.exe" = D:\Program Files\FlashFXP\FlashFXP.exe:*:Enabled:FlashFXP v3 -- (IniCom Networks, Inc.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{024521CF-C07E-4F8E-8481-0D75695E03AF}" = PxMergeModule
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{05308C4E-7285-4066-BAE3-6B50DA6ED755}" = Adobe Update Manager CS4
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
"{0E3C6C75-872D-4B0D-B0B2-31C717250691}" = Adobe Encore CS5 Third Party Royalty Content
"{0EF5BEA9-B9D3-46d7-8958-FB69A0BAEACC}" = Status
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{0F367CA3-3B2F-43F9-A44A-25A8EE69E45D}" = Scan
"{1618734A-3957-4ADD-8199-F973763109A8}" = Adobe Anchor Service CS4
"{175F0111-2968-4935-8F70-33108C6A4DE3}" = MarketResearch
"{1A64965D-FE4B-46D9-A600-384D964EFC8A}" = Windows Live Fotogaléria
"{1ABA87DD-B839-4E53-9A8F-CC2A497C2850}" = F2200_NCL_Help
"{1EC71BFB-01A3-4239-B6AF-B1AE656B15C0}" = TrayApp
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 29
"{28456131-01CD-4BE4-8D67-BDBDD1ED636A}" = Windows Live Sync
"{288DB08D-0708-4A94-B055-55B99E39EB62}" = Adobe Creative Suite 5 Master Collection
"{2934DCB0-F8EE-11E0-A4A5-B8AC6F97B88E}" = Google Earth Plug-in
"{2BB0BDFF-E193-42A0-90BE-2D59441E51D2}" = F2200
"{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}" = BufferChm
"{2FF8C687-DB7D-4adc-A5DC-57983EC25046}" = DeviceDiscovery
"{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
"{343666E2-A059-48AC-AD67-230BF74E2DB2}" = Apple Application Support
"{3690900F-85EA-447F-BAD1-5CA25AA9B627}" = HP Deskjet F2200 All-In-One Driver Software 13.0 Rel. 3
"{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}" = Adobe Media Player
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3C92B2E6-380D-4fef-B4DF-4A3B4B669771}" = Copy
"{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}" = NVIDIA PhysX
"{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}" = FIFA 11
"{411F3ABA-2AB5-4799-AA19-6ADF0A8F7424}" = Adobe Setup
"{43CDF946-F5D9-4292-B006-BA0D92013021}" = WebReg
"{45EC816C-0771-4C14-AE6D-72D1B578F4C8}" = Adobe After Effects CS4
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}" = SolutionCenter
"{4E7C28C7-D5DA-4E9F-A1CA-60490B54AE35}" = UnloadSupport
"{56415658-366E-4E28-A6BD-68EC63E560E0}" = Vegas Pro 9.0
"{60DB5894-B5A1-4B62-B0F3-669A22C0EE5D}" = Adobe Dynamiclink Support
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{63FF21C9-A810-464F-B60A-3111747B1A6D}" = GPBaseService2
"{67A9747A-E1F5-4E9A-81CC-12B5D5B81B6E}" = Adobe After Effects CS4 Third Party Content
"{6BBA26E9-AB03-4FE7-831A-3535584CA002}" = Toolbox
"{7059BDA7-E1DB-442C-B7A1-6144596720A4}" = HP Update
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE}" = ICQ7.7
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime
"{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}" = Adobe Type Support CS4
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{842B4B72-9E8F-4962-B3C1-1C422A5C4434}" = Suite Shared Configuration CS4
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8EB8E60B-315D-44EB-A896-10D88602EE46}" = Adobe Setup
"{90120000-0015-041B-0000-0000000FF1CE}" = Microsoft Office Access MUI (Slovak) 2007
"{90120000-0016-041B-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Slovak) 2007
"{90120000-0018-041B-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Slovak) 2007
"{90120000-0019-041B-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Slovak) 2007
"{90120000-001A-041B-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Slovak) 2007
"{90120000-001B-041B-0000-0000000FF1CE}" = Microsoft Office Word MUI (Slovak) 2007
"{90120000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040E-0000-0000000FF1CE}" = Microsoft Office Proof (Hungarian) 2007
"{90120000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2007
"{90120000-002C-041B-0000-0000000FF1CE}" = Microsoft Office Proofing (Slovak) 2007
"{90120000-0044-041B-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Slovak) 2007
"{90120000-006E-041B-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Slovak) 2007
"{90140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{7C5B1ECD-FE93-4FB2-A51A-06451BA49969}" =
"{90140000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2010
"{90140000-0015-041B-0000-0000000FF1CE}" = Microsoft Office Access MUI (Slovak) 2010
"{90140000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010
"{90140000-0016-041B-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Slovak) 2010
"{90140000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010
"{90140000-0018-041B-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Slovak) 2010
"{90140000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2010
"{90140000-0019-041B-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Slovak) 2010
"{90140000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010
"{90140000-001A-041B-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Slovak) 2010
"{90140000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2010
"{90140000-001B-041B-0000-0000000FF1CE}" = Microsoft Office Word MUI (Slovak) 2010
"{90140000-001F-0405-0000-0000000FF1CE}" = Microsoft Office Proof (Czech) 2010
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-040E-0000-0000000FF1CE}" = Microsoft Office Proof (Hungarian) 2010
"{90140000-001F-041B-0000-0000000FF1CE}" = Microsoft Office Proof (Slovak) 2010
"{90140000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
"{90140000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2010
"{90140000-002C-041B-0000-0000000FF1CE}" = Microsoft Office Proofing (Slovak) 2010
"{90140000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2010
"{90140000-0044-041B-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Slovak) 2010
"{90140000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010
"{90140000-006E-041B-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Slovak) 2010
"{90140000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2010
"{90140000-00A1-041B-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Slovak) 2010
"{90140000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2010
"{90140000-00BA-041B-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Slovak) 2010
"{90140000-0100-041B-0000-0000000FF1CE}" = Microsoft Office O MUI (Slovak) 2010
"{90140000-0101-041B-0000-0000000FF1CE}" = Microsoft Office X MUI (Slovak) 2010
"{90140000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010
"{90140000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2010
"{92127AF5-FDD8-4ADF-BC40-C356C9EE0B7D}" = 32 Bit HP CIO Components Installer
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{94D398EB-D2FD-4FD1-B8C4-592635E8A191}" = Adobe CMaps CS4
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95468B00-C081-4B27-AC96-0A2A31359E60}" = Adobe Flash Player 10 ActiveX
"{96E3AED5-3D0B-4BB0-84C2-1EDADB204487}" = FlashFXP v3
"{9773450C-E2F3-46C3-9464-1D7EDE5EFB63}" = Pro Evolution Soccer 2011
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9ABFB92D-93DA-49EE-8ABF-F8195DE45CA9}" = Counter-Strike 1.6
"{9CCC78EF-027E-40E0-9B61-39932C65E3FE}" = Acronis Disk Director Home
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-1029-4770-7760-000000000004}" = Adobe Acrobat 9 Pro - Czech, Hungarian, Polish, Slovak
"{AC76BA86-1029-4770-7760-000000000004}{AC76BA86-1029-4770-7760-000000000004}" = Adobe Acrobat 9 Pro - Czech, Hungarian, Polish, Slovak
"{AC76BA86-7AD7-1029-7B44-AA1000000001}" = Adobe Reader X (10.1.2) - Czech
"{AC7EE5F1-0DE4-4256-8E43-92B73C8E6019}" = LG Bluetooth Drivers
"{B05DE7B7-0B40-4411-BD4B-222CAE2D8F15}" = Adobe MotionPicture Color Files CS4
"{B0BDAABA-A815-4CF3-843C-405B017EF7DF}" = OpenOffice.org 3.1
"{B15381DD-FF97-4FCD-A881-ED4DB0975500}" = Adobe Color Video Profiles AE CS4
"{B6EC7388-E277-4A5B-8C8F-71067A41BA64}" = TextPad 5
"{B76C2956-321B-4EE3-84CA-AF3CEA63D4E6}" = Windows Live Movie Maker
"{BA12FD6C-169A-11D7-A6A9-00C026281E5A}" = Speed-Link SL-6534 Dual Vibration Pad
"{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}" = Destinations
"{C109F629-36BB-4F7B-9762-A038936CA457}" = Windows Live Essentials
"{C222566F-1C50-4ECD-A01E-77F9C4B95458}" = DJ_AIO_03_F2200_Software_Min
"{C43326F5-F135-4551-8270-7F7ABA0462E1}" = HPProductAssistant
"{CAE4213F-F797-439D-BD9E-79B71D115BE3}" = HPPhotoGadget
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CC75AB5C-2110-4A7F-AF52-708680D22FE8}" = Photoshop Camera Raw
"{CCF13D13-A87B-34E8-B689-1896D0C2DBA2}" = Google Talk Plugin
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{E26DEDC7-1A99-4F8C-9615-6DB112E6495B}_is1" = Texas Hold'em Poker 3D - Deluxe Edition 1.0
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F2AF3E5D-9697-485C-A5AC-E2B9468C446A}" = Safari
"{F2B5A2A7-2DF9-4361-8BD5-362714528B51}" = NHL® 09
"{F6D6B258-E3CA-4AAC-965A-68D3E3140A8C}" = iTunes
"{F93C84A6-0DC6-42AF-89FA-776F7C377353}" = Adobe PDF Library Files CS4
"{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}" = Adobe Fonts All
"{FD8E178D-8B4E-42DA-B434-EFF270329B1C}" = COMODO Internet Security
"Adobe AIR" = Adobe AIR
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11
"Adobe_3dcb365ab9e01871fb8c6f27b0ea079" = Adobe After Effects CS4
"Adobe_5aab5a491a3a52ae624fd639f6aaa95" = Adobe After Effects CS4 Third Party Content
"Audacity 1.3 Beta (Unicode)_is1" = Audacity 1.3.11 (Unicode)
"CCleaner" = CCleaner
"CloneCD" = CloneCD
"com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
"EASEUS Partition Master Home Edition_is1" = EASEUS Partition Master 9.1.0 Home Edition
"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.50
"ffdshow_is1" = ffdshow [rev 2975] [2009-05-28]
"Free Download Manager_is1" = Free Download Manager 3.0
"HP Imaging Device Functions" = HP Imaging Device Functions 13.0
"HP Solution Center & Imaging Support Tools" = HP Solution Center 13.0
"HPExtendedCapabilities" = HP Customer Participation Program 13.0
"HP-LaserJet 1018" = LaserJet 1018
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"ImgBurn" = ImgBurn
"KLiteCodecPack_is1" = K-Lite Codec Pack 5.4.0 (Full)
"LAME for Audacity_is1" = LAME v3.98.2 for Audacity
"LG PC Suite IV" = LG PC Suite IV
"Magic Video Converter_is1" = Magic Video Converter 10.0.10.2009
"MAXONA7B5C61F" = CINEMA 4D 13.051
"MD5 Password" = MD5 Password
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Mozilla Firefox 10.0.2 (x86 sk)" = Mozilla Firefox 10.0.2 (x86 sk)
"Mozilla Thunderbird 10.0.2 (x86 sk)" = Mozilla Thunderbird 10.0.2 (x86 sk)
"Nero7Lite_is1" = Nero 7 Lite 7.7.5.1
"Notepad++" = Notepad++
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"ObjectDock Plus" = ObjectDock Plus
"Office14.OMUI.sk-sk" = Microsoft Office Language Pack 2010 - Slovak/Slovenčina
"Office14.PROPLUS" = Microsoft Office Professional Plus 2010
"Opera 11.50.1074" = Opera 11.50
"PSPad editor_is1" = PSPad editor
"Recuva" = Recuva
"SAM3" = SAM Broadcaster (remove only)
"Summer Athletics 2009_is1" = Summer Athletics 2009
"Super Email Sender_is1" = Super Email Sender
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Total Video Converter 3.70_is1" = Total Video Converter 3.70 100621
"Totalcmd" = Total Commander (Remove or Repair)
"Trapcode Particular v2" = Trapcode Particular v2
"Trapcode Starglow" = Trapcode Starglow
"WampServer 2_is1" = WampServer 2.1
"Winamp" = Winamp
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archivátor
"Worms Reloaded Update 1_is1" = Worms Reloaded Update 1
"Worms Reloaded Update 2_is1" = Worms Reloaded Update 2
"Worms Reloaded_is1" = Worms Reloaded
"YU2010_is1" = Your Uninstaller! 7

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-2791954077-2039642415-460783259-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 20. 2. 2011 12:54:09 | Computer Name = Ali-Notebook | Source = SideBySide | ID = 16842815
Description = Activation context generation failed for "C:\Program Files\Common
Files\Adobe AIR\Versions\1.0\Adobe AIR.dll".Error in manifest or policy file "C:\Program
Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll" on line 3. The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR"
of attribute "version" in element "assemblyIdentity" is invalid.

Error - 20. 2. 2011 13:32:58 | Computer Name = Ali-Notebook | Source = SideBySide | ID = 16842815
Description = Activation context generation failed for "C:\Program Files\Common
Files\Adobe AIR\Versions\1.0\Adobe AIR.dll".Error in manifest or policy file "C:\Program
Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll" on line 3. The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR"
of attribute "version" in element "assemblyIdentity" is invalid.

Error - 21. 2. 2011 10:36:52 | Computer Name = Ali-Notebook | Source = SideBySide | ID = 16842815
Description = Activation context generation failed for "C:\Program Files\Common
Files\Adobe AIR\Versions\1.0\Adobe AIR.dll".Error in manifest or policy file "C:\Program
Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll" on line 3. The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR"
of attribute "version" in element "assemblyIdentity" is invalid.

Error - 23. 2. 2011 9:28:49 | Computer Name = Ali-Notebook | Source = Bonjour Service | ID = 100
Description =

Error - 23. 2. 2011 9:28:49 | Computer Name = Ali-Notebook | Source = Bonjour Service | ID = 100
Description =

Error - 23. 2. 2011 9:28:49 | Computer Name = Ali-Notebook | Source = Bonjour Service | ID = 100
Description =

Error - 23. 2. 2011 9:28:50 | Computer Name = Ali-Notebook | Source = Bonjour Service | ID = 100
Description =

Error - 23. 2. 2011 9:28:50 | Computer Name = Ali-Notebook | Source = Bonjour Service | ID = 100
Description =

Error - 23. 2. 2011 9:28:50 | Computer Name = Ali-Notebook | Source = Bonjour Service | ID = 100
Description =

Error - 23. 2. 2011 9:28:50 | Computer Name = Ali-Notebook | Source = Application Error | ID = 1000
Description = Názov chybovej aplikácie: nhl2009.exe, verzia: 0.0.0.0, časová značka:
0x48e7156d Názov chybového modulu: nhl2009.exe, verzia: 0.0.0.0, časová značka:
0x48e7156d Kód výnimky: 0xc0000005 Odstup chyby: 0x003fc342 Identifikácia chybného
procesu: 0xd8 Čas spustenia chybnej aplikácie: 0x01cbd356dc409afe Cesta chybnej aplikácie:
D:\Program Files\EA Sports\NHL 09\nhl2009.exe Cesta chybného modulu: D:\Program
Files\EA Sports\NHL 09\nhl2009.exe Identifikácia hlásenia: d970ef10-3f50-11e0-96db-002186bc941e

[ System Events ]
Error - 26. 2. 2012 10:25:39 | Computer Name = turnaj2 | Source = Service Control Manager | ID = 7023
Description = Služba Windows Font Cache Service bola ukončená s nasledujúcou chybou:
%%32

Error - 26. 2. 2012 10:25:42 | Computer Name = turnaj2 | Source = Service Control Manager | ID = 7000
Description = Spustenie služby Windows Search zlyhalo kvôli nasledujúcej chybe:
%%32

Error - 26. 2. 2012 10:25:48 | Computer Name = turnaj2 | Source = WMPNetworkSvc | ID = 866314
Description =

Error - 26. 2. 2012 10:25:48 | Computer Name = turnaj2 | Source = WMPNetworkSvc | ID = 866314
Description =

Error - 26. 2. 2012 10:29:06 | Computer Name = turnaj2 | Source = Service Control Manager | ID = 7000
Description = Spustenie služby adfs zlyhalo kvôli nasledujúcej chybe: %%2

Error - 26. 2. 2012 10:34:25 | Computer Name = turnaj2 | Source = Service Control Manager | ID = 7022
Description = Služba Windows Search sa pri spustení zablokovala.

Error - 26. 2. 2012 10:41:18 | Computer Name = Ali | Source = Service Control Manager | ID = 7000
Description = Spustenie služby adfs zlyhalo kvôli nasledujúcej chybe: %%2

Error - 27. 2. 2012 3:53:13 | Computer Name = Ali | Source = Service Control Manager | ID = 7000
Description = Spustenie služby adfs zlyhalo kvôli nasledujúcej chybe: %%2

Error - 27. 2. 2012 4:01:13 | Computer Name = Ali | Source = Service Control Manager | ID = 7000
Description = Spustenie služby adfs zlyhalo kvôli nasledujúcej chybe: %%2

Error - 27. 2. 2012 12:29:17 | Computer Name = Ali | Source = Service Control Manager | ID = 7000
Description = Spustenie služby adfs zlyhalo kvôli nasledujúcej chybe: %%2


< End of report >

napísal som, že hosts je kvôli tomu aby mi to nepúšťalo adobe aktualizácie, čo je samozrejmé, že to je pre mňa príliš drahé aby som to mohol používať 100% legálne...
Všechny časy jsou v UTC+01:00
Stránka 1 z 2

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz