x-kom hosting

Wolno działający komputer, proszę o sprawdzenie logów

Kaspisek
utworzono
utworzono (edytowane)

Proszę o sprawdzenie logów z OTL i RSIT
Extras.txt
[log]
OTL Extras logfile created on: 2012-12-31 19:17:15 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Kaspisek\Downloads
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,50 Gb Total Physical Memory | 2,28 Gb Available Physical Memory | 65,19% Memory free
7,00 Gb Paging File | 5,60 Gb Available in Paging File | 79,99% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 37,57 Gb Total Space | 15,00 Gb Free Space | 39,94% Space Free | Partition Type: NTFS
Drive D: | 97,65 Gb Total Space | 38,34 Gb Free Space | 39,26% Space Free | Partition Type: NTFS
Drive E: | 97,65 Gb Total Space | 17,52 Gb Free Space | 17,94% Space Free | Partition Type: NTFS

Computer Name: KASPIS | User Name: Kaspisek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 60 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-2701869729-785606778-3130026812-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "E:\Microsoft ofice\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "E:\Microsoft ofice\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- E:\MICROS~1\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1CCD726B-005F-49E9-BB2F-618A4309FC54}" = lport=138 | protocol=17 | dir=in | app=system |
"{3259C7E8-A5B9-4A78-B2C9-38855C8C2757}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{3350DF6E-B978-42B6-9E14-35AE0C4D1BEA}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{3A0F3643-F4C6-4EA9-A740-8B2139417CDA}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4CF679B5-E178-4AAD-953A-81F6412D9C8C}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{4E57F62E-EDCF-4E4D-850C-066FA9C45DF7}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{6560A174-A503-40CE-B968-BAC3BEE903F1}" = rport=137 | protocol=17 | dir=out | app=system |
"{67DA852C-B896-46D3-A9BB-EEBA3F5E4D79}" = lport=6004 | protocol=17 | dir=in | app=e:\microsoft ofice\office12\outlook.exe |
"{67F10BCE-185E-4D7F-970D-A6B833132451}" = lport=139 | protocol=6 | dir=in | app=system |
"{68B04A43-5E3B-4B21-AE9F-20AA3EA74ED8}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{6CF64E0B-EDAF-409B-85EF-9656BDDD15B8}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{6D7726BC-2B37-4718-A756-BD665D234747}" = lport=58514 | protocol=17 | dir=in | name=pando media booster |
"{6FD4D0AB-C81D-41A4-B25F-F7631D98F062}" = lport=137 | protocol=17 | dir=in | app=system |
"{73B6768B-A7C2-4063-93C2-D5D82E347090}" = rport=445 | protocol=6 | dir=out | app=system |
"{85A97011-5495-436B-A3EA-4E3633D4DB80}" = rport=139 | protocol=6 | dir=out | app=system |
"{86352E38-0108-4F27-8A98-3DC746675697}" = lport=10243 | protocol=6 | dir=in | app=system |
"{91514C9A-3AA4-41AA-8DC5-B6BF9DA67910}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{96899191-730C-4CF5-8CFC-BAF1E94492C9}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A0E109B2-62CB-4F90-86B7-6941823AC3DF}" = lport=2869 | protocol=6 | dir=in | app=system |
"{A138162E-8262-409B-AB57-A982C7280BC0}" = rport=138 | protocol=17 | dir=out | app=system |
"{A2918092-0D6A-4533-8758-05A7E7D7ACC9}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A55BA30C-9D33-4BAE-AC72-88DB469EFE2F}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{A708C128-670F-4E1E-AD9C-59A3E5CD2091}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A7FE88DD-8DBB-411E-9123-F84AEC4F507C}" = lport=445 | protocol=6 | dir=in | app=system |
"{B0EC56C5-AD54-4C6F-8CF3-45C04D330F5C}" = rport=10243 | protocol=6 | dir=out | app=system |
"{B6B8977A-DDAF-4A73-A733-65E338884317}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{B6CC22C9-2D02-4D53-82AB-E873CC6A038F}" = lport=58514 | protocol=6 | dir=in | name=pando media booster |
"{BBE1C7CF-82F1-4507-B7B5-D7FCA508A728}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{C2D778E8-4CA2-438D-AAE5-C0EF848797B1}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{DF0E32D3-1D96-4CD1-A981-9631610B15B3}" = lport=58514 | protocol=17 | dir=in | name=pando media booster |
"{E02E09A1-E1EB-4DC3-B396-5CDD2ACACBCD}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{E19E919E-B2B3-499F-8D64-34A2280FB5E4}" = lport=58514 | protocol=6 | dir=in | name=pando media booster |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{015E928C-DFBD-4770-9B5E-BCE381A9442C}" = protocol=6 | dir=in | app=e:\torrent\utorrent.exe |
"{112D6004-FD70-4349-931C-C76172D0DBB9}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1A9DBF9F-63D0-4E75-80A2-EC76211CBE09}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{1B38825F-A84E-423F-BC90-568D712379DB}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{1D7CFE91-6B92-4DC2-930C-DA70D31C1E4B}" = protocol=17 | dir=in | app=e:\microsoft ofice\office12\onenote.exe |
"{258F74E3-5DB6-4FC1-8196-43877A15E69F}" = protocol=17 | dir=in | app=c:\program files\tunngle\tunngle.exe |
"{2AD346BA-DECD-46B2-808F-9651102F07FE}" = protocol=6 | dir=in | app=e:\microsoft ofice\office12\groove.exe |
"{2D6ECEFD-1509-4BB2-9C52-C033E1070F3B}" = protocol=6 | dir=in | app=e:\steam\steam.exe |
"{2F4AE33E-6DEE-43AB-A361-49BCFA66C9A6}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{300C35C6-AD50-4FE8-ABBC-DE5180D34E3B}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{46C9B0C2-BCE7-4FEF-A07A-4A70FE0231D3}" = protocol=17 | dir=in | app=e:\torrent\utorrent.exe |
"{48A3E200-9A46-4A17-B49B-D154EC9CE44E}" = protocol=6 | dir=in | app=c:\program files\tunngle\tunngle.exe |
"{4A5322DF-0239-4B3B-AB0C-DADF8F28CAF3}" = protocol=17 | dir=in | app=c:\program files\bitspirit\bitspirit.exe |
"{4B6DAA98-140F-4120-A7C9-B4D927B1284A}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{57D0F201-1B52-467F-AF67-FF39582B99AF}" = protocol=17 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{5A78FB22-6642-4C44-9507-8834CA3C4E7F}" = protocol=17 | dir=in | app=e:\modern warfare\iw3mp.exe |
"{5E9359B1-D70A-4C67-ACD1-59FC1C862E67}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{67279148-6E57-4640-840E-75BA80591A8E}" = protocol=6 | dir=in | app=c:\program files\tunngle\tnglctrl.exe |
"{69ACE728-D2A2-482E-A214-089FBE6AEC21}" = protocol=6 | dir=in | app=c:\program files\bitspirit\bitspirit.exe |
"{6C9D173D-077A-4935-80B7-271A8F25A74E}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{6D3357AC-5E3E-4577-A88F-B5D2CBF292EA}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{6E8720C5-9AA2-4272-89B6-B63DB559D579}" = protocol=6 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{75435D1A-28E8-4CA5-BD78-E39F186250EB}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{762746C1-E4FA-4C16-BFC1-F0FCA55AF2F5}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{7B01CF38-A3B7-428C-B14B-637E97ED0B94}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{7F47C138-A104-4A25-A69F-189FC03C7EF3}" = protocol=17 | dir=in | app=c:\program files\tunngle\tnglctrl.exe |
"{8215245A-B98B-4FCD-996E-0AAD9D4D381D}" = protocol=6 | dir=out | app=system |
"{828CBFC1-DB1C-4C1A-B277-C1DD78430636}" = protocol=6 | dir=in | app=e:\modern warfare\iw3mp.exe |
"{8787A822-713F-40B1-AB80-2227ADEE0D83}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{90D7BE60-9EF9-41C1-B515-ECD00D5CF382}" = protocol=17 | dir=in | app=e:\microsoft ofice\office12\groove.exe |
"{91E1E7C9-B4D1-419F-84B5-35F16756D2F7}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{A667EB2E-5752-4878-8C43-05297A3C2AE7}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{A76168F4-4107-4E26-88E3-1D6CD75894A9}" = protocol=17 | dir=in | app=e:\steam\steam.exe |
"{AD8B86F2-825A-4B10-83C8-ED533D7E271C}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{B165E590-8CF7-494F-B803-85F3D2C6946E}" = protocol=17 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{B68E1448-A111-4A0F-9640-9242944CDD65}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{C72EC87A-3FE0-4EAD-88CF-40DA3FEDFE1D}" = protocol=6 | dir=in | app=e:\microsoft ofice\office12\onenote.exe |
"{D7D921FA-0DC2-4D79-8743-0560B2745D9C}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{E262CDA4-2963-4870-8511-F37CFDFBDCE9}" = dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{E6D97EC1-BB61-4DE2-82D6-F3093DA0F709}" = protocol=6 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{F0E4C6B0-B5B0-412A-A042-52C033CE2BFC}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{F24BB0AF-305B-420C-B4EA-0BE893B434F2}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{F73DA725-6C16-4ACC-9C37-B45CF763A90A}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"TCP Query User{0EBFB8CD-6B47-4FFD-AD36-C70C3BB88915}E:\modern warfare 2\iw4mp.exe" = protocol=6 | dir=in | app=e:\modern warfare 2\iw4mp.exe |
"TCP Query User{4AC26601-818E-4EAD-A1F9-A06C15C5D8F2}E:\painkiller hell and damnation\binaries\win32\pkhdgame-win32-shipping.exe" = protocol=6 | dir=in | app=e:\painkiller hell and damnation\binaries\win32\pkhdgame-win32-shipping.exe |
"TCP Query User{4CB1C528-7130-42B3-B616-A59AA5D3EB93}E:\battlefield play for free\bfp4f.exe" = protocol=6 | dir=in | app=e:\battlefield play for free\bfp4f.exe |
"TCP Query User{5A366FF7-4FAE-4C54-9073-CC812F6901E7}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{80C5ADBF-A0B4-4C29-98E9-79A18D8B0351}C:\users\kaspisek\appdata\local\iw4m\iw4m.dat" = protocol=6 | dir=in | app=c:\users\kaspisek\appdata\local\iw4m\iw4m.dat |
"TCP Query User{C0357E5C-A610-4762-BD25-29CA2F8FB771}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{ECBA9DA2-1842-4F6C-AB3C-733B62F2BF5A}E:\steam\steamapps\kaspisek\team fortress 2\hl2.exe" = protocol=6 | dir=in | app=e:\steam\steamapps\kaspisek\team fortress 2\hl2.exe |
"UDP Query User{13E638CB-5C37-4367-9330-9E36F6F9E975}C:\users\kaspisek\appdata\local\iw4m\iw4m.dat" = protocol=17 | dir=in | app=c:\users\kaspisek\appdata\local\iw4m\iw4m.dat |
"UDP Query User{3AD0F371-8D73-40EF-A9CE-CF993678FA10}E:\painkiller hell and damnation\binaries\win32\pkhdgame-win32-shipping.exe" = protocol=17 | dir=in | app=e:\painkiller hell and damnation\binaries\win32\pkhdgame-win32-shipping.exe |
"UDP Query User{686D1219-6221-47F6-8696-2DB7680C651E}E:\modern warfare 2\iw4mp.exe" = protocol=17 | dir=in | app=e:\modern warfare 2\iw4mp.exe |
"UDP Query User{7D457078-2A15-48BA-9EB7-E418DE05FBC0}E:\battlefield play for free\bfp4f.exe" = protocol=17 | dir=in | app=e:\battlefield play for free\bfp4f.exe |
"UDP Query User{BB235959-B5B5-46AD-A5A8-9AAA397270B1}E:\steam\steamapps\kaspisek\team fortress 2\hl2.exe" = protocol=17 | dir=in | app=e:\steam\steamapps\kaspisek\team fortress 2\hl2.exe |
"UDP Query User{C9349156-C064-4718-B98A-B74334A07A87}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{D868E26F-52E1-4AB7-8658-C0E85F03E408}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0454BB9A-2A7A-4214-BDFF-937F7A711A44}" = Windows Live Communications Platform
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0FE78EE7-611A-4422-B062-91039C96F311}" = LogMeIn Hamachi
"{1798D459-6B8B-474B-868D-1229EADA3B95}" = Adobe AIR
"{1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1" = Euro Truck Simulator 2
"{26A24AE4-039D-4CA4-87B4-2F83217009FF}" = Java 7 Update 9
"{2A078A2B-E2C8-43A3-862C-DC57090AB7C2}" = Movie Maker
"{30F99474-EBE3-4134-A02B-F6CD38CFE243}" = Photo Gallery
"{321320E1-0E5A-36CB-9E52-F3B201B8C4D4}" = Microsoft .NET Framework 4 Client Profile PLK Language Pack
"{37B03AA0-B125-4649-900C-F26E1081F163}" = Camtasia Studio 7
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3D3E663D-4E7E-4577-A560-7ECDDD45548A}" = PVSonyDll
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F}" = SAGEM F@st 800-840
"{4CCBD1F4-CEEC-452A-9CB8-46564B501315}" = Windows Live UX Platform
"{6A8DB215-7BCD-4377-B015-2E4541A3E7C6}" = Windows Live PIMT Platform
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71972D00-4596-11E2-B6EA-B8AC6F97B88E}" = Google Earth Plug-in
"{7595CAD2-87D0-4D01-AC02-3FDD3A891BB8}" = Galeria fotografii
"{8256F87F-8554-4457-8C3D-3F3324697D9F}" = Windows Live ID Sign-in Assistant
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty® 4 - Modern Warfare™ 1.6 Patch
"{8A642ACD-CE3A-4A23-A8B1-A0F7EB12B214}" = Windows Live SOXE Definitions
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}" = MSVCRT110
"{90120000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2007
"{90120000-0015-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007
"{90120000-0016-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007
"{90120000-0018-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2007
"{90120000-0019-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2007
"{90120000-001A-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007
"{90120000-001B-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007
"{90120000-001F-0415-0000-0000000FF1CE}_ENTERPRISE_{9CC96D78-9E1D-46E0-AF4D-3EB440CD4619}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2007
"{90120000-0044-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007
"{90120000-006E-0415-0000-0000000FF1CE}_ENTERPRISE_{0C8AB602-A234-45AB-B355-4C863C1D2FA8}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007
"{90120000-00A1-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2007
"{90120000-00BA-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends
"{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty® 4 - Modern Warfare™ 1.7 Patch
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A7E73DE5-E5FD-4923-9D88-E09ECD1F3545}" = Podstawowe programy Windows Live
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AA82E5EF-70C2-41CB-8432-309078304CBB}" = Photo Common
"{AC76BA86-7AD7-1045-7B44-AA1000000001}" = Adobe Reader X (10.1.4) - Polish
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 306.97
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 306.97
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizacje NVIDIA 1.10.8
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{C424CD5E-EA05-4D3E-B5DA-F9F149E1D3AC}" = Windows Live Installer
"{C9B6EFD0-4F01-4BBA-8374-39AD99A3ED72}" = Windows Live Photo Common
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty® 4 - Modern Warfare™
"{EA17F4FC-FDBF-4CF8-A529-2D983132D053}" = Skype™ 6.0
"{ED6C77F9-4D7E-447C-9EC0-9A212D075535}" = Movie Maker
"{F09DD76B-D3D3-4558-B5BC-F1EEA6E00162}" = Windows Live UX Platform Language Pack
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FE7C0B3D-50B9-4951-BE78-A321CBF86552}" = Windows Live SOXE
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"AIMP3" = AIMP3
"Audacity_is1" = Audacity 2.0.2
"Avira AntiVir Desktop" = Avira Free Antivirus
"BitSpirit_is1" = BitSpirit v3.6.0.550 Stable
"CCleaner" = CCleaner
"DAEMON Tools Lite" = DAEMON Tools Lite
"ENTERPRISE" = Produkt Microsoft Office Enterprise 2007 w wersji próbnej
"Fraps" = Fraps (remove only)
"GIMP-2_is1" = GIMP 2.8.2
"Google Chrome" = Google Chrome
"Icy Tower v1.5_is1" = Icy Tower v1.5
"InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty® 4 - Modern Warfare™ 1.6 Patch
"InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty® 4 - Modern Warfare™ 1.7 Patch
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty® 4 - Modern Warfare™
"LAME_is1" = LAME v3.99.3 (for Windows)
"LogMeIn Hamachi" = LogMeIn Hamachi
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile
"Mozilla Firefox 17.0.1 (x86 pl)" = Mozilla Firefox 17.0.1 (x86 pl)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"Origin" = Origin
"Painkiller Hell and Damnation_is1" = Painkiller Hell and Damnation
"PunkBusterSvc" = PunkBuster Services
"Revo Uninstaller" = Revo Uninstaller 1.94
"RocketDock_is1" = RocketDock 1.3.5
"Steam App 440" = Team Fortress 2
"Trine 2_is1" = Trine 2
"Tunngle beta_is1" = Tunngle beta
"uTorrent" = µTorrent
"WinLiveSuite" = Podstawowe programy Windows Live
"WinRAR archiver" = WinRAR 4.20 (32-bitowy)

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-2701869729-785606778-3130026812-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{87686C21-8A15-4b4d-A3F1-11141D9BE094}" = Battlefield Play4Free
"GG" = GG

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 2012-12-30 10:04:04 | Computer Name = Kaspis | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: firefox.exe, wersja: 17.0.1.4715,
sygnatura czasowa: 0x50b71a4b Nazwa modułu powodującego błąd: xul.dll, wersja: 17.0.1.4715,
sygnatura czasowa: 0x50b7198b Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00144ed8
Identyfikator
procesu powodującego błąd: 0xcf0 Godzina uruchomienia aplikacji powodującej błąd:
0x01cde6967a20cddc Ścieżka aplikacji powodującej błąd: C:\Program Files\Mozilla
Firefox\firefox.exe Ścieżka modułu powodującego błąd: C:\Program Files\Mozilla Firefox\xul.dll
Identyfikator
raportu: c43e86fc-5289-11e2-8ceb-001a4d9e794f

Error - 2012-12-30 10:47:34 | Computer Name = Kaspis | Source = VSS | ID = 8194
Description =

Error - 2012-12-30 10:49:53 | Computer Name = Kaspis | Source = VSS | ID = 8194
Description =

Error - 2012-12-30 14:14:21 | Computer Name = Kaspis | Source = SideBySide | ID = 16842815
Description = Nie można wygenerować kontekstu aktywacji dla "c:\program files\spybot
- search & destroy\DelZip179.dll". Błąd w pliku manifestu lub w pliku zasad "c:\program
files\spybot - search & destroy\DelZip179.dll" w wierszu 8. Wartość "*" atrybutu
"language" elementu "assemblyIdentity" jest nieprawidłowa.

Error - 2012-12-31 06:30:56 | Computer Name = Kaspis | Source = WinMgmt | ID = 10
Description =

Error - 2012-12-31 06:49:27 | Computer Name = Kaspis | Source = Customer Experience Improvement Program | ID = 1008
Description =

Error - 2012-12-31 07:14:20 | Computer Name = Kaspis | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: firefox.exe, wersja: 17.0.1.4715,
sygnatura czasowa: 0x50b71a4b Nazwa modułu powodującego błąd: xul.dll, wersja: 17.0.1.4715,
sygnatura czasowa: 0x50b7198b Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00144ed8
Identyfikator
procesu powodującego błąd: 0xb24 Godzina uruchomienia aplikacji powodującej błąd:
0x01cde747ea33b560 Ścieżka aplikacji powodującej błąd: C:\Program Files\Mozilla
Firefox\firefox.exe Ścieżka modułu powodującego błąd: C:\Program Files\Mozilla Firefox\xul.dll
Identyfikator
raportu: 390adfb0-533b-11e2-8240-001a4d9e794f

Error - 2012-12-31 10:21:23 | Computer Name = Kaspis | Source = SideBySide | ID = 16842815
Description = Nie można wygenerować kontekstu aktywacji dla "c:\program files\spybot
- search & destroy\DelZip179.dll". Błąd w pliku manifestu lub w pliku zasad "c:\program
files\spybot - search & destroy\DelZip179.dll" w wierszu 8. Wartość "*" atrybutu
"language" elementu "assemblyIdentity" jest nieprawidłowa.

Error - 2012-12-31 12:04:24 | Computer Name = Kaspis | Source = Application Hang | ID = 1002
Description = Program Explorer.EXE w wersji 6.1.7601.17567 zatrzymał interakcję
z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej
informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania
Centrum akcji. Identyfikator procesu: 6ec Godzina rozpoczęcia: 01cde741b2b95fa0 Godzina
zakończenia: 88 Ścieżka aplikacji: C:\Windows\Explorer.EXE Identyfikator raportu:
a63ce0ed-5363-11e2-8240-001a4d9e794f

Error - 2012-12-31 12:22:47 | Computer Name = Kaspis | Source = WinMgmt | ID = 10
Description =

[ Media Center Events ]
Error - 2012-12-14 12:14:24 | Computer Name = Kaspis | Source = MCUpdate | ID = 0
Description = 17:14:24 - Błąd podczas nawiązywania połączenia z Internetem. 17:14:24
- Nie można skontaktować się z serwerem..

Error - 2012-12-14 12:14:33 | Computer Name = Kaspis | Source = MCUpdate | ID = 0
Description = 17:14:29 - Błąd podczas nawiązywania połączenia z Internetem. 17:14:29
- Nie można skontaktować się z serwerem..

Error - 2012-12-19 12:25:23 | Computer Name = Kaspis | Source = MCUpdate | ID = 0
Description = 17:25:23 - Nie można pobrać pakietu Directory (Błąd: Połączenie podstawowe
zostało zakończone: Wystąpił nieoczekiwany błąd przy odbiorze.)

[ System Events ]
Error - 2012-12-30 05:19:57 | Computer Name = Kaspis | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi General Purpose USB Driver (e4ldr.sys)
z powodu następującego błędu: %%1058

Error - 2012-12-30 05:19:57 | Computer Name = Kaspis | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi OrangeWare USB Enhanced Host Controller
Service z powodu następującego błędu: %%1058

Error - 2012-12-30 06:14:34 | Computer Name = Kaspis | Source = bowser | ID = 8003
Description =

Error - 2012-12-30 15:54:36 | Computer Name = Kaspis | Source = bowser | ID = 8003
Description =

Error - 2012-12-31 06:29:18 | Computer Name = Kaspis | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi General Purpose USB Driver (e4ldr.sys)
z powodu następującego błędu: %%1058

Error - 2012-12-31 06:29:18 | Computer Name = Kaspis | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi OrangeWare USB Enhanced Host Controller
Service z powodu następującego błędu: %%1058

Error - 2012-12-31 12:03:19 | Computer Name = Kaspis | Source = cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2012-12-31 12:04:15 | Computer Name = Kaspis | Source = cdrom | ID = 262151
Description = W urządzeniu \Device\CdRom0 wystąpił zły blok.

Error - 2012-12-31 12:21:09 | Computer Name = Kaspis | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi General Purpose USB Driver (e4ldr.sys)
z powodu następującego błędu: %%1058

Error - 2012-12-31 12:21:09 | Computer Name = Kaspis | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi OrangeWare USB Enhanced Host Controller
Service z powodu następującego błędu: %%1058

[/log]

[log]
OTL logfile created on: 2012-12-31 19:17:15 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Kaspisek\Downloads
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,50 Gb Total Physical Memory | 2,28 Gb Available Physical Memory | 65,19% Memory free
7,00 Gb Paging File | 5,60 Gb Available in Paging File | 79,99% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 37,57 Gb Total Space | 15,00 Gb Free Space | 39,94% Space Free | Partition Type: NTFS
Drive D: | 97,65 Gb Total Space | 38,34 Gb Free Space | 39,26% Space Free | Partition Type: NTFS
Drive E: | 97,65 Gb Total Space | 17,52 Gb Free Space | 17,94% Space Free | Partition Type: NTFS

Computer Name: KASPIS | User Name: Kaspisek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 60 Days

========== Processes (All) ==========

PRC - [2012-12-31 19:05:45 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Kaspisek\Downloads\OTL.exe
PRC - [2012-12-30 19:40:09 | 000,075,136 | ---- | M] () -- C:\Windows\System32\PnkBstrA.exe
PRC - [2012-12-23 12:14:51 | 001,807,800 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe
PRC - [2012-12-11 20:57:14 | 000,085,280 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2012-12-11 20:56:44 | 000,079,136 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2012-12-11 20:56:40 | 000,109,344 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2012-12-11 20:56:39 | 000,384,800 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2012-11-29 09:26:33 | 000,016,864 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
PRC - [2012-11-29 09:26:08 | 000,916,960 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012-11-12 14:22:38 | 002,254,768 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
PRC - [2012-11-12 14:22:36 | 001,431,472 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
PRC - [2012-11-09 11:27:12 | 017,877,168 | R--- | M] (Skype Technologies S.A.) -- C:\Program Files\Skype\Phone\Skype.exe
PRC - [2012-10-02 23:20:00 | 001,258,856 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2012-10-02 20:29:42 | 000,645,992 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvsvc.exe
PRC - [2012-10-02 20:29:14 | 000,864,616 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2012-10-02 20:28:55 | 001,820,520 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2012-07-27 21:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012-07-26 04:21:03 | 000,196,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WUDFHost.exe
PRC - [2012-07-17 14:49:00 | 001,713,904 | ---- | M] (Microsoft Corp.) -- C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
PRC - [2012-07-17 14:49:00 | 000,194,304 | ---- | M] (Microsoft Corp.) -- C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
PRC - [2012-07-03 09:04:54 | 000,252,848 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
PRC - [2012-06-11 11:28:02 | 010,996,368 | ---- | M] (Realtek Semiconductor) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
PRC - [2012-06-02 23:19:33 | 000,053,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuauclt.exe
PRC - [2012-02-11 06:37:49 | 000,317,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spoolsv.exe
PRC - [2011-11-17 06:29:50 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsass.exe
PRC - [2011-05-04 05:28:31 | 000,427,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchIndexer.exe
PRC - [2011-05-04 05:28:31 | 000,164,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchProtocolHost.exe
PRC - [2011-02-25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010-11-20 22:29:49 | 001,121,792 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe
PRC - [2010-11-20 22:29:19 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2010-11-20 22:29:11 | 000,267,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsm.exe
PRC - [2010-11-20 22:29:06 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winlogon.exe
PRC - [2009-07-14 02:14:45 | 000,096,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wininit.exe
PRC - [2009-07-14 02:14:41 | 000,354,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\StikyNot.exe
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2009-07-14 02:14:39 | 000,069,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\smss.exe
PRC - [2009-07-14 02:14:36 | 000,259,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\services.exe
PRC - [2009-07-14 02:14:25 | 000,134,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdtc.exe
PRC - [2009-07-14 02:14:19 | 000,092,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwm.exe
PRC - [2009-07-14 02:14:18 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dllhost.exe
PRC - [2009-07-14 02:14:16 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\csrss.exe
PRC - [2009-02-26 18:36:46 | 000,030,040 | ---- | M] (Microsoft Corporation) -- E:\Microsoft ofice\Office12\GrooveMonitor.exe
PRC - [2008-07-07 09:42:06 | 002,156,368 | RHS- | M] (Safer Networking Limited) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2007-09-02 13:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.exe


========== Modules (All) ==========

MOD - [2012-12-31 19:05:45 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Kaspisek\Downloads\OTL.exe
MOD - [2012-12-24 21:01:34 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
MOD - [2012-12-24 21:01:32 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll
MOD - [2012-12-23 12:14:51 | 001,807,800 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe
MOD - [2012-12-23 12:14:50 | 014,586,296 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_11_5_502_135.dll
MOD - [2012-12-11 20:57:16 | 000,156,448 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\shlext.dll
MOD - [2012-12-11 20:57:11 | 000,381,216 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\grdcore.dll
MOD - [2012-12-11 20:57:10 | 000,219,424 | ---- | M] (Avira Operations GmbH & Co. KG) -- c:\Program Files\Avira\AntiVir Desktop\gpipc.dll
MOD - [2012-12-11 20:57:06 | 000,667,936 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\ccwkrlib.dll
MOD - [2012-12-11 20:57:04 | 000,466,208 | ---- | M] (Avira Operations GmbH & Co. KG) -- c:\Program Files\Avira\AntiVir Desktop\ccwgrd.dll
MOD - [2012-12-11 20:57:02 | 000,274,720 | ---- | M] (Avira Operations GmbH & Co. KG) -- c:\Program Files\Avira\AntiVir Desktop\ccupdate.dll
MOD - [2012-12-11 20:57:02 | 000,214,816 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\ccupdw.dll
MOD - [2012-12-11 20:57:02 | 000,026,400 | ---- | M] (Avira Operations GmbH & Co. KG) -- c:\Program Files\Avira\AntiVir Desktop\ccupdrc.dll
MOD - [2012-12-11 20:56:57 | 000,232,736 | ---- | M] (Avira Operations GmbH & Co. KG) -- c:\Program Files\Avira\AntiVir Desktop\ccmsg.dll
MOD - [2012-12-11 20:56:56 | 000,121,632 | ---- | M] (Avira Operations GmbH & Co. KG) -- c:\Program Files\Avira\AntiVir Desktop\cclic.dll
MOD - [2012-12-11 20:56:55 | 000,401,184 | ---- | M] (Avira Operations GmbH & Co. KG) -- c:\Program Files\Avira\AntiVir Desktop\ccguard.dll
MOD - [2012-12-11 20:56:55 | 000,231,200 | ---- | M] (Avira Operations GmbH & Co. KG) -- c:\Program Files\Avira\AntiVir Desktop\ccgrdw.dll
MOD - [2012-12-11 20:56:54 | 000,046,368 | ---- | M] (Avira Operations GmbH & Co. KG) -- c:\Program Files\Avira\AntiVir Desktop\ccgenrc.dll
MOD - [2012-12-11 20:56:53 | 000,834,848 | ---- | M] (Avira Operations GmbH & Co. KG) -- c:\Program Files\Avira\AntiVir Desktop\ccgen.dll
MOD - [2012-12-11 20:56:39 | 000,384,800 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
MOD - [2012-12-11 20:56:32 | 004,782,880 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\rcimage.dll
MOD - [2012-12-11 20:56:32 | 000,057,120 | ---- | M] (Avira Operations GmbH & Co. KG) -- c:\Program Files\Avira\AntiVir Desktop\cfglib.dll
MOD - [2012-11-29 09:26:57 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
MOD - [2012-11-29 09:26:56 | 015,112,160 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\xul.dll
MOD - [2012-11-29 09:26:40 | 000,019,424 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\xpcom.dll
MOD - [2012-11-29 09:26:37 | 000,145,376 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\ssl3.dll
MOD - [2012-11-29 09:26:35 | 000,155,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\softokn3.dll
MOD - [2012-11-29 09:26:34 | 000,091,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\smime3.dll
MOD - [2012-11-29 09:26:33 | 000,016,864 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
MOD - [2012-11-29 09:26:32 | 000,020,960 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\plds4.dll
MOD - [2012-11-29 09:26:31 | 000,021,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\plc4.dll
MOD - [2012-11-29 09:26:30 | 000,092,640 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssutil3.dll
MOD - [2012-11-29 09:26:29 | 000,096,224 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssdbm3.dll
MOD - [2012-11-29 09:26:27 | 000,370,656 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssckbi.dll
MOD - [2012-11-29 09:26:26 | 000,638,432 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nss3.dll
MOD - [2012-11-29 09:26:24 | 000,172,000 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nspr4.dll
MOD - [2012-11-29 09:26:23 | 000,810,976 | ---- | M] (sqlite.org) -- C:\Program Files\Mozilla Firefox\mozsqlite3.dll
MOD - [2012-11-29 09:26:21 | 002,397,152 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012-11-29 09:26:19 | 000,124,896 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\mozglue.dll
MOD - [2012-11-29 09:26:18 | 000,015,840 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\mozalloc.dll
MOD - [2012-11-29 09:26:13 | 004,220,896 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\gkmedias.dll
MOD - [2012-11-29 09:26:09 | 000,258,528 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\freebl3.dll
MOD - [2012-11-29 09:26:08 | 000,916,960 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
MOD - [2012-11-29 09:25:45 | 000,770,384 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\msvcr100.dll
MOD - [2012-11-29 09:25:45 | 000,421,200 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\msvcp100.dll
MOD - [2012-11-14 13:23:16 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll
MOD - [2012-11-14 03:48:26 | 012,320,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.dll
MOD - [2012-11-14 03:14:59 | 009,738,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieframe.dll
MOD - [2012-11-14 03:09:22 | 001,800,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
MOD - [2012-11-14 02:57:44 | 001,103,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\urlmon.dll
MOD - [2012-11-14 02:57:37 | 001,129,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wininet.dll
MOD - [2012-11-14 02:52:27 | 000,194,560 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\ieproxy.dll
MOD - [2012-11-14 02:51:44 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
MOD - [2012-11-14 02:46:38 | 001,793,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iertutil.dll
MOD - [2012-11-12 14:22:38 | 002,254,768 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
MOD - [2012-11-09 11:27:12 | 017,877,168 | R--- | M] (Skype Technologies S.A.) -- C:\Program Files\Skype\Phone\Skype.exe
MOD - [2012-11-08 15:19:03 | 000,013,960 | ---- | M] (Avira Operations GmbH & Co. KG) -- c:\Program Files\Avira\AntiVir Desktop\ccmainrc.dll
MOD - [2012-10-09 18:40:31 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
MOD - [2012-10-09 12:15:26 | 000,026,912 | ---- | M] (Avira Operations GmbH & Co. KG) -- c:\Program Files\Avira\AntiVir Desktop\ccgrdrc.dll
MOD - [2012-10-04 17:43:05 | 000,868,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kernel32.dll
MOD - [2012-10-04 17:43:05 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KernelBase.dll
MOD - [2012-10-03 17:42:26 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nlaapi.dll
MOD - [2012-10-02 23:20:00 | 015,309,160 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
MOD - [2012-10-02 23:20:00 | 002,815,336 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll
MOD - [2012-10-02 23:20:00 | 000,980,328 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll
MOD - [2012-10-02 23:20:00 | 000,634,728 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU.dll
MOD - [2012-10-02 20:29:41 | 000,062,312 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvshext.dll
MOD - [2012-10-02 20:29:02 | 003,272,552 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvui.dll
MOD - [2012-10-02 20:28:55 | 001,820,520 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
MOD - [2012-09-25 23:47:43 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\synceng.dll
MOD - [2012-09-21 08:49:48 | 000,008,992 | ---- | M] (Avira Operations GmbH & Co. KG) -- c:\Program Files\Avira\AntiVir Desktop\ccmsgrc.dll
MOD - [2012-09-20 08:18:28 | 000,009,504 | ---- | M] (Avira Operations GmbH & Co. KG) -- c:\Program Files\Avira\AntiVir Desktop\cclicrc.dll
MOD - [2012-09-19 18:07:05 | 000,061,728 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avipc.dll
MOD - [2012-08-24 17:57:48 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wintrust.dll
MOD - [2012-08-02 17:57:20 | 000,490,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
MOD - [2012-07-17 14:49:00 | 000,145,648 | ---- | M] (Microsoft Corp.) -- C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
MOD - [2012-07-04 22:16:56 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netapi32.dll
MOD - [2012-07-04 22:14:34 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\browcli.dll
MOD - [2012-07-03 09:04:54 | 000,252,848 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
MOD - [2012-06-11 11:28:02 | 010,996,368 | ---- | M] (Realtek Semiconductor) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
MOD - [2012-06-09 19:20:02 | 000,168,448 | ---- | M] (Alexander Roshal) -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2012-06-09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shell32.dll
MOD - [2012-06-06 06:05:52 | 001,390,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml6.dll
MOD - [2012-06-06 06:05:52 | 001,236,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml3.dll
MOD - [2012-06-05 10:41:30 | 001,232,896 | ---- | M] (GG Network S.A.) -- C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll
MOD - [2012-06-02 23:19:33 | 000,053,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuauclt.exe
MOD - [2012-06-02 23:19:33 | 000,045,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
MOD - [2012-06-02 23:12:32 | 002,422,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
MOD - [2012-06-02 05:40:39 | 000,225,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\schannel.dll
MOD - [2012-06-02 05:39:10 | 000,219,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll
MOD - [2012-06-02 05:36:29 | 001,159,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\crypt32.dll
MOD - [2012-06-02 05:36:29 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptnet.dll
MOD - [2012-04-21 05:21:01 | 001,625,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
MOD - [2012-04-07 12:26:29 | 002,342,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msi.dll
MOD - [2012-03-03 06:31:19 | 001,077,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
MOD - [2012-03-01 06:33:23 | 000,159,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imagehlp.dll
MOD - [2012-01-04 09:58:41 | 000,442,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntshrui.dll
MOD - [2011-12-30 06:27:56 | 000,478,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
MOD - [2011-12-16 08:52:58 | 000,690,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcrt.dll
MOD - [2011-11-17 06:38:39 | 001,288,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntdll.dll
MOD - [2011-11-17 06:35:02 | 000,314,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\webio.dll
MOD - [2011-11-17 06:34:55 | 000,100,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspicli.dll
MOD - [2011-11-17 06:34:52 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secur32.dll
MOD - [2011-08-27 05:26:27 | 000,571,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleaut32.dll
MOD - [2011-08-27 05:26:27 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleacc.dll
MOD - [2011-07-27 05:14:02 | 000,967,008 | ---- | M] (Microsoft Corporation) -- E:\Microsoft ofice\Office12\GrooveUtil.dll
MOD - [2011-06-16 05:33:18 | 000,180,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xmllite.dll
MOD - [2011-06-11 01:58:52 | 004,422,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc100u.dll
MOD - [2011-06-11 01:58:52 | 000,773,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcr100.dll
MOD - [2011-06-11 01:58:52 | 000,421,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcp100.dll
MOD - [2011-06-11 01:58:52 | 000,055,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc100enu.dll
MOD - [2011-05-17 09:27:52 | 000,413,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
MOD - [2011-04-12 06:08:11 | 000,093,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\pl\ShFusRes.dll
MOD - [2011-03-03 06:38:01 | 000,270,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dnsapi.dll
MOD - [2011-02-25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
MOD - [2011-02-19 07:30:50 | 000,739,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
MOD - [2011-01-17 06:47:13 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
MOD - [2010-11-20 22:29:50 | 000,301,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srchadmin.dll
MOD - [2010-11-20 22:29:49 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spp.dll
MOD - [2010-11-20 22:29:41 | 002,576,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
MOD - [2010-11-20 22:29:41 | 002,311,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpdshext.dll
MOD - [2010-11-20 22:29:41 | 000,744,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ActionCenter.dll
MOD - [2010-11-20 22:29:41 | 000,547,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
MOD - [2010-11-20 22:29:41 | 000,243,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\audiodev.dll
MOD - [2010-11-20 22:29:41 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Portable Devices\sqmapi.dll
MOD - [2010-11-20 22:29:41 | 000,165,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\provsvc.dll
MOD - [2010-11-20 22:29:41 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WPDShServiceObj.dll
MOD - [2010-11-20 22:29:40 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscapi.dll
MOD - [2010-11-20 22:29:39 | 002,146,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SyncCenter.dll
MOD - [2010-11-20 22:29:39 | 000,159,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\syncui.dll
MOD - [2010-11-20 22:29:34 | 000,481,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscms.dll
MOD - [2010-11-20 22:29:26 | 002,504,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL
MOD - [2010-11-20 22:29:26 | 000,418,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cscui.dll
MOD - [2010-11-20 22:29:26 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cscobj.dll
MOD - [2010-11-20 22:29:26 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\HotStartUserAgent.dll
MOD - [2010-11-20 22:29:24 | 001,010,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecs.dll
MOD - [2010-11-20 22:29:24 | 001,003,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptui.dll
MOD - [2010-11-20 22:29:24 | 000,692,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bthprops.cpl
MOD - [2010-11-20 22:29:24 | 000,505,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskschd.dll
MOD - [2010-11-20 22:29:24 | 000,335,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WinSATAPI.dll
MOD - [2010-11-20 22:29:24 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IPHLPAPI.DLL
MOD - [2010-11-20 22:29:24 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\credssp.dll
MOD - [2010-11-20 22:29:20 | 001,493,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
MOD - [2010-11-20 22:29:20 | 001,128,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vssapi.dll
MOD - [2010-11-20 22:29:20 | 000,811,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\user32.dll
MOD - [2010-11-20 22:29:20 | 000,640,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\advapi32.dll
MOD - [2010-11-20 22:29:20 | 000,473,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\riched20.dll
MOD - [2010-11-20 22:29:20 | 000,202,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\activeds.dll
MOD - [2010-11-20 22:29:20 | 000,118,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imm32.dll
MOD - [2010-11-20 22:29:20 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\QUTIL.DLL
MOD - [2010-11-20 22:29:19 | 001,828,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d9.dll
MOD - [2010-11-20 22:29:19 | 001,171,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
MOD - [2010-11-20 22:29:19 | 000,626,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\usp10.dll
MOD - [2010-11-20 22:29:19 | 000,380,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sxs.dll
MOD - [2010-11-20 22:29:19 | 000,363,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\StructuredQuery.dll
MOD - [2010-11-20 22:29:19 | 000,269,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wldap32.dll
MOD - [2010-11-20 22:29:19 | 000,228,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\stobject.dll
MOD - [2010-11-20 22:29:19 | 000,158,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mprapi.dll
MOD - [2010-11-20 22:29:19 | 000,127,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\logoncli.dll
MOD - [2010-11-20 22:29:19 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
MOD - [2010-11-20 22:29:18 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winmm.dll
MOD - [2010-11-20 22:29:15 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srvcli.dll
MOD - [2010-11-20 22:29:13 | 001,661,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\networkexplorer.dll
MOD - [2010-11-20 22:29:13 | 001,371,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmcore.dll
MOD - [2010-11-20 22:29:13 | 000,653,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rpcrt4.dll
MOD - [2010-11-20 22:29:13 | 000,304,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gdi32.dll
MOD - [2010-11-20 22:29:13 | 000,295,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\apphelp.dll
MOD - [2010-11-20 22:29:13 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\userenv.dll
MOD - [2010-11-20 22:29:13 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netutils.dll
MOD - [2010-11-20 22:29:12 | 001,063,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\werconcpl.dll
MOD - [2010-11-20 22:29:12 | 000,988,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\propsys.dll
MOD - [2010-11-20 22:29:12 | 000,854,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dbghelp.dll
MOD - [2010-11-20 22:29:12 | 000,801,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll
MOD - [2010-11-20 22:29:12 | 000,592,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll
MOD - [2010-11-20 22:29:12 | 000,530,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
MOD - [2010-11-20 22:29:12 | 000,508,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
MOD - [2010-11-20 22:29:12 | 000,351,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winhttp.dll
MOD - [2010-11-20 22:29:12 | 000,327,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\zipfldr.dll
MOD - [2010-11-20 22:29:12 | 000,320,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Faultrep.dll
MOD - [2010-11-20 22:29:12 | 000,320,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winspool.drv
MOD - [2010-11-20 22:29:12 | 000,232,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mswsock.dll
MOD - [2010-11-20 22:29:12 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL
MOD - [2010-11-20 22:29:12 | 000,206,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\framedynos.dll
MOD - [2010-11-20 22:29:12 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll
MOD - [2010-11-20 22:29:12 | 000,115,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\shfusion.dll
MOD - [2010-11-20 22:29:12 | 000,109,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
MOD - [2010-11-20 22:29:12 | 000,108,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shacct.dll
MOD - [2010-11-20 22:29:12 | 000,082,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\thumbcache.dll
MOD - [2010-11-20 22:29:12 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mapi32.dll
MOD - [2010-11-20 22:29:12 | 000,046,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RpcRtRemote.dll
MOD - [2010-11-20 22:29:11 | 002,494,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netshell.dll
MOD - [2010-11-20 22:29:11 | 001,750,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnidui.dll
MOD - [2010-11-20 22:29:11 | 000,392,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imapi2.dll
MOD - [2010-11-20 22:29:11 | 000,381,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wer.dll
MOD - [2010-11-20 22:29:11 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SndVolSSO.dll
MOD - [2010-11-20 22:29:11 | 000,179,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shdocvw.dll
MOD - [2010-11-20 22:29:11 | 000,128,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\EhStorAPI.dll
MOD - [2010-11-20 22:29:10 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\olepro32.dll
MOD - [2010-11-20 22:29:08 | 001,792,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
MOD - [2010-11-20 22:29:08 | 000,484,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DeviceCenter.dll
MOD - [2010-11-20 22:29:08 | 000,399,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DXP.dll
MOD - [2010-11-20 22:29:08 | 000,395,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\prnfldr.dll
MOD - [2010-11-20 22:29:08 | 000,297,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscoree.dll
MOD - [2010-11-20 22:29:08 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cscapi.dll
MOD - [2010-11-20 22:29:08 | 000,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdmo.dll
MOD - [2010-11-20 22:29:08 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cscdll.dll
MOD - [2010-11-20 22:29:07 | 001,414,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ole32.dll
MOD - [2010-11-20 22:29:07 | 000,309,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\actxprxy.dll
MOD - [2010-11-20 22:29:07 | 000,195,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AudioSes.dll
MOD - [2010-11-20 22:29:07 | 000,172,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wdmaud.drv
MOD - [2010-11-20 22:29:07 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\QAGENT.DLL
MOD - [2010-11-20 22:29:07 | 000,167,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msutb.dll
MOD - [2010-11-20 22:29:07 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cabinet.dll
MOD - [2010-11-20 22:29:07 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll
MOD - [2010-11-20 22:29:06 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
MOD - [2010-11-20 22:29:06 | 001,667,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\setupapi.dll
MOD - [2010-11-20 22:29:06 | 000,740,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\batmeter.dll
MOD - [2010-11-20 22:29:06 | 000,646,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchFolder.dll
MOD - [2010-11-20 22:29:06 | 000,312,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hgcpl.dll
MOD - [2010-11-20 22:29:06 | 000,213,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MMDevAPI.dll
MOD - [2010-11-20 22:29:06 | 000,206,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ws2_32.dll
MOD - [2010-11-20 22:29:06 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winsta.dll
MOD - [2010-11-20 22:29:06 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmredir.dll
MOD - [2010-11-20 22:29:06 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samcli.dll
MOD - [2010-11-20 22:29:06 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wkscli.dll
MOD - [2010-11-20 22:29:06 | 000,040,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wtsapi32.dll
MOD - [2010-11-20 22:29:04 | 000,485,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\comdlg32.dll
MOD - [2010-11-20 22:29:04 | 000,219,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
MOD - [2010-11-20 22:29:04 | 000,121,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppc.dll
MOD - [2010-11-20 22:29:04 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msasn1.dll
MOD - [2010-11-20 22:29:03 | 000,350,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shlwapi.dll
MOD - [2009-07-14 02:17:54 | 000,249,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bcryptprimitives.dll
MOD - [2009-07-14 02:17:54 | 000,242,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rsaenh.dll
MOD - [2009-07-14 02:16:21 | 000,284,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WWanAPI.dll
MOD - [2009-07-14 02:16:21 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wwapi.dll
MOD - [2009-07-14 02:16:20 | 000,308,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wpc.dll
MOD - [2009-07-14 02:16:20 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscinterop.dll
MOD - [2009-07-14 02:16:20 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wsock32.dll
MOD - [2009-07-14 02:16:20 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wship6.dll
MOD - [2009-07-14 02:16:20 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSHTCPIP.DLL
MOD - [2009-07-14 02:16:19 | 000,237,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMASF.DLL
MOD - [2009-07-14 02:16:19 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanapi.dll
MOD - [2009-07-14 02:16:19 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winrnr.dll
MOD - [2009-07-14 02:16:19 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winnsi.dll
MOD - [2009-07-14 02:16:19 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanutil.dll
MOD - [2009-07-14 02:16:18 | 000,262,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtapi.dll
MOD - [2009-07-14 02:16:18 | 000,192,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
MOD - [2009-07-14 02:16:18 | 000,076,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wdi.dll
MOD - [2009-07-14 02:16:18 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wercplsupport.dll
MOD - [2009-07-14 02:16:17 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uxtheme.dll
MOD - [2009-07-14 02:16:17 | 000,099,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll
MOD - [2009-07-14 02:16:17 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vsstrace.dll
MOD - [2009-07-14 02:16:17 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\version.dll
MOD - [2009-07-14 02:16:16 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
MOD - [2009-07-14 02:16:16 | 000,239,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uDWM.dll
MOD - [2009-07-14 02:16:15 | 000,192,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tapi32.dll
MOD - [2009-07-14 02:16:15 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Syncreg.dll
MOD - [2009-07-14 02:16:15 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srclient.dll
MOD - [2009-07-14 02:16:15 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\slc.dll
MOD - [2009-07-14 02:16:14 | 000,075,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SPInf.dll
MOD - [2009-07-14 02:16:14 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shfolder.dll
MOD - [2009-07-14 02:16:13 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RstrtMgr.dll
MOD - [2009-07-14 02:16:13 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sechost.dll
MOD - [2009-07-14 02:16:13 | 000,082,944 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Sidebar\sbdrop.dll
MOD - [2009-07-14 02:16:13 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samlib.dll
MOD - [2009-07-14 02:16:13 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SensApi.dll
MOD - [2009-07-14 02:16:12 | 000,772,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasdlg.dll
MOD - [2009-07-14 02:16:12 | 000,325,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasapi32.dll
MOD - [2009-07-14 02:16:12 | 000,159,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll
MOD - [2009-07-14 02:16:12 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\powrprof.dll
MOD - [2009-07-14 02:16:12 | 000,103,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oledlg.dll
MOD - [2009-07-14 02:16:12 | 000,077,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PlaySndSrv.dll
MOD - [2009-07-14 02:16:12 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasman.dll
MOD - [2009-07-14 02:16:12 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpnsp.dll
MOD - [2009-07-14 02:16:12 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\radarrs.dll
MOD - [2009-07-14 02:16:12 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profapi.dll
MOD - [2009-07-14 02:16:12 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasadhlp.dll
MOD - [2009-07-14 02:16:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\psapi.dll
MOD - [2009-07-14 02:16:11 | 000,121,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntmarta.dll
MOD - [2009-07-14 02:16:11 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\npmproxy.dll
MOD - [2009-07-14 02:16:11 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nsi.dll
MOD - [2009-07-14 02:16:03 | 001,537,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0000.dll
MOD - [2009-07-14 02:16:03 | 000,360,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netprofm.dll
MOD - [2009-07-14 02:16:02 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NapiNSP.dll
MOD - [2009-07-14 02:15:48 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll
MOD - [2009-07-14 02:15:44 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msimtf.dll
MOD - [2009-07-14 02:15:44 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msiltcfg.dll
MOD - [2009-07-14 02:15:44 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msimg32.dll
MOD - [2009-07-14 02:15:43 | 000,828,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msctf.dll
MOD - [2009-07-14 02:15:43 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsCtfMonitor.dll
MOD - [2009-07-14 02:15:42 | 000,072,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msacm32.dll
MOD - [2009-07-14 02:15:41 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mpr.dll
MOD - [2009-07-14 02:15:40 | 000,177,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mlang.dll
MOD - [2009-07-14 02:15:40 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\midimap.dll
MOD - [2009-07-14 02:15:36 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lpk.dll
MOD - [2009-07-14 02:15:36 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\linkinfo.dll
MOD - [2009-07-14 02:15:35 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ksuser.dll
MOD - [2009-07-14 02:15:32 | 001,415,168 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\ink\InkObj.dll
MOD - [2009-07-14 02:15:27 | 000,215,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icm32.dll
MOD - [2009-07-14 02:15:27 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IconCodecService.dll
MOD - [2009-07-14 02:15:24 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hcproviders.dll
MOD - [2009-07-14 02:15:24 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hid.dll
MOD - [2009-07-14 02:15:22 | 000,848,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSST.dll
MOD - [2009-07-14 02:15:22 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gpapi.dll
MOD - [2009-07-14 02:15:21 | 000,227,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSAPI.dll
MOD - [2009-07-14 02:15:20 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\feclient.dll
MOD - [2009-07-14 02:15:20 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fdProxy.dll
MOD - [2009-07-14 02:15:19 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\es.dll
MOD - [2009-07-14 02:15:14 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\EhStorShell.dll
MOD - [2009-07-14 02:15:14 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehSSO.dll
MOD - [2009-07-14 02:15:13 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dui70.dll
MOD - [2009-07-14 02:15:13 | 000,453,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dsound.dll
MOD - [2009-07-14 02:15:13 | 000,181,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\duser.dll
MOD - [2009-07-14 02:15:13 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll
MOD - [2009-07-14 02:15:13 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dsrole.dll
MOD - [2009-07-14 02:15:11 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devobj.dll
MOD - [2009-07-14 02:15:11 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc.dll
MOD - [2009-07-14 02:15:11 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devrtl.dll
MOD - [2009-07-14 02:15:11 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dimsjob.dll
MOD - [2009-07-14 02:15:10 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devenum.dll
MOD - [2009-07-14 02:15:08 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d8thk.dll
MOD - [2009-07-14 02:15:07 | 001,242,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\comsvcs.dll
MOD - [2009-07-14 02:15:07 | 001,030,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
MOD - [2009-07-14 02:15:07 | 000,190,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
MOD - [2009-07-14 02:15:07 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptsp.dll
MOD - [2009-07-14 02:15:07 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptbase.dll
MOD - [2009-07-14 02:15:03 | 000,522,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\clbcatq.dll
MOD - [2009-07-14 02:14:59 | 000,080,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bcrypt.dll
MOD - [2009-07-14 02:14:58 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avrt.dll
MOD - [2009-07-14 02:14:57 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\atl.dll
MOD - [2009-07-14 02:14:53 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AltTab.dll
MOD - [2009-07-14 02:14:52 | 000,202,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\adsldpc.dll
MOD - [2009-07-14 02:14:41 | 000,354,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\StikyNot.exe
MOD - [2009-07-14 02:14:19 | 000,092,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwm.exe
MOD - [2009-07-14 02:14:10 | 000,523,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hhctrl.ocx
MOD - [2009-07-14 02:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscript.ocx
MOD - [2009-07-14 02:14:10 | 000,064,000 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm
MOD - [2009-07-14 02:14:09 | 001,140,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscui.cpl
MOD - [2009-07-14 02:14:08 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msacm32.drv
MOD - [2009-07-14 02:09:00 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\normaliz.dll
MOD - [2009-07-14 02:05:30 | 000,925,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FXSRESM.dll
MOD - [2009-06-10 22:22:53 | 000,015,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\fusion.dll
MOD - [2009-06-10 22:22:50 | 000,023,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
MOD - [2009-02-27 14:48:36 | 001,008,496 | ---- | M] (Microsoft Corporation) -- E:\Microsoft ofice\Office12\1045\GrooveIntlResource.dll
MOD - [2009-02-26 18:37:02 | 000,178,040 | ---- | M] (Microsoft Corporation) -- E:\Microsoft ofice\Office12\GrooveSystemServices.dll
MOD - [2009-02-26 18:36:54 | 002,217,832 | ---- | M] (Microsoft Corporation) -- E:\Microsoft ofice\Office12\GrooveShellExtensions.dll
MOD - [2009-02-26 18:36:48 | 000,021,856 | ---- | M] (Microsoft Corporation) -- E:\Microsoft ofice\Office12\GrooveNew.dll
MOD - [2009-02-26 18:36:46 | 001,560,912 | ---- | M] (Microsoft Corporation) -- E:\Microsoft ofice\Office12\GrooveMisc.dll
MOD - [2009-02-26 18:36:46 | 000,030,040 | ---- | M] (Microsoft Corporation) -- E:\Microsoft ofice\Office12\GrooveMonitor.exe
MOD - [2008-07-07 09:42:06 | 002,156,368 | RHS- | M] (Safer Networking Limited) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
MOD - [2008-07-07 09:41:58 | 001,562,448 | ---- | M] (Safer Networking Limited) -- C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
MOD - [2008-07-07 09:41:56 | 000,939,344 | ---- | M] (Safer Networking Limited) -- C:\Program Files\Spybot - Search & Destroy\advcheck.dll
MOD - [2007-09-02 13:58:52 | 000,495,616 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.exe
MOD - [2007-09-02 13:57:36 | 000,069,632 | ---- | M] () -- C:\Program Files\RocketDock\RocketDock.dll


========== Services (SafeList) ==========

SRV - [2012-12-23 12:14:51 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012-12-20 14:15:57 | 000,541,760 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012-12-11 20:57:14 | 000,085,280 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2012-12-11 20:56:40 | 000,109,344 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2012-11-29 09:26:17 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012-11-26 18:35:10 | 000,745,368 | ---- | M] (Tunngle.net GmbH) [On_Demand | Stopped] -- C:\Program Files\Tunngle\TnglCtrl.exe -- (TunngleService)
SRV - [2012-11-19 22:35:21 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2012-11-12 14:22:36 | 001,431,472 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2012-10-19 16:14:08 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012-10-02 23:20:00 | 001,258,856 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012-07-27 21:51:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2009-07-14 02:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009-07-14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009-07-14 02:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009-07-14 02:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009-02-26 18:36:22 | 000,064,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- E:\Microsoft ofice\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service)


========== Driver Services (SafeList) ==========

DRV - [2012-12-11 20:57:24 | 000,134,336 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV - [2012-12-11 20:57:24 | 000,083,944 | ---- | M] (Avira Operations GmbH & Co. KG) [File_System | Auto | Running] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2012-11-28 13:18:02 | 000,242,240 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2012-11-07 16:03:24 | 000,036,552 | ---- | M] (Avira Operations GmbH & Co. KG) [Kernel | System | Running] -- C:\Windows\System32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2012-10-28 12:20:40 | 000,063,616 | ---- | M] (Alcor Micro, Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AmUStor.sys -- (AmUStor)
DRV - [2012-10-02 23:20:00 | 010,837,352 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2012-08-27 14:50:24 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010-11-20 22:29:24 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010-11-20 22:29:03 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010-11-20 22:29:03 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dmvsc.sys -- (dmvsc)
DRV - [2010-11-20 22:29:03 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010-11-20 22:29:03 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010-11-20 22:29:03 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2010-11-20 22:29:03 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010-11-20 22:29:03 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2009-09-16 07:02:40 | 000,027,136 | ---- | M] (Tunngle.net) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tap0901t.sys -- (tap0901t)
DRV - [2009-07-29 23:02:40 | 000,028,672 | ---- | M] (http://libusb-win32.sourceforge.net) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\libusb0.sys -- (libusb0)
DRV - [2009-07-14 00:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2009-07-13 23:02:52 | 000,347,264 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvm62x32.sys -- (NVENETFD)
DRV - [2009-03-18 16:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi)
DRV - [2007-01-04 13:48:04 | 000,104,344 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\e4usbaw.sys -- (e4usbaw)
DRV - [2007-01-04 13:47:48 | 000,069,656 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\e4ldr.sys -- (E4LOADER)
DRV - [2005-09-29 09:35:00 | 000,056,960 | ---- | M] (OrangeWare Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ousb2hub.sys -- (ousb2hub)
DRV - [2005-09-29 09:34:52 | 000,045,824 | ---- | M] (OrangeWare Corporation) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\ousbehci.sys -- (ousbehci)


========== Standard Registry (All) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)

IE - HKU\S-1-5-20\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)

IE - HKU\S-1-5-21-2701869729-785606778-3130026812-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htm
IE - HKU\S-1-5-21-2701869729-785606778-3130026812-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
IE - HKU\S-1-5-21-2701869729-785606778-3130026812-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://pl.yahoo.com?fr=fp-comodo
IE - HKU\S-1-5-21-2701869729-785606778-3130026812-1000\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)
IE - HKU\S-1-5-21-2701869729-785606778-3130026812-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2701869729-785606778-3130026812-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRC
IE - HKU\S-1-5-21-2701869729-785606778-3130026812-1000\..\SearchScopes\{8EEAC88A-079B-4b2c-80C1-7836F79EB40A}: "URL" = http://pl.search.yah...}&fr=chr-comodo
IE - HKU\S-1-5-21-2701869729-785606778-3130026812-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-2701869729-785606778-3130026812-1003\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Corporation)

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons: SignPlugin%40bph.pl:1.4.0.7
FF - prefs.js..extensions.enabledAddons: battlefieldplay4free%40ea.com:1.0.80.2
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-12-23 12:08:49 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2012-12-01 11:51:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kaspisek\AppData\Roaming\mozilla\Extensions
[2012-12-01 11:56:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kaspisek\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2012-12-30 10:35:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kaspisek\AppData\Roaming\mozilla\Firefox\Profiles\8ko6cs2v.default\extensions
[2012-12-30 10:35:23 | 000,000,000 | ---D | M] (Battlefield Play4Free) -- C:\Users\Kaspisek\AppData\Roaming\mozilla\Firefox\Profiles\8ko6cs2v.default\extensions\battlefieldplay4free@ea.com
[2012-12-26 14:34:00 | 000,000,000 | ---D | M] (BPH Sign Plugin) -- C:\Users\Kaspisek\AppData\Roaming\mozilla\Firefox\Profiles\8ko6cs2v.default\extensions\SignPlugin@bph.pl
[2012-12-23 12:08:49 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-12-23 12:08:49 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2012-11-29 09:26:57 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012-11-29 11:00:09 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2012-11-29 11:00:09 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2012-11-29 11:00:09 | 000,003,581 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2012-11-29 11:00:09 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2012-11-29 11:00:09 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2012-11-29 11:00:09 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-11-29 11:00:09 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

========== Chrome ==========

CHR - homepage:
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter},
CHR - homepage:
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.97\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.97\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\23.0.1271.97\pdf.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
CHR - Extension: Angry Birds = C:\Users\Kaspisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0\
CHR - Extension: Dysk Google = C:\Users\Kaspisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Kaspisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Szukaj w Google = C:\Users\Kaspisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: General Crawler = C:\Users\Kaspisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\dednnpigldgdbpgcdpfppmlcnnbjciel\2.6_0\
CHR - Extension: Bowling 3D = C:\Users\Kaspisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gemohgpikgjbgmdfbfjdailocichgbjm\2.0_0\
CHR - Extension: Cut the Rope = C:\Users\Kaspisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkddaofiamhgfjmaccfcfpfolpgbeomj\14_0\
CHR - Extension: Don't Starve = C:\Users\Kaspisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\hiledapehlkhdehbhppgmekfalnlfajc\1.0.0.37_0\
CHR - Extension: Evolved gry online = C:\Users\Kaspisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\iajlkcpgcnbhfhpdeooockfaincfkjjj\1.3.0_0\
CHR - Extension: Cargo Bridge = C:\Users\Kaspisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\keembkgclppcbilkekfgpobhldjjhpmn\1.5.7_0\
CHR - Extension: The Fancy Pants Adventure: World 2 = C:\Users\Kaspisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\loamdenijebhollnjgehcfbnpeelfhlk\14_0\
CHR - Extension: Hover Zoom = C:\Users\Kaspisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\nonjdcjchghhkdoolnlbekcfllmednbl\4.8.3_0\
CHR - Extension: Bastion = C:\Users\Kaspisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\oohphhdkahjlioohbalmicpokoefkgid\0.0.0.4_0\
CHR - Extension: Gmail = C:\Users\Kaspisek\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2009-06-10 22:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - E:\Microsoft ofice\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
O2 - BHO: (Help the General-Search Project) - {CA4520F3-AE13-4FB1-A513-58E23991C86D} - C:\Users\Kaspisek\AppData\Roaming\MEDIAF~1\EXTENS~1\GENCRA~1.DLL ()
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [GrooveMonitor] E:\Microsoft ofice\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-2701869729-785606778-3130026812-1000..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-2701869729-785606778-3130026812-1000..\Run: [GG] C:\Users\Kaspisek\AppData\Local\GG\Application\gghub.exe (GG Network S.A.)
O4 - HKU\S-1-5-21-2701869729-785606778-3130026812-1000..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-2701869729-785606778-3130026812-1000..\Run: [RocketDock] C:\Program Files\RocketDock\RocketDock.exe ()
O4 - HKU\S-1-5-21-2701869729-785606778-3130026812-1000..\Run: [Skype] C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - HKU\S-1-5-21-2701869729-785606778-3130026812-1000..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
O4 - HKU\S-1-5-21-2701869729-785606778-3130026812-1000..\Run: [Steam] E:\steam\Steam.exe (Valve Corporation)
O4 - HKU\S-1-5-21-2701869729-785606778-3130026812-1003..\Run: [Sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-2701869729-785606778-3130026812-1003..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O8 - Extra context menu item: Download with &Media Finder - C:\Program Files\Media Finder\hook.html File not found
O8 - Extra context menu item: Pobierz z &BitSpirit - C:\Program Files\BitSpirit\bsurl.htm ()
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\Microsoft ofice\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\Microsoft ofice\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\Microsoft ofice\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\System32\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\System32\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\System32\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corp.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000020 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000022 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000023 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000024 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000025 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000026 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000027 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000028 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000029 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000030 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000031 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000032 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000033 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000034 - C:\Windows\System32\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{4D22EC86-4CF6-4F8C-989A-F8885010E938}: NameServer = 194.204.152.34 194.204.159.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FAF90DDA-23B3-42C0-9E10-AF60DDE43560}: DhcpNameServer = 7.254.254.254
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - E:\Microsoft ofice\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - E:\Microsoft ofice\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\System32\credssp.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\System32\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\System32\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\System32\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\System32\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\System32\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (livessp) - C:\Windows\System32\livessp.dll (Microsoft Corp.)
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

MsConfig - StartUpReg: COMODO - hkey= - key= - File not found
MsConfig - StartUpReg: Pando Media Booster - hkey= - key= - C:\Program Files\Pando Networks\Media Booster\PMB.exe ()
MsConfig - State: "startup" - 2

SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: NTDS - File not found
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: Hamachi2Svc - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: NTDS - File not found
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vmms - Service
SafeBootNet: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

========== Files/Folders - Created Within 60 Days ==========

[2012-12-31 19:12:09 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2012-12-31 18:05:26 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\Microsoft Games
[2012-12-31 17:43:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nordic Games
[2012-12-31 15:51:29 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\Origin
[2012-12-31 15:51:28 | 000,000,000 | ---D | C] -- C:\Program Files\Origin Games
[2012-12-31 15:51:22 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\Origin
[2012-12-31 15:47:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Origin
[2012-12-31 15:47:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
[2012-12-31 15:47:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Electronic Arts
[2012-12-31 12:21:16 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\Desktop\Nowy folder
[2012-12-30 22:55:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Lunch Design
[2012-12-30 22:55:20 | 000,000,000 | ---D | C] -- C:\games
[2012-12-30 20:05:52 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\Documents\Battlefield Play4Free
[2012-12-30 19:40:06 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EA Games
[2012-12-29 17:55:16 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\PunkBuster
[2012-12-28 16:35:19 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\AMPSoft
[2012-12-28 15:54:31 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\Documents\Fonts
[2012-12-28 15:54:13 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\FontCreator
[2012-12-28 15:54:04 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\FontCreator
[2012-12-26 21:34:10 | 000,000,000 | ---D | C] -- C:\Windows\pl
[2012-12-26 21:33:51 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2012-12-26 21:33:01 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2012-12-26 21:30:26 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\Windows Live
[2012-12-26 21:30:02 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live
[2012-12-26 20:54:05 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2012-12-26 20:53:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2012-12-26 18:19:16 | 000,043,520 | ---- | C] (http://libusb-win32.sourceforge.net) -- C:\Windows\System32\libusb0.dll
[2012-12-26 18:19:16 | 000,028,672 | ---- | C] (http://libusb-win32.sourceforge.net) -- C:\Windows\System32\drivers\libusb0.sys
[2012-12-26 14:09:07 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2012-12-26 13:45:16 | 000,000,000 | R--D | C] -- C:\Users\Kaspisek\Documents\Scanned Documents
[2012-12-26 13:45:15 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\Documents\Fax
[2012-12-25 13:32:06 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2012-12-25 12:16:16 | 000,056,960 | ---- | C] (OrangeWare Corporation) -- C:\Windows\System32\drivers\ousb2hub.sys
[2012-12-25 12:16:16 | 000,045,824 | ---- | C] (OrangeWare Corporation) -- C:\Windows\System32\drivers\ousbehci.sys
[2012-12-25 12:10:11 | 000,063,616 | ---- | C] (Alcor Micro, Corp.) -- C:\Windows\System32\drivers\AmUStor.sys
[2012-12-25 12:10:10 | 000,016,512 | ---- | C] (Alcor Micro, Corp.) -- C:\Windows\System32\AmUStor.dll
[2012-12-25 12:00:53 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\Innovative Solutions
[2012-12-23 14:36:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision
[2012-12-23 12:18:35 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\Macromedia
[2012-12-23 12:14:54 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2012-12-23 12:09:05 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\Mozilla
[2012-12-23 12:08:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012-12-23 12:08:51 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012-12-23 12:08:48 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012-12-19 13:39:01 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\.MinecraftStructurePlanner
[2012-12-19 13:00:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
[2012-12-19 12:58:00 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games
[2012-12-19 12:54:50 | 000,000,000 | R--D | C] -- C:\Users\Kaspisek\Gry
[2012-12-18 21:08:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2012-12-18 21:08:56 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2012-12-18 20:38:54 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
[2012-12-16 17:52:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2012-12-16 17:50:55 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2012-12-16 17:50:30 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2012-12-16 17:50:30 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2012-12-16 17:50:06 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2012-12-16 17:48:38 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 8
[2012-12-16 17:48:05 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\Microsoft Help
[2012-12-16 17:48:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2012-12-15 14:16:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Blizzard Entertainment
[2012-12-14 17:44:12 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\Documents\Tunngle
[2012-12-14 17:44:12 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\Tunngle
[2012-12-14 17:44:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Tunngle
[2012-12-14 17:44:11 | 000,027,136 | ---- | C] (Tunngle.net) -- C:\Windows\System32\drivers\tap0901t.sys
[2012-12-14 17:44:11 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Tunngle
[2012-12-14 17:44:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle
[2012-12-14 17:44:10 | 000,000,000 | ---D | C] -- C:\Program Files\Tunngle
[2012-12-12 14:05:26 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\BitSpirit
[2012-12-12 14:05:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitSpirit v3
[2012-12-12 14:05:20 | 000,000,000 | ---D | C] -- C:\Program Files\BitSpirit
[2012-12-10 14:59:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
[2012-12-10 14:59:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Blizzard Entertainment
[2012-12-09 19:28:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
[2012-12-09 19:28:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Steam
[2012-12-09 17:13:01 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps
[2012-12-09 12:07:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Blizzard
[2012-12-04 22:39:42 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\Imiona
[2012-12-03 18:02:05 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Blizzard Entertainment
[2012-12-02 19:29:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2012-12-02 19:29:57 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2012-12-02 10:52:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Pure Networks
[2012-12-01 11:51:13 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\Media Finder
[2012-12-01 11:51:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Finder
[2012-12-01 11:50:22 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\Programs
[2012-11-30 19:43:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP3
[2012-11-29 17:22:52 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\SKIDROW
[2012-11-29 17:18:22 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\Trine2
[2012-11-29 17:17:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Frozenbyte
[2012-11-29 16:35:52 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\FLT
[2012-11-29 16:35:32 | 000,000,000 | ---D | C] -- C:\Windows\System32\directx
[2012-11-28 13:31:32 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\Documents\My Games
[2012-11-28 13:18:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2012-11-28 13:18:02 | 000,242,240 | ---- | C] (DT Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys
[2012-11-28 13:17:58 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\DAEMON Tools Lite
[2012-11-28 13:17:55 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2012-11-28 13:17:09 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2012-11-27 18:52:54 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\uTorrent
[2012-11-26 20:04:05 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\.thumbnails
[2012-11-26 14:52:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Comodo
[2012-11-25 11:00:28 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\Zbieranka
[2012-11-24 19:29:18 | 000,000,000 | ---D | C] -- C:\ProgramData\CPA_VA
[2012-11-24 19:28:14 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\COMODO
[2012-11-24 19:22:19 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\Comodo
[2012-11-24 14:28:37 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\Documents\Euro Truck Simulator 2
[2012-11-24 14:28:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Euro Truck Simulator 2
[2012-11-21 13:08:28 | 000,000,000 | ---D | C] -- C:\Program Files\Lame For Audacity
[2012-11-20 21:51:53 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\Audacity
[2012-11-20 21:51:30 | 000,000,000 | ---D | C] -- C:\Program Files\Audacity
[2012-11-20 19:28:51 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\TechSmith
[2012-11-20 14:53:16 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2012-11-19 22:35:22 | 000,000,000 | ---D | C] -- C:\Windows\System32\Wat
[2012-11-19 21:37:53 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\Documents\Camtasia Studio
[2012-11-17 22:30:48 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\fontconfig
[2012-11-17 22:30:44 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\.gimp-2.8
[2012-11-17 22:30:43 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\gegl-0.2
[2012-11-17 11:17:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
[2012-11-17 11:17:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2012-11-17 11:17:38 | 000,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy
[2012-11-14 16:47:31 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\LolClient
[2012-11-14 14:12:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewFeature1
[2012-11-14 12:44:29 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\Diagnostics
[2012-11-14 07:48:28 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\PMB Files
[2012-11-14 07:48:27 | 000,000,000 | ---D | C] -- C:\ProgramData\PMB Files
[2012-11-14 07:47:52 | 000,000,000 | ---D | C] -- C:\Program Files\Pando Networks
[2012-11-14 07:47:41 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\.swt
[2012-11-13 19:54:44 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\LogMeIn Hamachi
[2012-11-13 19:54:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
[2012-11-13 19:54:16 | 000,000,000 | ---D | C] -- C:\Program Files\LogMeIn Hamachi
[2012-11-13 19:47:21 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2012-11-13 19:42:41 | 000,000,000 | ---D | C] -- C:\Windows\System32\QuickTime
[2012-11-13 19:42:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Camtasia Studio 7
[2012-11-13 19:42:35 | 000,000,000 | ---D | C] -- C:\ProgramData\TechSmith
[2012-11-13 19:42:33 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2012-11-13 19:42:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\TechSmith Shared
[2012-11-13 16:25:33 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\Adobe
[2012-11-13 16:24:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2012-11-13 16:10:14 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2012-11-13 16:10:10 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2012-11-13 15:58:01 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\.minecraft
[2012-11-13 15:57:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2012-11-13 15:57:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2012-11-13 15:57:08 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2012-11-13 15:49:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2012-11-13 15:49:49 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2012-11-13 15:39:40 | 000,000,000 | ---D | C] -- C:\Windows\System32\RTCOM
[2012-11-13 15:39:05 | 001,783,056 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\WavesLib.dll
[2012-11-13 15:39:05 | 001,725,784 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\WavesGUILib.dll
[2012-11-13 15:39:05 | 000,345,328 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSXT.dll
[2012-11-13 15:39:05 | 000,214,368 | ---- | C] (Synopsys, Inc.) -- C:\Windows\System32\SFNHK.dll
[2012-11-13 15:39:05 | 000,185,584 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSHD.dll
[2012-11-13 15:39:05 | 000,173,296 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSHP360.dll
[2012-11-13 15:39:05 | 000,140,528 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSWOW.dll
[2012-11-13 15:39:05 | 000,074,080 | ---- | C] (Synopsys, Inc.) -- C:\Windows\System32\SFCOM.dll
[2012-11-13 15:39:05 | 000,068,960 | ---- | C] (Synopsys, Inc.) -- C:\Windows\System32\SFAPO.dll
[2012-11-13 15:39:04 | 000,359,768 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEP32A.dll
[2012-11-13 15:39:04 | 000,295,768 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DHT32.dll
[2012-11-13 15:39:04 | 000,295,768 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DAA32.dll
[2012-11-13 15:39:04 | 000,170,840 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEED32A.dll
[2012-11-13 15:39:04 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEL32A.dll
[2012-11-13 15:39:04 | 000,064,856 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEG32A.dll
[2012-11-13 15:39:03 | 007,783,768 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioRealtek.dll
[2012-11-13 15:39:03 | 007,161,696 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EEP32A.dll
[2012-11-13 15:39:03 | 001,836,376 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioEQ.dll
[2012-11-13 15:39:03 | 001,185,112 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioRealtek2.dll
[2012-11-13 15:39:03 | 000,709,976 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPOShell.dll
[2012-11-13 15:39:03 | 000,351,072 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EED32A.dll
[2012-11-13 15:39:03 | 000,350,552 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxVolumeSDAPO.dll
[2012-11-13 15:39:03 | 000,259,928 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO30.dll
[2012-11-13 15:39:03 | 000,105,824 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EEL32A.dll
[2012-11-13 15:39:03 | 000,091,488 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EEA32A.dll
[2012-11-13 15:39:03 | 000,061,792 | ---- | C] (Dolby Laboratories) -- C:\Windows\System32\R4EEG32A.dll
[2012-11-13 15:39:02 | 002,193,472 | ---- | C] (Fortemedia Corporation) -- C:\Windows\System32\FMAPO.dll
[2012-11-13 15:39:02 | 000,357,712 | ---- | C] (Knowles Acoustics ) -- C:\Windows\System32\KAAPORT.dll
[2012-11-13 15:39:02 | 000,232,792 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO20.dll
[2012-11-13 15:39:02 | 000,132,368 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\System32\MaxxAudioAPO.dll
[2012-11-13 15:39:01 | 001,509,480 | ---- | C] (DTS) -- C:\Windows\System32\DTSS2SpeakerDLL.dll
[2012-11-13 15:39:01 | 001,292,904 | ---- | C] (DTS) -- C:\Windows\System32\DTSS2HeadphoneDLL.dll
[2012-11-13 15:39:01 | 001,220,200 | ---- | C] (DTS) -- C:\Windows\System32\DTSBoostDLL.dll
[2012-11-13 15:39:01 | 000,654,952 | ---- | C] (DTS) -- C:\Windows\System32\DTSBassEnhancementDLL.dll
[2012-11-13 15:39:01 | 000,631,400 | ---- | C] (DTS) -- C:\Windows\System32\DTSSymmetryDLL.dll
[2012-11-13 15:39:01 | 000,601,704 | ---- | C] (DTS) -- C:\Windows\System32\DTSVoiceClarityDLL.dll
[2012-11-13 15:39:01 | 000,458,344 | ---- | C] (DTS) -- C:\Windows\System32\DTSNeoPCDLL.dll
[2012-11-13 15:39:01 | 000,421,744 | ---- | C] (DTS) -- C:\Windows\System32\DTSU2PLFX32.dll
[2012-11-13 15:39:01 | 000,398,192 | ---- | C] (DTS) -- C:\Windows\System32\DTSU2PGFX32.dll
[2012-11-13 15:39:01 | 000,389,736 | ---- | C] (DTS) -- C:\Windows\System32\DTSGainCompensatorDLL.dll
[2012-11-13 15:39:01 | 000,375,400 | ---- | C] (DTS) -- C:\Windows\System32\DTSLimiterDLL.dll
[2012-11-13 15:39:01 | 000,335,216 | ---- | C] (DTS) -- C:\Windows\System32\DTSU2PREC32.dll
[2012-11-13 15:39:01 | 000,218,728 | ---- | C] (DTS) -- C:\Windows\System32\DTSGFXAPONS.dll
[2012-11-13 15:39:01 | 000,218,728 | ---- | C] (DTS) -- C:\Windows\System32\DTSGFXAPO.dll
[2012-11-13 15:39:01 | 000,218,216 | ---- | C] (DTS) -- C:\Windows\System32\DTSLFXAPO.dll
[2012-11-13 15:39:01 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2012-11-13 15:38:58 | 000,000,000 | -H-D | C] -- C:\Program Files\Temp
[2012-11-13 15:38:54 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2012-11-13 15:28:12 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\WinRAR
[2012-11-13 15:28:12 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012-11-13 15:28:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012-11-13 15:28:05 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2012-11-13 15:27:37 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\AIMP3
[2012-11-13 15:27:35 | 000,000,000 | ---D | C] -- C:\Program Files\AIMP3
[2012-11-13 15:26:17 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP 2
[2012-11-13 15:25:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RocketDock
[2012-11-13 15:25:55 | 000,000,000 | ---D | C] -- C:\Program Files\RocketDock
[2012-11-13 15:25:37 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
[2012-11-13 15:25:37 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
[2012-11-13 15:15:52 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\Skype
[2012-11-13 15:15:44 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2012-11-13 15:15:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2012-11-13 15:15:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2012-11-13 15:15:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2012-11-13 15:13:06 | 000,000,000 | --SD | C] -- C:\Users\Kaspisek\GG dysk
[2012-11-13 15:12:47 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\Mozilla
[2012-11-13 15:12:44 | 000,000,000 | ---D | C] -- C:\ProgramData\GG
[2012-11-13 15:09:38 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\GG
[2012-11-13 15:09:37 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\GG
[2012-11-13 15:05:25 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\Avira
[2012-11-13 15:00:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
[2012-11-13 14:59:52 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\ssmdrv.sys
[2012-11-13 14:59:51 | 000,134,336 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avipbb.sys
[2012-11-13 14:59:51 | 000,083,944 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avgntflt.sys
[2012-11-13 14:59:51 | 000,036,552 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avkmgr.sys
[2012-11-13 14:59:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira
[2012-11-13 14:59:50 | 000,000,000 | ---D | C] -- C:\Program Files\Avira
[2012-11-13 14:53:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012-11-13 14:53:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Hewlett-Packard
[2012-11-13 14:49:00 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2012-11-13 14:44:25 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2012-11-13 14:44:23 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\Google
[2012-11-13 14:44:07 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\Deployment
[2012-11-13 14:44:07 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\Apps
[2012-11-13 14:42:01 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\Adobe
[2012-11-13 14:41:47 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2012-11-13 14:34:47 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\ElevatedDiagnostics
[2012-11-13 14:28:39 | 000,071,832 | ---- | C] (Analog Deivces) -- C:\Windows\System32\drivers\e4ldrx64.sys
[2012-11-13 14:28:39 | 000,069,656 | ---- | C] (Analog Deivces) -- C:\Windows\System32\drivers\e4ldr.sys
[2012-11-13 14:28:39 | 000,058,264 | ---- | C] (Analog Deivces) -- C:\Windows\System32\drivers\adildrx64.sys
[2012-11-13 14:28:39 | 000,056,088 | ---- | C] (Analog Deivces) -- C:\Windows\System32\drivers\adildr.sys
[2012-11-13 14:28:39 | 000,004,981 | ---- | C] (SITECSOFT Co., LTD.) -- C:\Windows\System32\ADADIX2K.DLL
[2012-11-13 14:28:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAGEM F@st 800-840
[2012-11-13 14:28:37 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2012-11-13 14:28:23 | 000,000,000 | ---D | C] -- C:\Program Files\SAGEM
[2012-11-13 14:28:21 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\InstallShield
[2012-11-13 14:27:47 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\Macromedia
[2012-11-13 14:27:46 | 000,000,000 | -HSD | C] -- C:\Windows\ftpcache
[2012-11-13 14:22:00 | 000,000,000 | R--D | C] -- C:\Users\Kaspisek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2012-11-13 14:22:00 | 000,000,000 | R--D | C] -- C:\Users\Kaspisek\Searches
[2012-11-13 14:22:00 | 000,000,000 | R--D | C] -- C:\Users\Kaspisek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012-11-13 14:21:51 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\Identities
[2012-11-13 14:21:48 | 000,000,000 | R--D | C] -- C:\Users\Kaspisek\Contacts
[2012-11-13 14:21:42 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\VirtualStore
[2012-11-13 14:21:39 | 000,000,000 | -HSD | C] -- C:\Users\Kaspisek\Ustawienia lokalne
[2012-11-13 14:21:39 | 000,000,000 | -HSD | C] -- C:\Users\Kaspisek\AppData\Local\Temporary Internet Files
[2012-11-13 14:21:39 | 000,000,000 | -HSD | C] -- C:\Users\Kaspisek\Szablony
[2012-11-13 14:21:39 | 000,000,000 | -HSD | C] -- C:\Users\Kaspisek\SendTo
[2012-11-13 14:21:39 | 000,000,000 | -HSD | C] -- C:\Users\Kaspisek\Recent
[2012-11-13 14:21:39 | 000,000,000 | -HSD | C] -- C:\Users\Kaspisek\PrintHood
[2012-11-13 14:21:39 | 000,000,000 | -HSD | C] -- C:\Users\Kaspisek\NetHood
[2012-11-13 14:21:39 | 000,000,000 | -HSD | C] -- C:\Users\Kaspisek\Documents\Moje wideo
[2012-11-13 14:21:39 | 000,000,000 | -HSD | C] -- C:\Users\Kaspisek\Documents\Moje obrazy
[2012-11-13 14:21:39 | 000,000,000 | -HSD | C] -- C:\Users\Kaspisek\Moje dokumenty
[2012-11-13 14:21:39 | 000,000,000 | -HSD | C] -- C:\Users\Kaspisek\Documents\Moja muzyka
[2012-11-13 14:21:39 | 000,000,000 | -HSD | C] -- C:\Users\Kaspisek\Menu Start
[2012-11-13 14:21:39 | 000,000,000 | -HSD | C] -- C:\Users\Kaspisek\AppData\Local\Historia
[2012-11-13 14:21:39 | 000,000,000 | -HSD | C] -- C:\Users\Kaspisek\Dane aplikacji
[2012-11-13 14:21:39 | 000,000,000 | -HSD | C] -- C:\Users\Kaspisek\AppData\Local\Dane aplikacji
[2012-11-13 14:21:39 | 000,000,000 | -HSD | C] -- C:\Users\Kaspisek\Cookies
[2012-11-13 14:21:39 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\Temp
[2012-11-13 14:21:39 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Local\Microsoft
[2012-11-13 14:21:39 | 000,000,000 | ---D | C] -- C:\Users\Kaspisek\AppData\Roaming\Media Center Programs
[2012-11-13 14:21:38 | 000,000,000 | --SD | C] -- C:\Users\Kaspisek\AppData\Roaming\Microsoft
[2012-11-13 14:21:38 | 000,000,000 | R--D | C] -- C:\Users\Kaspisek\Videos
[2012-11-13 14:21:38 | 000,000,000 | R--D | C] -- C:\Users\Kaspisek\Saved Games
[2012-11-13 14:21:38 | 000,000,000 | R--D | C] -- C:\Users\Kaspisek\Pictures
[2012-11-13 14:21:38 | 000,000,000 | R--D | C] -- C:\Users\Kaspisek\Music
[2012-11-13 14:21:38 | 000,000,000 | R--D | C] -- C:\Users\Kaspisek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2012-11-13 14:21:38 | 000,000,000 | R--D | C] -- C:\Users\Kaspisek\Links
[2012-11-13 14:21:38 | 000,000,000 | R--D | C] -- C:\Users\Kaspisek\Favorites
[2012-11-13 14:21:38 | 000,000,000 | R--D | C] -- C:\Users\Kaspisek\Downloads
[2012-11-13 14:21:38 | 000,000,000 | R--D | C] -- C:\Users\Kaspisek\Documents
[2012-11-13 14:21:38 | 000,000,000 | R--D | C] -- C:\Users\Kaspisek\Desktop
[2012-11-13 14:21:38 | 000,000,000 | R--D | C] -- C:\Users\Kaspisek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2012-11-13 14:21:38 | 000,000,000 | -H-D | C] -- C:\Users\Kaspisek\AppData
[2012-11-13 14:21:31 | 000,000,000 | -HSD | C] -- C:\ProgramData\Ulubione
[2012-11-13 14:21:31 | 000,000,000 | -HSD | C] -- C:\ProgramData\Szablony
[2012-11-13 14:21:31 | 000,000,000 | -HSD | C] -- C:\Recovery
[2012-11-13 14:21:31 | 000,000,000 | -HSD | C] -- C:\ProgramData\Pulpit
[2012-11-13 14:21:31 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje wideo
[2012-11-13 14:21:31 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje obrazy
[2012-11-13 14:21:31 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moja muzyka
[2012-11-13 14:21:31 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Start
[2012-11-13 14:21:31 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2012-11-13 14:21:31 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dane aplikacji
[2012-11-13 14:14:38 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2012-11-13 14:12:25 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2012-11-13 14:11:38 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2012-11-13 14:10:38 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2012-11-13 14:10:24 | 000,000,000 | -HSD | C] -- C:\Boot

========== Files - Modified Within 60 Days ==========

[2012-12-31 19:19:08 | 002,097,152 | -HS- | M] () -- C:\Users\Kaspisek\NTUSER.DAT
[2012-12-31 19:10:00 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012-12-31 18:49:00 | 000,001,040 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012-12-31 18:08:20 | 000,022,032 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012-12-31 18:08:20 | 000,022,032 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012-12-31 17:21:15 | 000,001,036 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012-12-31 17:21:12 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2012-12-31 17:21:08 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012-12-31 17:20:55 | 2817,433,600 | -HS- | M] () -- C:\hiberfil.sys
[2012-12-31 17:20:04 | 007,068,190 | -H-- | M] () -- C:\Users\Kaspisek\AppData\Local\IconCache.db
[2012-12-31 15:47:08 | 000,000,524 | ---- | M] () -- C:\Users\Public\Desktop\Origin.lnk
[2012-12-30 20:22:03 | 000,138,264 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2012-12-30 20:21:54 | 000,234,768 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2012-12-30 19:40:22 | 000,138,056 | ---- | M] () -- C:\Users\Kaspisek\AppData\Roaming\PnkBstrK.sys
[2012-12-29 18:13:36 | 000,281,768 | ---- | M] () -- C:\Windows\System32\PnkBstrB.ex0
[2012-12-29 17:57:37 | 000,000,000 | ---- | M] () -- C:\Windows\System32\Access.dat
[2012-12-27 16:20:47 | 003,129,708 | ---- | M] () -- C:\Users\Kaspisek\Desktop\DJ Epsilon Reverse Evening.mp3
[2012-12-27 15:50:29 | 000,012,638 | ---- | M] () -- C:\Users\Kaspisek\AppData\Local\recently-used.xbel
[2012-12-26 18:10:34 | 001,549,696 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2012-12-26 18:10:34 | 000,697,674 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2012-12-26 18:10:34 | 000,615,810 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012-12-26 18:10:34 | 000,134,784 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2012-12-26 18:10:34 | 000,106,190 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012-12-25 11:47:24 | 000,000,168 | ---- | M] () -- C:\Windows\adidsl.ini
[2012-12-24 16:45:35 | 000,000,277 | ---- | M] () -- C:\Windows\game.ini
[2012-12-22 08:44:55 | 000,414,128 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2012-12-20 22:50:26 | 000,000,478 | ---- | M] () -- C:\Windows\win.ini
[2012-12-20 07:39:49 | 000,109,664 | ---- | M] () -- C:\Users\Kaspisek\AppData\Local\GDIPFONTCACHEV1.DAT
[2012-12-19 14:20:54 | 000,000,703 | ---- | M] () -- C:\Users\Kaspisek\Minecraft — skrót.lnk
[2012-12-11 20:57:24 | 000,134,336 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avipbb.sys
[2012-12-11 20:57:24 | 000,083,944 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avgntflt.sys
[2012-12-01 22:46:28 | 000,000,437 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts.ics
[2012-11-28 13:18:02 | 000,242,240 | ---- | M] (DT Soft Ltd) -- C:\Windows\System32\drivers\dtsoftbus01.sys
[2012-11-26 18:01:35 | 000,007,609 | ---- | M] () -- C:\Users\Kaspisek\AppData\Local\Resmon.ResmonCfg
[2012-11-25 12:26:21 | 000,007,168 | ---- | M] () -- C:\Users\Kaspisek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-11-14 13:23:15 | 000,072,822 | ---- | M] () -- C:\Windows\System32\ieuinit.inf
[2012-11-13 19:45:26 | 000,263,186 | ---- | M] () -- C:\Users\Kaspisek\Minecraft.exe
[2012-11-13 15:41:45 | 000,524,288 | -HS- | M] () -- C:\Users\Kaspisek\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2012-11-13 15:41:45 | 000,524,288 | -HS- | M] () -- C:\Users\Kaspisek\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2012-11-13 15:41:45 | 000,065,536 | -HS- | M] () -- C:\Users\Kaspisek\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2012-11-13 15:31:39 | 000,000,363 | ---- | M] () -- C:\Users\Kaspisek\Komputer — skrót.lnk
[2012-11-13 14:28:47 | 000,001,094 | ---- | M] () -- C:\Windows\adiras.ini
[2012-11-13 14:28:47 | 000,000,033 | ---- | M] () -- C:\Windows\System32\drivers\adidsl.cfg
[2012-11-13 14:28:47 | 000,000,021 | ---- | M] () -- C:\Windows\Fast800.ini
[2012-11-13 14:21:39 | 000,000,020 | -HS- | M] () -- C:\Users\Kaspisek\ntuser.ini
[2012-11-13 14:15:38 | 000,185,589 | ---- | M] () -- C:\Windows\System32\license.rtf
[2012-11-13 14:13:32 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2012-11-13 14:10:26 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2012-11-07 16:03:24 | 000,036,552 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Windows\System32\drivers\avkmgr.sys

========== Files Created - No Company Name ==========

[2012-12-31 15:47:08 | 000,000,524 | ---- | C] () -- C:\Users\Public\Desktop\Origin.lnk
[2012-12-30 19:40:22 | 000,138,056 | ---- | C] () -- C:\Users\Kaspisek\AppData\Roaming\PnkBstrK.sys
[2012-12-29 18:10:39 | 000,138,264 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2012-12-29 18:10:34 | 000,281,768 | ---- | C] () -- C:\Windows\System32\PnkBstrB.ex0
[2012-12-29 18:10:34 | 000,234,768 | ---- | C] () -- C:\Windows\System32\PnkBstrB.exe
[2012-12-29 18:10:31 | 000,234,768 | ---- | C] () -- C:\Windows\System32\PnkBstrB.xtr
[2012-12-29 18:10:24 | 000,075,136 | ---- | C] () -- C:\Windows\System32\PnkBstrA.exe
[2012-12-27 16:20:27 | 003,129,708 | ---- | C] () -- C:\Users\Kaspisek\Desktop\DJ Epsilon Reverse Evening.mp3
[2012-12-27 15:50:29 | 000,012,638 | ---- | C] () -- C:\Users\Kaspisek\AppData\Local\recently-used.xbel
[2012-12-26 21:34:03 | 000,001,251 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
[2012-12-26 21:33:56 | 000,001,320 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
[2012-12-24 16:45:35 | 000,000,277 | ---- | C] () -- C:\Windows\game.ini
[2012-12-23 12:08:59 | 000,001,117 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012-12-19 14:20:54 | 000,000,703 | ---- | C] () -- C:\Users\Kaspisek\Minecraft — skrót.lnk
[2012-12-14 17:49:07 | 000,000,000 | ---- | C] () -- C:\Windows\System32\Access.dat
[2012-12-02 19:30:03 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2012-11-26 18:01:35 | 000,007,609 | ---- | C] () -- C:\Users\Kaspisek\AppData\Local\Resmon.ResmonCfg
[2012-11-20 21:51:38 | 000,000,977 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
[2012-11-19 22:05:58 | 000,007,168 | ---- | C] () -- C:\Users\Kaspisek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-11-14 13:26:55 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2012-11-14 13:25:24 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2012-11-14 13:23:15 | 000,072,822 | ---- | C] () -- C:\Windows\System32\ieuinit.inf
[2012-11-13 19:45:33 | 000,263,186 | ---- | C] () -- C:\Users\Kaspisek\Minecraft.exe
[2012-11-13 15:41:43 | 007,068,190 | -H-- | C] () -- C:\Users\Kaspisek\AppData\Local\IconCache.db
[2012-11-13 15:39:04 | 000,293,889 | ---- | C] () -- C:\Windows\System32\drivers\RTAIODAT.DAT
[2012-11-13 15:38:08 | 000,001,045 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
[2012-11-13 15:31:39 | 000,000,363 | ---- | C] () -- C:\Users\Kaspisek\Komputer — skrót.lnk
[2012-11-13 15:09:37 | 000,001,116 | ---- | C] () -- C:\Users\Kaspisek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GG.lnk
[2012-11-13 14:44:27 | 000,001,040 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012-11-13 14:44:26 | 000,001,036 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012-11-13 14:44:07 | 000,109,664 | ---- | C] () -- C:\Users\Kaspisek\AppData\Local\GDIPFONTCACHEV1.DAT
[2012-11-13 14:41:50 | 000,000,930 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012-11-13 14:28:47 | 000,000,168 | ---- | C] () -- C:\Windows\adidsl.ini
[2012-11-13 14:28:47 | 000,000,021 | ---- | C] () -- C:\Windows\Fast800.ini
[2012-11-13 14:28:41 | 000,253,008 | ---- | C] () -- C:\Windows\adirasx64.exe
[2012-11-13 14:28:41 | 000,194,128 | ---- | C] () -- C:\Windows\adiras.exe
[2012-11-13 14:28:41 | 000,001,094 | ---- | C] () -- C:\Windows\adiras.ini
[2012-11-13 14:28:40 | 000,127,456 | ---- | C] () -- C:\Windows\System32\IPDETECT.EXE
[2012-11-13 14:28:39 | 000,261,964 | ---- | C] () -- C:\Windows\System32\drivers\rtbldep3.bnm
[2012-11-13 14:28:39 | 000,261,960 | ---- | C] () -- C:\Windows\System32\drivers\rtbldep1.bnm
[2012-11-13 14:28:39 | 000,261,926 | ---- | C] () -- C:\Windows\System32\drivers\rtbldei1.bnm
[2012-11-13 14:28:39 | 000,261,918 | ---- | C] () -- C:\Windows\System32\drivers\RTBLD3p3.BNM
[2012-11-13 14:28:39 | 000,261,916 | ---- | C] () -- C:\Windows\System32\drivers\rtbldep0.bnm
[2012-11-13 14:28:39 | 000,261,916 | ---- | C] () -- C:\Windows\System32\drivers\rtbldei0.bnm
[2012-11-13 14:28:39 | 000,261,914 | ---- | C] () -- C:\Windows\System32\drivers\rtbldei2.bnm
[2012-11-13 14:28:39 | 000,261,908 | ---- | C] () -- C:\Windows\System32\drivers\rtbldei3.bnm
[2012-11-13 14:28:39 | 000,261,900 | ---- | C] () -- C:\Windows\System32\drivers\RTBLD3p2.BNM
[2012-11-13 14:28:39 | 000,261,892 | ---- | C] () -- C:\Windows\System32\drivers\rtbldep2.bnm
[2012-11-13 14:28:39 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9P2.BIN
[2012-11-13 14:28:39 | 000,081,088 | ---- | C] () -- C:\Windows\System32\drivers\rtbldep4.bnm
[2012-11-13 14:28:39 | 000,078,040 | ---- | C] () -- C:\Windows\System32\drivers\rtbldei4.bnm
[2012-11-13 14:28:39 | 000,055,228 | ---- | C] () -- C:\Windows\System32\drivers\rtbld4.bnm
[2012-11-13 14:28:39 | 000,046,892 | ---- | C] () -- C:\Windows\System32\ADADIX16.DLL
[2012-11-13 14:28:39 | 000,024,576 | ---- | C] () -- C:\Windows\enddisk32.exe
[2012-11-13 14:28:39 | 000,022,288 | ---- | C] () -- C:\Windows\System32\drivers\RTBLD3p4.BNM
[2012-11-13 14:28:39 | 000,016,254 | ---- | C] () -- C:\Windows\System32\drivers\adiusbawx64.cat
[2012-11-13 14:28:39 | 000,016,254 | ---- | C] () -- C:\Windows\System32\drivers\adiusbaw.cat
[2012-11-13 14:28:39 | 000,013,981 | ---- | C] () -- C:\Windows\System32\drivers\e4usbawx64.cat
[2012-11-13 14:28:39 | 000,013,981 | ---- | C] () -- C:\Windows\System32\drivers\e4usbaw.cat
[2012-11-13 14:28:39 | 000,012,403 | ---- | C] () -- C:\Windows\System32\drivers\adildrx64.cat
[2012-11-13 14:28:39 | 000,012,403 | ---- | C] () -- C:\Windows\System32\drivers\adildr.cat
[2012-11-13 14:28:39 | 000,011,399 | ---- | C] () -- C:\Windows\System32\drivers\e4ldrx64.cat
[2012-11-13 14:28:39 | 000,011,399 | ---- | C] () -- C:\Windows\System32\drivers\e4ldr.cat
[2012-11-13 14:28:38 | 000,261,964 | ---- | C] () -- C:\Windows\System32\drivers\rtbld9i1.bnm
[2012-11-13 14:28:38 | 000,261,962 | ---- | C] () -- C:\Windows\System32\drivers\rtbld9p3.bnm
[2012-11-13 14:28:38 | 000,261,960 | ---- | C] () -- C:\Windows\System32\drivers\rtbld9i0.bnm
[2012-11-13 14:28:38 | 000,261,952 | ---- | C] () -- C:\Windows\System32\drivers\rtbld9p1.bnm
[2012-11-13 14:28:38 | 000,261,952 | ---- | C] () -- C:\Windows\System32\drivers\rtbld3.bnm
[2012-11-13 14:28:38 | 000,261,932 | ---- | C] () -- C:\Windows\System32\drivers\rtbld0.bnm
[2012-11-13 14:28:38 | 000,261,930 | ---- | C] () -- C:\Windows\System32\drivers\rtbld9p0.bnm
[2012-11-13 14:28:38 | 000,261,926 | ---- | C] () -- C:\Windows\System32\drivers\rtbld9p2.bnm
[2012-11-13 14:28:38 | 000,261,926 | ---- | C] () -- C:\Windows\System32\drivers\RTBLD3p0.BNM
[2012-11-13 14:28:38 | 000,261,920 | ---- | C] () -- C:\Windows\System32\drivers\rtbld2.bnm
[2012-11-13 14:28:38 | 000,261,918 | ---- | C] () -- C:\Windows\System32\drivers\rtbld9i2.bnm
[2012-11-13 14:28:38 | 000,261,918 | ---- | C] () -- C:\Windows\System32\drivers\RTBLD3p1.BNM
[2012-11-13 14:28:38 | 000,261,894 | ---- | C] () -- C:\Windows\System32\drivers\rtbld1.bnm
[2012-11-13 14:28:38 | 000,152,220 | ---- | C] () -- C:\Windows\System32\drivers\L1E4I2.BIN
[2012-11-13 14:28:38 | 000,152,220 | ---- | C] () -- C:\Windows\System32\drivers\L1E4I1.BIN
[2012-11-13 14:28:38 | 000,152,220 | ---- | C] () -- C:\Windows\System32\drivers\L1E4I0.BIN
[2012-11-13 14:28:38 | 000,152,132 | ---- | C] () -- C:\Windows\System32\drivers\L1E4P2.BIN
[2012-11-13 14:28:38 | 000,152,132 | ---- | C] () -- C:\Windows\System32\drivers\L1E4P1.BIN
[2012-11-13 14:28:38 | 000,152,132 | ---- | C] () -- C:\Windows\System32\drivers\L1E4P0.BIN
[2012-11-13 14:28:38 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9P1.BIN
[2012-11-13 14:28:38 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9P0.BIN
[2012-11-13 14:28:38 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9I2.BIN
[2012-11-13 14:28:38 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9I1.BIN
[2012-11-13 14:28:38 | 000,152,126 | ---- | C] () -- C:\Windows\System32\drivers\L1E9I0.BIN
[2012-11-13 14:28:38 | 000,152,036 | ---- | C] () -- C:\Windows\System32\drivers\L1E4D2.BIN
[2012-11-13 14:28:38 | 000,152,034 | ---- | C] () -- C:\Windows\System32\drivers\L1E4D1.BIN
[2012-11-13 14:28:38 | 000,152,034 | ---- | C] () -- C:\Windows\System32\drivers\L1E4D0.BIN
[2012-11-13 14:28:38 | 000,053,590 | ---- | C] () -- C:\Windows\System32\drivers\rtbld9i4.bnm
[2012-11-13 14:28:38 | 000,041,620 | ---- | C] () -- C:\Windows\System32\drivers\rtbld9p4.bnm
[2012-11-13 14:28:38 | 000,022,395 | ---- | C] () -- C:\Windows\System32\drivers\fpga.bin
[2012-11-13 14:28:38 | 000,000,033 | ---- | C] () -- C:\Windows\System32\drivers\adidsl.cfg
[2012-11-13 14:22:02 | 000,001,421 | ---- | C] () -- C:\Users\Kaspisek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2012-11-13 14:21:39 | 000,524,288 | -HS- | C] () -- C:\Users\Kaspisek\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2012-11-13 14:21:39 | 000,524,288 | -HS- | C] () -- C:\Users\Kaspisek\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2012-11-13 14:21:39 | 000,065,536 | -HS- | C] () -- C:\Users\Kaspisek\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2012-11-13 14:21:39 | 000,000,020 | -HS- | C] () -- C:\Users\Kaspisek\ntuser.ini
[2012-11-13 14:21:38 | 002,097,152 | -HS- | C] () -- C:\Users\Kaspisek\NTUSER.DAT
[2012-11-13 14:15:17 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2012-11-13 14:15:09 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2012-11-13 14:13:32 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2012-11-13 14:11:39 | 2817,433,600 | -HS- | C] () -- C:\hiberfil.sys
[2012-11-13 14:10:26 | 000,008,192 | RHS- | C] () -- C:\BOOTSECT.BAK
[2012-11-13 14:10:24 | 000,383,786 | RHS- | C] () -- C:\bootmgr
[2011-04-12 06:08:42 | 000,697,674 | ---- | C] () -- C:\Windows\System32\perfh015.dat
[2011-04-12 06:08:42 | 000,337,158 | ---- | C] () -- C:\Windows\System32\perfi015.dat
[2011-04-12 06:08:42 | 000,134,784 | ---- | C] () -- C:\Windows\System32\perfc015.dat
[2011-04-12 06:08:42 | 000,038,710 | ---- | C] () -- C:\Windows\System32\perfd015.dat

========== ZeroAccess Check ==========

[2009-07-14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012-06-09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010-11-20 22:29:20 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009-07-14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2012-12-29 15:07:21 | 000,000,000 | ---D | M] -- C:\Users\Kaspisek\AppData\Roaming\.minecraft
[2012-12-30 21:29:30 | 000,000,000 | ---D | M] -- C:\Users\Kaspisek\AppData\Roaming\AIMP3
[2012-12-28 16:35:19 | 000,000,000 | ---D | M] -- C:\Users\Kaspisek\AppData\Roaming\AMPSoft
[2012-12-30 20:39:06 | 000,000,000 | ---D | M] -- C:\Users\Kaspisek\AppData\Roaming\Audacity
[2012-12-12 14:05:26 | 000,000,000 | ---D | M] -- C:\Users\Kaspisek\AppData\Roaming\BitSpirit
[2012-12-30 15:51:18 | 000,000,000 | ---D | M] -- C:\Users\Kaspisek\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2012-12-31 17:38:36 | 000,000,000 | ---D | M] -- C:\Users\Kaspisek\AppData\Roaming\DAEMON Tools Lite
[2012-12-30 15:47:53 | 000,000,000 | ---D | M] -- C:\Users\Kaspisek\AppData\Roaming\FontCreator
[2012-12-31 18:53:12 | 000,000,000 | ---D | M] -- C:\Users\Kaspisek\AppData\Roaming\GG
[2012-11-14 16:47:31 | 000,000,000 | ---D | M] -- C:\Users\Kaspisek\AppData\Roaming\LolClient
[2012-12-01 11:56:37 | 000,000,000 | ---D | M] -- C:\Users\Kaspisek\AppData\Roaming\Media Finder
[2012-12-31 17:26:02 | 000,000,000 | ---D | M] -- C:\Users\Kaspisek\AppData\Roaming\Origin
[2012-11-29 17:18:22 | 000,000,000 | ---D | M] -- C:\Users\Kaspisek\AppData\Roaming\Trine2
[2012-12-14 17:52:28 | 000,000,000 | ---D | M] -- C:\Users\Kaspisek\AppData\Roaming\Tunngle
[2012-12-29 17:34:41 | 000,000,000 | ---D | M] -- C:\Users\Kaspisek\AppData\Roaming\uTorrent

========== Purity Check ==========



========== Custom Scans ==========

< %systemdrive%\*.* >
[2009-06-10 22:42:20 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
[2010-11-20 22:29:06 | 000,383,786 | RHS- | M] () -- C:\bootmgr
[2012-11-13 14:10:26 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2009-06-10 22:42:20 | 000,000,010 | ---- | M] () -- C:\config.sys
[2012-12-31 17:20:55 | 2817,433,600 | -HS- | M] () -- C:\hiberfil.sys
[2012-12-31 17:21:02 | 3756,580,864 | -HS- | M] () -- C:\pagefile.sys

< MD5 for: AGP440.SYS >
[2009-07-14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\drivers\AGP440.sys
[2009-07-14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_a97a2a0d0fbc6696\AGP440.sys
[2009-07-14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_bc1a57271cf2f285\AGP440.sys

< MD5 for: ATAPI.SYS >
[2009-07-14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009-07-14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_fab873f3e8a3315c\atapi.sys
[2009-07-14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_df3f92057fcbe7a7\atapi.sys

< MD5 for: BEEP.SYS >
[2009-07-14 00:45:01 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=505506526A9D467307B3C393DEDAF858 -- C:\Windows\System32\drivers\beep.sys
[2009-07-14 00:45:01 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=505506526A9D467307B3C393DEDAF858 -- C:\Windows\winsxs\x86_microsoft-windows-beepsys_31bf3856ad364e35_6.1.7600.16385_none_c3f6f77668f0ddcc\beep.sys

< MD5 for: CDROM.SYS >
[2010-11-20 22:29:03 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\drivers\cdrom.sys
[2010-11-20 22:29:03 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_6381e09675524225\cdrom.sys
[2010-11-20 22:29:03 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BE167ED0FDB9C1FA1133953C18D5A6C9 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_61b0c5ce02098355\cdrom.sys

< MD5 for: NDIS.SYS >
[2012-08-22 18:05:16 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=15B74B6283CEBCCE3054C1001CA01B5E -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.22097_none_aa0491cf93ad1c31\ndis.sys
[2012-08-22 18:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\System32\drivers\ndis.sys
[2012-08-22 18:16:46 | 000,712,048 | ---- | M] (Microsoft Corporation) MD5=8C9C922D71F1CD4DEF73F186416B7896 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17939_none_a9bdfee47a5cd154\ndis.sys
[2010-11-20 22:29:12 | 000,712,576 | ---- | M] (Microsoft Corporation) MD5=E7C54812A2AAF43316EB6930C1FFA108 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_a9ce95b27a512623\ndis.sys

< MD5 for: WINLOGON.EXE >
[2010-11-20 22:29:06 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\System32\winlogon.exe
[2010-11-20 22:29:06 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe
[/log]


[log]info.txt logfile of random's system information tool 1.09 2012-12-31 19:12:22

======Uninstall list======

µTorrent-->"E:\torrent\uTorrent.exe" /UNINSTALL
Adobe AIR-->C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{1798D459-6B8B-474B-868D-1229EADA3B95}
Adobe Flash Player 11 ActiveX-->C:\Windows\system32\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.exe -maintain activex
Adobe Flash Player 11 Plugin-->C:\Windows\system32\Macromed\Flash\FlashUtil32_11_5_502_135_Plugin.exe -maintain plugin
Adobe Reader X (10.1.4) - Polish-->MsiExec.exe /I{AC76BA86-7AD7-1045-7B44-AA1000000001}
AIMP3-->C:\Program Files\AIMP3\Uninstall.exe
Aktualizacja produktu Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-0415-0000-0000000FF1CE} /uninstall {04E205D6-88B1-4652-B162-42DF2C3B1228}
Aktualizacja produktu Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-0415-0000-0000000FF1CE} /uninstall {442ECBCF-94A7-48CC-8CD9-D31FFFD5FA86}
Aktualizacja produktu Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-0415-0000-0000000FF1CE} /uninstall {128A36ED-21BE-4547-9FFE-5B85AEC735DD}
Aktualizacje NVIDIA 1.10.8-->"C:\Windows\system32\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL",UninstallPackage Display.Update
Audacity 2.0.2-->"C:\Program Files\Audacity\unins000.exe"
Avira Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE
BitSpirit v3.6.0.550 Stable-->"C:\Program Files\BitSpirit\unins000.exe"
Call of Duty® 4 - Modern Warfare™ 1.6 Patch-->C:\Program Files\InstallShield Installation Information\{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}\setup.exe -runfromtemp -l0x0409
Call of Duty® 4 - Modern Warfare™ 1.7 Patch-->C:\Program Files\InstallShield Installation Information\{931C37FC-594D-43A9-B10F-A2F2B1F03498}\setup.exe -runfromtemp -l0x0409
Call of Duty® 4 - Modern Warfare™-->C:\Program Files\InstallShield Installation Information\{E48469CC-635E-4FD5-A122-1497C286D217}\setup.exe -runfromtemp -l0x0415
Camtasia Studio 7-->MsiExec.exe /I{37B03AA0-B125-4649-900C-F26E1081F163}
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
D3DX10-->MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF}
DAEMON Tools Lite-->C:\Program Files\DAEMON Tools Lite\uninst.exe
Euro Truck Simulator 2-->"D:\Euro Truck Simulator 2\unins000.exe"
Fraps (remove only)-->"D:\Fraps\uninstall.exe"
Galeria fotografii-->MsiExec.exe /X{7595CAD2-87D0-4D01-AC02-3FDD3A891BB8}
GIMP 2.8.2-->"C:\Program Files\GIMP 2\uninst\unins000.exe"
Google Chrome-->"C:\Program Files\Google\Chrome\Application\23.0.1271.97\Installer\setup.exe" --uninstall --multi-install --chrome --system-level
Google Earth Plug-in-->MsiExec.exe /X{71972D00-4596-11E2-B6EA-B8AC6F97B88E}
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Icy Tower v1.5-->"c:\games\icytower1.5\unins000.exe"
Java 7 Update 9-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83217009FF}
LAME v3.99.3 (for Windows)-->"C:\Program Files\Lame For Audacity\unins000.exe"
League of Legends-->"C:\Program Files\InstallShield Installation Information\{92606477-9366-4D3B-8AE3-6BE4B29727AB}\setup.exe" -runfromtemp -l0x0415 -removeonly
LogMeIn Hamachi-->C:\Windows\system32\\msiexec.exe /i {0FE78EE7-611A-4422-B062-91039C96F311} REMOVE=ALL
LogMeIn Hamachi-->MsiExec.exe /I{0FE78EE7-611A-4422-B062-91039C96F311}
Microsoft .NET Framework 4 Client Profile PLK Language Pack-->MsiExec.exe /X{321320E1-0E5A-36CB-9E52-F3B201B8C4D4}
Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client
Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0015-0415-0000-0000000FF1CE} /uninstall {01CC3B2D-70DB-49DC-839A-A923D2A39EA4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0016-0415-0000-0000000FF1CE} /uninstall {01CC3B2D-70DB-49DC-839A-A923D2A39EA4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0018-0415-0000-0000000FF1CE} /uninstall {01CC3B2D-70DB-49DC-839A-A923D2A39EA4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0019-0415-0000-0000000FF1CE} /uninstall {01CC3B2D-70DB-49DC-839A-A923D2A39EA4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001A-0415-0000-0000000FF1CE} /uninstall {01CC3B2D-70DB-49DC-839A-A923D2A39EA4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001B-0415-0000-0000000FF1CE} /uninstall {01CC3B2D-70DB-49DC-839A-A923D2A39EA4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {6E107EB7-8B55-48BF-ACCB-199F86A2CD93}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-0044-0415-0000-0000000FF1CE} /uninstall {01CC3B2D-70DB-49DC-839A-A923D2A39EA4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-006E-0415-0000-0000000FF1CE} /uninstall {0C8AB602-A234-45AB-B355-4C863C1D2FA8}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-00A1-0415-0000-0000000FF1CE} /uninstall {01CC3B2D-70DB-49DC-839A-A923D2A39EA4}
Microsoft Office 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-00BA-0415-0000-0000000FF1CE} /uninstall {01CC3B2D-70DB-49DC-839A-A923D2A39EA4}
Microsoft Office Access MUI (Polish) 2007-->MsiExec.exe /X{90120000-0015-0415-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (Polish) 2007-->MsiExec.exe /X{90120000-0016-0415-0000-0000000FF1CE}
Microsoft Office Groove MUI (Polish) 2007-->MsiExec.exe /X{90120000-00BA-0415-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (Polish) 2007-->MsiExec.exe /X{90120000-0044-0415-0000-0000000FF1CE}
Microsoft Office OneNote MUI (Polish) 2007-->MsiExec.exe /X{90120000-00A1-0415-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Polish) 2007-->MsiExec.exe /X{90120000-001A-0415-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Polish) 2007-->MsiExec.exe /X{90120000-0018-0415-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Polish) 2007-->MsiExec.exe /X{90120000-001F-0415-0000-0000000FF1CE}
Microsoft Office Proofing (Polish) 2007-->MsiExec.exe /X{90120000-002C-0415-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {928D7B99-2BEA-49F9-83B8-20FA57860643}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {1FF96026-A04A-4C3E-B50A-BB7022654D0F}
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0415-0000-0000000FF1CE} /uninstall {9CC96D78-9E1D-46E0-AF4D-3EB440CD4619}
Microsoft Office Publisher MUI (Polish) 2007-->MsiExec.exe /X{90120000-0019-0415-0000-0000000FF1CE}
Microsoft Office Shared MUI (Polish) 2007-->MsiExec.exe /X{90120000-006E-0415-0000-0000000FF1CE}
Microsoft Office Word MUI (Polish) 2007-->MsiExec.exe /X{90120000-001B-0415-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Movie Maker-->MsiExec.exe /X{2A078A2B-E2C8-43A3-862C-DC57090AB7C2}
Movie Maker-->MsiExec.exe /X{ED6C77F9-4D7E-447C-9EC0-9A212D075535}
Mozilla Firefox 17.0.1 (x86 pl)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Mozilla Maintenance Service-->"C:\Program Files\Mozilla Maintenance Service\uninstall.exe"
MSVCRT-->MsiExec.exe /I{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
MSVCRT110-->MsiExec.exe /I{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
NVIDIA Display Control Panel-->C:\Program Files\NVIDIA Corporation\Uninstall\nvuninst.exe DisplayControlPanel
NVIDIA Sterownik graficzny 306.97-->"C:\Windows\system32\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\installer.0\NVI2.DLL",UninstallPackage Display.Driver
Origin-->D:\Origin\OriginUninstall.exe
Painkiller Hell and Damnation-->"E:\Painkiller Hell and Damnation\unins000.exe"
Pando Media Booster-->C:\Program Files\Pando Networks\Media Booster\uninst.exe
Photo Common-->MsiExec.exe /X{AA82E5EF-70C2-41CB-8432-309078304CBB}
Photo Gallery-->MsiExec.exe /X{30F99474-EBE3-4134-A02B-F6CD38CFE243}
Podstawowe programy Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
Podstawowe programy Windows Live-->MsiExec.exe /I{A7E73DE5-E5FD-4923-9D88-E09ECD1F3545}
Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\Setup.exe /repair /x86 /lcid 1045 /parameterfolder ClientLP
Produkt Microsoft Office Enterprise 2007 w wersji próbnej-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
PunkBuster Services-->E:\Battlefield play for free\pbsvc_p4f.exe -u
PVSonyDll-->MsiExec.exe /I{3D3E663D-4E7E-4577-A560-7ECDDD45548A}
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -removeonly
Revo Uninstaller 1.94-->C:\Program Files\VS Revo Group\Revo Uninstaller\uninst.exe
RocketDock 1.3.5-->"C:\Program Files\RocketDock\unins000.exe"
SAGEM F@st 800-840-->C:\Program Files\InstallShield Installation Information\{4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F}\setup.exe -runfromtemp -l0x0015 -removeonly
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {67A5F99B-5EBA-3812-8D2E-BC251490DD3F} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {4952F442-5C1A-38EB-8C23-B18EFE77E20C} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {86BB5A25-8CC3-33CE-A393-CF28901682B2} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {C4D978AA-2668-3404-96DE-96E2AFC62FD7} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {CD6D9B8A-BBC4-3FA7-B24D-D74CE90630CF} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {ECBEE23D-AB7E-3DAA-B66B-CD52003198F1} /parameterfolder Client
Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {C6997D22-CC93-4ED9-AD8A-02C3F3D2F1F9}
Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {5DD3FF90-B302-45B2-A188-C5EA7ACD5D46}
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {D33B9EF5-3801-496A-A2D6-B7F4BE972D75}
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {B145DBBB-7778-4A5D-9D2B-DA6569F02391}
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {A0D5F849-D9D5-48ED-99D0-C74D7BFA6A09}
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {E34960DB-2A93-45DB-A208-02650F7AB09C}
Security Update for Microsoft Office 2007 suites (KB2596856) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {2623A96B-78E5-42CC-AB55-6A3969B32E36}
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {293FB6BE-D3EB-4162-B522-F9108040B9FE}
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {2B3C041A-A7F2-4A24-968D-4BEB6A123D15}
Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {43171CAD-DC60-4E7B-9703-B2EC18001B9F}
Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {3579CE34-B225-4B19-A3AF-DE5F562A212F}
Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {EF5B5C7F-20CB-4A3A-AC3D-F5DE2C2BFDC7}
Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {CAB47CC0-A98C-47DD-9FA1-C0416EC96ED5}
Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {488F0918-97F9-4CD0-8AD5-8986A46AC962}
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {8F311D6C-D8DD-4C32-9457-1A129CABD1A5}
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {AEA16A27-0B97-4670-818F-A98D06EC0A6F}
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {0EF0D4FB-BB23-4515-AAEA-1240AC2DA525}
Security Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {5A8732F0-C20F-4A9B-A2A9-66FE7A586C35}
Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition -->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {718E87EC-6590-485A-B12D-C01D290EDB12}
Skype™ 6.0-->MsiExec.exe /X{EA17F4FC-FDBF-4CF8-A529-2D983132D053}
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
Steam-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
Team Fortress 2-->"E:\steam\steam.exe" steam://uninstall/440
Trine 2-->"E:\Trine 2\unins000.exe"
Tunngle beta-->"C:\Program Files\Tunngle\unins000.exe"
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5D9961AC-7C99-36A2-9EF0-34678AED5384} /parameterfolder Client
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {620E77C0-CDFE-4C14-AAEB-830ABB65864C}
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {8153EC80-C988-4336-8DAF-6D99C0D26E0C}
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition-->msiexec /package {90120000-001A-0415-0000-0000000FF1CE} /uninstall {840D15BD-72E8-4710-ABDD-8E883B88BD5D}
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {5DB2894C-2DA4-4DEF-A051-795AE799964A}
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2760573) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {2F2E7045-D922-4BF4-8F87-1583B61D1D6E}
Windows Live Communications Platform-->MsiExec.exe /I{0454BB9A-2A7A-4214-BDFF-937F7A711A44}
Windows Live ID Sign-in Assistant-->MsiExec.exe /I{8256F87F-8554-4457-8C3D-3F3324697D9F}
Windows Live Installer-->MsiExec.exe /I{C424CD5E-EA05-4D3E-B5DA-F9F149E1D3AC}
Windows Live Photo Common-->MsiExec.exe /X{C9B6EFD0-4F01-4BBA-8374-39AD99A3ED72}
Windows Live PIMT Platform-->MsiExec.exe /I{6A8DB215-7BCD-4377-B015-2E4541A3E7C6}
Windows Live SOXE Definitions-->MsiExec.exe /I{8A642ACD-CE3A-4A23-A8B1-A0F7EB12B214}
Windows Live SOXE-->MsiExec.exe /I{FE7C0B3D-50B9-4951-BE78-A321CBF86552}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{F09DD76B-D3D3-4558-B5BC-F1EEA6E00162}
Windows Live UX Platform-->MsiExec.exe /I{4CCBD1F4-CEEC-452A-9CB8-46564B501315}
WinRAR 4.20 (32-bitowy)-->C:\Program Files\WinRAR\uninstall.exe

======System event log======

Computer Name: 37L4247F27-08
Event Code: 7036
Message: Usługa Plug and Play weszła w stan stopped.
Record Number: 5
Source Name: Service Control Manager
Time Written: 20101120215742.697406-000
Event Type: Informacje
User:

Computer Name: 37L4247F27-08
Event Code: 20010
Message: Stan co najmniej jednego podsystemu usługi Plug and Play uległ zmianie.

Podsystem instalacji PlugPlay włączony: „false”
Podsystem buforowania PlugPlay włączony: „false”

Record Number: 4
Source Name: Microsoft-Windows-UserPnp
Time Written: 20101120215742.697406-000
Event Type: Informacje
User: ZARZĄDZANIE NT\SYSTEM

Computer Name: 37L4247F27-08
Event Code: 7036
Message: Usługa Software Protection weszła w stan stopped.
Record Number: 3
Source Name: Service Control Manager
Time Written: 20101120215742.479005-000
Event Type: Informacje
User:

Computer Name: 37L4247F27-08
Event Code: 7036
Message: Usługa Windows Event Log weszła w stan stopped.
Record Number: 2
Source Name: Service Control Manager
Time Written: 20101120215742.338605-000
Event Type: Informacje
User:

Computer Name: 37L4247F27-08
Event Code: 7036
Message: Usługa Volume Shadow Copy weszła w stan stopped.
Record Number: 1
Source Name: Service Control Manager
Time Written: 20101120215742.323005-000
Event Type: Informacje
User:

=====Application event log=====

Computer Name: 37L4247F27-08
Event Code: 8212
Message: Usługa kopiowania woluminów w tle: moduł zapisujący z nazwą BITS Writer i identyfikatorem {4969d978-be47-48b0-b100-f328f07ac1e0} próbował subskrybować podczas instalacji.

Operacja:
Inicjowanie modułu zapisującego

Kontekst:
Identyfikator klasy modułu zapisującego: {4969d978-be47-48b0-b100-f328f07ac1e0}
Nazwa modułu zapisującego: BITS Writer
Record Number: 5
Source Name: VSS
Time Written: 20121113131428.000000-000
Event Type: Informacje
User:

Computer Name: 37L4247F27-08
Event Code: 5617
Message: Windows Management Instrumentation Service subsystems initialized successfully
Record Number: 4
Source Name: Microsoft-Windows-WMI
Time Written: 20121113131229.000000-000
Event Type: Informacje
User:

Computer Name: 37L4247F27-08
Event Code: 5615
Message: Windows Management Instrumentation Service started sucessfully
Record Number: 3
Source Name: Microsoft-Windows-WMI
Time Written: 20121113131225.000000-000
Event Type: Informacje
User:

Computer Name: 37L4247F27-08
Event Code: 1531
Message: Usługa profilów użytkowników została uruchomiona pomyślnie.


Record Number: 2
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20121113131222.442800-000
Event Type: Informacje
User: ZARZĄDZANIE NT\SYSTEM

Computer Name: 37L4247F27-08
Event Code: 4625
Message: System podrzędny EventSystem pomija zduplikowane wpisy dziennika zdarzeń przez okres 86400 sekund. Limit czasu pomijania można kontrolować za pomocą wartości REG_DWORD o nazwie SuppressDuplicateDuration w następującym kluczu rejestru: HKLM\Software\Microsoft\EventSystem\EventLog.
Record Number: 1
Source Name: Microsoft-Windows-EventSystem
Time Written: 20121113131222.000000-000
Event Type: Informacje
User:

=====Security event log=====

Computer Name: 37L4247F27-08
Event Code: 4735
Message: Zmieniono grupę lokalną z włączonymi zabezpieczeniami.

Podmiot:
Identyfikator zabezpieczeń: S-1-5-18
Nazwa konta: 37L4247F27-08$
Domena konta: WORKGROUP
Identyfikator logowania: 0x3e7

Grupa:
Identyfikator zabezpieczeń: S-1-5-32-551
Nazwa grupy: Operatorzy kopii zapasowych
Domena grupy: Builtin

Zmienione atrybuty:
Nazwa konta SAM: -
Historia identyfikatora SID: -

Informacje dodatkowe:
Uprawnienia: -
Record Number: 5
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20121113131157.326800-000
Event Type: Sukcesy inspekcji
User:

Computer Name: 37L4247F27-08
Event Code: 4731
Message: Utworzono grupę lokalną z włączonymi zabezpieczeniami.

Podmiot:
Identyfikator zabezpieczeń: S-1-5-18
Nazwa konta: 37L4247F27-08$
Domena konta: WORKGROUP
Identyfikator logowania: 0x3e7

Nowa grupa:
Identyfikator zabezpieczeń: S-1-5-32-551
Nazwa grupy: Operatorzy kopii zapasowych
Domena grupy: Builtin

Atrybuty:
Nazwa konta SAM: Operatorzy kopii zapasowych
Historia identyfikatora SID: -

Informacje dodatkowe:
Uprawnienia: -
Record Number: 4
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20121113131157.326800-000
Event Type: Sukcesy inspekcji
User:

Computer Name: 37L4247F27-08
Event Code: 4902
Message: Utworzono tabelę zasad inspekcji użytkownika.

Liczba elementów: 0
Identyfikator zasad: 0x23620
Record Number: 3
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20121113131156.983600-000
Event Type: Sukcesy inspekcji
User:

Computer Name: 37L4247F27-08
Event Code: 4624
Message: Użytkownik pomyślnie zalogował się na koncie.

Podmiot:
Identyfikator zabezpieczeń: S-1-0-0
Nazwa konta: -
Domena konta: -
Identyfikator logowania: 0x0

Typ logowania: 0

Nowe logowanie:
Identyfikator zabezpieczeń: S-1-5-18
Nazwa konta: SYSTEM
Domena konta: ZARZĄDZANIE NT
Identyfikator logowania: 0x3e7
Identyfikator GUID logowania: {00000000-0000-0000-0000-000000000000}

Informacje o procesie:
Identyfikator procesu: 0x4
Nazwa procesu:

Informacje o sieci:
Nazwa stacji roboczej: -
Adres źródłowy sieci: -
Port źródłowy: -

Szczegółowe informacje o uwierzytelnianiu:
Proces logowania: -
Pakiet uwierzytelniania: -
Usługi przejściowe: -
Nazwa pakietu (tylko NTLM): -
Długość klucza: 0

To zdarzenie jest generowane w momencie utworzenia sesji logowania. Jest ono generowane na komputerze, do którego został uzyskany dostęp.

Pola podmiotu wskazują konto w systemie lokalnym, które zażądało logowania. Najczęściej jest to usługa, na przykład usługa Serwer, lub proces lokalny taki jak Winlogon.exe lub Services.exe.

Pole typu logowania wskazuje rodzaj zaistniałego logowania. Najczęstsze typy to 2 (interakcyjne) i 3 (sieciowe).

Pola nowego logowania wskazują konto, dla którego zostało utworzone nowe logowanie, czyli konto, które zostało zalogowane.

Pola sieci wskazują lokalizację, z której pochodziło zdalne żądanie logowania. Nazwa stacji roboczej nie zawsze jest dostępna i w niektórych przypadkach może być pusta.

Pola informacji o uwierzytelnianiu zawierają szczegółowe informacje o tym konkretnym żądaniu logowania.
- Identyfikator GUID logowania to unikatowy identyfikator, za pomocą którego można skorelować to zdarzenie ze zdarzeniem centrum dystrybucji kluczy.
- Usługi przejściowe wskazują, które usługi pośrednie uczestniczyły w tym żądaniu logowania.
- Nazwa pakietu wskazuje, który protokół podrzędny spośród protokołów NTLM został użyty.
- Długość klucza wskazuje długość wygenerowanego klucza sesji. Jeśli nie zażądano klucza sesji, jest to wartość 0.
Record Number: 2
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20121113131154.815200-000
Event Type: Sukcesy inspekcji
User:

Computer Name: 37L4247F27-08
Event Code: 4608
Message: Trwa uruchamianie systemu Windows.

To zdarzenie jest rejestrowane w momencie uruchamiania programu LSASS.EXE i inicjowania podsystemu inspekcji.
Record Number: 1
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20121113131154.690400-000
Event Type: Sukcesy inspekcji
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\Program Files\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Windows Live\Shared
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=2
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 107 Stepping 1, AuthenticAMD
"PROCESSOR_REVISION"=6b01
"windows_tracing_logfile"=C:\BVTBin\Tests\installpackage\csilogfile.log
"windows_tracing_flags"=3

-----------------EOF-----------------[/log]

log.txt
[log]Logfile of random's system information tool 1.09 (written by random/random)
Run by Kaspisek at 2012-12-31 19:12:08
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 15 GB (40%) free of 38 GB
Total RAM: 3583 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:12:17, on 2012-12-31
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
E:\Microsoft ofice\Office12\GrooveMonitor.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Windows\System32\StikyNot.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe
C:\Users\Kaspisek\Downloads\OTL.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Kaspisek\Downloads\RSIT.exe
C:\Program Files\trend micro\Kaspisek.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft....k/?LinkId=54896[/url]
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [url="http://pl.yahoo.com?fr=fp-comodo"]http://pl.yahoo.com?fr=fp-comodo[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [url="http://go.microsoft.com/fwlink/?LinkId=69157"]http://go.microsoft....k/?LinkId=69157[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft....k/?LinkId=54896[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft....k/?LinkId=54896[/url]
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [url="http://go.microsoft.com/fwlink/?LinkId=69157"]http://go.microsoft....k/?LinkId=69157[/url]
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - E:\Microsoft ofice\Office12\GrooveShellExtensions.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Help the General-Search Project - {CA4520F3-AE13-4FB1-A513-58E23991C86D} - C:\Users\Kaspisek\AppData\Roaming\MEDIAF~1\EXTENS~1\GENCRA~1.DLL
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "E:\Microsoft ofice\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [GG] "C:\Users\Kaspisek\AppData\Local\GG\Application\gghub.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "E:\steam\Steam.exe" -silent
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-21-2701869729-785606778-3130026812-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-2701869729-785606778-3130026812-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: Download with &Media Finder - C:\Program Files\Media Finder\hook.html
O8 - Extra context menu item: Pobierz z &BitSpirit - C:\Program Files\BitSpirit\bsurl.htm
O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{4D22EC86-4CF6-4F8C-989A-F8885010E938}: NameServer = 194.204.152.34 194.204.159.1
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - E:\Microsoft ofice\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs:
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Usługa Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Usługa Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Program Files\Tunngle\TnglCtrl.exe

--
End of file - 8438 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Kaspisek\AppData\Roaming\Mozilla\Firefox\Profiles\8ko6cs2v.default

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.135 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.9.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Windows\system32\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3505.0912]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\searchplugins\
allegro-pl.xml
fbc-pl.xml
google.xml
merlin-pl.xml
pwn-pl.xml
wikipedia-pl.xml
wp-pl.xml

C:\Users\Kaspisek\AppData\Roaming\Mozilla\Firefox\Profiles\8ko6cs2v.default\extensions\
battlefieldplay4free@ea.com
SignPlugin@bph.pl

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-07-27 63944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2008-07-07 1562448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - E:\Microsoft ofice\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java™ Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-11-13 449512]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CA4520F3-AE13-4FB1-A513-58E23991C86D}]
Help the General-Search Project - C:\Users\Kaspisek\AppData\Roaming\MEDIAF~1\EXTENS~1\GENCRA~1.DLL [2012-08-24 437376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java™ Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-11-13 155384]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2012-12-11 384800]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2012-06-11 10996368]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
"LogMeIn Hamachi Ui"=C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2012-11-12 2254768]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-07-27 919008]
"GrooveMonitor"=E:\Microsoft ofice\Office12\GrooveMonitor.exe [2009-02-26 30040]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"GG"=C:\Users\Kaspisek\AppData\Local\GG\Application\gghub.exe [2012-10-31 3377288]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2012-11-09 17877168]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2008-07-07 2156368]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
"Steam"=E:\steam\Steam.exe [2012-12-09 1354736]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2009-07-14 354304]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\COMODO]
C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLA.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pando Media Booster]
C:\Program Files\Pando Networks\Media Booster\PMB.exe [2012-11-14 3093624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=E:\Microsoft ofice\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.tscc"=tsccvid.dll
"VIDC.FPS1"=frapsvid.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2012-12-31 19:12:09 ----D---- C:\Program Files\trend micro
2012-12-31 19:12:08 ----D---- C:\rsit
2012-12-31 15:51:29 ----D---- C:\Users\Kaspisek\AppData\Roaming\Origin
2012-12-31 15:51:28 ----D---- C:\Program Files\Origin Games
2012-12-31 15:47:08 ----D---- C:\ProgramData\Origin
2012-12-31 15:47:08 ----D---- C:\ProgramData\Electronic Arts
2012-12-30 22:55:20 ----D---- C:\games
2012-12-30 19:40:22 ----A---- C:\Users\Kaspisek\AppData\Roaming\PnkBstrK.sys
2012-12-29 18:10:39 ----A---- C:\Windows\system32\drivers\PnkBstrK.sys
2012-12-29 18:10:34 ----A---- C:\Windows\system32\PnkBstrB.exe
2012-12-29 18:10:24 ----A---- C:\Windows\system32\PnkBstrA.exe
2012-12-28 16:35:19 ----D---- C:\Users\Kaspisek\AppData\Roaming\AMPSoft
2012-12-28 15:54:04 ----D---- C:\Users\Kaspisek\AppData\Roaming\FontCreator
2012-12-26 21:34:10 ----D---- C:\Windows\pl
2012-12-26 21:33:51 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2012-12-26 21:33:01 ----D---- C:\Program Files\Windows Live
2012-12-26 21:32:29 ----A---- C:\Windows\system32\XAudio2_7.dll
2012-12-26 21:30:02 ----D---- C:\Program Files\Common Files\Windows Live
2012-12-26 20:54:05 ----D---- C:\Users\Kaspisek\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
2012-12-26 20:53:58 ----D---- C:\Program Files\Common Files\Adobe AIR
2012-12-26 18:19:16 ----A---- C:\Windows\system32\libusb0.dll
2012-12-26 18:19:16 ----A---- C:\Windows\system32\drivers\libusb0.sys
2012-12-26 14:10:39 ----A---- C:\Windows\system32\nvsvcr.dll
2012-12-26 14:09:45 ----A---- C:\Windows\system32\nvopencl.dll
2012-12-26 14:09:45 ----A---- C:\Windows\system32\nvoglv32.dll
2012-12-26 14:09:45 ----A---- C:\Windows\system32\nvdispgenco32.dll
2012-12-26 14:09:45 ----A---- C:\Windows\system32\nvdispco32.dll
2012-12-26 14:09:45 ----A---- C:\Windows\system32\nvcuvid.dll
2012-12-26 14:09:45 ----A---- C:\Windows\system32\nvcuvenc.dll
2012-12-26 14:09:45 ----A---- C:\Windows\system32\nvcuda.dll
2012-12-26 14:09:45 ----A---- C:\Windows\system32\nvcompiler.dll
2012-12-26 14:09:45 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2012-12-26 14:09:07 ----D---- C:\NVIDIA
2012-12-25 13:32:06 ----D---- C:\Windows\Minidump
2012-12-25 12:16:16 ----A---- C:\Windows\system32\drivers\ousbehci.sys
2012-12-25 12:16:16 ----A---- C:\Windows\system32\drivers\ousb2hub.sys
2012-12-25 12:10:11 ----A---- C:\Windows\system32\drivers\AmUStor.sys
2012-12-25 12:10:10 ----A---- C:\Windows\system32\AmUStor.dll
2012-12-24 16:45:35 ----A---- C:\Windows\game.ini
2012-12-23 14:41:27 ----A---- C:\Windows\system32\XAudio2_5.dll
2012-12-23 14:41:27 ----A---- C:\Windows\system32\xactengine3_5.dll
2012-12-23 14:41:27 ----A---- C:\Windows\system32\D3DX9_42.dll
2012-12-23 14:41:27 ----A---- C:\Windows\system32\d3dx11_42.dll
2012-12-23 14:41:27 ----A---- C:\Windows\system32\d3dx10_42.dll
2012-12-23 14:41:27 ----A---- C:\Windows\system32\d3dcsx_42.dll
2012-12-23 14:41:27 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2012-12-23 14:41:26 ----A---- C:\Windows\system32\XAudio2_4.dll
2012-12-23 14:41:26 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2012-12-23 14:41:26 ----A---- C:\Windows\system32\xactengine3_4.dll
2012-12-23 14:41:26 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2012-12-23 14:41:26 ----A---- C:\Windows\system32\D3DX9_41.dll
2012-12-23 14:41:26 ----A---- C:\Windows\system32\d3dx10_41.dll
2012-12-23 14:41:26 ----A---- C:\Windows\system32\d3dx10_40.dll
2012-12-23 14:41:26 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2012-12-23 14:41:26 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2012-12-23 14:41:25 ----A---- C:\Windows\system32\XAudio2_3.dll
2012-12-23 14:41:25 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2012-12-23 14:41:25 ----A---- C:\Windows\system32\xactengine3_3.dll
2012-12-23 14:41:25 ----A---- C:\Windows\system32\xactengine3_2.dll
2012-12-23 14:41:25 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2012-12-23 14:41:25 ----A---- C:\Windows\system32\D3DX9_40.dll
2012-12-23 14:41:23 ----A---- C:\Windows\system32\XAudio2_1.dll
2012-12-23 14:41:23 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2012-12-23 14:41:23 ----A---- C:\Windows\system32\xactengine3_1.dll
2012-12-23 14:41:23 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2012-12-23 14:41:23 ----A---- C:\Windows\system32\d3dx10_38.dll
2012-12-23 14:41:23 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2012-12-23 14:41:22 ----A---- C:\Windows\system32\XAudio2_0.dll
2012-12-23 14:41:22 ----A---- C:\Windows\system32\xactengine3_0.dll
2012-12-23 14:41:22 ----A---- C:\Windows\system32\xactengine2_10.dll
2012-12-23 14:41:22 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2012-12-23 14:41:22 ----A---- C:\Windows\system32\D3DX9_37.dll
2012-12-23 14:41:22 ----A---- C:\Windows\system32\d3dx10_37.dll
2012-12-23 14:41:22 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2012-12-23 14:41:21 ----A---- C:\Windows\system32\xactengine2_9.dll
2012-12-23 14:41:21 ----A---- C:\Windows\system32\d3dx9_36.dll
2012-12-23 14:41:21 ----A---- C:\Windows\system32\d3dx10_36.dll
2012-12-23 14:41:21 ----A---- C:\Windows\system32\d3dx10_35.dll
2012-12-23 14:41:21 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2012-12-23 14:41:21 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2012-12-23 14:41:20 ----A---- C:\Windows\system32\xactengine2_8.dll
2012-12-23 14:41:20 ----A---- C:\Windows\system32\xactengine2_7.dll
2012-12-23 14:41:20 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2012-12-23 14:41:20 ----A---- C:\Windows\system32\d3dx9_35.dll
2012-12-23 14:41:20 ----A---- C:\Windows\system32\d3dx9_34.dll
2012-12-23 14:41:20 ----A---- C:\Windows\system32\d3dx10_34.dll
2012-12-23 14:41:20 ----A---- C:\Windows\system32\d3dx10_33.dll
2012-12-23 14:41:20 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2012-12-23 14:41:20 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2012-12-23 14:41:19 ----A---- C:\Windows\system32\xactengine2_6.dll
2012-12-23 14:41:19 ----A---- C:\Windows\system32\xactengine2_5.dll
2012-12-23 14:41:19 ----A---- C:\Windows\system32\xactengine2_4.dll
2012-12-23 14:41:19 ----A---- C:\Windows\system32\x3daudio1_1.dll
2012-12-23 14:41:19 ----A---- C:\Windows\system32\d3dx9_33.dll
2012-12-23 14:41:19 ----A---- C:\Windows\system32\d3dx9_32.dll
2012-12-23 14:41:19 ----A---- C:\Windows\system32\d3dx10.dll
2012-12-23 14:41:18 ----A---- C:\Windows\system32\xinput1_2.dll
2012-12-23 14:41:18 ----A---- C:\Windows\system32\xactengine2_3.dll
2012-12-23 14:41:18 ----A---- C:\Windows\system32\d3dx9_31.dll
2012-12-23 14:41:17 ----A---- C:\Windows\system32\xinput1_1.dll
2012-12-23 14:41:17 ----A---- C:\Windows\system32\xactengine2_2.dll
2012-12-23 14:41:17 ----A---- C:\Windows\system32\xactengine2_1.dll
2012-12-23 14:41:13 ----A---- C:\Windows\system32\xactengine2_0.dll
2012-12-23 14:41:13 ----A---- C:\Windows\system32\x3daudio1_0.dll
2012-12-23 14:41:13 ----A---- C:\Windows\system32\d3dx9_30.dll
2012-12-23 14:41:13 ----A---- C:\Windows\system32\d3dx9_29.dll
2012-12-23 14:41:12 ----A---- C:\Windows\system32\d3dx9_28.dll
2012-12-23 14:41:12 ----A---- C:\Windows\system32\d3dx9_27.dll
2012-12-23 14:41:12 ----A---- C:\Windows\system32\d3dx9_26.dll
2012-12-23 14:41:12 ----A---- C:\Windows\system32\d3dx9_25.dll
2012-12-23 14:41:12 ----A---- C:\Windows\system32\d3dx9_24.dll
2012-12-23 12:14:54 ----D---- C:\ProgramData\McAfee
2012-12-23 12:08:52 ----D---- C:\ProgramData\Mozilla
2012-12-23 12:08:51 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-12-23 12:08:48 ----D---- C:\Program Files\Mozilla Firefox
2012-12-21 22:26:53 ----A---- C:\Windows\system32\atmlib.dll
2012-12-21 22:26:53 ----A---- C:\Windows\system32\atmfd.dll
2012-12-19 12:58:00 ----D---- C:\Program Files\Microsoft Games
2012-12-18 21:08:56 ----D---- C:\Program Files\Microsoft Silverlight
2012-12-16 17:52:12 ----A---- C:\Windows\system32\msonpmon.dll
2012-12-16 17:50:55 ----D---- C:\Program Files\Microsoft Works
2012-12-16 17:50:30 ----D---- C:\Program Files\Microsoft Visual Studio
2012-12-16 17:50:30 ----D---- C:\Program Files\Common Files\DESIGNER
2012-12-16 17:50:06 ----D---- C:\Windows\PCHEALTH
2012-12-16 17:48:38 ----D---- C:\Program Files\Microsoft Visual Studio 8
2012-12-16 17:48:03 ----D---- C:\ProgramData\Microsoft Help
2012-12-15 14:16:33 ----D---- C:\ProgramData\Blizzard Entertainment
2012-12-14 17:49:07 ----A---- C:\Windows\system32\Access.dat
2012-12-14 17:44:12 ----D---- C:\Users\Kaspisek\AppData\Roaming\Tunngle
2012-12-14 17:44:12 ----D---- C:\ProgramData\Tunngle
2012-12-14 17:44:11 ----A---- C:\Windows\system32\drivers\tap0901t.sys
2012-12-14 17:44:10 ----D---- C:\Program Files\Tunngle
2012-12-13 08:14:13 ----A---- C:\Windows\system32\vbscript.dll
2012-12-13 08:14:13 ----A---- C:\Windows\system32\mshtmled.dll
2012-12-13 08:14:12 ----A---- C:\Windows\system32\msfeeds.dll
2012-12-13 08:14:12 ----A---- C:\Windows\system32\jsproxy.dll
2012-12-13 08:14:12 ----A---- C:\Windows\system32\ieUnatt.exe
2012-12-13 08:14:12 ----A---- C:\Windows\system32\ieui.dll
2012-12-13 08:14:11 ----A---- C:\Windows\system32\wininet.dll
2012-12-13 08:14:11 ----A---- C:\Windows\system32\jscript.dll
2012-12-13 08:14:10 ----A---- C:\Windows\system32\url.dll
2012-12-13 08:14:10 ----A---- C:\Windows\system32\jscript9.dll
2012-12-13 08:14:10 ----A---- C:\Windows\system32\iertutil.dll
2012-12-13 08:14:09 ----A---- C:\Windows\system32\urlmon.dll
2012-12-13 08:14:07 ----A---- C:\Windows\system32\ieframe.dll
2012-12-13 08:14:05 ----A---- C:\Windows\system32\mshtml.dll
2012-12-12 22:22:23 ----A---- C:\Windows\system32\tzres.dll
2012-12-12 22:19:54 ----A---- C:\Windows\system32\win32k.sys
2012-12-12 22:19:36 ----A---- C:\Windows\system32\winsrv.dll
2012-12-12 22:19:36 ----A---- C:\Windows\system32\KernelBase.dll
2012-12-12 22:19:36 ----A---- C:\Windows\system32\conhost.exe
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2012-12-12 22:19:35 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2012-12-12 22:19:35 ----A---- C:\Windows\system32\kernel32.dll
2012-12-12 22:18:40 ----A---- C:\Windows\system32\dpnet.dll
2012-12-12 14:05:26 ----D---- C:\Users\Kaspisek\AppData\Roaming\BitSpirit
2012-12-12 14:05:20 ----D---- C:\Program Files\BitSpirit
2012-12-10 14:59:36 ----D---- C:\Program Files\Common Files\Blizzard Entertainment
2012-12-09 19:28:25 ----D---- C:\Program Files\Common Files\Steam
2012-12-09 12:07:01 ----D---- C:\ProgramData\Blizzard
2012-12-02 19:29:57 ----D---- C:\Program Files\Common Files\Adobe
2012-12-02 19:29:57 ----D---- C:\Program Files\Adobe
2012-12-02 10:52:32 ----D---- C:\ProgramData\Pure Networks
2012-12-01 11:51:13 ----D---- C:\Users\Kaspisek\AppData\Roaming\Media Finder
2012-11-29 17:21:21 ----A---- C:\Windows\system32\d3dx9_38.dll
2012-11-29 17:18:22 ----D---- C:\Users\Kaspisek\AppData\Roaming\Trine2
2012-11-29 16:35:32 ----D---- C:\Windows\system32\directx
2012-11-28 13:31:28 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2012-11-28 13:30:56 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2012-11-28 13:30:29 ----A---- C:\Windows\system32\d3dx11_43.dll
2012-11-28 13:29:52 ----A---- C:\Windows\system32\D3DX9_43.dll
2012-11-28 13:28:51 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2012-11-28 13:24:53 ----A---- C:\Windows\system32\xinput1_3.dll
2012-11-28 13:18:02 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2012-11-28 13:17:58 ----D---- C:\Users\Kaspisek\AppData\Roaming\DAEMON Tools Lite
2012-11-28 13:17:55 ----D---- C:\Program Files\DAEMON Tools Lite
2012-11-28 13:17:09 ----D---- C:\ProgramData\DAEMON Tools Lite
2012-11-27 18:52:54 ----D---- C:\Users\Kaspisek\AppData\Roaming\uTorrent
2012-11-26 14:52:06 ----D---- C:\ProgramData\Comodo
2012-11-24 19:29:18 ----D---- C:\ProgramData\CPA_VA
2012-11-24 19:22:07 ----A---- C:\Windows\system32\msvcr71.dll
2012-11-24 19:22:07 ----A---- C:\Windows\system32\mfc71.dll
2012-11-21 13:08:28 ----D---- C:\Program Files\Lame For Audacity
2012-11-20 21:51:53 ----D---- C:\Users\Kaspisek\AppData\Roaming\Audacity
2012-11-20 21:51:30 ----D---- C:\Program Files\Audacity
2012-11-20 14:53:16 ----D---- C:\Program Files\Microsoft.NET
2012-11-19 22:35:22 ----D---- C:\Windows\system32\Wat
2012-11-17 11:17:38 ----D---- C:\ProgramData\Spybot - Search & Destroy
2012-11-17 11:17:38 ----D---- C:\Program Files\Spybot - Search & Destroy
2012-11-15 20:23:07 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2012-11-15 20:23:07 ----A---- C:\Windows\system32\drivers\usbport.sys
2012-11-15 20:23:07 ----A---- C:\Windows\system32\drivers\usbohci.sys
2012-11-15 20:23:07 ----A---- C:\Windows\system32\drivers\usbhub.sys
2012-11-15 20:23:07 ----A---- C:\Windows\system32\drivers\usbehci.sys
2012-11-15 20:23:07 ----A---- C:\Windows\system32\drivers\usbd.sys
2012-11-15 20:23:07 ----A---- C:\Windows\system32\drivers\usbccgp.sys
2012-11-15 20:23:06 ----A---- C:\Windows\system32\FntCache.dll
2012-11-15 20:23:06 ----A---- C:\Windows\system32\d2d1.dll
2012-11-15 20:23:02 ----A---- C:\Windows\system32\fsutil.exe
2012-11-15 20:23:02 ----A---- C:\Windows\system32\esent.dll
2012-11-15 20:23:02 ----A---- C:\Windows\system32\drivers\storport.sys
2012-11-15 20:23:02 ----A---- C:\Windows\system32\drivers\nvstor.sys
2012-11-15 20:23:02 ----A---- C:\Windows\system32\drivers\iaStorV.sys
2012-11-15 20:23:02 ----A---- C:\Windows\system32\drivers\amdsata.sys
2012-11-15 20:23:01 ----A---- C:\Windows\system32\drivers\USBSTOR.SYS
2012-11-15 20:23:01 ----A---- C:\Windows\system32\drivers\nvraid.sys
2012-11-15 20:23:01 ----A---- C:\Windows\system32\drivers\amdxata.sys
2012-11-14 16:47:31 ----D---- C:\Users\Kaspisek\AppData\Roaming\LolClient
2012-11-14 14:17:38 ----A---- C:\Windows\system32\XAudio2_2.dll
2012-11-14 14:17:38 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2012-11-14 14:17:37 ----A---- C:\Windows\system32\D3DX9_39.dll
2012-11-14 14:17:37 ----A---- C:\Windows\system32\d3dx10_39.dll
2012-11-14 14:17:37 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2012-11-14 13:37:43 ----A---- C:\Windows\system32\MRT.exe
2012-11-14 13:26:51 ----A---- C:\Windows\system32\Wdfres.dll
2012-11-14 13:26:51 ----A---- C:\Windows\system32\drivers\WdfLdr.sys
2012-11-14 13:26:51 ----A---- C:\Windows\system32\drivers\Wdf01000.sys
2012-11-14 13:25:26 ----A---- C:\Windows\system32\WUDFSvc.dll
2012-11-14 13:25:26 ----A---- C:\Windows\system32\WUDFPlatform.dll
2012-11-14 13:25:26 ----A---- C:\Windows\system32\drivers\WUDFRd.sys
2012-11-14 13:25:26 ----A---- C:\Windows\system32\drivers\WUDFPf.sys
2012-11-14 13:25:24 ----A---- C:\Windows\system32\WUDFx.dll
2012-11-14 13:25:24 ----A---- C:\Windows\system32\WUDFHost.exe
2012-11-14 13:25:24 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2012-11-14 13:24:40 ----A---- C:\Windows\system32\wmi.dll
2012-11-14 13:24:40 ----A---- C:\Windows\system32\imagehlp.dll
2012-11-14 13:24:40 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2012-11-14 13:23:16 ----A---- C:\Windows\system32\SetIEInstalledDate.exe
2012-11-14 13:23:16 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe
2012-11-14 13:23:16 ----A---- C:\Windows\system32\msrating.dll
2012-11-14 13:23:16 ----A---- C:\Windows\system32\msls31.dll
2012-11-14 13:23:16 ----A---- C:\Windows\system32\mshtmler.dll
2012-11-14 13:23:16 ----A---- C:\Windows\system32\msfeedssync.exe
2012-11-14 13:23:16 ----A---- C:\Windows\system32\msfeedsbs.dll
2012-11-14 13:23:16 ----A---- C:\Windows\system32\iesysprep.dll
2012-11-14 13:23:16 ----A---- C:\Windows\system32\ieakeng.dll
2012-11-14 13:23:16 ----A---- C:\Windows\system32\IEAdvpack.dll
2012-11-14 13:23:15 ----A---- C:\Windows\system32\wextract.exe
2012-11-14 13:23:15 ----A---- C:\Windows\system32\webcheck.dll
2012-11-14 13:23:15 ----A---- C:\Windows\system32\licmgr10.dll
2012-11-14 13:23:15 ----A---- C:\Windows\system32\inseng.dll
2012-11-14 13:23:15 ----A---- C:\Windows\system32\iexpress.exe
2012-11-14 13:23:15 ----A---- C:\Windows\system32\iesetup.dll
2012-11-14 13:23:15 ----A---- C:\Windows\system32\iernonce.dll
2012-11-14 13:23:15 ----A---- C:\Windows\system32\iedkcs32.dll
2012-11-14 13:23:15 ----A---- C:\Windows\system32\ieapfltr.dll
2012-11-14 13:23:15 ----A---- C:\Windows\system32\ieapfltr.dat
2012-11-14 13:23:15 ----A---- C:\Windows\system32\ie4uinit.exe
2012-11-14 13:23:15 ----A---- C:\Windows\system32\icardie.dll
2012-11-14 13:23:15 ----A---- C:\Windows\system32\dxtrans.dll
2012-11-14 13:23:15 ----A---- C:\Windows\system32\dxtmsft.dll
2012-11-14 13:23:14 ----A---- C:\Windows\system32\pngfilt.dll
2012-11-14 13:23:14 ----A---- C:\Windows\system32\occache.dll
2012-11-14 13:23:14 ----A---- C:\Windows\system32\mshta.exe
2012-11-14 13:23:14 ----A---- C:\Windows\system32\imgutil.dll
2012-11-14 13:23:14 ----A---- C:\Windows\system32\iepeers.dll
2012-11-14 13:23:14 ----A---- C:\Windows\system32\ieakui.dll
2012-11-14 13:23:14 ----A---- C:\Windows\system32\ieaksie.dll
2012-11-14 13:23:14 ----A---- C:\Windows\system32\admparse.dll
2012-11-14 13:10:46 ----A---- C:\Windows\system32\browserchoice.exe
2012-11-14 11:50:30 ----A---- C:\Windows\system32\ncsi.dll
2012-11-14 11:50:30 ----A---- C:\Windows\system32\drivers\tcpip.sys
2012-11-14 11:50:30 ----A---- C:\Windows\system32\drivers\netio.sys
2012-11-14 11:50:29 ----A---- C:\Windows\system32\nlasvc.dll
2012-11-14 11:50:29 ----A---- C:\Windows\system32\nlaapi.dll
2012-11-14 11:50:29 ----A---- C:\Windows\system32\netevent.dll
2012-11-14 11:50:29 ----A---- C:\Windows\system32\netcorehc.dll
2012-11-14 11:50:29 ----A---- C:\Windows\system32\iphlpsvc.dll
2012-11-14 11:50:29 ----A---- C:\Windows\system32\drivers\tcpipreg.sys
2012-11-14 11:50:29 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS
2012-11-14 11:50:21 ----A---- C:\Windows\system32\synceng.dll
2012-11-14 11:50:18 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2012-11-14 11:50:18 ----A---- C:\Windows\system32\dhcpcore6.dll
2012-11-14 11:50:15 ----A---- C:\Windows\system32\win32spl.dll
2012-11-14 11:50:15 ----A---- C:\Windows\system32\spoolsv.exe
2012-11-14 11:50:14 ----A---- C:\Windows\system32\drivers\RNDISMP.sys
2012-11-14 11:50:14 ----A---- C:\Windows\system32\drivers\ndis.sys
2012-11-14 11:47:54 ----A---- C:\Windows\system32\drivers\srvnet.sys
2012-11-14 11:47:54 ----A---- C:\Windows\system32\drivers\srv2.sys
2012-11-14 11:47:54 ----A---- C:\Windows\system32\drivers\srv.sys
2012-11-14 11:47:11 ----A---- C:\Windows\system32\cryptsvc.dll
2012-11-14 11:47:11 ----A---- C:\Windows\system32\cryptnet.dll
2012-11-14 11:47:11 ----A---- C:\Windows\system32\crypt32.dll
2012-11-14 11:46:53 ----A---- C:\Windows\system32\OxpsConverter.exe
2012-11-14 11:46:46 ----A---- C:\Windows\system32\mfc42u.dll
2012-11-14 11:46:46 ----A---- C:\Windows\system32\mfc42.dll
2012-11-14 11:46:43 ----A---- C:\Windows\system32\poqexec.exe
2012-11-14 11:46:42 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2012-11-14 11:46:40 ----A---- C:\Windows\system32\shell32.dll
2012-11-14 11:46:06 ----A---- C:\Windows\system32\drivers\afd.sys
2012-11-14 11:46:05 ----A---- C:\Windows\system32\ntdll.dll
2012-11-14 11:45:51 ----A---- C:\Windows\system32\wintrust.dll
2012-11-14 11:45:50 ----A---- C:\Windows\system32\xmllite.dll
2012-11-14 11:45:49 ----A---- C:\Windows\system32\prevhost.exe
2012-11-14 11:45:14 ----A---- C:\Windows\system32\fontsub.dll
2012-11-14 11:45:13 ----A---- C:\Windows\system32\dnsrslvr.dll
2012-11-14 11:45:13 ----A---- C:\Windows\system32\dnscacheugc.exe
2012-11-14 11:45:13 ----A---- C:\Windows\system32\dnsapi.dll
2012-11-14 11:44:18 ----A---- C:\Windows\system32\psisdecd.dll
2012-11-14 11:44:09 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2012-11-14 11:44:08 ----A---- C:\Windows\system32\umpnpmgr.dll
2012-11-14 11:44:07 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2012-11-14 11:44:07 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2012-11-14 11:44:07 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2012-11-14 11:44:06 ----A---- C:\Windows\system32\msxml6.dll
2012-11-14 11:44:06 ----A---- C:\Windows\system32\msxml3r.dll
2012-11-14 11:44:06 ----A---- C:\Windows\system32\msxml3.dll
2012-11-14 11:44:05 ----A---- C:\Windows\system32\schannel.dll
2012-11-14 11:44:05 ----A---- C:\Windows\system32\ncrypt.dll
2012-11-14 11:44:05 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2012-11-14 11:44:05 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-11-14 11:44:05 ----A---- C:\Windows\system32\drivers\cng.sys
2012-11-14 11:44:04 ----A---- C:\Windows\system32\oleaut32.dll
2012-11-14 11:44:04 ----A---- C:\Windows\system32\oleacc.dll
2012-11-14 11:44:00 ----A---- C:\Windows\system32\inetcomm.dll
2012-11-14 11:44:00 ----A---- C:\Windows\system32\drivers\ntfs.sys
2012-11-14 11:42:27 ----A---- C:\Windows\system32\packager.dll
2012-11-14 11:42:26 ----A---- C:\Windows\system32\cdosys.dll
2012-11-14 11:42:24 ----A---- C:\Windows\system32\tquery.dll
2012-11-14 11:42:24 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2012-11-14 11:42:24 ----A---- C:\Windows\system32\SearchIndexer.exe
2012-11-14 11:42:24 ----A---- C:\Windows\system32\SearchFilterHost.exe
2012-11-14 11:42:24 ----A---- C:\Windows\system32\mssvp.dll
2012-11-14 11:42:24 ----A---- C:\Windows\system32\mssrch.dll
2012-11-14 11:42:24 ----A---- C:\Windows\system32\mssphtb.dll
2012-11-14 11:42:24 ----A---- C:\Windows\system32\mssph.dll
2012-11-14 11:42:24 ----A---- C:\Windows\system32\msscntrs.dll
2012-11-14 11:42:21 ----A---- C:\Windows\system32\FXSCOVER.exe
2012-11-14 11:42:20 ----A---- C:\Windows\system32\srcore.dll
2012-11-14 11:42:19 ----A---- C:\Windows\system32\EncDec.dll
2012-11-14 11:42:18 ----A---- C:\Windows\system32\XpsPrint.dll
2012-11-14 11:42:18 ----A---- C:\Windows\system32\netapi32.dll
2012-11-14 11:42:18 ----A---- C:\Windows\system32\browser.dll
2012-11-14 11:42:18 ----A---- C:\Windows\system32\browcli.dll
2012-11-14 11:42:16 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2012-11-14 11:42:16 ----A---- C:\Windows\system32\csrsrv.dll
2012-11-14 11:42:15 ----A---- C:\Windows\system32\sbe.dll
2012-11-14 11:42:15 ----A---- C:\Windows\system32\CPFilters.dll
2012-11-14 11:42:14 ----A---- C:\Windows\system32\quartz.dll
2012-11-14 11:42:14 ----A---- C:\Windows\system32\qdvd.dll
2012-11-14 11:42:06 ----A---- C:\Windows\system32\kerberos.dll
2012-11-14 11:42:05 ----A---- C:\Windows\explorer.exe
2012-11-14 11:41:58 ----A---- C:\Windows\system32\ntoskrnl.exe
2012-11-14 11:41:58 ----A---- C:\Windows\system32\ntkrnlpa.exe
2012-11-14 11:41:48 ----A---- C:\Windows\system32\msi.dll
2012-11-14 11:41:48 ----A---- C:\Windows\system32\d3d10level9.dll
2012-11-14 11:39:20 ----A---- C:\Windows\system32\webio.dll
2012-11-14 11:39:20 ----A---- C:\Windows\system32\sspisrv.dll
2012-11-14 11:39:20 ----A---- C:\Windows\system32\sspicli.dll
2012-11-14 11:39:20 ----A---- C:\Windows\system32\secur32.dll
2012-11-14 11:39:20 ----A---- C:\Windows\system32\lsass.exe
2012-11-14 11:39:20 ----A---- C:\Windows\system32\lsasrv.dll
2012-11-14 11:39:19 ----A---- C:\Windows\system32\rdrmemptylst.exe
2012-11-14 11:39:19 ----A---- C:\Windows\system32\rdpwsx.dll
2012-11-14 11:39:19 ----A---- C:\Windows\system32\rdpcorekmts.dll
2012-11-14 11:39:19 ----A---- C:\Windows\system32\d3d10_1.dll
2012-11-14 11:39:18 ----A---- C:\Windows\system32\odbctrac.dll
2012-11-14 11:39:18 ----A---- C:\Windows\system32\odbcjt32.dll
2012-11-14 11:39:18 ----A---- C:\Windows\system32\odbccu32.dll
2012-11-14 11:39:18 ----A---- C:\Windows\system32\odbccr32.dll
2012-11-14 11:39:18 ----A---- C:\Windows\system32\odbccp32.dll
2012-11-14 11:39:17 ----A---- C:\Windows\system32\msvcrt.dll
2012-11-14 11:39:16 ----A---- C:\Windows\system32\profsvc.dll
2012-11-14 11:39:16 ----A---- C:\Windows\system32\drivers\partmgr.sys
2012-11-14 11:39:15 ----A---- C:\Windows\system32\localspl.dll
2012-11-14 11:39:11 ----A---- C:\Windows\system32\ntshrui.dll
2012-11-14 11:39:08 ----A---- C:\Windows\system32\DWrite.dll
2012-11-14 11:28:01 ----A---- C:\Windows\system32\drivers\bowser.sys
2012-11-14 10:22:10 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2012-11-14 07:48:27 ----D---- C:\ProgramData\PMB Files
2012-11-14 07:47:52 ----D---- C:\Program Files\Pando Networks
2012-11-13 19:54:16 ----D---- C:\Program Files\LogMeIn Hamachi
2012-11-13 19:47:21 ----D---- C:\ProgramData\NVIDIA
2012-11-13 19:42:41 ----D---- C:\Windows\system32\QuickTime
2012-11-13 19:42:35 ----D---- C:\ProgramData\TechSmith
2012-11-13 19:42:33 ----D---- C:\Program Files\QuickTime
2012-11-13 19:42:29 ----D---- C:\Program Files\Common Files\TechSmith Shared
2012-11-13 16:24:47 ----D---- C:\ProgramData\Adobe
2012-11-13 16:10:14 ----D---- C:\ProgramData\NVIDIA Corporation
2012-11-13 16:10:10 ----D---- C:\Program Files\NVIDIA Corporation
2012-11-13 15:58:01 ----D---- C:\Users\Kaspisek\AppData\Roaming\.minecraft
2012-11-13 15:57:46 ----D---- C:\ProgramData\Sun
2012-11-13 15:57:46 ----D---- C:\Program Files\Common Files\Java
2012-11-13 15:57:22 ----A---- C:\Windows\system32\npDeployJava1.dll
2012-11-13 15:57:22 ----A---- C:\Windows\system32\javaws.exe
2012-11-13 15:57:22 ----A---- C:\Windows\system32\deployJava1.dll
2012-11-13 15:57:16 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2012-11-13 15:57:16 ----A---- C:\Windows\system32\javaw.exe
2012-11-13 15:57:16 ----A---- C:\Windows\system32\java.exe
2012-11-13 15:57:08 ----D---- C:\Program Files\Java
2012-11-13 15:49:49 ----D---- C:\Program Files\CCleaner
2012-11-13 15:39:40 ----D---- C:\Windows\system32\RTCOM
2012-11-13 15:39:05 ----A---- C:\Windows\system32\WavesLib.dll
2012-11-13 15:39:05 ----A---- C:\Windows\system32\WavesGUILib.dll
2012-11-13 15:39:05 ----A---- C:\Windows\system32\tosade.dll
2012-11-13 15:39:05 ----A---- C:\Windows\system32\TepeqAPO.dll
2012-11-13 15:39:05 ----A---- C:\Windows\system32\tadefxapo2.dll
2012-11-13 15:39:05 ----A---- C:\Windows\system32\tadefxapo.dll
2012-11-13 15:39:05 ----A---- C:\Windows\system32\SRSWOW.dll
2012-11-13 15:39:05 ----A---- C:\Windows\system32\SRSTSXT.dll
2012-11-13 15:39:05 ----A---- C:\Windows\system32\SRSTSHD.dll
2012-11-13 15:39:05 ----A---- C:\Windows\system32\SRSHP360.dll
2012-11-13 15:39:05 ----A---- C:\Windows\system32\SFSS_APO.dll
2012-11-13 15:39:05 ----A---- C:\Windows\system32\SFNHK.dll
2012-11-13 15:39:05 ----A---- C:\Windows\system32\SFCOM.dll
2012-11-13 15:39:05 ----A---- C:\Windows\system32\SFAPO.dll
2012-11-13 15:39:04 ----A---- C:\Windows\system32\RtkPgExt.dll
2012-11-13 15:39:04 ----A---- C:\Windows\system32\RtkCoLDR.dll
2012-11-13 15:39:04 ----A---- C:\Windows\system32\RtkCoInstII.dll
2012-11-13 15:39:04 ----A---- C:\Windows\system32\RtkApoApi.dll
2012-11-13 15:39:04 ----A---- C:\Windows\system32\RtkAPO.dll
2012-11-13 15:39:04 ----A---- C:\Windows\system32\RTEEP32A.dll
2012-11-13 15:39:04 ----A---- C:\Windows\system32\RTEEL32A.dll
2012-11-13 15:39:04 ----A---- C:\Windows\system32\RTEEG32A.dll
2012-11-13 15:39:04 ----A---- C:\Windows\system32\RTEED32A.dll
2012-11-13 15:39:04 ----A---- C:\Windows\system32\RP3DHT32.dll
2012-11-13 15:39:04 ----A---- C:\Windows\system32\RP3DAA32.dll
2012-11-13 15:39:04 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2012-11-13 15:39:04 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2012-11-13 15:39:03 ----A---- C:\Windows\system32\RCoRes.dat
2012-11-13 15:39:03 ----A---- C:\Windows\system32\R4EEP32A.dll
2012-11-13 15:39:03 ----A---- C:\Windows\system32\R4EEL32A.dll
2012-11-13 15:39:03 ----A---- C:\Windows\system32\R4EEG32A.dll
2012-11-13 15:39:03 ----A---- C:\Windows\system32\R4EED32A.dll
2012-11-13 15:39:03 ----A---- C:\Windows\system32\R4EEA32A.dll
2012-11-13 15:39:03 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2012-11-13 15:39:03 ----A---- C:\Windows\system32\MaxxAudioRealtek2.dll
2012-11-13 15:39:03 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2012-11-13 15:39:03 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2012-11-13 15:39:03 ----A---- C:\Windows\system32\MaxxAudioAPOShell.dll
2012-11-13 15:39:03 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2012-11-13 15:39:02 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2012-11-13 15:39:02 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2012-11-13 15:39:02 ----A---- C:\Windows\system32\KAAPORT.dll
2012-11-13 15:39:02 ----A---- C:\Windows\system32\FMAPO.dll
2012-11-13 15:39:01 ----D---- C:\Program Files\Realtek
2012-11-13 15:39:01 ----A---- C:\Windows\system32\DTSVoiceClarityDLL.dll
2012-11-13 15:39:01 ----A---- C:\Windows\system32\DTSU2PREC32.dll
2012-11-13 15:39:01 ----A---- C:\Windows\system32\DTSU2PLFX32.dll
2012-11-13 15:39:01 ----A---- C:\Windows\system32\DTSU2PGFX32.dll
2012-11-13 15:39:01 ----A---- C:\Windows\system32\DTSSymmetryDLL.dll
2012-11-13 15:39:01 ----A---- C:\Windows\system32\DTSS2SpeakerDLL.dll
2012-11-13 15:39:01 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL.dll
2012-11-13 15:39:01 ----A---- C:\Windows\system32\DTSNeoPCDLL.dll
2012-11-13 15:39:01 ----A---- C:\Windows\system32\DTSLimiterDLL.dll
2012-11-13 15:39:01 ----A---- C:\Windows\system32\DTSLFXAPO.dll
2012-11-13 15:39:01 ----A---- C:\Windows\system32\DTSGFXAPONS.dll
2012-11-13 15:39:01 ----A---- C:\Windows\system32\DTSGFXAPO.dll
2012-11-13 15:39:01 ----A---- C:\Windows\system32\DTSGainCompensatorDLL.dll
2012-11-13 15:39:01 ----A---- C:\Windows\system32\DTSBoostDLL.dll
2012-11-13 15:39:01 ----A---- C:\Windows\system32\DTSBassEnhancementDLL.dll
2012-11-13 15:39:01 ----A---- C:\Windows\system32\AERTARen.dll
2012-11-13 15:39:01 ----A---- C:\Windows\system32\AERTACap.dll
2012-11-13 15:38:58 ----HD---- C:\Program Files\Temp
2012-11-13 15:38:57 ----A---- C:\Windows\RtlExUpd.dll
2012-11-13 15:38:54 ----D---- C:\Program Files\Common Files\InstallShield
2012-11-13 15:28:12 ----D---- C:\Users\Kaspisek\AppData\Roaming\WinRAR
2012-11-13 15:28:05 ----D---- C:\Program Files\WinRAR
2012-11-13 15:27:37 ----D---- C:\Users\Kaspisek\AppData\Roaming\AIMP3
2012-11-13 15:27:35 ----D---- C:\Program Files\AIMP3
2012-11-13 15:26:17 ----D---- C:\Program Files\GIMP 2
2012-11-13 15:25:55 ----D---- C:\Program Files\RocketDock
2012-11-13 15:25:37 ----D---- C:\Program Files\VS Revo Group
2012-11-13 15:15:52 ----D---- C:\Users\Kaspisek\AppData\Roaming\Skype
2012-11-13 15:15:44 ----RD---- C:\Program Files\Skype
2012-11-13 15:15:44 ----D---- C:\Program Files\Common Files\Skype
2012-11-13 15:15:40 ----D---- C:\ProgramData\Skype
2012-11-13 15:12:47 ----D---- C:\Users\Kaspisek\AppData\Roaming\Mozilla
2012-11-13 15:12:44 ----D---- C:\ProgramData\GG
2012-11-13 15:09:38 ----D---- C:\Users\Kaspisek\AppData\Roaming\GG
2012-11-13 15:05:25 ----D---- C:\Users\Kaspisek\AppData\Roaming\Avira
2012-11-13 14:59:52 ----A---- C:\Windows\system32\drivers\ssmdrv.sys
2012-11-13 14:59:51 ----A---- C:\Windows\system32\drivers\avkmgr.sys
2012-11-13 14:59:51 ----A---- C:\Windows\system32\drivers\avipbb.sys
2012-11-13 14:59:51 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2012-11-13 14:59:50 ----D---- C:\ProgramData\Avira
2012-11-13 14:59:50 ----D---- C:\Program Files\Avira
2012-11-13 14:53:14 ----D---- C:\ProgramData\Hewlett-Packard
2012-11-13 14:49:00 ----SHD---- C:\Windows\Installer
2012-11-13 14:44:25 ----D---- C:\Program Files\Google
2012-11-13 14:43:36 ----N---- C:\Windows\system32\MpSigStub.exe
2012-11-13 14:42:01 ----D---- C:\Users\Kaspisek\AppData\Roaming\Adobe
2012-11-13 14:41:48 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2012-11-13 14:41:47 ----D---- C:\Windows\system32\Macromed
2012-11-13 14:35:26 ----A---- C:\Windows\system32\rdpcore.dll
2012-11-13 14:35:26 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2012-11-13 14:32:19 ----A---- C:\Windows\system32\wups2.dll
2012-11-13 14:32:19 ----A---- C:\Windows\system32\wucltux.dll
2012-11-13 14:32:19 ----A---- C:\Windows\system32\wuaueng.dll
2012-11-13 14:32:19 ----A---- C:\Windows\system32\wuauclt.exe
2012-11-13 14:32:15 ----A---- C:\Windows\system32\wups.dll
2012-11-13 14:32:15 ----A---- C:\Windows\system32\wudriver.dll
2012-11-13 14:32:15 ----A---- C:\Windows\system32\wuapi.dll
2012-11-13 14:32:10 ----A---- C:\Windows\system32\wuwebv.dll
2012-11-13 14:32:10 ----A---- C:\Windows\system32\wuapp.exe
2012-11-13 14:28:47 ----A---- C:\Windows\Fast800.ini
2012-11-13 14:28:47 ----A---- C:\Windows\adidsl.ini
2012-11-13 14:28:41 ----A---- C:\Windows\adirasx64.exe
2012-11-13 14:28:41 ----A---- C:\Windows\adiras.ini
2012-11-13 14:28:41 ----A---- C:\Windows\adiras.exe
2012-11-13 14:28:40 ----A---- C:\Windows\system32\IPDETECT.EXE
2012-11-13 14:28:40 ----A---- C:\Windows\system32\adadix32.dll
2012-11-13 14:28:39 ----A---- C:\Windows\system32\unaddrv.x64.exe
2012-11-13 14:28:39 ----A---- C:\Windows\system32\unaddrv.exe
2012-11-13 14:28:39 ----A---- C:\Windows\system32\drivers\e4usbawx64.sys
2012-11-13 14:28:39 ----A---- C:\Windows\system32\drivers\e4usbaw.sys
2012-11-13 14:28:39 ----A---- C:\Windows\system32\drivers\e4ldrx64.sys
2012-11-13 14:28:39 ----A---- C:\Windows\system32\drivers\e4ldr.sys
2012-11-13 14:28:39 ----A---- C:\Windows\system32\drivers\adiusbawx64.sys
2012-11-13 14:28:39 ----A---- C:\Windows\system32\drivers\adiusbaw.sys
2012-11-13 14:28:39 ----A---- C:\Windows\system32\drivers\adildrx64.sys
2012-11-13 14:28:39 ----A---- C:\Windows\system32\drivers\adildr.sys
2012-11-13 14:28:39 ----A---- C:\Windows\system32\ADADIX2K.DLL
2012-11-13 14:28:39 ----A---- C:\Windows\system32\ADADIX16.DLL
2012-11-13 14:28:39 ----A---- C:\Windows\enddisk32.exe
2012-11-13 14:28:38 ----A---- C:\Windows\system32\drivers\cmvep.txt
2012-11-13 14:28:38 ----A---- C:\Windows\system32\drivers\cmvei.txt
2012-11-13 14:28:38 ----A---- C:\Windows\system32\drivers\cmv9p.txt
2012-11-13 14:28:38 ----A---- C:\Windows\system32\drivers\cmv9i.txt
2012-11-13 14:28:38 ----A---- C:\Windows\system32\drivers\cmv4p.txt
2012-11-13 14:28:38 ----A---- C:\Windows\system32\drivers\cmv4i.txt
2012-11-13 14:28:38 ----A---- C:\Windows\system32\drivers\cmv4.txt
2012-11-13 14:28:38 ----A---- C:\Windows\system32\drivers\CMV3p.txt
2012-11-13 14:28:38 ----A---- C:\Windows\system32\drivers\cmv.txt
2012-11-13 14:28:37 ----HD---- C:\Program Files\InstallShield Installation Information
2012-11-13 14:28:23 ----D---- C:\Program Files\SAGEM
2012-11-13 14:28:21 ----D---- C:\Users\Kaspisek\AppData\Roaming\InstallShield
2012-11-13 14:27:47 ----D---- C:\Users\Kaspisek\AppData\Roaming\Macromedia
2012-11-13 14:27:46 ----SHD---- C:\Windows\ftpcache
2012-11-13 14:21:51 ----D---- C:\Users\Kaspisek\AppData\Roaming\Identities
2012-11-13 14:21:39 ----D---- C:\Users\Kaspisek\AppData\Roaming\Media Center Programs
2012-11-13 14:21:38 ----SD---- C:\Users\Kaspisek\AppData\Roaming\Microsoft
2012-11-13 14:21:31 ----SHD---- C:\Recovery
2012-11-13 14:21:31 ----SHD---- C:\ProgramData\Ulubione
2012-11-13 14:21:31 ----SHD---- C:\ProgramData\Szablony
2012-11-13 14:21:31 ----SHD---- C:\ProgramData\Pulpit
2012-11-13 14:21:31 ----SHD---- C:\ProgramData\Menu Start
2012-11-13 14:21:31 ----SHD---- C:\ProgramData\Dokumenty
2012-11-13 14:21:31 ----SHD---- C:\ProgramData\Dane aplikacji
2012-11-13 14:14:38 ----D---- C:\Windows\SoftwareDistribution
2012-11-13 14:12:25 ----D---- C:\Windows\Prefetch
2012-11-13 14:11:53 ----ASH---- C:\pagefile.sys
2012-11-13 14:11:39 ----ASH---- C:\hiberfil.sys
2012-11-13 14:11:38 ----SHD---- C:\System Volume Information
2012-11-13 14:10:38 ----D---- C:\Windows\Panther
2012-11-13 14:10:26 ----RASH---- C:\BOOTSECT.BAK
2012-11-13 14:10:24 ----SHD---- C:\Boot

======List of files/folders modified in the last 3 months======

2012-12-31 19:12:15 ----D---- C:\Windows\Temp
2012-12-31 19:12:09 ----RD---- C:\Program Files
2012-12-31 18:04:27 ----D---- C:\Windows\Registration
2012-12-31 18:04:26 ----SD---- C:\ProgramData\Microsoft
2012-12-31 17:35:28 ----D---- C:\Windows\system32\config
2012-12-31 17:20:54 ----D---- C:\Windows
2012-12-31 17:10:08 ----D---- C:\Windows\inf
2012-12-31 15:47:08 ----HD---- C:\ProgramData
2012-12-30 22:55:07 ----D---- C:\Windows\System32
2012-12-29 18:10:39 ----D---- C:\Windows\system32\drivers
2012-12-29 18:10:25 ----D---- C:\Windows\system32\LogFiles
2012-12-29 18:10:09 ----D---- C:\Windows\system32\Tasks
2012-12-29 17:34:36 ----D---- C:\Windows\Logs
2012-12-28 16:40:28 ----RSD---- C:\Windows\Fonts
2012-12-26 21:34:17 ----RSD---- C:\Windows\assembly
2012-12-26 21:34:12 ----D---- C:\Windows\winsxs
2012-12-26 21:32:53 ----D---- C:\Program Files\Common Files\microsoft shared
2012-12-26 21:30:02 ----D---- C:\Program Files\Common Files
2012-12-26 18:30:56 ----D---- C:\Windows\system32\DriverStore
2012-12-26 18:30:01 ----D---- C:\Windows\system32\catroot
2012-12-26 18:10:34 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-12-26 14:10:51 ----RD---- C:\Users
2012-12-23 14:41:14 ----D---- C:\Windows\Microsoft.NET
2012-12-20 22:50:26 ----A---- C:\Windows\win.ini
2012-12-20 22:50:25 ----D---- C:\Program Files\Common Files\System
2012-12-20 14:56:14 ----D---- C:\Windows\system32\catroot2
2012-12-19 17:33:12 ----D---- C:\Windows\rescache
2012-12-19 13:01:53 ----D---- C:\Windows\system32\NDF
2012-12-19 12:58:04 ----D---- C:\Windows\system32\pl-PL
2012-12-17 17:51:48 ----D---- C:\Windows\debug
2012-12-16 17:50:42 ----D---- C:\Program Files\MSBuild
2012-12-16 17:50:26 ----D---- C:\Windows\ShellNew
2012-12-13 08:29:59 ----D---- C:\Windows\system32\migration
2012-12-13 08:29:58 ----D---- C:\Program Files\Internet Explorer
2012-12-09 17:20:48 ----D---- C:\Windows\LiveKernelReports
2012-12-01 22:09:43 ----D---- C:\Windows\system32\drivers\etc
2012-12-01 11:59:58 ----D---- C:\Windows\Tasks
2012-11-29 15:33:24 ----D---- C:\Windows\system32\wdi
2012-11-28 22:25:01 ----D---- C:\Windows\AppPatch
2012-11-20 14:53:20 ----D---- C:\Windows\system32\en-US
2012-11-14 21:34:49 ----D---- C:\Windows\ehome
2012-11-14 21:34:47 ----D---- C:\Program Files\Windows Journal
2012-11-14 21:34:45 ----D---- C:\Windows\PolicyDefinitions
2012-11-14 21:34:40 ----D---- C:\Windows\system32\wbem
2012-11-14 21:34:40 ----D---- C:\Windows\system32\drivers\pl-PL
2012-11-13 16:10:33 ----D---- C:\Windows\Help
2012-11-13 14:28:28 ----D---- C:\Windows\system32\restore
2012-11-13 14:26:26 ----D---- C:\Windows\system32\CodeIntegrity
2012-11-13 14:21:47 ----SHD---- C:\$Recycle.Bin
2012-11-13 14:21:31 ----D---- C:\Windows\system32\Recovery
2012-11-13 14:21:31 ----D---- C:\Program Files\Windows NT
2012-11-13 14:14:36 ----D---- C:\Windows\system32\sysprep
2012-11-13 14:13:31 ----D---- C:\Windows\system32\drivers\UMDF
2012-11-13 14:12:22 ----D---- C:\Windows\CSC
2012-10-02 23:20:00 ----A---- C:\Windows\system32\nvd3dum.dll
2012-10-02 23:20:00 ----A---- C:\Windows\system32\nvapi.dll
2012-10-02 20:29:42 ----A---- C:\Windows\system32\nvvsvc.exe
2012-10-02 20:29:41 ----A---- C:\Windows\system32\nvshext.dll
2012-10-02 20:29:41 ----A---- C:\Windows\system32\nvmctray.dll
2012-10-02 20:29:22 ----A---- C:\Windows\system32\nvsvc.dll
2012-10-02 20:28:53 ----A---- C:\Windows\system32\nvcpl.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2012-12-11 134336]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2012-11-07 36552]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-11-28 242240]
R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2012-08-27 28520]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2012-12-11 83944]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 e4usbaw;USB ADSL2 WAN Adapter; C:\Windows\system32\DRIVERS\e4usbaw.sys [2007-01-04 104344]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2012-06-19 3240400]
R3 NVENETFD;Sterownik kontrolera sieci NVIDIA nForce; C:\Windows\system32\DRIVERS\nvm62x32.sys [2009-07-13 347264]
R3 tap0901t;TAP-Win32 Adapter V9 (Tunngle); C:\Windows\system32\DRIVERS\tap0901t.sys [2009-09-16 27136]
R3 usbscan;Sterownik skanera USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S2 E4LOADER;General Purpose USB Driver (e4ldr.sys); C:\Windows\System32\Drivers\e4ldr.sys [2007-01-04 69656]
S2 ousbehci;OrangeWare USB Enhanced Host Controller Service; C:\Windows\System32\Drivers\ousbehci.sys [2005-09-29 45824]
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2012-10-28 63616]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
S3 libusb0;LibUsb-Win32 - Kernel Driver 08/27/2006, 0.1.12.0; C:\Windows\system32\DRIVERS\libusb0.sys [2009-07-29 28672]
S3 ousb2hub;OrangeWare USB 2.0 Root Hub Support; C:\Windows\system32\DRIVERS\ousb2hub.sys [2005-09-29 56960]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2012-12-11 85280]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2012-12-11 109344]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2012-11-12 1431472]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-10-02 645992]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-10-02 1258856]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2012-12-30 75136]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 1713904]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Usługa Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-13 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-10-19 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-23 250808]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 gupdatem;Usługa Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-11-13 116648]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; E:\Microsoft ofice\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-11-29 115168]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2012-12-20 541760]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 TunngleService;TunngleService; C:\Program Files\Tunngle\TnglCtrl.exe [2012-11-26 745368]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-11-19 1343400]

-----------------EOF-----------------[/log]

Natsuki Kuga
komentarz
komentarz

Pokaż jeszcze log z [url=http://download.bleepingcomputer.com/farbar/FSS.exe][b]Farbar Service Scanner.[/b][/url] (zaznacz wszystkie opcje i kliknij Scan)

Kaspisek
komentarz
komentarz (edytowane)

[log]

Farbar Service Scanner Version: 23-12-2012
Ran by Kaspisek (administrator) on 03-01-2013 at 13:56:02
Running from "C:\Users\Kaspisek\Downloads"
Windows 7 Professional Service Pack 1 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
WAN connected
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcore.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys
[2012-11-14 11:50] - [2012-10-03 17:58] - 1293680 ____A (Microsoft Corporation) E23A56F843E2AEBBB209D0ACCA73C640

C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\iphlpsvc.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

[/log]

Kaspisek
komentarz
komentarz

[log]

14:54:37.0886 3304  TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
14:54:40.0210 3304  ============================================================
14:54:40.0210 3304  Current date / time: 2013/01/07 14:54:40.0210
14:54:40.0210 3304  SystemInfo:
14:54:40.0210 3304  
14:54:40.0210 3304  OS Version: 6.1.7601 ServicePack: 1.0
14:54:40.0210 3304  Product type: Workstation
14:54:40.0210 3304  ComputerName: KASPIS
14:54:40.0210 3304  UserName: Kaspisek
14:54:40.0210 3304  Windows directory: C:\Windows
14:54:40.0210 3304  System windows directory: C:\Windows
14:54:40.0210 3304  Processor architecture: Intel x86
14:54:40.0210 3304  Number of processors: 2
14:54:40.0210 3304  Page size: 0x1000
14:54:40.0210 3304  Boot type: Normal boot
14:54:40.0210 3304  ============================================================
14:54:42.0909 3304  BG loaded
14:54:44.0228 3304  Drive \Device\Harddisk0\DR0 - Size: 0x3A38A25E00 (232.88 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
14:54:44.0242 3304  ============================================================
14:54:44.0242 3304  \Device\Harddisk0\DR0:
14:54:44.0244 3304  MBR partitions:
14:54:44.0244 3304  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x4B220E9
14:54:44.0256 3304  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x4B22167, BlocksNum 0xC34F28D
14:54:44.0276 3304  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x10E71433, BlocksNum 0xC34F28D
14:54:44.0276 3304  ============================================================
14:54:44.0315 3304  C: <-> \Device\Harddisk0\DR0\Partition1
14:54:44.0334 3304  D: <-> \Device\Harddisk0\DR0\Partition2
14:54:44.0366 3304  E: <-> \Device\Harddisk0\DR0\Partition3
14:54:44.0366 3304  ============================================================
14:54:44.0366 3304  Initialize success
14:54:44.0366 3304  ============================================================
14:57:18.0547 3768  ============================================================
14:57:18.0547 3768  Scan started
14:57:18.0547 3768  Mode: Manual; SigCheck; TDLFS;
14:57:18.0547 3768  ============================================================
14:57:19.0699 3768  ================ Scan system memory ========================
14:57:19.0699 3768  Scan interrupted by user!
14:57:19.0699 3768  ================ Scan services =============================
14:57:19.0709 3768  Scan interrupted by user!
14:57:19.0709 3768  ================ Scan global ===============================
14:57:19.0709 3768  Scan interrupted by user!
14:57:19.0709 3768  ================ Scan MBR ==================================
14:57:19.0709 3768  Scan interrupted by user!
14:57:19.0709 3768  ================ Scan VBR ==================================
14:57:19.0709 3768  Scan interrupted by user!
14:57:19.0709 3768  ================ Scan active images ========================
14:57:19.0709 3768  Scan interrupted by user!
14:57:19.0709 3768  ============================================================
14:57:19.0709 3768  Scan finished
14:57:19.0709 3768  ============================================================
14:57:19.0739 2008  Detected object count: 0
14:57:19.0739 2008  Actual detected object count: 0
14:57:21.0451 0316  ============================================================
14:57:21.0451 0316  Scan started
14:57:21.0451 0316  Mode: Manual; SigCheck; TDLFS;
14:57:21.0451 0316  ============================================================
14:57:21.0654 0316  ================ Scan system memory ========================
14:57:21.0654 0316  System memory - ok
14:57:21.0654 0316  ================ Scan services =============================
14:57:21.0810 0316  [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
14:57:21.0904 0316  1394ohci - ok
14:57:21.0935 0316  [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
14:57:21.0951 0316  ACPI - ok
14:57:21.0982 0316  [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
14:57:22.0029 0316  AcpiPmi - ok
14:57:22.0122 0316  [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
14:57:22.0153 0316  AdobeARMservice - ok
14:57:22.0185 0316  [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
14:57:22.0231 0316  AdobeFlashPlayerUpdateSvc - ok
14:57:22.0278 0316  [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
14:57:22.0325 0316  adp94xx - ok
14:57:22.0356 0316  [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
14:57:22.0403 0316  adpahci - ok
14:57:22.0434 0316  [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
14:57:22.0465 0316  adpu320 - ok
14:57:22.0512 0316  [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
14:57:22.0637 0316  AeLookupSvc - ok
14:57:22.0684 0316  [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD             C:\Windows\system32\drivers\afd.sys
14:57:22.0746 0316  AFD - ok
14:57:22.0793 0316  [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440          C:\Windows\system32\drivers\agp440.sys
14:57:22.0824 0316  agp440 - ok
14:57:22.0871 0316  [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
14:57:22.0902 0316  aic78xx - ok
14:57:22.0949 0316  [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG             C:\Windows\System32\alg.exe
14:57:23.0043 0316  ALG - ok
14:57:23.0074 0316  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide          C:\Windows\system32\drivers\aliide.sys
14:57:23.0105 0316  aliide - ok
14:57:23.0136 0316  [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
14:57:23.0183 0316  amdagp - ok
14:57:23.0183 0316  [ CD5914170297126B6266860198D1D4F0 ] amdide          C:\Windows\system32\drivers\amdide.sys
14:57:23.0214 0316  amdide - ok
14:57:23.0277 0316  [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
14:57:23.0308 0316  AmdK8 - ok
14:57:23.0323 0316  [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
14:57:23.0433 0316  AmdPPM - ok
14:57:23.0495 0316  [ D320BF87125326F996D4904FE24300FC ] amdsata         C:\Windows\system32\drivers\amdsata.sys
14:57:23.0526 0316  amdsata - ok
14:57:23.0589 0316  [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
14:57:23.0635 0316  amdsbs - ok
14:57:23.0667 0316  [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
14:57:23.0682 0316  amdxata - ok
14:57:23.0745 0316  [ 136A87F8C0CBA931ED6184ECF63265E9 ] AmUStor         C:\Windows\system32\drivers\AmUStor.SYS
14:57:23.0979 0316  AmUStor - ok
14:57:24.0041 0316  [ D89562A6AE8E07A457452E5B5560EB43 ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
14:57:24.0057 0316  AntiVirSchedulerService - ok
14:57:24.0072 0316  [ E953EB70B3C4F0BA108C35D45420B86B ] AntiVirService  C:\Program Files\Avira\AntiVir Desktop\avguard.exe
14:57:24.0103 0316  AntiVirService - ok
14:57:24.0135 0316  [ AEA177F783E20150ACE5383EE368DA19 ] AppID           C:\Windows\system32\drivers\appid.sys
14:57:24.0197 0316  AppID - ok
14:57:24.0228 0316  [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
14:57:24.0275 0316  AppIDSvc - ok
14:57:24.0306 0316  [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo         C:\Windows\System32\appinfo.dll
14:57:24.0369 0316  Appinfo - ok
14:57:24.0400 0316  [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt         C:\Windows\System32\appmgmts.dll
14:57:24.0462 0316  AppMgmt - ok
14:57:24.0493 0316  [ 2932004F49677BD84DBC72EDB754FFB3 ] arc             C:\Windows\system32\drivers\arc.sys
14:57:24.0525 0316  arc - ok
14:57:24.0556 0316  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
14:57:24.0603 0316  arcsas - ok
14:57:24.0649 0316  [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
14:57:24.0743 0316  AsyncMac - ok
14:57:24.0759 0316  [ 338C86357871C167A96AB976519BF59E ] atapi           C:\Windows\system32\drivers\atapi.sys
14:57:24.0790 0316  atapi - ok
14:57:24.0837 0316  [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:57:24.0915 0316  AudioEndpointBuilder - ok
14:57:24.0946 0316  [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
14:57:24.0977 0316  Audiosrv - ok
14:57:25.0008 0316  [ A5C175039B1D6D85D0E79F5855828E4D ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
14:57:25.0039 0316  avgntflt - ok
14:57:25.0055 0316  [ 0189056DDBF23C7DEF09D2B5999C5405 ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
14:57:25.0086 0316  avipbb - ok
14:57:25.0102 0316  [ FFB78D74E1EA5F811341A6E7AC547A46 ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
14:57:25.0133 0316  avkmgr - ok
14:57:25.0164 0316  [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
14:57:25.0227 0316  AxInstSV - ok
14:57:25.0273 0316  [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv         C:\Windows\system32\drivers\bxvbdx.sys
14:57:25.0383 0316  b06bdrv - ok
14:57:25.0398 0316  [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
14:57:25.0554 0316  b57nd60x - ok
14:57:25.0663 0316  [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC          C:\Windows\System32\bdesvc.dll
14:57:25.0710 0316  BDESVC - ok
14:57:25.0741 0316  [ 505506526A9D467307B3C393DEDAF858 ] Beep            C:\Windows\system32\drivers\Beep.sys
14:57:25.0804 0316  Beep - ok
14:57:25.0897 0316  [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE             C:\Windows\System32\bfe.dll
14:57:26.0007 0316  BFE - ok
14:57:26.0038 0316  [ E585445D5021971FAE10393F0F1C3961 ] BITS            C:\Windows\System32\qmgr.dll
14:57:26.0116 0316  BITS - ok
14:57:26.0131 0316  [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
14:57:26.0209 0316  blbdrive - ok
14:57:26.0241 0316  [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
14:57:26.0319 0316  bowser - ok
14:57:26.0350 0316  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
14:57:26.0420 0316  BrFiltLo - ok
14:57:26.0441 0316  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
14:57:26.0508 0316  BrFiltUp - ok
14:57:26.0543 0316  [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser         C:\Windows\System32\browser.dll
14:57:26.0637 0316  Browser - ok
14:57:26.0710 0316  [ 845B8CE732E67F3B4133164868C666EA ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
14:57:26.0889 0316  Brserid - ok
14:57:26.0913 0316  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
14:57:26.0978 0316  BrSerWdm - ok
14:57:27.0014 0316  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
14:57:27.0099 0316  BrUsbMdm - ok
14:57:27.0106 0316  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
14:57:27.0199 0316  BrUsbSer - ok
14:57:27.0221 0316  [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
14:57:27.0271 0316  BTHMODEM - ok
14:57:27.0307 0316  [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv         C:\Windows\system32\bthserv.dll
14:57:27.0445 0316  bthserv - ok
14:57:27.0475 0316  [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
14:57:27.0581 0316  cdfs - ok
14:57:27.0610 0316  [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
14:57:27.0777 0316  cdrom - ok
14:57:27.0811 0316  [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc     C:\Windows\System32\certprop.dll
14:57:27.0865 0316  CertPropSvc - ok
14:57:27.0913 0316  [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass        C:\Windows\system32\drivers\circlass.sys
14:57:27.0965 0316  circlass - ok
14:57:27.0992 0316  [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS            C:\Windows\system32\CLFS.sys
14:57:28.0036 0316  CLFS - ok
14:57:28.0106 0316  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:57:28.0163 0316  clr_optimization_v2.0.50727_32 - ok
14:57:28.0308 0316  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:57:28.0528 0316  clr_optimization_v4.0.30319_32 - ok
14:57:28.0565 0316  [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
14:57:28.0614 0316  CmBatt - ok
14:57:28.0626 0316  [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
14:57:28.0676 0316  cmdide - ok
14:57:28.0736 0316  [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG             C:\Windows\system32\Drivers\cng.sys
14:57:28.0835 0316  CNG - ok
14:57:28.0871 0316  [ A6023D3823C37043986713F118A89BEE ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
14:57:28.0920 0316  Compbatt - ok
14:57:28.0942 0316  [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
14:57:29.0016 0316  CompositeBus - ok
14:57:29.0041 0316  COMSysApp - ok
14:57:29.0056 0316  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
14:57:29.0099 0316  crcdisk - ok
14:57:29.0150 0316  [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc        C:\Windows\system32\cryptsvc.dll
14:57:29.0210 0316  CryptSvc - ok
14:57:29.0246 0316  [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC             C:\Windows\system32\drivers\csc.sys
14:57:29.0300 0316  CSC - ok
14:57:29.0328 0316  [ 15F93B37F6801943360D9EB42485D5D3 ] CscService      C:\Windows\System32\cscsvc.dll
14:57:29.0377 0316  CscService - ok
14:57:29.0409 0316  [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch      C:\Windows\system32\rpcss.dll
14:57:29.0463 0316  DcomLaunch - ok
14:57:29.0494 0316  [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc       C:\Windows\System32\defragsvc.dll
14:57:29.0568 0316  defragsvc - ok
14:57:29.0600 0316  [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
14:57:29.0648 0316  DfsC - ok
14:57:29.0686 0316  [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp            C:\Windows\system32\dhcpcore.dll
14:57:29.0731 0316  Dhcp - ok
14:57:29.0747 0316  [ 1A050B0274BFB3890703D490F330C0DA ] discache        C:\Windows\system32\drivers\discache.sys
14:57:29.0801 0316  discache - ok
14:57:29.0836 0316  [ 565003F326F99802E68CA78F2A68E9FF ] Disk            C:\Windows\system32\drivers\disk.sys
14:57:29.0863 0316  Disk - ok
14:57:29.0896 0316  [ 2A958EF85DB1B61FFCA65044FA4BCE9E ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
14:57:29.0941 0316  dmvsc - ok
14:57:29.0966 0316  [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
14:57:30.0019 0316  Dnscache - ok
14:57:30.0047 0316  [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc         C:\Windows\System32\dot3svc.dll
14:57:30.0110 0316  dot3svc - ok
14:57:30.0119 0316  [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS             C:\Windows\system32\dps.dll
14:57:30.0163 0316  DPS - ok
14:57:30.0194 0316  [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
14:57:30.0224 0316  drmkaud - ok
14:57:30.0260 0316  [ 687AF6BB383885FF6A64071B189A7F3E ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
14:57:30.0279 0316  dtsoftbus01 - ok
14:57:30.0327 0316  [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
14:57:30.0378 0316  DXGKrnl - ok
14:57:30.0412 0316  [ D32E68DA595ACD9FADCC110BEE196ACE ] E4LOADER        C:\Windows\system32\Drivers\e4ldr.sys
14:57:30.0434 0316  E4LOADER - ok
14:57:30.0450 0316  [ F7958C94559D5030F5023F14D46B9F2F ] e4usbaw         C:\Windows\system32\DRIVERS\e4usbaw.sys
14:57:30.0475 0316  e4usbaw - ok
14:57:30.0494 0316  [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost         C:\Windows\System32\eapsvc.dll
14:57:30.0546 0316  EapHost - ok
14:57:30.0638 0316  [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv           C:\Windows\system32\drivers\evbdx.sys
14:57:30.0825 0316  ebdrv - ok
14:57:30.0853 0316  [ 81951F51E318AECC2D68559E47485CC4 ] EFS             C:\Windows\System32\lsass.exe
14:57:30.0901 0316  EFS - ok
14:57:30.0964 0316  [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
14:57:31.0050 0316  ehRecvr - ok
14:57:31.0062 0316  [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched         C:\Windows\ehome\ehsched.exe
14:57:31.0102 0316  ehSched - ok
14:57:31.0196 0316  [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor         C:\Windows\system32\drivers\elxstor.sys
14:57:31.0296 0316  elxstor - ok
14:57:31.0313 0316  [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
14:57:31.0352 0316  ErrDev - ok
14:57:31.0415 0316  [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem     C:\Windows\system32\es.dll
14:57:31.0506 0316  EventSystem - ok
14:57:31.0529 0316  [ 2DC9108D74081149CC8B651D3A26207F ] exfat           C:\Windows\system32\drivers\exfat.sys
14:57:31.0577 0316  exfat - ok
14:57:31.0601 0316  [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
14:57:31.0660 0316  fastfat - ok
14:57:31.0698 0316  [ 967EA5B213E9984CBE270205DF37755B ] Fax             C:\Windows\system32\fxssvc.exe
14:57:31.0744 0316  Fax - ok
14:57:31.0765 0316  [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
14:57:31.0803 0316  fdc - ok
14:57:31.0834 0316  [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost         C:\Windows\system32\fdPHost.dll
14:57:31.0888 0316  fdPHost - ok
14:57:31.0907 0316  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub        C:\Windows\system32\fdrespub.dll
14:57:31.0952 0316  FDResPub - ok
14:57:31.0970 0316  [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
14:57:31.0999 0316  FileInfo - ok
14:57:32.0013 0316  [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
14:57:32.0069 0316  Filetrace - ok
14:57:32.0102 0316  [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
14:57:32.0142 0316  flpydisk - ok
14:57:32.0167 0316  [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
14:57:32.0198 0316  FltMgr - ok
14:57:32.0240 0316  [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache       C:\Windows\system32\FntCache.dll
14:57:32.0309 0316  FontCache - ok
14:57:32.0353 0316  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
14:57:32.0378 0316  FontCache3.0.0.0 - ok
14:57:32.0396 0316  [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
14:57:32.0419 0316  FsDepends - ok
14:57:32.0451 0316  [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
14:57:32.0478 0316  Fs_Rec - ok
14:57:32.0512 0316  [ 8A73E79089B282100B9393B644CB853B ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
14:57:32.0559 0316  fvevol - ok
14:57:32.0585 0316  [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
14:57:32.0612 0316  gagp30kx - ok
14:57:32.0649 0316  [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc           C:\Windows\System32\gpsvc.dll
14:57:32.0717 0316  gpsvc - ok
14:57:32.0747 0316  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
14:57:32.0763 0316  gupdate - ok
14:57:32.0772 0316  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
14:57:32.0789 0316  gupdatem - ok
14:57:32.0838 0316  [ 833051C6C6C42117191935F734CFBD97 ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
14:57:32.0860 0316  hamachi - ok
14:57:32.0921 0316  [ F838DF24EBBBCBB71086E1C48D885FE0 ] Hamachi2Svc     C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
14:57:32.0981 0316  Hamachi2Svc - ok
14:57:33.0017 0316  [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
14:57:33.0070 0316  hcw85cir - ok
14:57:33.0108 0316  [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:57:33.0180 0316  HdAudAddService - ok
14:57:33.0196 0316  [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
14:57:33.0223 0316  HDAudBus - ok
14:57:33.0268 0316  [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
14:57:33.0304 0316  HidBatt - ok
14:57:33.0330 0316  [ 89448F40E6DF260C206A193A4683BA78 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
14:57:33.0383 0316  HidBth - ok
14:57:33.0421 0316  [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr           C:\Windows\system32\drivers\hidir.sys
14:57:33.0463 0316  HidIr - ok
14:57:33.0499 0316  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv         C:\Windows\system32\hidserv.dll
14:57:33.0571 0316  hidserv - ok
14:57:33.0669 0316  [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
14:57:33.0741 0316  HidUsb - ok
14:57:33.0783 0316  [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc          C:\Windows\system32\kmsvc.dll
14:57:33.0844 0316  hkmsvc - ok
14:57:33.0892 0316  [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:57:33.0973 0316  HomeGroupListener - ok
14:57:34.0006 0316  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:57:34.0057 0316  HomeGroupProvider - ok
14:57:34.0092 0316  [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
14:57:34.0119 0316  HpSAMD - ok
14:57:34.0152 0316  [ 871917B07A141BFF43D76D8844D48106 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
14:57:34.0217 0316  HTTP - ok
14:57:34.0233 0316  [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
14:57:34.0259 0316  hwpolicy - ok
14:57:34.0289 0316  [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
14:57:34.0332 0316  i8042prt - ok
14:57:34.0361 0316  [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
14:57:34.0403 0316  iaStorV - ok
14:57:34.0460 0316  [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:57:34.0568 0316  idsvc - ok
14:57:34.0598 0316  [ 4173FF5708F3236CF25195FECD742915 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
14:57:34.0624 0316  iirsp - ok
14:57:34.0656 0316  [ F95622F161474511B8D80D6B093AA610 ] IKEEXT          C:\Windows\System32\ikeext.dll
14:57:34.0728 0316  IKEEXT - ok
14:57:34.0828 0316  [ F2C17D2C3D70C389193D9954E375E5E3 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
14:57:34.0930 0316  IntcAzAudAddService - ok
14:57:34.0947 0316  [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide        C:\Windows\system32\drivers\intelide.sys
14:57:34.0973 0316  intelide - ok
14:57:34.0998 0316  [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm        C:\Windows\system32\drivers\intelppm.sys
14:57:35.0037 0316  intelppm - ok
14:57:35.0066 0316  [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
14:57:35.0128 0316  IPBusEnum - ok
14:57:35.0147 0316  [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:57:35.0198 0316  IpFilterDriver - ok
14:57:35.0240 0316  [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
14:57:35.0300 0316  iphlpsvc - ok
14:57:35.0322 0316  [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
14:57:35.0353 0316  IPMIDRV - ok
14:57:35.0367 0316  [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
14:57:35.0425 0316  IPNAT - ok
14:57:35.0448 0316  [ 42996CFF20A3084A56017B7902307E9F ] IRENUM          C:\Windows\system32\drivers\irenum.sys
14:57:35.0487 0316  IRENUM - ok
14:57:35.0516 0316  [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
14:57:35.0542 0316  isapnp - ok
14:57:35.0562 0316  [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
14:57:35.0621 0316  iScsiPrt - ok
14:57:35.0652 0316  [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
14:57:35.0678 0316  kbdclass - ok
14:57:35.0697 0316  [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
14:57:35.0732 0316  kbdhid - ok
14:57:35.0751 0316  [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso          C:\Windows\system32\lsass.exe
14:57:35.0778 0316  KeyIso - ok
14:57:35.0813 0316  [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
14:57:35.0840 0316  KSecDD - ok
14:57:35.0861 0316  [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
14:57:35.0908 0316  KSecPkg - ok
14:57:35.0937 0316  [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm           C:\Windows\system32\msdtckrm.dll
14:57:36.0007 0316  KtmRm - ok
14:57:36.0037 0316  [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer    C:\Windows\system32\srvsvc.dll
14:57:36.0121 0316  LanmanServer - ok
14:57:36.0138 0316  [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:57:36.0201 0316  LanmanWorkstation - ok
14:57:36.0237 0316  [ BD3B46FE838B468254415C5F95008B4F ] libusb0         C:\Windows\system32\DRIVERS\libusb0.sys
14:57:36.0273 0316  libusb0 ( UnsignedFile.Multi.Generic ) - warning
14:57:36.0273 0316  libusb0 - detected UnsignedFile.Multi.Generic (1)
14:57:39.0255 0316  [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
14:57:39.0331 0316  lltdio - ok
14:57:39.0386 0316  [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
14:57:39.0490 0316  lltdsvc - ok
14:57:39.0525 0316  [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts         C:\Windows\System32\lmhsvc.dll
14:57:39.0583 0316  lmhosts - ok
14:57:39.0624 0316  [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
14:57:39.0657 0316  LSI_FC - ok
14:57:39.0677 0316  [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
14:57:39.0717 0316  LSI_SAS - ok
14:57:39.0735 0316  [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
14:57:39.0778 0316  LSI_SAS2 - ok
14:57:39.0825 0316  [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
14:57:39.0865 0316  LSI_SCSI - ok
14:57:39.0885 0316  [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv           C:\Windows\system32\drivers\luafv.sys
14:57:39.0945 0316  luafv - ok
14:57:39.0975 0316  [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
14:57:40.0005 0316  Mcx2Svc - ok
14:57:40.0035 0316  [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas         C:\Windows\system32\drivers\megasas.sys
14:57:40.0065 0316  megasas - ok
14:57:40.0085 0316  [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
14:57:40.0135 0316  MegaSR - ok
14:57:40.0205 0316  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service E:\Microsoft ofice\Office12\GrooveAuditService.exe
14:57:40.0235 0316  Microsoft Office Groove Audit Service - ok
14:57:40.0275 0316  [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS           C:\Windows\system32\mmcss.dll
14:57:40.0335 0316  MMCSS - ok
14:57:40.0355 0316  [ F001861E5700EE84E2D4E52C712F4964 ] Modem           C:\Windows\system32\drivers\modem.sys
14:57:40.0405 0316  Modem - ok
14:57:40.0435 0316  [ 79D10964DE86B292320E9DFE02282A23 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
14:57:40.0465 0316  monitor - ok
14:57:40.0495 0316  [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
14:57:40.0525 0316  mouclass - ok
14:57:40.0555 0316  [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid          C:\Windows\system32\drivers\mouhid.sys
14:57:40.0585 0316  mouhid - ok
14:57:40.0595 0316  [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
14:57:40.0625 0316  mountmgr - ok
14:57:40.0695 0316  [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
14:57:40.0725 0316  MozillaMaintenance - ok
14:57:40.0745 0316  [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio            C:\Windows\system32\drivers\mpio.sys
14:57:40.0785 0316  mpio - ok
14:57:40.0805 0316  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
14:57:40.0865 0316  mpsdrv - ok
14:57:40.0895 0316  [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc          C:\Windows\system32\mpssvc.dll
14:57:40.0995 0316  MpsSvc - ok
14:57:41.0015 0316  [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
14:57:41.0055 0316  MRxDAV - ok
14:57:41.0095 0316  [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
14:57:41.0145 0316  mrxsmb - ok
14:57:41.0165 0316  [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:57:41.0195 0316  mrxsmb10 - ok
14:57:41.0215 0316  [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:57:41.0255 0316  mrxsmb20 - ok
14:57:41.0285 0316  [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci          C:\Windows\system32\drivers\msahci.sys
14:57:41.0305 0316  msahci - ok
14:57:41.0325 0316  [ 55055F8AD8BE27A64C831322A780A228 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
14:57:41.0355 0316  msdsm - ok
14:57:41.0385 0316  [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC           C:\Windows\System32\msdtc.exe
14:57:41.0425 0316  MSDTC - ok
14:57:41.0465 0316  [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs            C:\Windows\system32\drivers\Msfs.sys
14:57:41.0505 0316  Msfs - ok
14:57:41.0525 0316  [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
14:57:41.0565 0316  mshidkmdf - ok
14:57:41.0575 0316  [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
14:57:41.0605 0316  msisadrv - ok
14:57:41.0635 0316  [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
14:57:41.0695 0316  MSiSCSI - ok
14:57:41.0705 0316  msiserver - ok
14:57:41.0735 0316  [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
14:57:41.0795 0316  MSKSSRV - ok
14:57:41.0815 0316  [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
14:57:41.0865 0316  MSPCLOCK - ok
14:57:41.0905 0316  [ F456E973590D663B1073E9C463B40932 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
14:57:41.0965 0316  MSPQM - ok
14:57:41.0985 0316  [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
14:57:42.0035 0316  MsRPC - ok
14:57:42.0065 0316  [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
14:57:42.0075 0316  mssmbios - ok
14:57:42.0095 0316  [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
14:57:42.0145 0316  MSTEE - ok
14:57:42.0155 0316  [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
14:57:42.0216 0316  MTConfig - ok
14:57:42.0237 0316  [ 159FAD02F64E6381758C990F753BCC80 ] Mup             C:\Windows\system32\Drivers\mup.sys
14:57:42.0267 0316  Mup - ok
14:57:42.0302 0316  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent        C:\Windows\system32\qagentRT.dll
14:57:42.0349 0316  napagent - ok
14:57:42.0379 0316  [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
14:57:42.0429 0316  NativeWifiP - ok
14:57:42.0479 0316  [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS            C:\Windows\system32\drivers\ndis.sys
14:57:42.0519 0316  NDIS - ok
14:57:42.0549 0316  [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
14:57:42.0599 0316  NdisCap - ok
14:57:42.0619 0316  [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
14:57:42.0659 0316  NdisTapi - ok
14:57:42.0699 0316  [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
14:57:42.0749 0316  Ndisuio - ok
14:57:42.0769 0316  [ 38FBE267E7E6983311179230FACB1017 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
14:57:42.0829 0316  NdisWan - ok
14:57:42.0849 0316  [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
14:57:42.0889 0316  NDProxy - ok
14:57:42.0919 0316  [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
14:57:42.0969 0316  NetBIOS - ok
14:57:42.0989 0316  [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
14:57:43.0039 0316  NetBT - ok
14:57:43.0059 0316  [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon        C:\Windows\system32\lsass.exe
14:57:43.0079 0316  Netlogon - ok
14:57:43.0119 0316  [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman          C:\Windows\System32\netman.dll
14:57:43.0159 0316  Netman - ok
14:57:43.0179 0316  [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm        C:\Windows\System32\netprofm.dll
14:57:43.0239 0316  netprofm - ok
14:57:43.0269 0316  [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:57:43.0299 0316  NetTcpPortSharing - ok
14:57:43.0329 0316  [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
14:57:43.0359 0316  nfrd960 - ok
14:57:43.0399 0316  [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc          C:\Windows\System32\nlasvc.dll
14:57:43.0419 0316  NlaSvc - ok
14:57:43.0429 0316  [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
14:57:43.0479 0316  Npfs - ok
14:57:43.0509 0316  [ BA387E955E890C8A88306D9B8D06BF17 ] nsi             C:\Windows\system32\nsisvc.dll
14:57:43.0549 0316  nsi - ok
14:57:43.0579 0316  [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
14:57:43.0629 0316  nsiproxy - ok
14:57:43.0689 0316  [ 0D87503986BB3DFED58E343FE39DDE13 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
14:57:43.0799 0316  Ntfs - ok
14:57:43.0827 0316  [ F9756A98D69098DCA8945D62858A812C ] Null            C:\Windows\system32\drivers\Null.sys
14:57:43.0871 0316  Null - ok
14:57:43.0943 0316  [ B5E37E31C053BC9950455A257526514B ] NVENETFD        C:\Windows\system32\DRIVERS\nvm62x32.sys
14:57:43.0983 0316  NVENETFD - ok
14:57:44.0303 0316  [ 0A1B502CBC8230DA74BEFBAADDB58916 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
14:57:44.0567 0316  nvlddmkm - ok
14:57:44.0610 0316  [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
14:57:44.0637 0316  nvraid - ok
14:57:44.0652 0316  [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
14:57:44.0686 0316  nvstor - ok
14:57:44.0728 0316  [ EB5A13F9139F20AD71ADF4BF79C3AA29 ] nvsvc           C:\Windows\system32\nvvsvc.exe
14:57:44.0780 0316  nvsvc - ok
14:57:44.0890 0316  [ 0629259E3AF6BB0534FCECA208973404 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
14:57:44.0932 0316  nvUpdatusService - ok
14:57:44.0967 0316  [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
14:57:45.0001 0316  nv_agp - ok
14:57:45.0072 0316  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
14:57:45.0245 0316  odserv - ok
14:57:45.0261 0316  [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
14:57:45.0307 0316  ohci1394 - ok
14:57:45.0358 0316  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:57:45.0387 0316  ose - ok
14:57:45.0433 0316  [ 2FADD6E3AEAFF1A6B84B8D304C395BD5 ] ousb2hub        C:\Windows\system32\DRIVERS\ousb2hub.sys
14:57:45.0454 0316  ousb2hub ( UnsignedFile.Multi.Generic ) - warning
14:57:45.0455 0316  ousb2hub - detected UnsignedFile.Multi.Generic (1)
14:57:45.0473 0316  [ 961414DACB73858B0A2E9075AB2D1EA8 ] ousbehci        C:\Windows\system32\Drivers\ousbehci.sys
14:57:45.0509 0316  ousbehci ( UnsignedFile.Multi.Generic ) - warning
14:57:45.0509 0316  ousbehci - detected UnsignedFile.Multi.Generic (1)
14:57:45.0539 0316  [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
14:57:45.0607 0316  p2pimsvc - ok
14:57:45.0643 0316  [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc          C:\Windows\system32\p2psvc.dll
14:57:45.0712 0316  p2psvc - ok
14:57:45.0744 0316  [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
14:57:45.0771 0316  Parport - ok
14:57:45.0805 0316  [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr         C:\Windows\system32\drivers\partmgr.sys
14:57:45.0830 0316  partmgr - ok
14:57:45.0844 0316  [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
14:57:45.0873 0316  Parvdm - ok
14:57:45.0898 0316  [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc          C:\Windows\System32\pcasvc.dll
14:57:45.0936 0316  PcaSvc - ok
14:57:45.0961 0316  [ 673E55C3498EB970088E812EA820AA8F ] pci             C:\Windows\system32\drivers\pci.sys
14:57:45.0999 0316  pci - ok
14:57:46.0017 0316  [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide          C:\Windows\system32\drivers\pciide.sys
14:57:46.0040 0316  pciide - ok
14:57:46.0069 0316  [ F396431B31693E71E8A80687EF523506 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
14:57:46.0104 0316  pcmcia - ok
14:57:46.0126 0316  [ 250F6B43D2B613172035C6747AEEB19F ] pcw             C:\Windows\system32\drivers\pcw.sys
14:57:46.0151 0316  pcw - ok
14:57:46.0179 0316  [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
14:57:46.0253 0316  PEAUTH - ok
14:57:46.0300 0316  [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
14:57:46.0396 0316  PeerDistSvc - ok
14:57:46.0488 0316  [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla             C:\Windows\system32\pla.dll
14:57:46.0653 0316  pla - ok
14:57:46.0722 0316  [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
14:57:46.0837 0316  PlugPlay - ok
14:57:46.0932 0316  [ 205E1B699FD3F2F9B036EEA2EC30C620 ] PnkBstrA        C:\Windows\system32\PnkBstrA.exe
14:57:46.0975 0316  PnkBstrA - ok
14:57:47.0001 0316  [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
14:57:47.0054 0316  PNRPAutoReg - ok
14:57:47.0080 0316  [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
14:57:47.0105 0316  PNRPsvc - ok
14:57:47.0132 0316  [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
14:57:47.0200 0316  PolicyAgent - ok
14:57:47.0223 0316  [ F87D30E72E03D579A5199CCB3831D6EA ] Power           C:\Windows\system32\umpo.dll
14:57:47.0282 0316  Power - ok
14:57:47.0316 0316  [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
14:57:47.0376 0316  PptpMiniport - ok
14:57:47.0394 0316  [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor       C:\Windows\system32\drivers\processr.sys
14:57:47.0437 0316  Processor - ok
14:57:47.0472 0316  [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc         C:\Windows\system32\profsvc.dll
14:57:47.0531 0316  ProfSvc - ok
14:57:47.0555 0316  [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
14:57:47.0577 0316  ProtectedStorage - ok
14:57:47.0609 0316  [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
14:57:47.0655 0316  Psched - ok
14:57:47.0719 0316  [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
14:57:47.0815 0316  ql2300 - ok
14:57:47.0842 0316  [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
14:57:47.0876 0316  ql40xx - ok
14:57:47.0914 0316  [ 31AC809E7707EB580B2BDB760390765A ] QWAVE           C:\Windows\system32\qwave.dll
14:57:47.0975 0316  QWAVE - ok
14:57:48.0012 0316  [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
14:57:48.0042 0316  QWAVEdrv - ok
14:57:48.0060 0316  [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
14:57:48.0101 0316  RasAcd - ok
14:57:48.0119 0316  [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
14:57:48.0160 0316  RasAgileVpn - ok
14:57:48.0188 0316  [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto         C:\Windows\System32\rasauto.dll
14:57:48.0245 0316  RasAuto - ok
14:57:48.0272 0316  [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
14:57:48.0331 0316  Rasl2tp - ok
14:57:48.0371 0316  [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan          C:\Windows\System32\rasmans.dll
14:57:48.0433 0316  RasMan - ok
14:57:48.0454 0316  [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
14:57:48.0498 0316  RasPppoe - ok
14:57:48.0524 0316  [ 44101F495A83EA6401D886E7FD70096B ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
14:57:48.0580 0316  RasSstp - ok
14:57:48.0598 0316  [ D528BC58A489409BA40334EBF96A311B ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
14:57:48.0659 0316  rdbss - ok
14:57:48.0687 0316  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
14:57:48.0713 0316  rdpbus - ok
14:57:48.0734 0316  [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
14:57:48.0783 0316  RDPCDD - ok
14:57:48.0820 0316  [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
14:57:48.0884 0316  RDPDR - ok
14:57:48.0918 0316  [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
14:57:48.0967 0316  RDPENCDD - ok
14:57:49.0009 0316  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
14:57:49.0120 0316  RDPREFMP - ok
14:57:49.0179 0316  [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
14:57:49.0239 0316  RDPWD - ok
14:57:49.0269 0316  [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
14:57:49.0317 0316  rdyboost - ok
14:57:49.0352 0316  [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess    C:\Windows\System32\mprdim.dll
14:57:49.0437 0316  RemoteAccess - ok
14:57:49.0470 0316  [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
14:57:49.0520 0316  RemoteRegistry - ok
14:57:49.0539 0316  [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
14:57:49.0600 0316  RpcEptMapper - ok
14:57:49.0627 0316  [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator      C:\Windows\system32\locator.exe
14:57:49.0671 0316  RpcLocator - ok
14:57:49.0701 0316  [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs           C:\Windows\system32\rpcss.dll
14:57:49.0746 0316  RpcSs - ok
14:57:49.0784 0316  [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
14:57:49.0841 0316  rspndr - ok
14:57:49.0862 0316  [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
14:57:49.0899 0316  s3cap - ok
14:57:49.0913 0316  [ 81951F51E318AECC2D68559E47485CC4 ] SamSs           C:\Windows\system32\lsass.exe
14:57:49.0930 0316  SamSs - ok
14:57:49.0956 0316  [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
14:57:49.0984 0316  sbp2port - ok
14:57:50.0015 0316  [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
14:57:50.0078 0316  SCardSvr - ok
14:57:50.0094 0316  [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
14:57:50.0146 0316  scfilter - ok
14:57:50.0217 0316  [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule        C:\Windows\system32\schedsvc.dll
14:57:50.0299 0316  Schedule - ok
14:57:50.0319 0316  [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc     C:\Windows\System32\certprop.dll
14:57:50.0356 0316  SCPolicySvc - ok
14:57:50.0378 0316  [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
14:57:50.0430 0316  SDRSVC - ok
14:57:50.0458 0316  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
14:57:50.0502 0316  secdrv - ok
14:57:50.0526 0316  [ A59B3A4442C52060CC7A85293AA3546F ] seclogon        C:\Windows\system32\seclogon.dll
14:57:50.0588 0316  seclogon - ok
14:57:50.0609 0316  [ DCB7FCDCC97F87360F75D77425B81737 ] SENS            C:\Windows\System32\sens.dll
14:57:50.0654 0316  SENS - ok
14:57:50.0678 0316  [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc        C:\Windows\system32\sensrsvc.dll
14:57:50.0727 0316  SensrSvc - ok
14:57:50.0751 0316  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
14:57:50.0785 0316  Serenum - ok
14:57:50.0810 0316  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
14:57:50.0845 0316  Serial - ok
14:57:50.0857 0316  [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
14:57:50.0880 0316  sermouse - ok
14:57:50.0914 0316  [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv      C:\Windows\system32\sessenv.dll
14:57:50.0968 0316  SessionEnv - ok
14:57:50.0991 0316  [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
14:57:51.0020 0316  sffdisk - ok
14:57:51.0028 0316  [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
14:57:51.0056 0316  sffp_mmc - ok
14:57:51.0066 0316  [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
14:57:51.0093 0316  sffp_sd - ok
14:57:51.0100 0316  [ DB96666CC8312EBC45032F30B007A547 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
14:57:51.0126 0316  sfloppy - ok
14:57:51.0155 0316  [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
14:57:51.0216 0316  SharedAccess - ok
14:57:51.0240 0316  [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:57:51.0311 0316  ShellHWDetection - ok
14:57:51.0343 0316  [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp          C:\Windows\system32\drivers\sisagp.sys
14:57:51.0369 0316  sisagp - ok
14:57:51.0390 0316  [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
14:57:51.0420 0316  SiSRaid2 - ok
14:57:51.0460 0316  [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
14:57:51.0489 0316  SiSRaid4 - ok
14:57:51.0518 0316  [ B866E8C5ED1DCBEA72285BA4107892C2 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
14:57:51.0605 0316  SkypeUpdate - ok
14:57:51.0634 0316  [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb             C:\Windows\system32\DRIVERS\smb.sys
14:57:51.0685 0316  Smb - ok
14:57:51.0740 0316  [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
14:57:51.0769 0316  SNMPTRAP - ok
14:57:51.0793 0316  [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr           C:\Windows\system32\drivers\spldr.sys
14:57:51.0828 0316  spldr - ok
14:57:51.0899 0316  [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler         C:\Windows\System32\spoolsv.exe
14:57:51.0972 0316  Spooler - ok
14:57:52.0100 0316  [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc          C:\Windows\system32\sppsvc.exe
14:57:52.0195 0316  sppsvc - ok
14:57:52.0214 0316  [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
14:57:52.0287 0316  sppuinotify - ok
14:57:52.0327 0316  [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv             C:\Windows\system32\DRIVERS\srv.sys
14:57:52.0394 0316  srv - ok
14:57:52.0414 0316  [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
14:57:52.0461 0316  srv2 - ok
14:57:52.0488 0316  [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
14:57:52.0517 0316  srvnet - ok
14:57:52.0541 0316  [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
14:57:52.0589 0316  SSDPSRV - ok
14:57:52.0621 0316  [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv          C:\Windows\system32\DRIVERS\ssmdrv.sys
14:57:52.0642 0316  ssmdrv - ok
14:57:52.0664 0316  [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
14:57:52.0721 0316  SstpSvc - ok
14:57:52.0762 0316  Steam Client Service - ok
14:57:52.0785 0316  [ DB32D325C192B801DF274BFD12A7E72B ] stexstor        C:\Windows\system32\drivers\stexstor.sys
14:57:52.0813 0316  stexstor - ok
14:57:52.0848 0316  [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc          C:\Windows\System32\wiaservc.dll
14:57:52.0913 0316  StiSvc - ok
14:57:52.0937 0316  [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
14:57:52.0963 0316  storflt - ok
14:57:52.0994 0316  [ 0BF669F0A910BEDA4A32258D363AF2A5 ] StorSvc         C:\Windows\system32\storsvc.dll
14:57:53.0035 0316  StorSvc - ok
14:57:53.0053 0316  [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
14:57:53.0081 0316  storvsc - ok
14:57:53.0108 0316  [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
14:57:53.0129 0316  swenum - ok
14:57:53.0162 0316  [ A28BD92DF340E57B024BA433165D34D7 ] swprv           C:\Windows\System32\swprv.dll
14:57:53.0236 0316  swprv - ok
14:57:53.0283 0316  [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain         C:\Windows\system32\sysmain.dll
14:57:53.0325 0316  SysMain - ok
14:57:53.0345 0316  [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:57:53.0388 0316  TabletInputService - ok
14:57:53.0433 0316  [ B7AEE68D2E867CBF69B649B18FCEDBBB ] tap0901t        C:\Windows\system32\DRIVERS\tap0901t.sys
14:57:53.0470 0316  tap0901t - ok
14:57:53.0498 0316  [ 613BF4820361543956909043A265C6AC ] TapiSrv         C:\Windows\System32\tapisrv.dll
14:57:53.0579 0316  TapiSrv - ok
14:57:53.0595 0316  [ B799D9FDB26111737F58288D8DC172D9 ] TBS             C:\Windows\System32\tbssvc.dll
14:57:53.0651 0316  TBS - ok
14:57:53.0714 0316  [ E23A56F843E2AEBBB209D0ACCA73C640 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
14:57:53.0847 0316  Tcpip - ok
14:57:53.0898 0316  [ E23A56F843E2AEBBB209D0ACCA73C640 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
14:57:53.0936 0316  TCPIP6 - ok
14:57:53.0978 0316  [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
14:57:54.0030 0316  tcpipreg - ok
14:57:54.0070 0316  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
14:57:54.0126 0316  TDPIPE - ok
14:57:54.0162 0316  [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
14:57:54.0209 0316  TDTCP - ok
14:57:54.0227 0316  [ B459575348C20E8121D6039DA063C704 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
14:57:54.0279 0316  tdx - ok
14:57:54.0297 0316  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
14:57:54.0325 0316  TermDD - ok
14:57:54.0409 0316  [ 382C804C92811BE57829D8E550A900E2 ] TermService     C:\Windows\System32\termsrv.dll
14:57:54.0518 0316  TermService - ok
14:57:54.0536 0316  [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes          C:\Windows\system32\themeservice.dll
14:57:54.0573 0316  Themes - ok
14:57:54.0598 0316  [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER     C:\Windows\system32\mmcss.dll
14:57:54.0635 0316  THREADORDER - ok
14:57:54.0654 0316  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks          C:\Windows\System32\trkwks.dll
14:57:54.0714 0316  TrkWks - ok
14:57:54.0749 0316  [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:57:54.0819 0316  TrustedInstaller - ok
14:57:54.0839 0316  [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
14:57:54.0894 0316  tssecsrv - ok
14:57:54.0909 0316  [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
14:57:54.0959 0316  TsUsbFlt - ok
14:57:54.0979 0316  [ 01246F0BAAD7B68EC0F472AA41E33282 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
14:57:55.0019 0316  TsUsbGD - ok
14:57:55.0044 0316  [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
14:57:55.0084 0316  tunnel - ok
14:57:55.0159 0316  [ 2FD0FE0A0C721C8E47C5A3AE16E519B1 ] TunngleService  C:\Program Files\Tunngle\TnglCtrl.exe
14:57:55.0249 0316  TunngleService - ok
14:57:55.0276 0316  [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35          C:\Windows\system32\drivers\uagp35.sys
14:57:55.0304 0316  uagp35 - ok
14:57:55.0324 0316  [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
14:57:55.0381 0316  udfs - ok
14:57:55.0414 0316  [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
14:57:55.0454 0316  UI0Detect - ok
14:57:55.0484 0316  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
14:57:55.0509 0316  uliagpkx - ok
14:57:55.0536 0316  [ D295BED4B898F0FD999FCFA9B32B071B ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
14:57:55.0569 0316  umbus - ok
14:57:55.0599 0316  [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass          C:\Windows\system32\drivers\umpass.sys
14:57:55.0631 0316  UmPass - ok
14:57:55.0661 0316  [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService    C:\Windows\System32\umrdp.dll
14:57:55.0716 0316  UmRdpService - ok
14:57:55.0741 0316  [ 833FBB672460EFCE8011D262175FAD33 ] upnphost        C:\Windows\System32\upnphost.dll
14:57:55.0814 0316  upnphost - ok
14:57:55.0851 0316  [ 1D9F2BD026E8E2D45033A4DF3F16B78C ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
14:57:55.0884 0316  usbaudio - ok
14:57:55.0909 0316  [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
14:57:55.0939 0316  usbccgp - ok
14:57:55.0984 0316  [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
14:57:56.0026 0316  usbcir - ok
14:57:56.0059 0316  [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
14:57:56.0081 0316  usbehci - ok
14:57:56.0116 0316  [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
14:57:56.0166 0316  usbhub - ok
14:57:56.0191 0316  [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
14:57:56.0224 0316  usbohci - ok
14:57:56.0259 0316  [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
14:57:56.0294 0316  usbprint - ok
14:57:56.0311 0316  [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
14:57:56.0354 0316  usbscan - ok
14:57:56.0374 0316  [ F991AB9CC6B908DB552166768176896A ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:57:56.0426 0316  USBSTOR - ok
14:57:56.0461 0316  [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
14:57:56.0524 0316  usbuhci - ok
14:57:56.0571 0316  [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms           C:\Windows\System32\uxsms.dll
14:57:56.0677 0316  UxSms - ok
14:57:56.0736 0316  [ E579144C0BFA5720E1DA5A7783058E9A ] V0420VID        C:\Windows\system32\DRIVERS\V0420Vid.sys
14:57:56.0839 0316  V0420VID - ok
14:57:56.0851 0316  [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc        C:\Windows\system32\lsass.exe
14:57:56.0869 0316  VaultSvc - ok
14:57:56.0909 0316  [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
14:57:56.0936 0316  vdrvroot - ok
14:57:56.0994 0316  [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds             C:\Windows\System32\vds.exe
14:57:57.0101 0316  vds - ok
14:57:57.0130 0316  [ 17C408214EA61696CEC9C66E388B14F3 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
14:57:57.0171 0316  vga - ok
14:57:57.0188 0316  [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave         C:\Windows\System32\drivers\vga.sys
14:57:57.0228 0316  VgaSave - ok
14:57:57.0246 0316  [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
14:57:57.0280 0316  vhdmp - ok
14:57:57.0311 0316  [ C829317A37B4BEA8F39735D4B076E923 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
14:57:57.0336 0316  viaagp - ok
14:57:57.0345 0316  [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
14:57:57.0381 0316  ViaC7 - ok
14:57:57.0405 0316  [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide          C:\Windows\system32\drivers\viaide.sys
14:57:57.0437 0316  viaide - ok
14:57:57.0479 0316  [ C2F2911156FDC7817C52829C86DA494E ] vmbus           C:\Windows\system32\drivers\vmbus.sys
14:57:57.0539 0316  vmbus - ok
14:57:57.0591 0316  [ D4D77455211E204F370D08F4963063CE ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
14:57:57.0651 0316  VMBusHID - ok
14:57:57.0701 0316  [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
14:57:57.0731 0316  volmgr - ok
14:57:57.0763 0316  [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
14:57:57.0827 0316  volmgrx - ok
14:57:57.0894 0316  [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
14:57:58.0015 0316  volsnap - ok
14:57:58.0065 0316  [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
14:57:58.0115 0316  vsmraid - ok
14:57:58.0167 0316  [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS             C:\Windows\system32\vssvc.exe
14:57:58.0297 0316  VSS - ok
14:57:58.0318 0316  [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
14:57:58.0349 0316  vwifibus - ok
14:57:58.0379 0316  [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time         C:\Windows\system32\w32time.dll
14:57:58.0470 0316  W32Time - ok
14:57:58.0509 0316  [ DE3721E89C653AA281428C8A69745D90 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
14:57:58.0541 0316  WacomPen - ok
14:57:58.0561 0316  [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
14:57:58.0611 0316  WANARP - ok
14:57:58.0632 0316  [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
14:57:58.0668 0316  Wanarpv6 - ok
14:57:58.0723 0316  [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
14:57:58.0895 0316  WatAdminSvc - ok
14:57:58.0946 0316  [ 691E3285E53DCA558E1A84667F13E15A ] wbengine        C:\Windows\system32\wbengine.exe
14:57:59.0090 0316  wbengine - ok
14:57:59.0126 0316  [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
14:57:59.0189 0316  WbioSrvc - ok
14:57:59.0251 0316  [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc         C:\Windows\System32\wcncsvc.dll
14:57:59.0321 0316  wcncsvc - ok
14:57:59.0354 0316  [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:57:59.0403 0316  WcsPlugInService - ok
14:57:59.0443 0316  [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd              C:\Windows\system32\drivers\wd.sys
14:57:59.0473 0316  Wd - ok
14:57:59.0523 0316  [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
14:57:59.0605 0316  Wdf01000 - ok
14:57:59.0665 0316  [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
14:57:59.0727 0316  WdiServiceHost - ok
14:57:59.0757 0316  [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
14:57:59.0783 0316  WdiSystemHost - ok
14:57:59.0825 0316  [ A9D880F97530D5B8FEE278923349929D ] WebClient       C:\Windows\System32\webclnt.dll
14:57:59.0899 0316  WebClient - ok
14:57:59.0919 0316  [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc          C:\Windows\system32\wecsvc.dll
14:57:59.0985 0316  Wecsvc - ok
14:58:00.0004 0316  [ AC804569BB2364FB6017370258A4091B ] wercplsupport   C:\Windows\System32\wercplsupport.dll
14:58:00.0047 0316  wercplsupport - ok
14:58:00.0081 0316  [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc          C:\Windows\System32\WerSvc.dll
14:58:00.0156 0316  WerSvc - ok
14:58:00.0193 0316  [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
14:58:00.0233 0316  WfpLwf - ok
14:58:00.0257 0316  [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
14:58:00.0286 0316  WIMMount - ok
14:58:00.0355 0316  [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
14:58:00.0426 0316  WinDefend - ok
14:58:00.0456 0316  WinHttpAutoProxySvc - ok
14:58:00.0497 0316  [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
14:58:00.0537 0316  Winmgmt - ok
14:58:00.0589 0316  [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM           C:\Windows\system32\WsmSvc.dll
14:58:00.0709 0316  WinRM - ok
14:58:00.0781 0316  [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc         C:\Windows\System32\wlansvc.dll
14:58:00.0843 0316  Wlansvc - ok
14:58:00.0945 0316  [ 5E7C103F8475C4289847D15E129C20F7 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:58:01.0022 0316  wlidsvc - ok
14:58:01.0050 0316  [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
14:58:01.0077 0316  WmiAcpi - ok
14:58:01.0107 0316  [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
14:58:01.0159 0316  wmiApSrv - ok
14:58:01.0219 0316  [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
14:58:01.0270 0316  WMPNetworkSvc - ok
14:58:01.0291 0316  [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc          C:\Windows\System32\wpcsvc.dll
14:58:01.0331 0316  WPCSvc - ok
14:58:01.0351 0316  [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
14:58:01.0398 0316  WPDBusEnum - ok
14:58:01.0423 0316  [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
14:58:01.0473 0316  ws2ifsl - ok
14:58:01.0525 0316  [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc          C:\Windows\System32\wscsvc.dll
14:58:01.0605 0316  wscsvc - ok
14:58:01.0615 0316  WSearch - ok
14:58:01.0747 0316  [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv        C:\Windows\system32\wuaueng.dll
14:58:01.0823 0316  wuauserv - ok
14:58:01.0859 0316  [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
14:58:01.0919 0316  WudfPf - ok
14:58:01.0974 0316  [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
14:58:02.0011 0316  WUDFRd - ok
14:58:02.0061 0316  [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
14:58:02.0091 0316  wudfsvc - ok
14:58:02.0131 0316  [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc         C:\Windows\System32\wwansvc.dll
14:58:02.0191 0316  WwanSvc - ok
14:58:02.0241 0316  ================ Scan global ===============================
14:58:02.0313 0316  [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
14:58:02.0373 0316  [ 93F86C5CCC37D70EA09CE5E76F3E4338 ] C:\Windows\system32\winsrv.dll
14:58:02.0414 0316  [ 93F86C5CCC37D70EA09CE5E76F3E4338 ] C:\Windows\system32\winsrv.dll
14:58:02.0447 0316  [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
14:58:02.0483 0316  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
14:58:02.0503 0316  [Global] - ok
14:58:02.0503 0316  ================ Scan MBR ==================================
14:58:02.0513 0316  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
14:58:02.0787 0316  \Device\Harddisk0\DR0 - ok
14:58:02.0787 0316  ================ Scan VBR ==================================
14:58:02.0797 0316  [ 09C8960366C44963B0E88EDF730911F2 ] \Device\Harddisk0\DR0\Partition1
14:58:02.0797 0316  \Device\Harddisk0\DR0\Partition1 - ok
14:58:02.0833 0316  [ 090C57D1284365EC5208A1B75D66142E ] \Device\Harddisk0\DR0\Partition2
14:58:02.0834 0316  \Device\Harddisk0\DR0\Partition2 - ok
14:58:02.0869 0316  [ D4F03D74B31E30B36FD6154CBBA9EC4E ] \Device\Harddisk0\DR0\Partition3
14:58:02.0869 0316  \Device\Harddisk0\DR0\Partition3 - ok
14:58:02.0869 0316  ================ Scan active images ========================
14:58:02.0869 0316  [ B7EFEF22FF426EC4158A177CB3B558D3 ] C:\Windows\System32\drivers\crashdmp.sys
14:58:02.0869 0316  C:\Windows\System32\drivers\crashdmp.sys - ok
14:58:02.0879 0316  [ 5428227D4730EBDFC842E9FB593F8C8A ] C:\Windows\System32\drivers\Dumpata.sys
14:58:02.0879 0316  C:\Windows\System32\drivers\Dumpata.sys - ok
14:58:02.0889 0316  [ 338C86357871C167A96AB976519BF59E ] C:\Windows\System32\drivers\atapi.sys
14:58:02.0889 0316  C:\Windows\System32\drivers\atapi.sys - ok
14:58:02.0909 0316  [ 62A63EF2F3053B461CB327E4D69AAA74 ] C:\Windows\System32\drivers\dumpfve.sys
14:58:02.0909 0316  C:\Windows\System32\drivers\dumpfve.sys - ok
14:58:02.0931 0316  [ 687AF6BB383885FF6A64071B189A7F3E ] C:\Windows\System32\drivers\dtsoftbus01.sys
14:58:02.0931 0316  C:\Windows\System32\drivers\dtsoftbus01.sys - ok
14:58:02.0940 0316  [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] C:\Windows\System32\drivers\cdrom.sys
14:58:02.0940 0316  C:\Windows\System32\drivers\cdrom.sys - ok
14:58:02.0949 0316  [ 505506526A9D467307B3C393DEDAF858 ] C:\Windows\System32\drivers\beep.sys
14:58:02.0949 0316  C:\Windows\System32\drivers\beep.sys - ok
14:58:02.0959 0316  [ F9756A98D69098DCA8945D62858A812C ] C:\Windows\System32\drivers\null.sys
14:58:02.0959 0316  C:\Windows\System32\drivers\null.sys - ok
14:58:02.0968 0316  [ 23DAE03F29D253AE74C44F99E515F9A1 ] C:\Windows\System32\drivers\RDPCDD.sys
14:58:02.0968 0316  C:\Windows\System32\drivers\RDPCDD.sys - ok
14:58:02.0977 0316  [ 5A53CA1598DD4156D44196D200C94B8A ] C:\Windows\System32\drivers\RDPENCDD.sys
14:58:02.0977 0316  C:\Windows\System32\drivers\RDPENCDD.sys - ok
14:58:02.0990 0316  [ 8E38096AD5C8570A6F1570A61E251561 ] C:\Windows\System32\drivers\vga.sys
14:58:02.0990 0316  C:\Windows\System32\drivers\vga.sys - ok
14:58:03.0001 0316  [ 15C126D1B55814B9E5CAB10A9C1F4C67 ] C:\Windows\System32\drivers\videoprt.sys
14:58:03.0001 0316  C:\Windows\System32\drivers\videoprt.sys - ok
14:58:03.0018 0316  [ CB45A417C8EF7BA6BAC67EDCDDED8700 ] C:\Windows\System32\drivers\watchdog.sys
14:58:03.0018 0316  C:\Windows\System32\drivers\watchdog.sys - ok
14:58:03.0031 0316  [ DAEFB28E3AF5A76ABCC2C3078C07327F ] C:\Windows\System32\drivers\msfs.sys
14:58:03.0031 0316  C:\Windows\System32\drivers\msfs.sys - ok
14:58:03.0043 0316  [ 1DB262A9F8C087E8153D89BEF3D2235F ] C:\Windows\System32\drivers\npfs.sys
14:58:03.0043 0316  C:\Windows\System32\drivers\npfs.sys - ok
14:58:03.0052 0316  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] C:\Windows\System32\drivers\RDPREFMP.sys
14:58:03.0052 0316  C:\Windows\System32\drivers\RDPREFMP.sys - ok
14:58:03.0062 0316  [ 2F885864D5BC8A16C86BEE595969A48A ] C:\Windows\System32\drivers\tdi.sys
14:58:03.0062 0316  C:\Windows\System32\drivers\tdi.sys - ok
14:58:03.0070 0316  [ B459575348C20E8121D6039DA063C704 ] C:\Windows\System32\drivers\tdx.sys
14:58:03.0070 0316  C:\Windows\System32\drivers\tdx.sys - ok
14:58:03.0080 0316  [ 9EBBBA55060F786F0FCAA3893BFA2806 ] C:\Windows\System32\drivers\afd.sys
14:58:03.0080 0316  C:\Windows\System32\drivers\afd.sys - ok
14:58:03.0095 0316  [ 280122DDCF04B378EDD1AD54D71C1E54 ] C:\Windows\System32\drivers\netbt.sys
14:58:03.0095 0316  C:\Windows\System32\drivers\netbt.sys - ok
14:58:03.0118 0316  [ 6270CCAE2A86DE6D146529FE55B3246A ] C:\Windows\System32\drivers\pacer.sys
14:58:03.0118 0316  C:\Windows\System32\drivers\pacer.sys - ok
14:58:03.0127 0316  [ 8B9A943F3B53861F2BFAF6C186168F79 ] C:\Windows\System32\drivers\wfplwf.sys
14:58:03.0127 0316  C:\Windows\System32\drivers\wfplwf.sys - ok
14:58:03.0136 0316  [ 80B275B1CE3B0E79909DB7B39AF74D51 ] C:\Windows\System32\drivers\netbios.sys
14:58:03.0136 0316  C:\Windows\System32\drivers\netbios.sys - ok
14:58:03.0145 0316  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] C:\Windows\System32\drivers\serial.sys
14:58:03.0145 0316  C:\Windows\System32\drivers\serial.sys - ok
14:58:03.0155 0316  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] C:\Windows\System32\drivers\termdd.sys
14:58:03.0155 0316  C:\Windows\System32\drivers\termdd.sys - ok
14:58:03.0165 0316  [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] C:\Windows\System32\drivers\wanarp.sys
14:58:03.0165 0316  C:\Windows\System32\drivers\wanarp.sys - ok
14:58:03.0174 0316  [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] C:\Windows\System32\drivers\nsiproxy.sys
14:58:03.0174 0316  C:\Windows\System32\drivers\nsiproxy.sys - ok
14:58:03.0182 0316  [ D528BC58A489409BA40334EBF96A311B ] C:\Windows\System32\drivers\rdbss.sys
14:58:03.0182 0316  C:\Windows\System32\drivers\rdbss.sys - ok
14:58:03.0190 0316  [ A36EE93698802CD899F98BFD553D8185 ] C:\Windows\System32\drivers\ssmdrv.sys
14:58:03.0190 0316  C:\Windows\System32\drivers\ssmdrv.sys - ok
14:58:03.0199 0316  [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] C:\Windows\System32\drivers\csc.sys
14:58:03.0199 0316  C:\Windows\System32\drivers\csc.sys - ok
14:58:03.0208 0316  [ 1A050B0274BFB3890703D490F330C0DA ] C:\Windows\System32\drivers\discache.sys
14:58:03.0208 0316  C:\Windows\System32\drivers\discache.sys - ok
14:58:03.0216 0316  [ FC6B9FF600CC585EA38B12589BD4E246 ] C:\Windows\System32\drivers\mssmbios.sys
14:58:03.0216 0316  C:\Windows\System32\drivers\mssmbios.sys - ok
14:58:03.0225 0316  [ FFB78D74E1EA5F811341A6E7AC547A46 ] C:\Windows\System32\drivers\avkmgr.sys
14:58:03.0225 0316  C:\Windows\System32\drivers\avkmgr.sys - ok
14:58:03.0234 0316  [ 2287078ED48FCFC477B05B20CF38F36F ] C:\Windows\System32\drivers\blbdrive.sys
14:58:03.0234 0316  C:\Windows\System32\drivers\blbdrive.sys - ok
14:58:03.0243 0316  [ F024449C97EC1E464AAFFDA18593DB88 ] C:\Windows\System32\drivers\dfsc.sys
14:58:03.0243 0316  C:\Windows\System32\drivers\dfsc.sys - ok
14:58:03.0254 0316  [ 0189056DDBF23C7DEF09D2B5999C5405 ] C:\Windows\System32\drivers\avipbb.sys
14:58:03.0254 0316  C:\Windows\System32\drivers\avipbb.sys - ok
14:58:03.0265 0316  [ 00DDA200D71BAC534BF56A9DB5DFD666 ] C:\Windows\System32\drivers\amdk8.sys
14:58:03.0265 0316  C:\Windows\System32\drivers\amdk8.sys - ok
14:58:03.0270 0316  [ B2FA25D9B17A68BB93D58B0556E8C90D ] C:\Windows\System32\drivers\tunnel.sys
14:58:03.0270 0316  C:\Windows\System32\drivers\tunnel.sys - ok
14:58:03.0279 0316  [ E817A017F82DF2A1F8CFDBDA29388B29 ] C:\Windows\System32\drivers\fdc.sys
14:58:03.0279 0316  C:\Windows\System32\drivers\fdc.sys - ok
14:58:03.0287 0316  [ F151F0BDC47F4A28B1B20A0818EA36D6 ] C:\Windows\System32\drivers\i8042prt.sys
14:58:03.0287 0316  C:\Windows\System32\drivers\i8042prt.sys - ok
14:58:03.0296 0316  [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] C:\Windows\System32\drivers\parport.sys
14:58:03.0296 0316  C:\Windows\System32\drivers\parport.sys - ok
14:58:03.0305 0316  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] C:\Windows\System32\drivers\serenum.sys
14:58:03.0305 0316  C:\Windows\System32\drivers\serenum.sys - ok
14:58:03.0314 0316  [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] C:\Windows\System32\drivers\mouclass.sys
14:58:03.0314 0316  C:\Windows\System32\drivers\mouclass.sys - ok
14:58:03.0322 0316  [ E185D44FAC515A18D9DEDDC23C2CDF44 ] C:\Windows\System32\drivers\usbohci.sys
14:58:03.0322 0316  C:\Windows\System32\drivers\usbohci.sys - ok
14:58:03.0330 0316  [ 3AA940AA9AC3055FE32FF2D3D20CCD28 ] C:\Windows\System32\drivers\usbport.sys
14:58:03.0330 0316  C:\Windows\System32\drivers\usbport.sys - ok
14:58:03.0339 0316  [ F92DE757E4B7CE9C07C5E65423F3AE3B ] C:\Windows\System32\drivers\usbehci.sys
14:58:03.0339 0316  C:\Windows\System32\drivers\usbehci.sys - ok
14:58:03.0348 0316  [ 16742790895960690237A5143CEDEC8B ] C:\Windows\System32\smss.exe
14:58:03.0348 0316  C:\Windows\System32\smss.exe - ok
14:58:03.0356 0316  [ B5E37E31C053BC9950455A257526514B ] C:\Windows\System32\drivers\nvm62x32.sys
14:58:03.0356 0316  C:\Windows\System32\drivers\nvm62x32.sys - ok
14:58:03.0365 0316  [ C30A91ADE8C9CB91E4281EC83C4500C6 ] C:\Windows\System32\ntdll.dll
14:58:03.0365 0316  C:\Windows\System32\ntdll.dll - ok
14:58:03.0373 0316  [ 9036377B8A6C15DC2EEC53E489D159B5 ] C:\Windows\System32\drivers\hdaudbus.sys
14:58:03.0374 0316  C:\Windows\System32\drivers\hdaudbus.sys - ok
14:58:03.0385 0316  [ 1B133875B8AA8AC48969BD3458AFE9F5 ] C:\Windows\System32\drivers\1394ohci.sys
14:58:03.0385 0316  C:\Windows\System32\drivers\1394ohci.sys - ok
14:58:03.0393 0316  [ F88A52EB62019D6A62FDD9E08034DBD8 ] C:\Windows\System32\autochk.exe
14:58:03.0393 0316  C:\Windows\System32\autochk.exe - ok
14:58:03.0401 0316  [ 0A1B502CBC8230DA74BEFBAADDB58916 ] C:\Windows\System32\drivers\nvlddmkm.sys
14:58:03.0401 0316  C:\Windows\System32\drivers\nvlddmkm.sys - ok
14:58:03.0410 0316  [ F8E1382A0FCBB355EB0858151D88C9F9 ] C:\Windows\System32\drivers\nvBridge.kmd
14:58:03.0410 0316  C:\Windows\System32\drivers\nvBridge.kmd - ok
14:58:03.0419 0316  [ 23F5D28378A160352BA8F817BD8C71CB ] C:\Windows\System32\drivers\dxgkrnl.sys
14:58:03.0419 0316  C:\Windows\System32\drivers\dxgkrnl.sys - ok
14:58:03.0428 0316  [ D458D1C7F1D49869000668E3C3BB0D4D ] C:\Windows\System32\drivers\dxgmms1.sys
14:58:03.0428 0316  C:\Windows\System32\drivers\dxgmms1.sys - ok
14:58:03.0437 0316  [ 57EC4AEF73660166074D8F7F31C0D4FD ] C:\Windows\System32\drivers\agilevpn.sys
14:58:03.0437 0316  C:\Windows\System32\drivers\agilevpn.sys - ok
14:58:03.0446 0316  [ CBE8C58A8579CFE5FCCF809E6F114E89 ] C:\Windows\System32\drivers\CompositeBus.sys
14:58:03.0446 0316  C:\Windows\System32\drivers\CompositeBus.sys - ok
14:58:03.0454 0316  [ D9F91EAFEC2815365CBE6D167E4E332A ] C:\Windows\System32\drivers\rasl2tp.sys
14:58:03.0454 0316  C:\Windows\System32\drivers\rasl2tp.sys - ok
14:58:03.0463 0316  [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] C:\Windows\System32\drivers\ndistapi.sys
14:58:03.0463 0316  C:\Windows\System32\drivers\ndistapi.sys - ok
14:58:03.0471 0316  [ 38FBE267E7E6983311179230FACB1017 ] C:\Windows\System32\drivers\ndiswan.sys
14:58:03.0472 0316  C:\Windows\System32\drivers\ndiswan.sys - ok
14:58:03.0481 0316  [ 0FE8B15916307A6AC12BFB6A63E45507 ] C:\Windows\System32\drivers\raspppoe.sys
14:58:03.0481 0316  C:\Windows\System32\drivers\raspppoe.sys - ok
14:58:03.0489 0316  [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] C:\Windows\System32\drivers\raspptp.sys
14:58:03.0489 0316  C:\Windows\System32\drivers\raspptp.sys - ok
14:58:03.0498 0316  [ 44101F495A83EA6401D886E7FD70096B ] C:\Windows\System32\drivers\rassstp.sys
14:58:03.0498 0316  C:\Windows\System32\drivers\rassstp.sys - ok
14:58:03.0507 0316  [ 833051C6C6C42117191935F734CFBD97 ] C:\Windows\System32\drivers\hamachi.sys
14:58:03.0507 0316  C:\Windows\System32\drivers\hamachi.sys - ok
14:58:03.0516 0316  [ B7AEE68D2E867CBF69B649B18FCEDBBB ] C:\Windows\System32\drivers\tap0901t.sys
14:58:03.0516 0316  C:\Windows\System32\drivers\tap0901t.sys - ok
14:58:03.0522 0316  [ ADEF52CA1AEAE82B50DF86B56413107E ] C:\Windows\System32\drivers\kbdclass.sys
14:58:03.0522 0316  C:\Windows\System32\drivers\kbdclass.sys - ok
14:58:03.0530 0316  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] C:\Windows\System32\drivers\rdpbus.sys
14:58:03.0530 0316  C:\Windows\System32\drivers\rdpbus.sys - ok
14:58:03.0539 0316  [ 5DCEF0C32BE0F33277326586FA503689 ] C:\Windows\System32\drivers\ks.sys
14:58:03.0539 0316  C:\Windows\System32\drivers\ks.sys - ok
14:58:03.0548 0316  [ E58C78A848ADD9610A4DB6D214AF5224 ] C:\Windows\System32\drivers\swenum.sys
14:58:03.0548 0316  C:\Windows\System32\drivers\swenum.sys - ok
14:58:03.0557 0316  [ D295BED4B898F0FD999FCFA9B32B071B ] C:\Windows\System32\drivers\umbus.sys
14:58:03.0557 0316  C:\Windows\System32\drivers\umbus.sys - ok
14:58:03.0565 0316  [ 87907AA70CB3C56600F1C2FB8841579B ] C:\Windows\System32\drivers\flpydisk.sys
14:58:03.0566 0316  C:\Windows\System32\drivers\flpydisk.sys - ok
14:58:03.0575 0316  [ F1DD3ACAEE5E6B4BBC69BC6DF75CEF66 ] C:\Windows\System32\user32.dll
14:58:03.0575 0316  C:\Windows\System32\user32.dll - ok
14:58:03.0584 0316  [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] C:\Windows\System32\drivers\usbhub.sys
14:58:03.0584 0316  C:\Windows\System32\drivers\usbhub.sys - ok
14:58:03.0596 0316  [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\System32\comdlg32.dll
14:58:03.0596 0316  C:\Windows\System32\comdlg32.dll - ok
14:58:03.0605 0316  [ 4266A3230981DD4434C55957F6DD497D ] C:\Windows\System32\urlmon.dll
14:58:03.0605 0316  C:\Windows\System32\urlmon.dll - ok
14:58:03.0613 0316  [ E87F5393F7D8CE2FACC4DFF703531392 ] C:\Windows\System32\gdi32.dll
14:58:03.0613 0316  C:\Windows\System32\gdi32.dll - ok
14:58:03.0621 0316  [ 780E80E5502015EDAEC91DC0A0C96A79 ] C:\Windows\System32\iertutil.dll
14:58:03.0622 0316  C:\Windows\System32\iertutil.dll - ok
14:58:03.0630 0316  [ 4F154D2C9C6DF951FD6E5AABBAE6B5EE ] C:\Windows\System32\lpk.dll
14:58:03.0630 0316  C:\Windows\System32\lpk.dll - ok
14:58:03.0639 0316  [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\System32\nsi.dll
14:58:03.0639 0316  C:\Windows\System32\nsi.dll - ok
14:58:03.0648 0316  [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\System32\shlwapi.dll
14:58:03.0648 0316  C:\Windows\System32\shlwapi.dll - ok
14:58:03.0657 0316  [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\System32\oleaut32.dll
14:58:03.0657 0316  C:\Windows\System32\oleaut32.dll - ok
14:58:03.0665 0316  [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\System32\msvcrt.dll
14:58:03.0665 0316  C:\Windows\System32\msvcrt.dll - ok
14:58:03.0674 0316  [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\System32\ws2_32.dll
14:58:03.0674 0316  C:\Windows\System32\ws2_32.dll - ok
14:58:03.0683 0316  [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\System32\imagehlp.dll
14:58:03.0683 0316  C:\Windows\System32\imagehlp.dll - ok
14:58:03.0691 0316  [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\System32\Wldap32.dll
14:58:03.0691 0316  C:\Windows\System32\Wldap32.dll - ok
14:58:03.0700 0316  [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\System32\advapi32.dll
14:58:03.0700 0316  C:\Windows\System32\advapi32.dll - ok
14:58:03.0709 0316  [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\System32\shell32.dll
14:58:03.0709 0316  C:\Windows\System32\shell32.dll - ok
14:58:03.0718 0316  [ 070C5B9D3006602A07757179D9B56F5D ] C:\Windows\System32\difxapi.dll
14:58:03.0718 0316  C:\Windows\System32\difxapi.dll - ok
14:58:03.0730 0316  [ FF5688D309347F2720911D8796912834 ] C:\Windows\System32\clbcatq.dll
14:58:03.0730 0316  C:\Windows\System32\clbcatq.dll - ok
14:58:03.0738 0316  [ 3ED262888758E350C29E02207AF9AC59 ] C:\Windows\System32\kernel32.dll
14:58:03.0738 0316  C:\Windows\System32\kernel32.dll - ok
14:58:03.0747 0316  [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\System32\normaliz.dll
14:58:03.0747 0316  C:\Windows\System32\normaliz.dll - ok
14:58:03.0756 0316  [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\System32\psapi.dll
14:58:03.0756 0316  C:\Windows\System32\psapi.dll - ok
14:58:03.0765 0316  [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\System32\usp10.dll
14:58:03.0765 0316  C:\Windows\System32\usp10.dll - ok
14:58:03.0777 0316  [ 4A8E2F20809CC161107FAA94F6CF2685 ] C:\Windows\System32\imm32.dll
14:58:03.0777 0316  C:\Windows\System32\imm32.dll - ok
14:58:03.0786 0316  [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\System32\msctf.dll
14:58:03.0786 0316  C:\Windows\System32\msctf.dll - ok
14:58:03.0795 0316  [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\System32\sechost.dll
14:58:03.0795 0316  C:\Windows\System32\sechost.dll - ok
14:58:03.0803 0316  [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\System32\ole32.dll
14:58:03.0803 0316  C:\Windows\System32\ole32.dll - ok
14:58:03.0812 0316  [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\System32\setupapi.dll
14:58:03.0812 0316  C:\Windows\System32\setupapi.dll - ok
14:58:03.0821 0316  [ 7FA3A810F383588D46220967DE8B64FF ] C:\Windows\System32\wininet.dll
14:58:03.0821 0316  C:\Windows\System32\wininet.dll - ok
14:58:03.0829 0316  [ 6400774E903729ADD0A62A24A334EE56 ] C:\Windows\System32\rpcrt4.dll
14:58:03.0829 0316  C:\Windows\System32\rpcrt4.dll - ok
14:58:03.0840 0316  [ CC4ED8BEA78B0DCA6F217E014C3291A7 ] C:\Windows\System32\devobj.dll
14:58:03.0840 0316  C:\Windows\System32\devobj.dll - ok
14:58:03.0849 0316  [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\System32\crypt32.dll
14:58:03.0849 0316  C:\Windows\System32\crypt32.dll - ok
14:58:03.0857 0316  [ E40ADC3B848650F1D5A932FD7DE0D018 ] C:\Windows\System32\KernelBase.dll
14:58:03.0857 0316  C:\Windows\System32\KernelBase.dll - ok
14:58:03.0867 0316  [ 3FFAEA12666E565FF51BF2FCA674F543 ] C:\Windows\System32\cfgmgr32.dll
14:58:03.0867 0316  C:\Windows\System32\cfgmgr32.dll - ok
14:58:03.0877 0316  [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\System32\comctl32.dll
14:58:03.0877 0316  C:\Windows\System32\comctl32.dll - ok
14:58:03.0885 0316  [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\System32\wintrust.dll
14:58:03.0885 0316  C:\Windows\System32\wintrust.dll - ok
14:58:03.0894 0316  [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\System32\msasn1.dll
14:58:03.0894 0316  C:\Windows\System32\msasn1.dll - ok
14:58:03.0956 0316  [ A4BDC541E69674FBFF1A8FF00BE913F2 ] C:\Windows\System32\drivers\ndproxy.sys
14:58:03.0956 0316  C:\Windows\System32\drivers\ndproxy.sys - ok
14:58:03.0965 0316  [ 27F9288AF019E6DACA281EDE51FF5928 ] C:\Windows\System32\drivers\drmk.sys
14:58:03.0965 0316  C:\Windows\System32\drivers\drmk.sys - ok
14:58:03.0973 0316  [ D72708C9F49500C13D7D067E169B7715 ] C:\Windows\System32\drivers\portcls.sys
14:58:03.0973 0316  C:\Windows\System32\drivers\portcls.sys - ok
14:58:03.0982 0316  [ F2C17D2C3D70C389193D9954E375E5E3 ] C:\Windows\System32\drivers\RTKVHDA.sys
14:58:03.0982 0316  C:\Windows\System32\drivers\RTKVHDA.sys - ok
14:58:03.0990 0316  [ 5FCD3320AAE71506B43F9E12E4E72172 ] C:\Windows\System32\drivers\dxapi.sys
14:58:03.0990 0316  C:\Windows\System32\drivers\dxapi.sys - ok
14:58:03.0999 0316  [ 46538741E0230731D3635D12DF85A7B5 ] C:\Windows\System32\win32k.sys
14:58:03.0999 0316  C:\Windows\System32\win32k.sys - ok
14:58:04.0007 0316  [ 6C062EA09313872D2235027EF7A4554E ] C:\Windows\System32\csrsrv.dll
14:58:04.0008 0316  C:\Windows\System32\csrsrv.dll - ok
14:58:04.0016 0316  [ 342271F6142E7C70805B8A81E1BA5F5C ] C:\Windows\System32\csrss.exe
14:58:04.0016 0316  C:\Windows\System32\csrss.exe - ok
14:58:04.0024 0316  [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\System32\basesrv.dll
14:58:04.0024 0316  C:\Windows\System32\basesrv.dll - ok
14:58:04.0033 0316  [ 93F86C5CCC37D70EA09CE5E76F3E4338 ] C:\Windows\System32\winsrv.dll
14:58:04.0034 0316  C:\Windows\System32\winsrv.dll - ok
14:58:04.0042 0316  [ 5787196F32D043572EC6565C0EF1B8E0 ] C:\Windows\System32\drivers\usbd.sys
14:58:04.0042 0316  C:\Windows\System32\drivers\usbd.sys - ok
14:58:04.0050 0316  [ BD9C55D7023C5DE374507ACC7A14E2AC ] C:\Windows\System32\drivers\usbccgp.sys
14:58:04.0050 0316  C:\Windows\System32\drivers\usbccgp.sys - ok
14:58:04.0059 0316  [ 797D862FE0875E75C7CC4C1AD7B30252 ] C:\Windows\System32\drivers\usbprint.sys
14:58:04.0059 0316  C:\Windows\System32\drivers\usbprint.sys - ok
14:58:04.0067 0316  [ 576096CCBC07E7C4EA4F5E6686D6888F ] C:\Windows\System32\drivers\usbscan.sys
14:58:04.0068 0316  C:\Windows\System32\drivers\usbscan.sys - ok
14:58:04.0076 0316  [ D32E68DA595ACD9FADCC110BEE196ACE ] C:\Windows\System32\drivers\e4ldr.sys
14:58:04.0076 0316  C:\Windows\System32\drivers\e4ldr.sys - ok
14:58:04.0085 0316  [ F991AB9CC6B908DB552166768176896A ] C:\Windows\System32\drivers\USBSTOR.SYS
14:58:04.0085 0316  C:\Windows\System32\drivers\USBSTOR.SYS - ok
14:58:04.0094 0316  [ 79D10964DE86B292320E9DFE02282A23 ] C:\Windows\System32\drivers\monitor.sys
14:58:04.0094 0316  C:\Windows\System32\drivers\monitor.sys - ok
14:58:04.0102 0316  [ 6C26122F1931D4D7810240F32DDCE890 ] C:\Windows\System32\drivers\hidparse.sys
14:58:04.0102 0316  C:\Windows\System32\drivers\hidparse.sys - ok
14:58:04.0110 0316  [ 931A1DF1520ABC6E84BA4A75E6957025 ] C:\Windows\System32\drivers\hidclass.sys
14:58:04.0110 0316  C:\Windows\System32\drivers\hidclass.sys - ok
14:58:04.0119 0316  [ 10C19F8290891AF023EAEC0832E1EB4D ] C:\Windows\System32\drivers\hidusb.sys
14:58:04.0119 0316  C:\Windows\System32\drivers\hidusb.sys - ok
14:58:04.0130 0316  [ 9E3CED91863E6EE98C24794D05E27A71 ] C:\Windows\System32\drivers\kbdhid.sys
14:58:04.0130 0316  C:\Windows\System32\drivers\kbdhid.sys - ok
14:58:04.0139 0316  [ 364455805E64882844EE9ACB72522830 ] C:\Windows\System32\sxssrv.dll
14:58:04.0139 0316  C:\Windows\System32\sxssrv.dll - ok
14:58:04.0147 0316  [ 7C76B61A5E1EF5D1FA554CF134100F18 ] C:\Windows\System32\tsddd.dll
14:58:04.0147 0316  C:\Windows\System32\tsddd.dll - ok
14:58:04.0156 0316  [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\System32\profapi.dll
14:58:04.0156 0316  C:\Windows\System32\profapi.dll - ok
14:58:04.0165 0316  [ B5C5DCAD3899512020D135600129D665 ] C:\Windows\System32\wininit.exe
14:58:04.0165 0316  C:\Windows\System32\wininit.exe - ok
14:58:04.0173 0316  [ C857C08D2C94B5E3E801895A37B91981 ] C:\Windows\System32\KBDPL1.DLL
14:58:04.0173 0316  C:\Windows\System32\KBDPL1.DLL - ok
14:58:04.0181 0316  [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\System32\RpcRtRemote.dll
14:58:04.0181 0316  C:\Windows\System32\RpcRtRemote.dll - ok
14:58:04.0190 0316  [ A32DFD02B72403CE0F9A7BB3CF7CB8AA ] C:\Windows\System32\KBDPL.DLL
14:58:04.0190 0316  C:\Windows\System32\KBDPL.DLL - ok
14:58:04.0199 0316  [ C25F054900BD3CC5C333E7B0FA75DA91 ] C:\Windows\System32\KBDUSX.DLL
14:58:04.0199 0316  C:\Windows\System32\KBDUSX.DLL - ok
14:58:04.0207 0316  [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\System32\sxs.dll
14:58:04.0207 0316  C:\Windows\System32\sxs.dll - ok
14:58:04.0216 0316  [ 633C2C060CF857099F6C4F8D75C952B1 ] C:\Windows\System32\WlS0WndH.dll
14:58:04.0216 0316  C:\Windows\System32\WlS0WndH.dll - ok
14:58:04.0228 0316  [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\System32\cryptbase.dll
14:58:04.0228 0316  C:\Windows\System32\cryptbase.dll - ok
14:58:04.0236 0316  [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\System32\apphelp.dll
14:58:04.0236 0316  C:\Windows\System32\apphelp.dll - ok
14:58:04.0245 0316  [ 81951F51E318AECC2D68559E47485CC4 ] C:\Windows\System32\lsass.exe
14:58:04.0245 0316  C:\Windows\System32\lsass.exe - ok
14:58:04.0255 0316  [ 8AEA9A37C1A3565A204D37C5E72AB791 ] C:\Windows\System32\lsm.exe
14:58:04.0255 0316  C:\Windows\System32\lsm.exe - ok
14:58:04.0263 0316  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\System32\services.exe
14:58:04.0264 0316  C:\Windows\System32\services.exe - ok
14:58:04.0272 0316  [ F7958C94559D5030F5023F14D46B9F2F ] C:\Windows\System32\drivers\e4usbaw.sys
14:58:04.0272 0316  C:\Windows\System32\drivers\e4usbaw.sys - ok
14:58:04.0280 0316  [ 4A054C853031616D161A84BECF281F47 ] C:\Windows\System32\sspicli.dll
14:58:04.0280 0316  C:\Windows\System32\sspicli.dll - ok
14:58:04.0289 0316  [ E361AE3010EA4B3123DAB5BDAE21798F ] C:\Windows\System32\sspisrv.dll
14:58:04.0290 0316  C:\Windows\System32\sspisrv.dll - ok
14:58:04.0298 0316  [ CAEF9CD6C10B1017E2C298D849CD31DB ] C:\Windows\System32\cdd.dll
14:58:04.0298 0316  C:\Windows\System32\cdd.dll - ok
14:58:04.0306 0316  [ C95CA687D32DDAB1C91E1122E80D5E16 ] C:\Windows\System32\lsasrv.dll
14:58:04.0307 0316  C:\Windows\System32\lsasrv.dll - ok
14:58:04.0315 0316  [ 250AA41DE690561AF1282D598914564C ] C:\Windows\System32\scesrv.dll
14:58:04.0315 0316  C:\Windows\System32\scesrv.dll - ok
14:58:04.0324 0316  [ 3369D021265E369D57317D61FA86DD79 ] C:\Windows\System32\scext.dll
14:58:04.0324 0316  C:\Windows\System32\scext.dll - ok
14:58:04.0332 0316  [ 69678722290C78D5D7198C60B5A4E3E8 ] C:\Windows\System32\secur32.dll
14:58:04.0332 0316  C:\Windows\System32\secur32.dll - ok
14:58:04.0340 0316  [ BA51FFE170C5B3AE8EC4F5BD2581A29E ] C:\Windows\System32\sysntfy.dll
14:58:04.0340 0316  C:\Windows\System32\sysntfy.dll - ok
14:58:04.0349 0316  [ D412B1B72C5AB020218E9A047D90CA05 ] C:\Windows\System32\wmsgapi.dll
14:58:04.0349 0316  C:\Windows\System32\wmsgapi.dll - ok
14:58:04.0358 0316  [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\System32\srvcli.dll
14:58:04.0358 0316  C:\Windows\System32\srvcli.dll - ok
14:58:04.0368 0316  [ 245F4691314F42D4D1BC06442F0B2086 ] C:\Windows\System32\samsrv.dll
14:58:04.0369 0316  C:\Windows\System32\samsrv.dll - ok
14:58:04.0378 0316  [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\System32\cryptdll.dll
14:58:04.0378 0316  C:\Windows\System32\cryptdll.dll - ok
14:58:04.0385 0316  [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\Windows\System32\wevtapi.dll
14:58:04.0386 0316  C:\Windows\System32\wevtapi.dll - ok
14:58:04.0394 0316  [ FB4EB9352B7D698E6B3C2AA2ED724DAD ] C:\Windows\System32\authz.dll
14:58:04.0394 0316  C:\Windows\System32\authz.dll - ok
14:58:04.0402 0316  [ 50BA656134F78AF64E4DD3C8B6FEFD7E ] C:\Windows\System32\cngaudit.dll
14:58:04.0403 0316  C:\Windows\System32\cngaudit.dll - ok
14:58:04.0411 0316  [ 591FE0A6CEB19BF886CEB1331F591940 ] C:\Windows\System32\ncrypt.dll
14:58:04.0411 0316  C:\Windows\System32\ncrypt.dll - ok
14:58:04.0419 0316  [ FC7650224790CAE75A5E9231961FDEC5 ] C:\Windows\System32\bcrypt.dll
14:58:04.0420 0316  C:\Windows\System32\bcrypt.dll - ok
14:58:04.0428 0316  [ C90878913DF3DC504790282043DB5F4C ] C:\Windows\System32\msprivs.dll
14:58:04.0428 0316  C:\Windows\System32\msprivs.dll - ok
14:58:04.0437 0316  [ E343CABBD8D600ABAF3F11625D33B3D0 ] C:\Windows\System32\netjoin.dll
14:58:04.0437 0316  C:\Windows\System32\netjoin.dll - ok
14:58:04.0445 0316  [ 6DCFAEC6D1334AA6CDF8961DB4633CBF ] C:\Windows\System32\negoexts.dll
14:58:04.0445 0316  C:\Windows\System32\negoexts.dll - ok
14:58:04.0454 0316  [ BDA0B954A30498B5A7EDC6204CBA07ED ] C:\Windows\System32\kerberos.dll
14:58:04.0454 0316  C:\Windows\System32\kerberos.dll - ok
14:58:04.0463 0316  [ 6D13E1406F50C66E2A95D97F22C47560 ] C:\Windows\System32\winlogon.exe
14:58:04.0464 0316  C:\Windows\System32\winlogon.exe - ok
14:58:04.0474 0316  [ FD1D6C73E6333BE727CBCC6054247654 ] C:\Windows\System32\drivers\TsUsbFlt.sys
14:58:04.0474 0316  C:\Windows\System32\drivers\TsUsbFlt.sys - ok
14:58:04.0482 0316  [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\System32\cryptsp.dll
14:58:04.0482 0316  C:\Windows\System32\cryptsp.dll - ok
14:58:04.0490 0316  [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\System32\mswsock.dll
14:58:04.0490 0316  C:\Windows\System32\mswsock.dll - ok
14:58:04.0499 0316  [ 702254574E7E52052DE39408457B7149 ] C:\Windows\System32\version.dll
14:58:04.0499 0316  C:\Windows\System32\version.dll - ok
14:58:04.0507 0316  [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\System32\winsta.dll
14:58:04.0508 0316  C:\Windows\System32\winsta.dll - ok
14:58:04.0516 0316  [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\System32\wship6.dll
14:58:04.0516 0316  C:\Windows\System32\wship6.dll - ok
14:58:04.0525 0316  [ 4C1E16B9A53102C8D6FBA587CBCB95DE ] C:\Windows\System32\msv1_0.dll
14:58:04.0525 0316  C:\Windows\System32\msv1_0.dll - ok
14:58:04.0533 0316  [ C1809B9907ADEDAF16F50C894100883B ] C:\Windows\System32\netlogon.dll
14:58:04.0533 0316  C:\Windows\System32\netlogon.dll - ok
14:58:04.0541 0316  [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\System32\dnsapi.dll
14:58:04.0542 0316  C:\Windows\System32\dnsapi.dll - ok
14:58:04.0551 0316  [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\Windows\System32\logoncli.dll
14:58:04.0551 0316  C:\Windows\System32\logoncli.dll - ok
14:58:04.0559 0316  [ 3D3CBD1847F980FB03343A63671E7886 ] C:\Windows\System32\schannel.dll
14:58:04.0559 0316  C:\Windows\System32\schannel.dll - ok
14:58:04.0569 0316  [ 0450CF487ECD8A67B56F59F9A96D024D ] C:\Windows\System32\wdigest.dll
14:58:04.0569 0316  C:\Windows\System32\wdigest.dll - ok
14:58:04.0577 0316  [ 37CC990D4E2CDFAE12AC47F6B620FC13 ] C:\Windows\System32\pku2u.dll
14:58:04.0577 0316  C:\Windows\System32\pku2u.dll - ok
14:58:04.0585 0316  [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\System32\rsaenh.dll
14:58:04.0586 0316  C:\Windows\System32\rsaenh.dll - ok
14:58:04.0596 0316  [ D29E45078CF4020CE0AAC82EC652D1EA ] C:\Windows\System32\TSpkg.dll
14:58:04.0596 0316  C:\Windows\System32\TSpkg.dll - ok
14:58:04.0605 0316  [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\System32\bcryptprimitives.dll
14:58:04.0605 0316  C:\Windows\System32\bcryptprimitives.dll - ok
14:58:04.0613 0316  [ 45DAF17CA094EB0A3E7A3955B31F03B6 ] C:\Windows\System32\LIVESSP.DLL
14:58:04.0614 0316  C:\Windows\System32\LIVESSP.DLL - ok
14:58:04.0622 0316  [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\System32\credssp.dll
14:58:04.0622 0316  C:\Windows\System32\credssp.dll - ok
14:58:04.0630 0316  [ 91F434FF6606ED9BDC6A05D651B69553 ] C:\Windows\System32\efslsaext.dll
14:58:04.0631 0316  C:\Windows\System32\efslsaext.dll - ok
14:58:04.0639 0316  [ 8124944EC89D6A1815E4E53F5B96AAF4 ] C:\Windows\System32\scecli.dll
14:58:04.0639 0316  C:\Windows\System32\scecli.dll - ok
14:58:04.0647 0316  [ 7222995615BF93B628DCEA4BD6CCACF7 ] C:\Windows\System32\ubpm.dll
14:58:04.0647 0316  C:\Windows\System32\ubpm.dll - ok
14:58:04.0656 0316  [ 54A47F6B5E09A77E61649109C6A08866 ] C:\Windows\System32\svchost.exe
14:58:04.0656 0316  C:\Windows\System32\svchost.exe - ok
14:58:04.0665 0316  [ EC7BC28D207DA09E79B3E9FAF8B232CA ] C:\Windows\System32\umpnpmgr.dll
14:58:04.0665 0316  C:\Windows\System32\umpnpmgr.dll - ok
14:58:04.0673 0316  [ FD07F21E0A19C27ED4E1EEC2B07452B3 ] C:\Windows\System32\devrtl.dll
14:58:04.0674 0316  C:\Windows\System32\devrtl.dll - ok
14:58:04.0681 0316  [ 4BDBBE5E4208022DD794F7EEEB0F7366 ] C:\Windows\System32\SPInf.dll
14:58:04.0681 0316  C:\Windows\System32\SPInf.dll - ok
14:58:04.0690 0316  [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\System32\gpapi.dll
14:58:04.0690 0316  C:\Windows\System32\gpapi.dll - ok
14:58:04.0701 0316  [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\System32\userenv.dll
14:58:04.0701 0316  C:\Windows\System32\userenv.dll - ok
14:58:04.0711 0316  [ F87D30E72E03D579A5199CCB3831D6EA ] C:\Windows\System32\umpo.dll
14:58:04.0712 0316  C:\Windows\System32\umpo.dll - ok
14:58:04.0720 0316  [ 5893EBDCE371174AC89ECD7731DD6D77 ] C:\Windows\System32\pcwum.dll
14:58:04.0720 0316  C:\Windows\System32\pcwum.dll - ok
14:58:04.0728 0316  [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\System32\powrprof.dll
14:58:04.0729 0316  C:\Windows\System32\powrprof.dll - ok
14:58:04.0737 0316  [ 6703E366CC18D3B6E534F5CF7DF39CEE ] C:\Windows\System32\drivers\luafv.sys
14:58:04.0737 0316  C:\Windows\System32\drivers\luafv.sys - ok
14:58:04.0746 0316  [ A5C175039B1D6D85D0E79F5855828E4D ] C:\Windows\System32\drivers\avgntflt.sys
14:58:04.0746 0316  C:\Windows\System32\drivers\avgntflt.sys - ok
14:58:04.0755 0316  [ 961414DACB73858B0A2E9075AB2D1EA8 ] C:\Windows\System32\drivers\ousbehci.sys
14:58:04.0755 0316  C:\Windows\System32\drivers\ousbehci.sys - ok
14:58:04.0764 0316  [ EB5A13F9139F20AD71ADF4BF79C3AA29 ] C:\Windows\System32\nvvsvc.exe
14:58:04.0764 0316  C:\Windows\System32\nvvsvc.exe - ok
14:58:04.0779 0316  [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\System32\wtsapi32.dll
14:58:04.0779 0316  C:\Windows\System32\wtsapi32.dll - ok
14:58:04.0787 0316  [ 7660F01D3B38ACA1747E397D21D790AF ] C:\Windows\System32\rpcss.dll
14:58:04.0788 0316  C:\Windows\System32\rpcss.dll - ok
14:58:04.0796 0316  [ 78D072F35BC45D9E4E1B61895C152234 ] C:\Windows\System32\RpcEpMap.dll
14:58:04.0796 0316  C:\Windows\System32\RpcEpMap.dll - ok
14:58:04.0808 0316  [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\System32\wshqos.dll
14:58:04.0808 0316  C:\Windows\System32\wshqos.dll - ok
14:58:04.0818 0316  [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\System32\WSHTCPIP.DLL
14:58:04.0818 0316  C:\Windows\System32\WSHTCPIP.DLL - ok
14:58:04.0827 0316  [ 3F50200237961034FACE602373838980 ] C:\Windows\System32\FirewallAPI.dll
14:58:04.0827 0316  C:\Windows\System32\FirewallAPI.dll - ok
14:58:04.0835 0316  [ 3EF0D8AB08385AAB5802E773511A2E6A ] C:\Windows\System32\LogonUI.exe
14:58:04.0835 0316  C:\Windows\System32\LogonUI.exe - ok
14:58:04.0844 0316  [ 241E015DD809CFB23242F890B1FC575B ] C:\Windows\System32\wevtsvc.dll
14:58:04.0844 0316  C:\Windows\System32\wevtsvc.dll - ok
14:58:04.0853 0316  [ CDD35C1CE1EBFE80C055691CDC8DF443 ] C:\Windows\System32\authui.dll
14:58:04.0853 0316  C:\Windows\System32\authui.dll - ok
14:58:04.0861 0316  [ 28CA821606669BB9215CE010767720FA ] C:\Windows\System32\cryptui.dll
14:58:04.0861 0316  C:\Windows\System32\cryptui.dll - ok
14:58:04.0870 0316  [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
14:58:04.0870 0316  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
14:58:04.0879 0316  [ CE3B4E731638D2EF62FCB419BE0D39F0 ] C:\Windows\System32\audiosrv.dll
14:58:04.0879 0316  C:\Windows\System32\audiosrv.dll - ok
14:58:04.0888 0316  [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\System32\netprofm.dll
14:58:04.0888 0316  C:\Windows\System32\netprofm.dll - ok
14:58:04.0896 0316  [ AC8C80DC4F1A6E60C9A762C1799F0B39 ] C:\Windows\System32\adtschema.dll
14:58:04.0896 0316  C:\Windows\System32\adtschema.dll - ok
14:58:04.0905 0316  [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\System32\avrt.dll
14:58:04.0905 0316  C:\Windows\System32\avrt.dll - ok
14:58:04.0913 0316  [ 146B6F43A673379A3C670E86D89BE5EA ] C:\Windows\System32\mmcss.dll
14:58:04.0914 0316  C:\Windows\System32\mmcss.dll - ok
14:58:04.0922 0316  [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\System32\MMDevAPI.dll
14:58:04.0922 0316  C:\Windows\System32\MMDevAPI.dll - ok
14:58:04.0930 0316  [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\System32\propsys.dll
14:58:04.0933 0316  C:\Windows\System32\propsys.dll - ok
14:58:04.0942 0316  [ 8B0B4C5927A333A05513791758350DC4 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
14:58:04.0942 0316  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
14:58:04.0951 0316  [ F14A9B1778376D0B1788E402AC1F831A ] C:\Windows\System32\shacct.dll
14:58:04.0951 0316  C:\Windows\System32\shacct.dll - ok
14:58:04.0959 0316  [ D5CF1536137026ACDED95BF6CBF849F6 ] C:\Windows\System32\WUDFPlatform.dll
14:58:04.0959 0316  C:\Windows\System32\WUDFPlatform.dll - ok
14:58:04.0968 0316  [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\System32\samlib.dll
14:58:04.0968 0316  C:\Windows\System32\samlib.dll - ok
14:58:04.0977 0316  [ 63BFDF555DA2075A77D677829C3CCCD0 ] C:\Windows\System32\uxtheme.dll
14:58:04.0977 0316  C:\Windows\System32\uxtheme.dll - ok
14:58:04.0986 0316  [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
14:58:04.0986 0316  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
14:58:04.0995 0316  [ 7520EC808E0C35E0EE6F841294316653 ] C:\Windows\System32\drivers\fltMgr.sys
14:58:04.0995 0316  C:\Windows\System32\drivers\fltMgr.sys - ok
14:58:05.0004 0316  [ D93A937A2A9D2CBC06B3A615A197011F ] C:\Windows\System32\PSHED.DLL
14:58:05.0004 0316  C:\Windows\System32\PSHED.DLL - ok
14:58:05.0012 0316  [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\System32\dui70.dll
14:58:05.0012 0316  C:\Windows\System32\dui70.dll - ok
14:58:05.0020 0316  [ 1319CD4619E96B156911CA3897563EBC ] C:\Windows\System32\ci.dll
14:58:05.0020 0316  C:\Windows\System32\ci.dll - ok
14:58:05.0029 0316  [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\System32\duser.dll
14:58:05.0029 0316  C:\Windows\System32\duser.dll - ok
14:58:05.0037 0316  [ 2CFA4569350B7F84F815E9EC34E85766 ] C:\Windows\System32\SndVolSSO.dll
14:58:05.0038 0316  C:\Windows\System32\SndVolSSO.dll - ok
14:58:05.0046 0316  [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\System32\hid.dll
14:58:05.0046 0316  C:\Windows\System32\hid.dll - ok
14:58:05.0057 0316  [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\System32\dwmapi.dll
14:58:05.0057 0316  C:\Windows\System32\dwmapi.dll - ok
14:58:05.0066 0316  [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\System32\xmllite.dll
14:58:05.0066 0316  C:\Windows\System32\xmllite.dll - ok
14:58:05.0075 0316  [ 1F5497D7D3D79C7BF0AB0C8B4C5BFE6E ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
14:58:05.0075 0316  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
14:58:05.0084 0316  [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\System32\WindowsCodecs.dll
14:58:05.0084 0316  C:\Windows\System32\WindowsCodecs.dll - ok
14:58:05.0092 0316  [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\System32\winbrand.dll
14:58:05.0093 0316  C:\Windows\System32\winbrand.dll - ok
14:58:05.0101 0316  [ 65BF13016A3C22775F3E17591AE5268A ] C:\Windows\System32\VaultCredProvider.dll
14:58:05.0101 0316  C:\Windows\System32\VaultCredProvider.dll - ok
14:58:05.0110 0316  [ 05BF975CA428E04B462FB90841B37C95 ] C:\Windows\System32\SmartcardCredentialProvider.dll
14:58:05.0110 0316  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
14:58:05.0118 0316  [ E59F08ED9D2A128CE436BBFC232247F6 ] C:\Windows\System32\BioCredProv.dll
14:58:05.0118 0316  C:\Windows\System32\BioCredProv.dll - ok
14:58:05.0127 0316  [ 108C2CFA5527458C096A699929ECBD80 ] C:\Windows\System32\credui.dll
14:58:05.0127 0316  C:\Windows\System32\credui.dll - ok
14:58:05.0136 0316  [ 36B8D5903CEEF0AA42A1EE002BD27FF1 ] C:\Windows\System32\vaultcli.dll
14:58:05.0136 0316  C:\Windows\System32\vaultcli.dll - ok
14:58:05.0144 0316  [ 3FAD263CE1E2A6FFF40D00043B2275E3 ] C:\Windows\System32\winbio.dll
14:58:05.0144 0316  C:\Windows\System32\winbio.dll - ok
14:58:05.0153 0316  [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\System32\netapi32.dll
14:58:05.0153 0316  C:\Windows\System32\netapi32.dll - ok
14:58:05.0161 0316  [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\System32\netutils.dll
14:58:05.0161 0316  C:\Windows\System32\netutils.dll - ok
14:58:05.0169 0316  [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\System32\samcli.dll
14:58:05.0170 0316  C:\Windows\System32\samcli.dll - ok
14:58:05.0180 0316  [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\System32\wkscli.dll
14:58:05.0180 0316  C:\Windows\System32\wkscli.dll - ok
14:58:05.0187 0316  [ 6D8CACF3B1B54943EFCF420C2D667B37 ] C:\Windows\System32\certCredProvider.dll
14:58:05.0187 0316  C:\Windows\System32\certCredProvider.dll - ok
14:58:05.0197 0316  [ F598DCBF5B7171362A2418E27D73276B ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDCREDPROV.DLL
14:58:05.0198 0316  C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDCREDPROV.DLL - ok
14:58:05.0206 0316  [ FFE4BEC5C187C426A17AE76A773063A6 ] C:\Windows\System32\rasplap.dll
14:58:05.0206 0316  C:\Windows\System32\rasplap.dll - ok
14:58:05.0215 0316  [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\System32\rasapi32.dll
14:58:05.0215 0316  C:\Windows\System32\rasapi32.dll - ok
14:58:05.0223 0316  [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\System32\rasman.dll
14:58:05.0224 0316  C:\Windows\System32\rasman.dll - ok
14:58:05.0232 0316  [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\System32\rtutils.dll
14:58:05.0232 0316  C:\Windows\System32\rtutils.dll - ok
14:58:05.0240 0316  [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\System32\oleacc.dll
14:58:05.0240 0316  C:\Windows\System32\oleacc.dll - ok
14:58:05.0249 0316  [ FD049C25A168D3DE310D9207B7B6367B ] C:\Windows\System32\UIAutomationCore.dll
14:58:05.0249 0316  C:\Windows\System32\UIAutomationCore.dll - ok
14:58:05.0258 0316  [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\System32\msimg32.dll
14:58:05.0258 0316  C:\Windows\System32\msimg32.dll - ok
14:58:05.0266 0316  [ F68194F74350D4A2ADE98961E33F884C ] C:\Windows\System32\audiodg.exe
14:58:05.0266 0316  C:\Windows\System32\audiodg.exe - ok
14:58:05.0275 0316  [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\System32\ntmarta.dll
14:58:05.0275 0316  C:\Windows\System32\ntmarta.dll - ok
14:58:05.0286 0316  [ 15F93B37F6801943360D9EB42485D5D3 ] C:\Windows\System32\cscsvc.dll
14:58:05.0286 0316  C:\Windows\System32\cscsvc.dll - ok
14:58:05.0292 0316  [ E897EAF5ED6BA41E081060C9B447A673 ] C:\Windows\System32\gpsvc.dll
14:58:05.0292 0316  C:\Windows\System32\gpsvc.dll - ok
14:58:05.0303 0316  [ 50E0DD0A5B8D8BC353578F2F73926697 ] C:\Windows\System32\nlaapi.dll
14:58:05.0303 0316  C:\Windows\System32\nlaapi.dll - ok
14:58:05.0311 0316  [ CADEFAC453040E370A1BDFF3973BE00D ] C:\Windows\System32\profsvc.dll
14:58:05.0312 0316  C:\Windows\System32\profsvc.dll - ok
14:58:05.0320 0316  [ 42FB6AFD6B79D9FE07381609172E7CA4 ] C:\Windows\System32\themeservice.dll
14:58:05.0320 0316  C:\Windows\System32\themeservice.dll - ok
14:58:05.0328 0316  [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\System32\atl.dll
14:58:05.0328 0316  C:\Windows\System32\atl.dll - ok
14:58:05.0337 0316  [ 772F44012DBE49DE894976AE2259A659 ] C:\Windows\System32\PeerDist.dll
14:58:05.0337 0316  C:\Windows\System32\PeerDist.dll - ok
14:58:05.0345 0316  [ 2F040CF0613A6D64DCBBA9EE81F5A5AE ] C:\Windows\System32\dsrole.dll
14:58:05.0345 0316  C:\Windows\System32\dsrole.dll - ok
14:58:05.0354 0316  [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\System32\slc.dll
14:58:05.0354 0316  C:\Windows\System32\slc.dll - ok
14:58:05.0363 0316  [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\System32\taskschd.dll
14:58:05.0363 0316  C:\Windows\System32\taskschd.dll - ok
14:58:05.0371 0316  [ F6916EFC29D9953D5D0DF06882AE8E16 ] C:\Windows\System32\es.dll
14:58:05.0371 0316  C:\Windows\System32\es.dll - ok
14:58:05.0380 0316  [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\System32\mstask.dll
14:58:05.0380 0316  C:\Windows\System32\mstask.dll - ok
14:58:05.0388 0316  [ 808D8A8B2A3074002852BC856D419576 ] C:\Windows\System32\comres.dll
14:58:05.0388 0316  C:\Windows\System32\comres.dll - ok
14:58:05.0397 0316  [ DCB7FCDCC97F87360F75D77425B81737 ] C:\Windows\System32\Sens.dll
14:58:05.0398 0316  C:\Windows\System32\Sens.dll - ok
14:58:05.0407 0316  [ A12829E9974F57E9B5DBFEA7C93190F6 ] C:\Windows\System32\UXInit.dll
14:58:05.0407 0316  C:\Windows\System32\UXInit.dll - ok
14:58:05.0416 0316  [ 081E6E1C91AEC36758902A9F727CD23C ] C:\Windows\System32\uxsms.dll
14:58:05.0416 0316  C:\Windows\System32\uxsms.dll - ok
14:58:05.0424 0316  [ F7611EC07349979DA9B0AE1F18CCC7A6 ] C:\Windows\System32\drivers\lltdio.sys
14:58:05.0424 0316  C:\Windows\System32\drivers\lltdio.sys - ok
14:58:05.0433 0316  [ 032B0D36AD92B582D869879F5AF5B928 ] C:\Windows\System32\drivers\rspndr.sys
14:58:05.0433 0316  C:\Windows\System32\drivers\rspndr.sys - ok
14:58:05.0441 0316  [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\System32\IPHLPAPI.DLL
14:58:05.0441 0316  C:\Windows\System32\IPHLPAPI.DLL - ok
14:58:05.0450 0316  [ 55CA01BA19D0006C8F2639B6C045E08B ] C:\Windows\System32\lmhsvc.dll
14:58:05.0450 0316  C:\Windows\System32\lmhsvc.dll - ok
14:58:05.0458 0316  [ BA387E955E890C8A88306D9B8D06BF17 ] C:\Windows\System32\nsisvc.dll
14:58:05.0458 0316  C:\Windows\System32\nsisvc.dll - ok
14:58:05.0467 0316  [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\System32\winnsi.dll
14:58:05.0467 0316  C:\Windows\System32\winnsi.dll - ok
14:58:05.0475 0316  [ D2A937964199F647B1C3BC435712E5D9 ] C:\Windows\System32\nrpsrv.dll
14:58:05.0475 0316  C:\Windows\System32\nrpsrv.dll - ok
14:58:05.0484 0316  [ E9E01EB683C132F7FA27CD607B8A2B63 ] C:\Windows\System32\dhcpcore.dll
14:58:05.0484 0316  C:\Windows\System32\dhcpcore.dll - ok
14:58:05.0492 0316  [ EF71BA5DF59034962B0C62314A71351A ] C:\Windows\System32\dhcpcore6.dll
14:58:05.0492 0316  C:\Windows\System32\dhcpcore6.dll - ok
14:58:05.0501 0316  [ C71F2B4D0151CFEDE5D405C5D60B6FCE ] C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
14:58:05.0501 0316  C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe - ok
14:58:05.0510 0316  [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\System32\imageres.dll
14:58:05.0510 0316  C:\Windows\System32\imageres.dll - ok
14:58:05.0518 0316  [ 33EF4861F19A0736B11314AAD9AE28D0 ] C:\Windows\System32\dnsrslvr.dll
14:58:05.0518 0316  C:\Windows\System32\dnsrslvr.dll - ok
14:58:05.0528 0316  [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\System32\FWPUCLNT.DLL
14:58:05.0528 0316  C:\Windows\System32\FWPUCLNT.DLL - ok
14:58:05.0538 0316  [ DEC53E152E18541D3D585794D99F02B7 ] C:\Windows\System32\nvsvc.dll
14:58:05.0538 0316  C:\Windows\System32\nvsvc.dll - ok
14:58:05.0546 0316  [ 100103C6535C66265267F5EEA5F5846E ] C:\Windows\System32\dnsext.dll
14:58:05.0546 0316  C:\Windows\System32\dnsext.dll - ok
14:58:05.0555 0316  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\System32\dhcpcsvc.dll
14:58:05.0555 0316  C:\Windows\System32\dhcpcsvc.dll - ok
14:58:05.0563 0316  [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\System32\dhcpcsvc6.dll
14:58:05.0564 0316  C:\Windows\System32\dhcpcsvc6.dll - ok
14:58:05.0570 0316  [ 11695C9D4ADB2E9C6C5B0B6447F4EAD7 ] C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll
14:58:05.0570 0316  C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll - ok
14:58:05.0578 0316  [ 414DA952A35BF5D50192E28263B40577 ] C:\Windows\System32\shsvcs.dll
14:58:05.0578 0316  C:\Windows\System32\shsvcs.dll - ok
14:58:05.0587 0316  [ A04BB13F8A72F8B6E8B4071723E4E336 ] C:\Windows\System32\schedsvc.dll
14:58:05.0587 0316  C:\Windows\System32\schedsvc.dll - ok
14:58:05.0595 0316  [ 38B13C0DF479DBA23ECFA815159BA86E ] C:\Windows\System32\ktmw32.dll
14:58:05.0595 0316  C:\Windows\System32\ktmw32.dll - ok
14:58:05.0604 0316  [ 4ED8382D5F1C9D2028FBDA35E3B2DD47 ] C:\Program Files\NVIDIA Corporation\Display\nvui.dll
14:58:05.0604 0316  C:\Program Files\NVIDIA Corporation\Display\nvui.dll - ok
14:58:05.0612 0316  [ E6D90DC604F407B3B5E0FD285E46B2A0 ] C:\Windows\System32\fveapi.dll
14:58:05.0612 0316  C:\Windows\System32\fveapi.dll - ok
14:58:05.0620 0316  [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\System32\mscms.dll
14:58:05.0620 0316  C:\Windows\System32\mscms.dll - ok
14:58:05.0629 0316  [ C87F28A34B3840F4B40011D170B1A159 ] C:\Windows\System32\fvecerts.dll
14:58:05.0629 0316  C:\Windows\System32\fvecerts.dll - ok
14:58:05.0637 0316  [ 1C3E8371377E988B683797A132EFFE1B ] C:\Windows\System32\taskcomp.dll
14:58:05.0637 0316  C:\Windows\System32\taskcomp.dll - ok
14:58:05.0646 0316  [ EAFC149CD3BD78C443E31BB157841197 ] C:\Windows\System32\tbs.dll
14:58:05.0646 0316  C:\Windows\System32\tbs.dll - ok
14:58:05.0655 0316  [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\System32\winmm.dll
14:58:05.0655 0316  C:\Windows\System32\winmm.dll - ok
14:58:05.0663 0316  [ CEDE7CB889F5BAE7B6FA90C8BBA79498 ] C:\Windows\System32\nvapi.dll
14:58:05.0663 0316  C:\Windows\System32\nvapi.dll - ok
14:58:05.0671 0316  [ 871917B07A141BFF43D76D8844D48106 ] C:\Windows\System32\drivers\http.sys
14:58:05.0671 0316  C:\Windows\System32\drivers\http.sys - ok
14:58:05.0680 0316  [ 9AEA093B8F9C37CF45538382CABA2475 ] C:\Windows\System32\spoolsv.exe
14:58:05.0680 0316  C:\Windows\System32\spoolsv.exe - ok
14:58:05.0688 0316  [ D89562A6AE8E07A457452E5B5560EB43 ] C:\Program Files\Avira\AntiVir Desktop\sched.exe
14:58:05.0689 0316  C:\Program Files\Avira\AntiVir Desktop\sched.exe - ok
14:58:05.0697 0316  [ E2D56AE1D40E3725084054CD8E9CFBB1 ] C:\Windows\System32\wiarpc.dll
14:58:05.0697 0316  C:\Windows\System32\wiarpc.dll - ok
14:58:05.0706 0316  [ BC83108B18756547013ED443B8CDB31B ] C:\Windows\System32\msvcp100.dll
14:58:05.0706 0316  C:\Windows\System32\msvcp100.dll - ok
14:58:05.0714 0316  [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Windows\System32\msvcr100.dll
14:58:05.0714 0316  C:\Windows\System32\msvcr100.dll - ok
14:58:05.0723 0316  [ 6EC65C9134D01878EA83F68D0152F58C ] C:\Program Files\Avira\AntiVir Desktop\grdcore.dll
14:58:05.0723 0316  C:\Program Files\Avira\AntiVir Desktop\grdcore.dll - ok
14:58:05.0732 0316  [ 83626CD26490E20A21CED2D2ECC5B730 ] C:\Program Files\Avira\AntiVir Desktop\scewxmlw.dll
14:58:05.0732 0316  C:\Program Files\Avira\AntiVir Desktop\scewxmlw.dll - ok
14:58:05.0740 0316  [ 572CBECE3BAA034CD3AF3CBBA5A6F8F2 ] C:\Windows\System32\nvsvcr.dll
14:58:05.0743 0316  C:\Windows\System32\nvsvcr.dll - ok
14:58:05.0751 0316  [ 39B8DC5494F1BC4EB6DA7135A223C3F9 ] C:\Program Files\Avira\AntiVir Desktop\cfglib.dll
14:58:05.0751 0316  C:\Program Files\Avira\AntiVir Desktop\cfglib.dll - ok
14:58:05.0760 0316  [ 8E532E1D3E9B7F511B3B87756576EAC2 ] C:\Program Files\Avira\AntiVir Desktop\gpipc.dll
14:58:05.0760 0316  C:\Program Files\Avira\AntiVir Desktop\gpipc.dll - ok
14:58:05.0776 0316  [ 1E2BAC209D184BB851E1A187D8A29136 ] C:\Windows\System32\BFE.DLL
14:58:05.0776 0316  C:\Windows\System32\BFE.DLL - ok
14:58:05.0785 0316  [ 82C97C0835EDA73693639DEE5FF73551 ] C:\Program Files\Avira\AntiVir Desktop\gpgen.dll
14:58:05.0785 0316  C:\Program Files\Avira\AntiVir Desktop\gpgen.dll - ok
14:58:05.0794 0316  [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\System32\mpr.dll
14:58:05.0794 0316  C:\Windows\System32\mpr.dll - ok
14:58:05.0802 0316  [ 4D5264F9650D87D566490DD4204FC2F1 ] C:\Program Files\Avira\AntiVir Desktop\gpschd.dll
14:58:05.0802 0316  C:\Program Files\Avira\AntiVir Desktop\gpschd.dll - ok
14:58:05.0811 0316  [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
14:58:05.0811 0316  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
14:58:05.0820 0316  [ ECE0DE598297D3814E9891FC49D5BD59 ] C:\Program Files\Avira\AntiVir Desktop\avevtlog.dll
14:58:05.0820 0316  C:\Program Files\Avira\AntiVir Desktop\avevtlog.dll - ok
14:58:05.0829 0316  [ C725A69DB7E462FB0F2E84E3B7E83C4C ] C:\Program Files\Avira\AntiVir Desktop\schedr.dll
14:58:05.0829 0316  C:\Program Files\Avira\AntiVir Desktop\schedr.dll - ok
14:58:05.0838 0316  [ D920BBCBBECFF1081871E84826ADA2C0 ] C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll
14:58:05.0838 0316  C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll - ok
14:58:05.0846 0316  [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] C:\Windows\System32\drivers\bowser.sys
14:58:05.0846 0316  C:\Windows\System32\drivers\bowser.sys - ok
14:58:05.0855 0316  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] C:\Windows\System32\drivers\mpsdrv.sys
14:58:05.0855 0316  C:\Windows\System32\drivers\mpsdrv.sys - ok
14:58:05.0864 0316  [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] C:\Windows\System32\drivers\mrxsmb.sys
14:58:05.0866 0316  C:\Windows\System32\drivers\mrxsmb.sys - ok
14:58:05.0875 0316  [ 6D17A4791ACA19328C685D256349FEFC ] C:\Windows\System32\drivers\mrxsmb10.sys
14:58:05.0875 0316  C:\Windows\System32\drivers\mrxsmb10.sys - ok
14:58:05.0886 0316  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\System32\winspool.drv
14:58:05.0886 0316  C:\Windows\System32\winspool.drv - ok
14:58:05.0901 0316  [ B81F204D146000BE76651A50670A5E9E ] C:\Windows\System32\drivers\mrxsmb20.sys
14:58:05.0901 0316  C:\Windows\System32\drivers\mrxsmb20.sys - ok
14:58:05.0917 0316  [ 04D603957DA11F2A401D114B7FF9BF36 ] C:\Program Files\NVIDIA Corporation\Display\nvuir.dll
14:58:05.0917 0316  C:\Program Files\NVIDIA Corporation\Display\nvuir.dll - ok
14:58:05.0930 0316  [ 58405E4F68BA8E4057C6E914F326ABA2 ] C:\Windows\System32\wkssvc.dll
14:58:05.0931 0316  C:\Windows\System32\wkssvc.dll - ok
14:58:05.0948 0316  [ 9835584E999D25004E1EE8E5F3E3B881 ] C:\Windows\System32\MPSSVC.dll
14:58:05.0948 0316  C:\Windows\System32\MPSSVC.dll - ok
14:58:05.0979 0316  [ EB0A59F29C19B86479D36B35983DAADC ] C:\Windows\System32\drivers\parvdm.sys
14:58:05.0979 0316  C:\Windows\System32\drivers\parvdm.sys - ok
14:58:06.0006 0316  [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
14:58:06.0006 0316  C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
14:58:06.0025 0316  [ 019C372B1A9DA73A22D0D35A4D40F5C9 ] C:\Windows\System32\wfapigp.dll
14:58:06.0025 0316  C:\Windows\System32\wfapigp.dll - ok
14:58:06.0048 0316  [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
14:58:06.0048 0316  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
14:58:06.0070 0316  [ 358AB7956D3160000726574083DFC8A6 ] C:\Windows\System32\pcasvc.dll
14:58:06.0070 0316  C:\Windows\System32\pcasvc.dll - ok
14:58:06.0081 0316  [ E953EB70B3C4F0BA108C35D45420B86B ] C:\Program Files\Avira\AntiVir Desktop\avguard.exe
14:58:06.0081 0316  C:\Program Files\Avira\AntiVir Desktop\avguard.exe - ok
14:58:06.0094 0316  [ 96C0E38905CFD788313BE8E11DAE3F2F ] C:\Windows\System32\cryptsvc.dll
14:58:06.0094 0316  C:\Windows\System32\cryptsvc.dll - ok
14:58:06.0103 0316  [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\System32\cryptnet.dll
14:58:06.0103 0316  C:\Windows\System32\cryptnet.dll - ok
14:58:06.0118 0316  [ 13337A3FB17F2242487FD45488ED0485 ] C:\Windows\System32\vssapi.dll
14:58:06.0118 0316  C:\Windows\System32\vssapi.dll - ok
14:58:06.0127 0316  [ F04DF4C91F03A7DAAB3CC4B061F5F8A5 ] C:\Program Files\Avira\AntiVir Desktop\gpgrd.dll
14:58:06.0127 0316  C:\Program Files\Avira\AntiVir Desktop\gpgrd.dll - ok
14:58:06.0131 0316  [ AF2292ABEB5466D48EF8BFA7992A50AE ] C:\Program Files\Avira\AntiVir Desktop\gpavgio.dll
14:58:06.0131 0316  C:\Program Files\Avira\AntiVir Desktop\gpavgio.dll - ok
14:58:06.0141 0316  [ F838DF24EBBBCBB71086E1C48D885FE0 ] C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
14:58:06.0141 0316  C:\Program Files\LogMeIn Hamachi\hamachi-2.exe - ok
14:58:06.0151 0316  [ 8EC04CA86F1D68DA9E11952EB85973D6 ] C:\Windows\System32\dps.dll
14:58:06.0151 0316  C:\Windows\System32\dps.dll - ok
14:58:06.0161 0316  [ 6A984831644ECA1A33FFEAE4126F4F37 ] C:\Windows\System32\snmptrap.exe
14:58:06.0161 0316  C:\Windows\System32\snmptrap.exe - ok
14:58:06.0171 0316  [ 521B748A7F9923302CA18B7E6AA2EEAE ] C:\Windows\System32\activeds.dll
14:58:06.0171 0316  C:\Windows\System32\activeds.dll - ok
14:58:06.0171 0316  [ 72910F1DEB838E6E08A9017BFB7D4F0B ] C:\Windows\System32\browcli.dll
14:58:06.0171 0316  C:\Windows\System32\browcli.dll - ok
14:58:06.0181 0316  [ A2F17346CC5C502D4E29EF986BD17D34 ] C:\Windows\System32\PeerDistSh.dll
14:58:06.0181 0316  C:\Windows\System32\PeerDistSh.dll - ok
14:58:06.0191 0316  [ 51F5CC1E7DA3D9C664C2D0D61F315E06 ] C:\Windows\System32\adsldpc.dll
14:58:06.0191 0316  C:\Windows\System32\adsldpc.dll - ok
14:58:06.0201 0316  [ F95622F161474511B8D80D6B093AA610 ] C:\Windows\System32\IKEEXT.DLL
14:58:06.0201 0316  C:\Windows\System32\IKEEXT.DLL - ok
14:58:06.0211 0316  [ 1FF7E4F548C7C372C804938F0D5B36AE ] C:\Windows\System32\netcfgx.dll
14:58:06.0211 0316  C:\Windows\System32\netcfgx.dll - ok
14:58:06.0221 0316  [ 49E836F597F13803D6AD27C1ADA56198 ] C:\Program Files\Avira\AntiVir Desktop\gpgui.dll
14:58:06.0221 0316  C:\Program Files\Avira\AntiVir Desktop\gpgui.dll - ok
14:58:06.0231 0316  [ AE886E90CE0DE063DAA747B351F41C91 ] C:\Program Files\Avira\AntiVir Desktop\gpgavid.dll
14:58:06.0231 0316  C:\Program Files\Avira\AntiVir Desktop\gpgavid.dll - ok
14:58:06.0241 0316  [ DC5F2903158E3B1F0DFE0EEBB4501997 ] C:\Program Files\Avira\AntiVir Desktop\gplegacy.dll
14:58:06.0241 0316  C:\Program Files\Avira\AntiVir Desktop\gplegacy.dll - ok
14:58:06.0251 0316  [ 8F9F50F3810672AC36503B72A0B1808A ] C:\Program Files\Avira\AntiVir Desktop\libdb44.dll
14:58:06.0251 0316  C:\Program Files\Avira\AntiVir Desktop\libdb44.dll - ok
14:58:06.0251 0316  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] C:\Windows\System32\provsvc.dll
14:58:06.0251 0316  C:\Windows\System32\provsvc.dll - ok
14:58:06.0271 0316  [ D318F23BE45D5E3A107469EB64815B50 ] C:\Windows\System32\sstpsvc.dll
14:58:06.0271 0316  C:\Windows\System32\sstpsvc.dll - ok
14:58:06.0271 0316  [ B940289C83121046BD6A60ACC6028593 ] C:\Windows\System32\vsstrace.dll
14:58:06.0271 0316  C:\Windows\System32\vsstrace.dll - ok
14:58:06.0281 0316  [ 9E0104BA49F4E6973749A02BF41344ED ] C:\Windows\System32\drivers\PEAuth.sys
14:58:06.0281 0316  C:\Windows\System32\drivers\PEAuth.sys - ok
14:58:06.0291 0316  [ 140D9F911182357626165EA0BEB98C4F ] C:\Windows\System32\ncsi.dll
14:58:06.0291 0316  C:\Windows\System32\ncsi.dll - ok
14:58:06.0301 0316  [ 374071043F9E4231EE43BE2BB48DD36D ] C:\Windows\System32\nlasvc.dll
14:58:06.0301 0316  C:\Windows\System32\nlasvc.dll - ok
14:58:06.0311 0316  [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\System32\winhttp.dll
14:58:06.0311 0316  C:\Windows\System32\winhttp.dll - ok
14:58:06.0311 0316  [ 205E1B699FD3F2F9B036EEA2EC30C620 ] C:\Windows\System32\PnkBstrA.exe
14:58:06.0311 0316  C:\Windows\System32\PnkBstrA.exe - ok
14:58:06.0321 0316  [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\System32\webio.dll
14:58:06.0321 0316  C:\Windows\System32\webio.dll - ok
14:58:06.0336 0316  [ 28E2231BD34A39C854BDF3923AB2FF86 ] C:\Windows\System32\ssdpapi.dll
14:58:06.0336 0316  C:\Windows\System32\ssdpapi.dll - ok
14:58:06.0346 0316  [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\System32\wsock32.dll
14:58:06.0346 0316  C:\Windows\System32\wsock32.dll - ok
14:58:06.0353 0316  [ 4382BE35AEED19E6F7797347333EE988 ] C:\Program Files\Avira\AntiVir Desktop\gpgenrep.dll
14:58:06.0353 0316  C:\Program Files\Avira\AntiVir Desktop\gpgenrep.dll - ok
14:58:06.0363 0316  [ 4922409BDB159C5E5CA0F8F3703B059A ] C:\Program Files\Avira\AntiVir Desktop\onlcfg.dll
14:58:06.0363 0316  C:\Program Files\Avira\AntiVir Desktop\onlcfg.dll - ok
14:58:06.0373 0316  [ 29D717B151303045830E72B53FEFE73E ] C:\Program Files\Avira\AntiVir Desktop\guardmsg.dll
14:58:06.0373 0316  C:\Program Files\Avira\AntiVir Desktop\guardmsg.dll - ok
14:58:06.0373 0316  [ 02F4111F129B9910EF1AA4F33F62FD2A ] C:\Program Files\Avira\AntiVir Desktop\avipc.dll
14:58:06.0373 0316  C:\Program Files\Avira\AntiVir Desktop\avipc.dll - ok
14:58:06.0393 0316  [ 4E78E6587B4D5B014874E5938B3FBF5F ] C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll
14:58:06.0393 0316  C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll - ok
14:58:06.0393 0316  [ 90A3935D05B494A5A39D37E71F09A677 ] C:\Windows\System32\drivers\secdrv.sys
14:58:06.0393 0316  C:\Windows\System32\drivers\secdrv.sys - ok
14:58:06.0403 0316  [ B866E8C5ED1DCBEA72285BA4107892C2 ] C:\Program Files\Skype\Updater\Updater.exe
14:58:06.0403 0316  C:\Program Files\Skype\Updater\Updater.exe - ok
14:58:06.0413 0316  [ 3B313DD380E041BE611577D5ADC7DC97 ] C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll
14:58:06.0413 0316  C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll - ok
14:58:06.0423 0316  [ 5654A65F73DCD5B3CC0C84E3F3C58043 ] C:\Program Files\Avira\AntiVir Desktop\avgio.dll
14:58:06.0423 0316  C:\Program Files\Avira\AntiVir Desktop\avgio.dll - ok
14:58:06.0433 0316  [ 5845B1C54380FB980F68024B3A8B1E66 ] C:\Windows\System32\vpnikeapi.dll
14:58:06.0433 0316  C:\Windows\System32\vpnikeapi.dll - ok
14:58:06.0443 0316  [ 6B9117167660873D3CEDC719EE914105 ] C:\Program Files\Avira\AntiVir Desktop\aecore.dll
14:58:06.0443 0316  C:\Program Files\Avira\AntiVir Desktop\aecore.dll - ok
14:58:06.0453 0316  [ D8189B7966DFB524558294FEFF0BEA70 ] C:\Program Files\Avira\AntiVir Desktop\avpref.dll
14:58:06.0453 0316  C:\Program Files\Avira\AntiVir Desktop\avpref.dll - ok
14:58:06.0474 0316  [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\System32\fltLib.dll
14:58:06.0474 0316  C:\Windows\System32\fltLib.dll - ok
14:58:06.0486 0316  [ E75A782A8C218D03A0AF54325132BC70 ] C:\Program Files\Avira\AntiVir Desktop\aevdf.dll
14:58:06.0486 0316  C:\Program Files\Avira\AntiVir Desktop\aevdf.dll - ok
14:58:06.0501 0316  [ E35E8E2C639089FB28D6A60195BDFEA7 ] C:\Program Files\Avira\AntiVir Desktop\aescript.dll
14:58:06.0501 0316  C:\Program Files\Avira\AntiVir Desktop\aescript.dll - ok
14:58:06.0527 0316  [ 9BA2B36132A41AEBDA66C1D90F8470C2 ] C:\Windows\System32\nvcpl.dll
14:58:06.0527 0316  C:\Windows\System32\nvcpl.dll - ok
14:58:06.0541 0316  [ 9CAEE2820D405F643C2768AD4E9CBFFE ] C:\Program Files\Avira\AntiVir Desktop\aescn.dll
14:58:06.0541 0316  C:\Program Files\Avira\AntiVir Desktop\aescn.dll - ok
14:58:06.0549 0316  [ 64605B72B605DEDE66D38E3D7094E73B ] C:\Program Files\Avira\AntiVir Desktop\aesbx.dll
14:58:06.0549 0316  C:\Program Files\Avira\AntiVir Desktop\aesbx.dll - ok
14:58:06.0555 0316  [ BE6BD660CAA6F291AE06A718A4FA8ABC ] C:\Windows\System32\drivers\srvnet.sys
14:58:06.0555 0316  C:\Windows\System32\drivers\srvnet.sys - ok
14:58:06.0565 0316  [ DFA5E18FE9BF059ABA5F4E9B4B2B67F8 ] C:\Program Files\Avira\AntiVir Desktop\aerdl.dll
14:58:06.0565 0316  C:\Program Files\Avira\AntiVir Desktop\aerdl.dll - ok
14:58:06.0575 0316  [ 9C27C528D7A95443F64EBC7528531267 ] C:\Program Files\Avira\AntiVir Desktop\aepack.dll
14:58:06.0575 0316  C:\Program Files\Avira\AntiVir Desktop\aepack.dll - ok
14:58:06.0585 0316  [ 8D4CC7ED1EF309487345757C7A9B2C9F ] C:\Program Files\Avira\AntiVir Desktop\aeoffice.dll
14:58:06.0585 0316  C:\Program Files\Avira\AntiVir Desktop\aeoffice.dll - ok
14:58:06.0595 0316  [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] C:\Windows\System32\drivers\tcpipreg.sys
14:58:06.0595 0316  C:\Windows\System32\drivers\tcpipreg.sys - ok
14:58:06.0595 0316  [ 36650D618CA34C9D357DFD3D89B2C56F ] C:\Windows\System32\sysmain.dll
14:58:06.0595 0316  C:\Windows\System32\sysmain.dll - ok
14:58:06.0605 0316  [ E1FB3706030FB4578A0D72C2FC3689E4 ] C:\Windows\System32\wiaservc.dll
14:58:06.0605 0316  C:\Windows\System32\wiaservc.dll - ok
14:58:06.0625 0316  [ B5A97B6D5DF9F965C854B3EDA0755AB2 ] C:\Program Files\Avira\AntiVir Desktop\aeheur.dll
14:58:06.0625 0316  C:\Program Files\Avira\AntiVir Desktop\aeheur.dll - ok
14:58:06.0625 0316  [ 900ACDAD5D357BB26A571DCA1FD6AD36 ] C:\Program Files\Avira\AntiVir Desktop\aehelp.dll
14:58:06.0625 0316  C:\Program Files\Avira\AntiVir Desktop\aehelp.dll - ok
14:58:06.0635 0316  [ 87343253C37E1E5099429CAE483992E2 ] C:\Program Files\Avira\AntiVir Desktop\aegen.dll
14:58:06.0635 0316  C:\Program Files\Avira\AntiVir Desktop\aegen.dll - ok
14:58:06.0645 0316  [ 7B77884505F44BA1C75E9FAC217187C0 ] C:\Program Files\Avira\AntiVir Desktop\aeexp.dll
14:58:06.0645 0316  C:\Program Files\Avira\AntiVir Desktop\aeexp.dll - ok
14:58:06.0665 0316  [ 434049E557861645FA160F3035025F51 ] C:\Program Files\Avira\AntiVir Desktop\aebb.dll
14:58:06.0665 0316  C:\Program Files\Avira\AntiVir Desktop\aebb.dll - ok
14:58:06.0665 0316  [ CD7B65E600B8EBC91B292C1AC9EC1215 ] C:\Program Files\Avira\AntiVir Desktop\aeemu.dll
14:58:06.0665 0316  C:\Program Files\Avira\AntiVir Desktop\aeemu.dll - ok
14:58:06.0685 0316  [ B087F2B901570F6EF62F6C2E01A480F3 ] C:\Windows\System32\wiatrace.dll
14:58:06.0685 0316  C:\Windows\System32\wiatrace.dll - ok
14:58:06.0685 0316  [ 89D90579E5FB1469CB0464F6512E42B7 ] C:\Windows\System32\fundisc.dll
14:58:06.0685 0316  C:\Windows\System32\fundisc.dll - ok
14:58:06.0695 0316  [ AAF7BEB63E2CC499834B608A85A55E4E ] C:\Windows\System32\wsdchngr.dll
14:58:06.0695 0316  C:\Windows\System32\wsdchngr.dll - ok
14:58:06.0705 0316  [ D9A9702E43A5859896F34898D5FD3FEC ] C:\Windows\System32\msxml6.dll
14:58:06.0705 0316  C:\Windows\System32\msxml6.dll - ok
14:58:06.0715 0316  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] C:\Windows\System32\trkwks.dll
14:58:06.0715 0316  C:\Windows\System32\trkwks.dll - ok
14:58:06.0725 0316  [ F62E510B6AD4C21EB9FE8668ED251826 ] C:\Windows\System32\wbem\WMIsvc.dll
14:58:06.0725 0316  C:\Windows\System32\wbem\WMIsvc.dll - ok
14:58:06.0735 0316  [ 5E7C103F8475C4289847D15E129C20F7 ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
14:58:06.0735 0316  C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE - ok
14:58:06.0735 0316  [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\System32\wbemcomn.dll
14:58:06.0735 0316  C:\Windows\System32\wbemcomn.dll - ok
14:58:06.0755 0316  [ D475BBD6FEF8DB2DDE0DA7CCFD2C9042 ] C:\Program Files\Common Files\microsoft shared\Windows Live\SQMAPI.DLL
14:58:06.0755 0316  C:\Program Files\Common Files\microsoft shared\Windows Live\SQMAPI.DLL - ok
14:58:06.0765 0316  [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\System32\SensApi.dll
14:58:06.0765 0316  C:\Windows\System32\SensApi.dll - ok
14:58:06.0765 0316  [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\System32\wer.dll
14:58:06.0765 0316  C:\Windows\System32\wer.dll - ok
14:58:06.0775 0316  [ 881D9F2D6E04E1C323050CF1574870F7 ] C:\Windows\System32\wbem\WinMgmtR.dll
14:58:06.0775 0316  C:\Windows\System32\wbem\WinMgmtR.dll - ok
14:58:06.0785 0316  [ 701C9EB15E1E23D22F7C7184C0506673 ] C:\Windows\System32\wbem\WmiDcPrv.dll
14:58:06.0785 0316  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
14:58:06.0795 0316  [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\System32\wbem\fastprox.dll
14:58:06.0795 0316  C:\Windows\System32\wbem\fastprox.dll - ok
14:58:06.0805 0316  [ 4355CF8BD07B0E48C111FC3D2F36D313 ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
14:58:06.0805 0316  C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
14:58:06.0815 0316  [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\System32\rasadhlp.dll
14:58:06.0815 0316  C:\Windows\System32\rasadhlp.dll - ok
14:58:06.0825 0316  [ 9419ABF3163B6F0E3AD3DD2B381C879F ] C:\Windows\System32\WinSCard.dll
14:58:06.0825 0316  C:\Windows\System32\WinSCard.dll - ok
14:58:06.0835 0316  [ F34CFADA6C48DAA41B996D24C7D8D3CA ] C:\Windows\System32\fdPnp.dll
14:58:06.0835 0316  C:\Windows\System32\fdPnp.dll - ok
14:58:06.0845 0316  [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\System32\ntdsapi.dll
14:58:06.0845 0316  C:\Windows\System32\ntdsapi.dll - ok
14:58:06.0855 0316  [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\System32\wbem\wbemprox.dll
14:58:06.0855 0316  C:\Windows\System32\wbem\wbemprox.dll - ok
14:58:06.0865 0316  [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] C:\Windows\System32\drivers\srv2.sys
14:58:06.0865 0316  C:\Windows\System32\drivers\srv2.sys - ok
14:58:06.0875 0316  [ 58F67245D041FBE7AF88F4EAF79DF0FA ] C:\Windows\System32\iphlpsvc.dll
14:58:06.0875 0316  C:\Windows\System32\iphlpsvc.dll - ok
14:58:06.0885 0316  [ 0183FF97E3477888021C4D04335FA84F ] C:\Windows\System32\hpowiav1.dll
14:58:06.0885 0316  C:\Windows\System32\hpowiav1.dll - ok
14:58:06.0895 0316  [ E4C2764065D66EA1D2D3EBC28FE99C46 ] C:\Windows\System32\drivers\srv.sys
14:58:06.0895 0316  C:\Windows\System32\drivers\srv.sys - ok
14:58:06.0905 0316  [ 1CDEA9188899E76D4FFD54C9D512CCDB ] C:\Windows\System32\msxml3.dll
14:58:06.0905 0316  C:\Windows\System32\msxml3.dll - ok
14:58:06.0915 0316  [ 784A50A6A09C25F011C3143DDD68E729 ] C:\Windows\System32\netsh.exe
14:58:06.0915 0316  C:\Windows\System32\netsh.exe - ok
14:58:06.0925 0316  [ CE292C4C10B8DB6070F262EA2733F0DC ] C:\Windows\System32\sqmapi.dll
14:58:06.0925 0316  C:\Windows\System32\sqmapi.dll - ok
14:58:06.0935 0316  [ 310E9119D0A1CFDF1DA897089B533D81 ] C:\Windows\System32\conhost.exe
14:58:06.0935 0316  C:\Windows\System32\conhost.exe - ok
14:58:06.0945 0316  [ 156537B623F9D9569658F96E53F35513 ] C:\Windows\System32\rasmontr.dll
14:58:06.0945 0316  C:\Windows\System32\rasmontr.dll - ok
14:58:06.0955 0316  [ 24CAEDCD73B5B0E22226283B7B2468C7 ] C:\Windows\System32\mfc42u.dll
14:58:06.0955 0316  C:\Windows\System32\mfc42u.dll - ok
14:58:06.0965 0316  [ D4191EFAB91E00FC09257AA5EBAF503B ] C:\Windows\System32\mprapi.dll
14:58:06.0965 0316  C:\Windows\System32\mprapi.dll - ok
14:58:06.0975 0316  [ A399514D3B28C9A3453A486BBAAFF1C7 ] C:\Windows\System32\wdscore.dll
14:58:06.0975 0316  C:\Windows\System32\wdscore.dll - ok
14:58:06.0985 0316  [ 3DAA727B5B0A45039B0E1C9A211B8400 ] C:\Windows\System32\browser.dll
14:58:06.0985 0316  C:\Windows\System32\browser.dll - ok
14:58:06.0995 0316  [ D64AF876D53ECA3668BB97B51B4E70AB ] C:\Windows\System32\srvsvc.dll
14:58:06.0995 0316  C:\Windows\System32\srvsvc.dll - ok
14:58:06.0995 0316  [ AE9898D5600A232CD8AE3298692162E5 ] C:\Windows\System32\clusapi.dll
14:58:06.0995 0316  C:\Windows\System32\clusapi.dll - ok
14:58:07.0005 0316  [ E4B72E71EC37A59FE574A998A0C0EB9B ] C:\Windows\System32\netmsg.dll
14:58:07.0015 0316  C:\Windows\System32\netmsg.dll - ok
14:58:07.0025 0316  [ 89E783711AF91AF09E1EF30EF3107446 ] C:\Windows\System32\sscore.dll
14:58:07.0025 0316  C:\Windows\System32\sscore.dll - ok
14:58:07.0025 0316  [ 585EB475E7AF55C9065256E8FFB751A1 ] C:\Windows\System32\wbem\wbemcore.dll
14:58:07.0025 0316  C:\Windows\System32\wbem\wbemcore.dll - ok
14:58:07.0035 0316  [ DAF0C7D1F4E9B057C8151D0B92A6BDA5 ] C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
14:58:07.0035 0316  C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE - ok
14:58:07.0045 0316  [ 7D34AF98A706230CC2DEDFE0CABF87AB ] C:\Windows\System32\odbc32.dll
14:58:07.0045 0316  C:\Windows\System32\odbc32.dll - ok
14:58:07.0065 0316  [ 5AE88135C6A86FCD67BA16AFBB1C8389 ] C:\Windows\System32\wbem\esscli.dll
14:58:07.0065 0316  C:\Windows\System32\wbem\esscli.dll - ok
14:58:07.0065 0316  [ 2AF094C822BD6094F14A8E85FB51D52A ] C:\Windows\System32\resutils.dll
14:58:07.0065 0316  C:\Windows\System32\resutils.dll - ok
14:58:07.0085 0316  [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\System32\odbcint.dll
14:58:07.0085 0316  C:\Windows\System32\odbcint.dll - ok
14:58:07.0085 0316  [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\System32\wbem\wbemsvc.dll
14:58:07.0085 0316  C:\Windows\System32\wbem\wbemsvc.dll - ok
14:58:07.0095 0316  [ 45D9F6CD2469CDB6A640DD4BD2B01471 ] C:\Windows\System32\nci.dll
14:58:07.0095 0316  C:\Windows\System32\nci.dll - ok
14:58:07.0105 0316  [ 0B09C2A5AE40C10FF8C2CA80143B8AC2 ] C:\Windows\System32\nshwfp.dll
14:58:07.0105 0316  C:\Windows\System32\nshwfp.dll - ok
14:58:07.0115 0316  [ 394ADE82B91F6458C060C522D7C3520C ] C:\Windows\System32\dhcpcmonitor.dll
14:58:07.0115 0316  C:\Windows\System32\dhcpcmonitor.dll - ok
14:58:07.0125 0316  [ 2765B91A9EE086C20B451E80D2709CC9 ] C:\Windows\System32\DHCPQEC.DLL
14:58:07.0125 0316  C:\Windows\System32\DHCPQEC.DLL - ok
14:58:07.0135 0316  [ A63DC5C2EA944E6657203E0C8EDEAF61 ] C:\Windows\System32\dllhost.exe
14:58:07.0135 0316  C:\Windows\System32\dllhost.exe - ok
14:58:07.0148 0316  [ BD626EF05967D14C772B8096292731A3 ] C:\Windows\System32\QUTIL.DLL
14:58:07.0148 0316  C:\Windows\System32\QUTIL.DLL - ok
14:58:07.0157 0316  [ 371E3B05894549113D07CD3081ED55EF ] C:\Windows\System32\wbem\repdrvfs.dll
14:58:07.0157 0316  C:\Windows\System32\wbem\repdrvfs.dll - ok
14:58:07.0167 0316  [ 5610B0425518D185331CB8E968D060E6 ] C:\Windows\System32\wbem\wmiutils.dll
14:58:07.0167 0316  C:\Windows\System32\wbem\wmiutils.dll - ok
14:58:07.0167 0316  [ 5B90BB3171504C9DAF3C5CB44B203CA7 ] C:\Windows\System32\wshelper.dll
14:58:07.0167 0316  C:\Windows\System32\wshelper.dll - ok
14:58:07.0177 0316  [ 8CD1DEE212E52B9C22E66DBA44991D32 ] C:\Windows\System32\httpapi.dll
14:58:07.0177 0316  C:\Windows\System32\httpapi.dll - ok
14:58:07.0187 0316  [ 7EBC7D72BDD0A0A847E00F43F350EF22 ] C:\Windows\System32\nshhttp.dll
14:58:07.0187 0316  C:\Windows\System32\nshhttp.dll - ok
14:58:07.0197 0316  [ 808AABDF9337312195CAFF76D1804786 ] C:\Windows\System32\ws2help.dll
14:58:07.0197 0316  C:\Windows\System32\ws2help.dll - ok
14:58:07.0207 0316  [ 7B3A07BB31AD831C4F66B08ECEAD2209 ] C:\Windows\System32\authfwcfg.dll
14:58:07.0207 0316  C:\Windows\System32\authfwcfg.dll - ok
14:58:07.0217 0316  [ E30C5F23B28D8BFD02E0E6AE79AC83A4 ] C:\Windows\System32\fwcfg.dll
14:58:07.0217 0316  C:\Windows\System32\fwcfg.dll - ok
14:58:07.0227 0316  [ 6383C60EC0133B14F5705F96369421B2 ] C:\Windows\System32\hnetcfg.dll
14:58:07.0227 0316  C:\Windows\System32\hnetcfg.dll - ok
14:58:07.0237 0316  [ 019C500DBD380CBAFE5417DE8CD267F2 ] C:\Windows\System32\ifmon.dll
14:58:07.0237 0316  C:\Windows\System32\ifmon.dll - ok
14:58:07.0237 0316  [ 38CACBEB75E3F85CBF7E65522DFDA1B0 ] C:\Windows\System32\netiohlp.dll
14:58:07.0237 0316  C:\Windows\System32\netiohlp.dll - ok
14:58:07.0247 0316  [ DAECDFA364992F1D26705887E1A3C93F ] C:\Windows\System32\whhelper.dll
14:58:07.0247 0316  C:\Windows\System32\whhelper.dll - ok
14:58:07.0257 0316  [ 1392FC9D1961FBC67F7D0A9B18DF85A4 ] C:\Windows\System32\winipsec.dll
14:58:07.0257 0316  C:\Windows\System32\winipsec.dll - ok
14:58:07.0267 0316  [ 1AB8579D3CBCCCC1612D9B8615C68AB9 ] C:\Windows\System32\hnetmon.dll
14:58:07.0267 0316  C:\Windows\System32\hnetmon.dll - ok
14:58:07.0277 0316  [ EAB975DB4C2805927FE5BD047D05C9AA ] C:\Windows\System32\netshell.dll
14:58:07.0277 0316  C:\Windows\System32\netshell.dll - ok
14:58:07.0287 0316  [ 0B31464B7B2D616BD5F7036673588EC1 ] C:\Windows\System32\IDStore.dll
14:58:07.0287 0316  C:\Windows\System32\IDStore.dll - ok
14:58:07.0297 0316  [ 3CDE2911462FEC80064A409C07710C06 ] C:\Windows\System32\wbem\WmiPrvSD.dll
14:58:07.0297 0316  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
14:58:07.0307 0316  [ A4CC7227A452C4909F9499D91B184364 ] C:\Windows\System32\ncobjapi.dll
14:58:07.0307 0316  C:\Windows\System32\ncobjapi.dll - ok
14:58:07.0317 0316  [ 7FA8BA5A780E4757964AC9D4238302B9 ] C:\Windows\System32\taskhost.exe
14:58:07.0317 0316  C:\Windows\System32\taskhost.exe - ok
14:58:07.0327 0316  [ B350509B6C9296529BC464C60FEEAEF1 ] C:\Windows\System32\wbem\wbemess.dll
14:58:07.0327 0316  C:\Windows\System32\wbem\wbemess.dll - ok
14:58:07.0337 0316  [ 04B88428A872390D235BE52D38A9D4EF ] C:\Windows\System32\dot3api.dll
14:58:07.0337 0316  C:\Windows\System32\dot3api.dll - ok
14:58:07.0347 0316  [ B06B2FEC249F48C4E7F628B689859AC7 ] C:\Windows\System32\dot3cfg.dll
14:58:07.0347 0316  C:\Windows\System32\dot3cfg.dll - ok
14:58:07.0347 0316  [ 5A5FEDDF02588B8F9FE4A95E5E7EAE97 ] C:\Windows\System32\eappcfg.dll
14:58:07.0347 0316  C:\Windows\System32\eappcfg.dll - ok
14:58:07.0357 0316  [ F748F53FE09D21D8ECBB6421E6792024 ] C:\Windows\System32\onex.dll
14:58:07.0357 0316  C:\Windows\System32\onex.dll - ok
14:58:07.0367 0316  [ 17F6993D2DD8B1196DB25FDC2ECB87E2 ] C:\Windows\System32\rpcnsh.dll
14:58:07.0367 0316  C:\Windows\System32\rpcnsh.dll - ok
14:58:07.0377 0316  [ 666E57B6B51824D1D235F80A3DD70A13 ] C:\Windows\System32\eappprxy.dll
14:58:07.0377 0316  C:\Windows\System32\eappprxy.dll - ok
14:58:07.0387 0316  [ B074D5CB2ED9BA71D54B754D89655FA8 ] C:\Windows\System32\NAPMONTR.DLL
14:58:07.0387 0316  C:\Windows\System32\NAPMONTR.DLL - ok
14:58:07.0397 0316  [ 61B1ED5F429EFAC7E2036769870AB93E ] C:\Windows\System32\certcli.dll
14:58:07.0397 0316  C:\Windows\System32\certcli.dll - ok
14:58:07.0407 0316  [ 404B123E9460395E3A7338B12C681B92 ] C:\Windows\System32\nshipsec.dll
14:58:07.0407 0316  C:\Windows\System32\nshipsec.dll - ok
14:58:07.0417 0316  [ 0E6DCD164732580CC1E57276252F49CF ] C:\Windows\System32\polstore.dll
14:58:07.0417 0316  C:\Windows\System32\polstore.dll - ok
14:58:07.0427 0316  [ 7EFDA98AC1A9C8F5875246BA0B7C4144 ] C:\Windows\System32\nettrace.dll
14:58:07.0427 0316  C:\Windows\System32\nettrace.dll - ok
14:58:07.0427 0316  [ 3CA2BB895E204478C7A4C9BAF70970CE ] C:\Windows\System32\AtBroker.exe
14:58:07.0427 0316  C:\Windows\System32\AtBroker.exe - ok
14:58:07.0437 0316  [ 7319102526BD11B45FD66335CF90CA12 ] C:\Windows\System32\HotStartUserAgent.dll
14:58:07.0437 0316  C:\Windows\System32\HotStartUserAgent.dll - ok
14:58:07.0447 0316  [ CC6301055E753EB22AA77A1C00FCDD39 ] C:\Windows\System32\ndfapi.dll
14:58:07.0447 0316  C:\Windows\System32\ndfapi.dll - ok
14:58:07.0457 0316  [ 8D47D01378347889A662D54037A988CC ] C:\Windows\System32\tdh.dll
14:58:07.0457 0316  C:\Windows\System32\tdh.dll - ok
14:58:07.0467 0316  [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] C:\Windows\System32\wdi.dll
14:58:07.0467 0316  C:\Windows\System32\wdi.dll - ok
14:58:07.0477 0316  [ 08DF1B8C9C0754A7069E80A986373F52 ] C:\Windows\System32\P2P.dll
14:58:07.0477 0316  C:\Windows\System32\P2P.dll - ok
14:58:07.0487 0316  [ 0AA8C5587D3487146051CECEF87EB522 ] C:\Windows\System32\p2pnetsh.dll
14:58:07.0487 0316  C:\Windows\System32\p2pnetsh.dll - ok
14:58:07.0497 0316  [ 4F2659160AFCCA990305816946F69407 ] C:\Windows\System32\taskeng.exe
14:58:07.0497 0316  C:\Windows\System32\taskeng.exe - ok
14:58:07.0507 0316  [ F0CC6D2A5354B78BABE21A43C50F683C ] C:\Windows\System32\WcnNetsh.dll
14:58:07.0507 0316  C:\Windows\System32\WcnNetsh.dll - ok
14:58:07.0517 0316  [ B010CF886420EE29C2C276646721D255 ] C:\Windows\System32\wlanapi.dll
14:58:07.0517 0316  C:\Windows\System32\wlanapi.dll - ok
14:58:07.0527 0316  [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\System32\wlanutil.dll
14:58:07.0527 0316  C:\Windows\System32\wlanutil.dll - ok
14:58:07.0537 0316  [ 1B0EC94520CAB89A9CE1B2DA405166AF ] C:\Windows\System32\p2pcollab.dll
14:58:07.0537 0316  C:\Windows\System32\p2pcollab.dll - ok
14:58:07.0537 0316  [ 79DDDDE43595F9D2B65E37C8B3316955 ] C:\Windows\System32\wlancfg.dll
14:58:07.0537 0316  C:\Windows\System32\wlancfg.dll - ok
14:58:07.0547 0316  [ 8063046AA70B97CA9985672B8848FB2E ] C:\Windows\System32\wlanhlp.dll
14:58:07.0547 0316  C:\Windows\System32\wlanhlp.dll - ok
14:58:07.0557 0316  [ 7C78056A767E0D59E8298A42E0B8D111 ] C:\Windows\System32\wwancfg.dll
14:58:07.0557 0316  C:\Windows\System32\wwancfg.dll - ok
14:58:07.0567 0316  [ F2ED6D00921CA138289E5E0CCB9ABF87 ] C:\Windows\System32\wwapi.dll
14:58:07.0567 0316  C:\Windows\System32\wwapi.dll - ok
14:58:07.0587 0316  [ 02530B0B7E048DD5AC8D52DAEACAEB2B ] C:\Windows\System32\QAGENT.DLL
14:58:07.0587 0316  C:\Windows\System32\QAGENT.DLL - ok
14:58:07.0597 0316  [ 61AC3EFDFACFDD3F0F11DD4FD4044223 ] C:\Windows\System32\userinit.exe
14:58:07.0597 0316  C:\Windows\System32\userinit.exe - ok
14:58:07.0597 0316  [ 505BF4D1CADEB8D4F8BCD08D944DE25D ] C:\Windows\System32\dwm.exe
14:58:07.0597 0316  C:\Windows\System32\dwm.exe - ok
14:58:07.0607 0316  [ 99B9343280AF6A4C0F27CF2E28E94BBF ] C:\Windows\System32\dssenh.dll
14:58:07.0607 0316  C:\Windows\System32\dssenh.dll - ok
14:58:07.0624 0316  [ 497E59D9F01C6F247E72222A61835119 ] C:\Windows\System32\dwmcore.dll
14:58:07.0624 0316  C:\Windows\System32\dwmcore.dll - ok
14:58:07.0633 0316  [ 754AFC50022C95DA7C86B7020DB78136 ] C:\Windows\System32\dwmredir.dll
14:58:07.0633 0316  C:\Windows\System32\dwmredir.dll - ok
14:58:07.0639 0316  [ D33E95C0A2754061233B58DC41F8094C ] C:\Windows\System32\umb.dll
14:58:07.0639 0316  C:\Windows\System32\umb.dll - ok
14:58:07.0649 0316  [ 74AF6AA2E8B3180AADAE5FE8813CB1CD ] C:\Windows\System32\localspl.dll
14:58:07.0649 0316  C:\Windows\System32\localspl.dll - ok
14:58:07.0659 0316  [ 2DE90400A63818FA38C4C5C9ADB166BF ] C:\Windows\System32\d3d10_1.dll
14:58:07.0659 0316  C:\Windows\System32\d3d10_1.dll - ok
14:58:07.0669 0316  [ B43687C534A49700BF4B3C9898763752 ] C:\Windows\System32\MsCtfMonitor.dll
14:58:07.0669 0316  C:\Windows\System32\MsCtfMonitor.dll - ok
14:58:07.0679 0316  [ 56CEED370508F69A1BA04939BD1BADDA ] C:\Windows\System32\msutb.dll
14:58:07.0679 0316  C:\Windows\System32\msutb.dll - ok
14:58:07.0689 0316  [ 629181C26A78EB66B0B4E774E5AC2882 ] C:\Windows\System32\spoolss.dll
14:58:07.0689 0316  C:\Windows\System32\spoolss.dll - ok
14:58:07.0699 0316  [ 126F8331BD023178C7F0EF2F5EDE16B3 ] C:\Windows\System32\FXSMON.dll
14:58:07.0699 0316  C:\Windows\System32\FXSMON.dll - ok
14:58:07.0709 0316  [ 9685375FBCE17A1587210843265FA45E ] C:\Windows\System32\hpzllw71.dll
14:58:07.0709 0316  C:\Windows\System32\hpzllw71.dll - ok
14:58:07.0719 0316  [ 03CF941D031F30272D3063E5A4D686F5 ] C:\Windows\System32\PrintIsolationProxy.dll
14:58:07.0719 0316  C:\Windows\System32\PrintIsolationProxy.dll - ok
14:58:07.0729 0316  [ 9C36A3CA80F9B204C670336D344F5DF8 ] C:\Windows\System32\d3d10_1core.dll
14:58:07.0729 0316  C:\Windows\System32\d3d10_1core.dll - ok
14:58:07.0739 0316  [ C52CE534397E1D3A442FB4C88A3CBE42 ] C:\Windows\System32\msonpmon.dll
14:58:07.0739 0316  C:\Windows\System32\msonpmon.dll - ok
14:58:07.0749 0316  [ F58516E2DC0D963EF70D6BFC21FD82C4 ] C:\Windows\System32\PlaySndSrv.dll
14:58:07.0749 0316  C:\Windows\System32\PlaySndSrv.dll - ok
14:58:07.0749 0316  [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\System32\dxgi.dll
14:58:07.0749 0316  C:\Windows\System32\dxgi.dll - ok
14:58:07.0759 0316  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
14:58:07.0759 0316  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
14:58:07.0779 0316  [ 8B88EBBB05A0E56B7DCC708498C02B3E ] C:\Windows\explorer.exe
14:58:07.0779 0316  C:\Windows\explorer.exe - ok
14:58:07.0789 0316  [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\System32\msi.dll
14:58:07.0789 0316  C:\Windows\System32\msi.dll - ok
14:58:07.0799 0316  [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\System32\ExplorerFrame.dll
14:58:07.0799 0316  C:\Windows\System32\ExplorerFrame.dll - ok
14:58:07.0809 0316  [ B390C1D825C7687493BEDE237C6C2F25 ] C:\Windows\System32\tcpmon.dll
14:58:07.0809 0316  C:\Windows\System32\tcpmon.dll - ok
14:58:07.0819 0316  [ 1220595CABA75AB91A6B3FA3B89483CC ] C:\Windows\System32\snmpapi.dll
14:58:07.0819 0316  C:\Windows\System32\snmpapi.dll - ok
14:58:07.0829 0316  [ 54AF46DC37E63E1E85EB619033953309 ] C:\Windows\System32\d3d10level9.dll
14:58:07.0829 0316  C:\Windows\System32\d3d10level9.dll - ok
14:58:07.0839 0316  [ 923CDD30092DB73EC4A0EBCDDD16C686 ] C:\Windows\System32\usbmon.dll
14:58:07.0839 0316  C:\Windows\System32\usbmon.dll - ok
14:58:07.0849 0316  [ 6357E2B68753A1F5CF4A68A25C4FD14A ] C:\Windows\System32\wsnmp32.dll
14:58:07.0849 0316  C:\Windows\System32\wsnmp32.dll - ok
14:58:07.0849 0316  [ 659E04E74135927CA6D7BC5E75C84417 ] C:\Windows\System32\TSChannel.dll
14:58:07.0849 0316  C:\Windows\System32\TSChannel.dll - ok
14:58:07.0859 0316  [ 82FC59A500AA685F833E61E3A1BB7DAF ] C:\Windows\System32\nvd3dum.dll
14:58:07.0859 0316  C:\Windows\System32\nvd3dum.dll - ok
14:58:07.0869 0316  [ A8EB761DE499242BECF153B2B34F020E ] C:\Windows\System32\WSDMon.dll
14:58:07.0869 0316  C:\Windows\System32\WSDMon.dll - ok
14:58:07.0879 0316  [ 73F6C5223F7E9B5780DD4A6C30FCF569 ] C:\Windows\System32\WSDApi.dll
14:58:07.0879 0316  C:\Windows\System32\WSDApi.dll - ok
14:58:07.0889 0316  [ 9A7B54D57594233EEB17892BAD309970 ] C:\Windows\System32\mprmsg.dll
14:58:07.0889 0316  C:\Windows\System32\mprmsg.dll - ok
14:58:07.0899 0316  [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Program Files\Google\Update\GoogleUpdate.exe
14:58:07.0899 0316  C:\Program Files\Google\Update\GoogleUpdate.exe - ok
14:58:07.0909 0316  [ 07F7AE68602448F4B6D5A9A40BBA977C ] C:\Program Files\Google\Update\1.3.21.124\goopdate.dll
14:58:07.0909 0316  C:\Program Files\Google\Update\1.3.21.124\goopdate.dll - ok
14:58:07.0919 0316  [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\System32\cscapi.dll
14:58:07.0919 0316  C:\Windows\System32\cscapi.dll - ok
14:58:07.0919 0316  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\System32\dbghelp.dll
14:58:07.0919 0316  C:\Windows\System32\dbghelp.dll - ok
14:58:07.0929 0316  [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\System32\EhStorShell.dll
14:58:07.0929 0316  C:\Windows\System32\EhStorShell.dll - ok
14:58:07.0939 0316  [ DB846EECA70EE9D2E2FF31147C57B0F4 ] C:\Windows\System32\webservices.dll
14:58:07.0939 0316  C:\Windows\System32\webservices.dll - ok
14:58:07.0949 0316  [ D7A8AAAD66A42CAF935BD5F857884526 ] C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll
14:58:07.0949 0316  C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll - ok
14:58:07.0959 0316  [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files\Google\Update\1.3.21.124\GoogleCrashHandler.exe
14:58:07.0959 0316  C:\Program Files\Google\Update\1.3.21.124\GoogleCrashHandler.exe - ok
14:58:07.0969 0316  [ CD72C6406BA561BED6D42CB145E55307 ] C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll
14:58:07.0969 0316  C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll - ok
14:58:07.0979 0316  [ D2958325C1AE1AE37A83334C6229E3BC ] C:\Windows\System32\actxprxy.dll
14:58:07.0979 0316  C:\Windows\System32\actxprxy.dll - ok
14:58:07.0989 0316  [ 0A404EE18BD87D39B850892A479DF55C ] C:\Windows\System32\spool\prtprocs\w32x86\hpzppw71.dll
14:58:07.0989 0316  C:\Windows\System32\spool\prtprocs\w32x86\hpzppw71.dll - ok
14:58:07.0999 0316  [ F348280907B38FDBDB3CEF55D456E149 ] C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll
14:58:07.0999 0316  C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll - ok
14:58:08.0009 0316  [ BE3953C7DAE4ECC89134CF64A903F8ED ] C:\Windows\System32\win32spl.dll
14:58:08.0009 0316  C:\Windows\System32\win32spl.dll - ok
14:58:08.0019 0316  [ 30DB64D316F502558DB2380F7343C9FD ] E:\Microsoft ofice\Office12\GrooveShellExtensions.dll
14:58:08.0019 0316  E:\Microsoft ofice\Office12\GrooveShellExtensions.dll - ok
14:58:08.0029 0316  [ D27DDE7E0444C7F1819F958469EB7D93 ] C:\Windows\System32\inetpp.dll
14:58:08.0029 0316  C:\Windows\System32\inetpp.dll - ok
14:58:08.0029 0316  [ F7FE730CE31B54145DEE1F1482BCCDD7 ] C:\Windows\System32\ndiscapCfg.dll
14:58:08.0029 0316  C:\Windows\System32\ndiscapCfg.dll - ok
14:58:08.0039 0316  [ 761A3A4038C1FD4F5795427907C28484 ] C:\Windows\System32\rascfg.dll
14:58:08.0039 0316  C:\Windows\System32\rascfg.dll - ok
14:58:08.0049 0316  [ CAFC0B884E5590B5E80D84F592388B3D ] C:\Windows\System32\tcpipcfg.dll
14:58:08.0049 0316  C:\Windows\System32\tcpipcfg.dll - ok
14:58:08.0059 0316  [ 207204AF80505AF51271FE164B56F662 ] E:\Microsoft ofice\Office12\GrooveUtil.dll
14:58:08.0059 0316  E:\Microsoft ofice\Office12\GrooveUtil.dll - ok
14:58:08.0069 0316  [ 30EFEBDC960A482E3E188B9960B286E2 ] E:\Microsoft ofice\Office12\GrooveNew.dll
14:58:08.0069 0316  E:\Microsoft ofice\Office12\GrooveNew.dll - ok
14:58:08.0079 0316  [ D5E459BED3DB9CF7FC6CC1455F177D2D ] C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll
14:58:08.0079 0316  C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll - ok
14:58:08.0089 0316  [ 3EC541C196DE18ED9A0D0AC82A694D4C ] C:\Windows\System32\cscui.dll
14:58:08.0089 0316  C:\Windows\System32\cscui.dll - ok
14:58:08.0099 0316  [ 57A51217581614DE07F30E34D6BB4993 ] C:\Windows\System32\cscdll.dll
14:58:08.0099 0316  C:\Windows\System32\cscdll.dll - ok
14:58:08.0099 0316  [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\Windows\System32\IconCodecService.dll
14:58:08.0099 0316  C:\Windows\System32\IconCodecService.dll - ok
14:58:08.0109 0316  [ 2100560AF3F7F2948F2676E44DFB4ECF ] C:\Windows\System32\uDWM.dll
14:58:08.0109 0316  C:\Windows\System32\uDWM.dll - ok
14:58:08.0119 0316  [ 78DE417B7921DACA072059E6BF410FC7 ] C:\Windows\System32\wshnetbs.dll
14:58:08.0119 0316  C:\Windows\System32\wshnetbs.dll - ok
14:58:08.0129 0316  [ 095122AA583F3DDEA7D752FB6379EE36 ] C:\Program Files\Avira\AntiVir Desktop\avwinll.dll
14:58:08.0129 0316  C:\Program Files\Avira\AntiVir Desktop\avwinll.dll - ok
14:58:08.0139 0316  [ 08E09429070908FFEB301A64000A24C8 ] C:\Program Files\Avira\AntiVir Desktop\avesvc.dll
14:58:08.0139 0316  C:\Program Files\Avira\AntiVir Desktop\avesvc.dll - ok
14:58:08.0149 0316  [ 7250E1044C3F3A2B217BA8CF2CE801FA ] C:\Program Files\Avira\AntiVir Desktop\avesvcr.dll
14:58:08.0149 0316  C:\Program Files\Avira\AntiVir Desktop\avesvcr.dll - ok
14:58:08.0159 0316  [ 012727ECED83BECEED1A61E93808CE86 ] C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
14:58:08.0159 0316  C:\Program Files\Avira\AntiVir Desktop\avshadow.exe - ok
14:58:08.0169 0316  [ 5196F79A7CD1778777374578918364FE ] C:\Program Files\Avira\AntiVir Desktop\avreg.dll
14:58:08.0169 0316  C:\Program Files\Avira\AntiVir Desktop\avreg.dll - ok
14:58:08.0169 0316  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] C:\Windows\System32\hidserv.dll
14:58:08.0179 0316  C:\Windows\System32\hidserv.dll - ok
14:58:08.0189 0316  [ 7E82616BEE76BF5EAA5B30F681414E21 ] C:\Windows\System32\perftrack.dll
14:58:08.0189 0316  C:\Windows\System32\perftrack.dll - ok
14:58:08.0189 0316  [ ECF036299AA554B5E0455262857B39D0 ] C:\Windows\System32\diagperf.dll
14:58:08.0189 0316  C:\Windows\System32\diagperf.dll - ok
14:58:08.0199 0316  [ AA53356D60AF47EACC85BC617A4F3F66 ] C:\Windows\System32\wpdbusenum.dll
14:58:08.0199 0316  C:\Windows\System32\wpdbusenum.dll - ok
14:58:08.0209 0316  [ D99621C0735B21DCC8BC4FEF02F379EF ] C:\Windows\System32\Apphlpdm.dll
14:58:08.0209 0316  C:\Windows\System32\Apphlpdm.dll - ok
14:58:08.0219 0316  [ FB1959012294D6AD43E5304DF65E3C26 ] C:\Windows\System32\appinfo.dll
14:58:08.0219 0316  C:\Windows\System32\appinfo.dll - ok
14:58:08.0229 0316  [ E98278865E8DABA21CFE5FE4BE34210A ] C:\Windows\System32\PortableDeviceApi.dll
14:58:08.0229 0316  C:\Windows\System32\PortableDeviceApi.dll - ok
14:58:08.0239 0316  [ 8B794AE6D5C7D42092804BC39A2EB8F6 ] C:\Windows\System32\aepic.dll
14:58:08.0239 0316  C:\Windows\System32\aepic.dll - ok
14:58:08.0249 0316  [ C693E642ACFBDD76433AF6BE3C3EEE6F ] C:\Windows\System32\PortableDeviceConnectApi.dll
14:58:08.0249 0316  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
14:58:08.0259 0316  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\System32\sfc.dll
14:58:08.0259 0316  C:\Windows\System32\sfc.dll - ok
14:58:08.0269 0316  [ F8E882C10AF4C29E378D1E28D4817CB1 ] C:\Windows\System32\pnpts.dll
14:58:08.0269 0316  C:\Windows\System32\pnpts.dll - ok
14:58:08.0279 0316  [ 867C301E8B790040AE9CF6486E8041DF ] C:\Windows\System32\drivers\WUDFRd.sys
14:58:08.0279 0316  C:\Windows\System32\drivers\WUDFRd.sys - ok
14:58:08.0289 0316  [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\System32\sfc_os.dll
14:58:08.0289 0316  C:\Windows\System32\sfc_os.dll - ok
14:58:08.0299 0316  [ F0016853FA3F38F55FD868FF74C0359B ] C:\Windows\System32\wdiasqmmodule.dll
14:58:08.0299 0316  C:\Windows\System32\wdiasqmmodule.dll - ok
14:58:08.0309 0316  [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\System32\npmproxy.dll
14:58:08.0309 0316  C:\Windows\System32\npmproxy.dll - ok
14:58:08.0319 0316  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] C:\Windows\System32\QAGENTRT.DLL
14:58:08.0319 0316  C:\Windows\System32\QAGENTRT.DLL - ok
14:58:08.0329 0316  [ 06E6F32C8D0A3F66D956F57B43A2E070 ] C:\Windows\System32\drivers\WUDFPf.sys
14:58:08.0329 0316  C:\Windows\System32\drivers\WUDFPf.sys - ok
14:58:08.0339 0316  [ 53946B69BA0836BD95B03759530C81EC ] C:\Windows\System32\IPSECSVC.DLL
14:58:08.0339 0316  C:\Windows\System32\IPSECSVC.DLL - ok
14:58:08.0349 0316  [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] C:\Windows\System32\WUDFSvc.dll
14:58:08.0349 0316  C:\Windows\System32\WUDFSvc.dll - ok
14:58:08.0349 0316  [ 9FD6496B6D91C8BE2A10BD55EAE2D5F2 ] C:\Windows\System32\fveui.dll
14:58:08.0349 0316  C:\Windows\System32\fveui.dll - ok
14:58:08.0359 0316  [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\System32\runonce.exe
14:58:08.0359 0316  C:\Windows\System32\runonce.exe - ok
14:58:08.0369 0316  [ 980B6A5F92B8DB235C4A26728C2BE732 ] C:\Windows\System32\WUDFHost.exe
14:58:08.0369 0316  C:\Windows\System32\WUDFHost.exe - ok
14:58:08.0379 0316  [ DB603D3FD090C66F9709EF6493C26BA3 ] C:\Windows\System32\FwRemoteSvr.dll
14:58:08.0379 0316  C:\Windows\System32\FwRemoteSvr.dll - ok
14:58:08.0389 0316  [ 7FFD52D73352806969D424EF327D10A7 ] C:\Windows\System32\radardt.dll
14:58:08.0389 0316  C:\Windows\System32\radardt.dll - ok
14:58:08.0399 0316  [ A36F7A256E65D858A7039DB00ADEEBDD ] C:\Windows\System32\WUDFx.dll
14:58:08.0399 0316  C:\Windows\System32\WUDFx.dll - ok
14:58:08.0419 0316  [ 7ABBDC3B08950992D218FA1E52D52A96 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
14:58:08.0419 0316  C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
14:58:08.0419 0316  [ 0F416E23DD2EB4DEBE70608020CFD283 ] C:\Windows\System32\WMVCORE.DLL
14:58:08.0419 0316  C:\Windows\System32\WMVCORE.DLL - ok
14:58:08.0429 0316  [ C5C867CD7EFAC60D5021223E374DEEC5 ] C:\Windows\System32\dimsjob.dll
14:58:08.0429 0316  C:\Windows\System32\dimsjob.dll - ok
14:58:08.0449 0316  [ D8C2B95BC2353E1F18850D6B8F5DBA13 ] E:\Microsoft ofice\Office12\GrooveSystemServices.dll
14:58:08.0449 0316  E:\Microsoft ofice\Office12\GrooveSystemServices.dll - ok
14:58:08.0449 0316  [ A7DD56261518373F70F23079EB3CD0A2 ] C:\Windows\System32\WMASF.DLL
14:58:08.0449 0316  C:\Windows\System32\WMASF.DLL - ok
14:58:08.0469 0316  [ 14486EB6AF542F2BD3239F7FC3E713F7 ] C:\Windows\System32\pautoenr.dll
14:58:08.0469 0316  C:\Windows\System32\pautoenr.dll - ok
14:58:08.0469 0316  [ 81490FDAE27F0082E5CC2DC78DCA96FA ] C:\Windows\System32\PortableDeviceClassExtension.dll
14:58:08.0469 0316  C:\Windows\System32\PortableDeviceClassExtension.dll - ok
14:58:08.0489 0316  [ ADB45A977BD9E45790CA496DB84BA148 ] C:\Windows\System32\PortableDeviceTypes.dll
14:58:08.0489 0316  C:\Windows\System32\PortableDeviceTypes.dll - ok
14:58:08.0499 0316  [ 533AECD1B5356870AE2D905B4D3B42B7 ] E:\Microsoft ofice\Office12\GrooveMisc.dll
14:58:08.0499 0316  E:\Microsoft ofice\Office12\GrooveMisc.dll - ok
14:58:08.0499 0316  [ 3D6F22551D422F97AACB0BB927E4C846 ] C:\Windows\System32\pnidui.dll
14:58:08.0499 0316  C:\Windows\System32\pnidui.dll - ok
14:58:08.0509 0316  [ 1957D49A9613FAAD1C73B508CCE02AA5 ] C:\Windows\System32\wmp.dll
14:58:08.0509 0316  C:\Windows\System32\wmp.dll - ok
14:58:08.0519 0316  [ 29BC473072568C072EC8B176498DE996 ] C:\Windows\System32\CertEnroll.dll
14:58:08.0519 0316  C:\Windows\System32\CertEnroll.dll - ok
14:58:08.0529 0316  [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\System32\cmd.exe
14:58:08.0529 0316  C:\Windows\System32\cmd.exe - ok
14:58:08.0539 0316  [ 26384429FCD85D83746F63E798AB1480 ] C:\Windows\System32\drivers\nwifi.sys
14:58:08.0539 0316  C:\Windows\System32\drivers\nwifi.sys - ok
14:58:08.0549 0316  [ 16935C98FF639D185086A3529B1F2067 ] C:\Windows\System32\wlansvc.dll
14:58:08.0549 0316  C:\Windows\System32\wlansvc.dll - ok
14:58:08.0549 0316  [ 5466DCAEF5A648E04D1B6580F2C901B5 ] C:\Windows\System32\ieframe.dll
14:58:08.0549 0316  C:\Windows\System32\ieframe.dll - ok
14:58:08.0559 0316  [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\System32\shdocvw.dll
14:58:08.0559 0316  C:\Windows\System32\shdocvw.dll - ok
14:58:08.0579 0316  [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\Kaspisek\AppData\Local\Temp\BE3D52CC-5531-47F9-9AAD-9F3577C9ECAA.exe
14:58:08.0579 0316  C:\Users\Kaspisek\AppData\Local\Temp\BE3D52CC-5531-47F9-9AAD-9F3577C9ECAA.exe - ok
14:58:08.0579 0316  [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\System32\NapiNSP.dll
14:58:08.0579 0316  C:\Windows\System32\NapiNSP.dll - ok
14:58:08.0589 0316  [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\System32\pnrpnsp.dll
14:58:08.0589 0316  C:\Windows\System32\pnrpnsp.dll - ok
14:58:08.0599 0316  [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\System32\winrnr.dll
14:58:08.0599 0316  C:\Windows\System32\winrnr.dll - ok
14:58:08.0609 0316  [ 5E034AF21740AD674A5EECE2B7F434C3 ] C:\Program Files\NVIDIA Corporation\Display\nvsmartmax.dll
14:58:08.0609 0316  C:\Program Files\NVIDIA Corporation\Display\nvsmartmax.dll - ok
14:58:08.0609 0316  [ D610CDEDF1F702EB0A86B0FBD9BB49E5 ] C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
14:58:08.0609 0316  C:\Program Files\NVIDIA Corporation\Display\nvtray.exe - ok
14:58:08.0619 0316  [ 07B74B353CEDA9629092AE2AA3C53F90 ] C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll
14:58:08.0619 0316  C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll - ok
14:58:08.0629 0316  [ 716CCAD4089663248F1D98B1FE3BB234 ] C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU.dll
14:58:08.0629 0316  C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU.dll - ok
14:58:08.0639 0316  [ F5F08BF486998EFA8171CB09065B15D9 ] C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll
14:58:08.0639 0316  C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll - ok
14:58:08.0649 0316  [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\System32\wdmaud.drv
14:58:08.0649 0316  C:\Windows\System32\wdmaud.drv - ok
14:58:08.0659 0316  [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\System32\ksuser.dll
14:58:08.0659 0316  C:\Windows\System32\ksuser.dll - ok
14:58:08.0659 0316  [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\System32\AudioSes.dll
14:58:08.0659 0316  C:\Windows\System32\AudioSes.dll - ok
14:58:08.0669 0316  [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\System32\msacm32.drv
14:58:08.0669 0316  C:\Windows\System32\msacm32.drv - ok
14:58:08.0679 0316  [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\System32\midimap.dll
14:58:08.0679 0316  C:\Windows\System32\midimap.dll - ok
14:58:08.0689 0316  [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\System32\msacm32.dll
14:58:08.0689 0316  C:\Windows\System32\msacm32.dll - ok
14:58:08.0709 0316  [ BBA9D5A730D5E304117AD26923EBD8AA ] C:\Windows\System32\AudioEng.dll
14:58:08.0709 0316  C:\Windows\System32\AudioEng.dll - ok
14:58:08.0719 0316  [ 96F0F8F4DEE598C8D12AD9633E0CFE2A ] C:\Windows\System32\AUDIOKSE.dll
14:58:08.0719 0316  C:\Windows\System32\AUDIOKSE.dll - ok
14:58:08.0729 0316  [ 2B355CC81AB0C9E7159C07A634CF41E4 ] C:\Windows\System32\RtkAPO.dll
14:58:08.0729 0316  C:\Windows\System32\RtkAPO.dll - ok
14:58:08.0739 0316  [ 4E30ED3E551E867ADD1C8D58F5EDD9DF ] C:\Windows\System32\WMALFXGFXDSP.dll
14:58:08.0739 0316  C:\Windows\System32\WMALFXGFXDSP.dll - ok
14:58:08.0749 0316  [ 40B82688907A7DBA4DB3B5ADDE3EAB3B ] C:\Windows\System32\mfplat.dll
14:58:08.0749 0316  C:\Windows\System32\mfplat.dll - ok
14:58:08.0759 0316  [ C0B8B96D018849FD8CCF15FED84E8782 ] C:\Windows\System32\ie4uinit.exe
14:58:08.0759 0316  C:\Windows\System32\ie4uinit.exe - ok
14:58:08.0769 0316  [ F0FEFB0B5D25A75D478A4317139D937E ] C:\Windows\System32\iedkcs32.dll
14:58:08.0769 0316  C:\Windows\System32\iedkcs32.dll - ok
14:58:08.0779 0316  [ 5992A9DF57FD5E6960FDCC2DB69867F7 ] C:\Windows\System32\themeui.dll
14:58:08.0779 0316  C:\Windows\System32\themeui.dll - ok
14:58:08.0789 0316  [ 7E9917D5309A90E7576653BFE39F80D8 ] C:\Windows\System32\timedate.cpl
14:58:08.0789 0316  C:\Windows\System32\timedate.cpl - ok
14:58:08.0799 0316  [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\System32\linkinfo.dll
14:58:08.0799 0316  C:\Windows\System32\linkinfo.dll - ok
14:58:08.0809 0316  [ F1278B3514EA6FA9BC39B20D26139AAC ] C:\Windows\System32\msiltcfg.dll
14:58:08.0809 0316  C:\Windows\System32\msiltcfg.dll - ok
14:58:08.0819 0316  [ 175383778EB24D98C84E624021E3AA0B ] C:\Windows\System32\aeevts.dll
14:58:08.0819 0316  C:\Windows\System32\aeevts.dll - ok
14:58:08.0819 0316  [ 19BC13711AC403FEB830522E4831701B ] C:\Windows\System32\gameux.dll
14:58:08.0819 0316  C:\Windows\System32\gameux.dll - ok
14:58:08.0829 0316  [ 3A16EA01FCFAAB40882DB5BFEE632322 ] C:\Windows\System32\msftedit.dll
14:58:08.0829 0316  C:\Windows\System32\msftedit.dll - ok
14:58:08.0839 0316  [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\System32\msls31.dll
14:58:08.0839 0316  C:\Windows\System32\msls31.dll - ok
14:58:08.0849 0316  [ 7896EFFDEE215C172BE724A64931EF1C ] C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
14:58:08.0849 0316  C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll - ok
14:58:08.0859 0316  [ 2A39F32E0067CBF221611FE1FA8C6D8F ] C:\Windows\System32\DeviceCenter.dll
14:58:08.0859 0316  C:\Windows\System32\DeviceCenter.dll - ok
14:58:08.0869 0316  [ 672D7C5080ACB003343006405DA2E621 ] C:\Windows\System32\thumbcache.dll
14:58:08.0869 0316  C:\Windows\System32\thumbcache.dll - ok
14:58:08.0869 0316  [ 55C4F3ECB21CADBE4F637F163F32878E ] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
14:58:08.0869 0316  C:\Program Files\Avira\AntiVir Desktop\avgnt.exe - ok
14:58:08.0879 0316  [ F3DE10AABD5C7A1A186C9966F037D0C0 ] C:\Windows\System32\mfc100u.dll
14:58:08.0879 0316  C:\Windows\System32\mfc100u.dll - ok
14:58:08.0889 0316  [ 3D57FFBAD3ED16B63DE3879BAB0FB56F ] C:\Windows\System32\networkexplorer.dll
14:58:08.0889 0316  C:\Windows\System32\networkexplorer.dll - ok
14:58:08.0899 0316  [ D6692338B985D4A0CA52B828314D897D ] C:\Windows\System32\drprov.dll
14:58:08.0899 0316  C:\Windows\System32\drprov.dll - ok
14:58:08.0909 0316  [ D7B7159BC8374E87D8C45A30377A3440 ] C:\Windows\System32\ntlanman.dll
14:58:08.0909 0316  C:\Windows\System32\ntlanman.dll - ok
14:58:08.0919 0316  [ 284B59D7B56FC76C80E622AB856B1FAB ] C:\Windows\System32\davclnt.dll
14:58:08.0919 0316  C:\Windows\System32\davclnt.dll - ok
14:58:08.0929 0316  [ 179BECE8D1A4C488DDB7191FF9BE3FB0 ] C:\Windows\System32\davhlpr.dll
14:58:08.0929 0316  C:\Windows\System32\davhlpr.dll - ok
14:58:08.0939 0316  [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\System32\ntshrui.dll
14:58:08.0939 0316  C:\Windows\System32\ntshrui.dll - ok
14:58:08.0949 0316  [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\Windows\System32\drivers\97898432.sys
14:58:08.0949 0316  C:\Windows\System32\drivers\97898432.sys - ok
14:58:08.0959 0316  [ F979E2139F2DD221ECB8506EEAC9931F ] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
14:58:08.0959 0316  C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe - ok
14:58:08.0969 0316  [ 2A2C442F00B45E01D4C882EEA69A01BC ] C:\Windows\System32\mfc100enu.dll
14:58:08.0969 0316  C:\Windows\System32\mfc100enu.dll - ok
14:58:08.0979 0316  [ 29BA3CF2D7133586F67D087C5E494E7D ] C:\Program Files\Avira\AntiVir Desktop\ccwkrlib.dll
14:58:08.0979 0316  C:\Program Files\Avira\AntiVir Desktop\ccwkrlib.dll - ok
14:58:08.0989 0316  [ B087EEA25747C87942DC37E426DD37C3 ] C:\Program Files\Avira\AntiVir Desktop\rcimage.dll
14:58:08.0999 0316  C:\Program Files\Avira\AntiVir Desktop\rcimage.dll - ok
14:58:09.0009 0316  [ 7A0289B48F7F96C6DF65CC3CA8E5B700 ] C:\Program Files\Avira\AntiVir Desktop\ccguard.dll
14:58:09.0009 0316  C:\Program Files\Avira\AntiVir Desktop\ccguard.dll - ok
14:58:09.0026 0316  [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\System32\dsound.dll
14:58:09.0026 0316  C:\Windows\System32\dsound.dll - ok
14:58:09.0041 0316  [ F54D83E31EA5CA6CA6C30FEC7387EFDC ] C:\Program Files\Avira\AntiVir Desktop\ccgrdrc.dll
14:58:09.0041 0316  C:\Program Files\Avira\AntiVir Desktop\ccgrdrc.dll - ok
14:58:09.0051 0316  [ 458C9A3E593605136718EE74B46FB0FB ] C:\Program Files\Avira\AntiVir Desktop\ccgrdw.dll
14:58:09.0051 0316  C:\Program Files\Avira\AntiVir Desktop\ccgrdw.dll - ok
14:58:09.0061 0316  [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\System32\oledlg.dll
14:58:09.0061 0316  C:\Windows\System32\oledlg.dll - ok
14:58:09.0071 0316  [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
14:58:09.0071 0316  C:\Program Files\Common Files\Java\Java Update\jusched.exe - ok
14:58:09.0081 0316  [ DCAAB58260F4EC2E29C3E714A269F150 ] C:\Program Files\Avira\AntiVir Desktop\ccwgrd.dll
14:58:09.0081 0316  C:\Program Files\Avira\AntiVir Desktop\ccwgrd.dll - ok
14:58:09.0091 0316  [ 0285194A134B44BA48F6129FFD6026A0 ] C:\Program Files\Avira\AntiVir Desktop\ccwgrdrc.dll
14:58:09.0091 0316  C:\Program Files\Avira\AntiVir Desktop\ccwgrdrc.dll - ok
14:58:09.0101 0316  [ 120BF3219210748556F90B39855A59D7 ] C:\Program Files\Avira\AntiVir Desktop\ccwgrdw.dll
14:58:09.0101 0316  C:\Program Files\Avira\AntiVir Desktop\ccwgrdw.dll - ok
14:58:09.0111 0316  [ 967131647AFDC7B8CC072F74D0D4B281 ] C:\Program Files\Avira\AntiVir Desktop\ccgen.dll
14:58:09.0111 0316  C:\Program Files\Avira\AntiVir Desktop\ccgen.dll - ok
14:58:09.0121 0316  [ A3C6D5CCCCFC5DE82517608A20DE919E ] C:\Program Files\Avira\AntiVir Desktop\ccgenrc.dll
14:58:09.0121 0316  C:\Program Files\Avira\AntiVir Desktop\ccgenrc.dll - ok
14:58:09.0131 0316  [ 131902B08B1528E68E4A3DC7F85645B8 ] C:\Program Files\Avira\AntiVir Desktop\ccupdate.dll
14:58:09.0131 0316  C:\Program Files\Avira\AntiVir Desktop\ccupdate.dll - ok
14:58:09.0141 0316  [ E7D6F0AFFB7833396B6EE75E2C06F5BB ] C:\Program Files\Avira\AntiVir Desktop\ccupdrc.dll
14:58:09.0141 0316  C:\Program Files\Avira\AntiVir Desktop\ccupdrc.dll - ok
14:58:09.0151 0316  [ 6E185C142BDEA550AA3B4706EFF5CEBC ] C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
14:58:09.0151 0316  C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe - ok
14:58:09.0161 0316  [ 373CA64063413D6E57A98B301ABA5172 ] C:\Program Files\Avira\AntiVir Desktop\cclic.dll
14:58:09.0161 0316  C:\Program Files\Avira\AntiVir Desktop\cclic.dll - ok
14:58:09.0171 0316  [ 8AFDF673724F41683EC8723B081E550F ] C:\Program Files\Avira\AntiVir Desktop\cclicrc.dll
14:58:09.0171 0316  C:\Program Files\Avira\AntiVir Desktop\cclicrc.dll - ok
14:58:09.0181 0316  [ B63E5C7807334A3A8F731062F15462CC ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
14:58:09.0181 0316  C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
14:58:09.0191 0316  [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\System32\riched20.dll
14:58:09.0191 0316  C:\Windows\System32\riched20.dll - ok
14:58:09.0201 0316  [ 0E34B7BB1FCF22BCC1E394D16F9E992B ] E:\Microsoft ofice\Office12\GrooveMonitor.exe
14:58:09.0201 0316  E:\Microsoft ofice\Office12\GrooveMonitor.exe - ok
14:58:09.0221 0316  [ 89CC6A9F8FB804303817FFF01F93DAA2 ] C:\Program Files\Avira\AntiVir Desktop\ccmsg.dll
14:58:09.0221 0316  C:\Program Files\Avira\AntiVir Desktop\ccmsg.dll - ok
14:58:09.0231 0316  [ 95BA11D12E661058560577BE37A2F6A9 ] C:\Program Files\Avira\AntiVir Desktop\ccmsgrc.dll
14:58:09.0231 0316  C:\Program Files\Avira\AntiVir Desktop\ccmsgrc.dll - ok
14:58:09.0231 0316  [ FEEFC81746B09B6B0DA7DF91CC7DEDE7 ] C:\Program Files\Avira\AntiVir Desktop\ccmainrc.dll
14:58:09.0231 0316  C:\Program Files\Avira\AntiVir Desktop\ccmainrc.dll - ok
14:58:09.0241 0316  [ F5948132D8A0DFA7390F7B1E58BB6057 ] C:\Windows\V0420Mon.exe
14:58:09.0241 0316  C:\Windows\V0420Mon.exe - ok
14:58:09.0258 0316  [ C1648084C395152FBFA1B333D92056BC ] C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe
14:58:09.0258 0316  C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok
14:58:09.0269 0316  [ C140F86932B5B61F54A4D836E2D34AB2 ] C:\Windows\System32\ksproxy.ax
14:58:09.0269 0316  C:\Windows\System32\ksproxy.ax - ok
14:58:09.0273 0316  [ 7DFCCC67990B6DE7F30F553A4E4612A4 ] C:\Program Files\RocketDock\RocketDock.exe
14:58:09.0273 0316  C:\Program Files\RocketDock\RocketDock.exe - ok
14:58:09.0283 0316  [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\System32\d3d9.dll
14:58:09.0283 0316  C:\Windows\System32\d3d9.dll - ok
14:58:09.0293 0316  [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\System32\d3d8thk.dll
14:58:09.0293 0316  C:\Windows\System32\d3d8thk.dll - ok
14:58:09.0303 0316  [ 0DCA6A11D09D4C2CBE6B898B897EA915 ] C:\Windows\System32\UIAnimation.dll
14:58:09.0303 0316  C:\Windows\System32\UIAnimation.dll - ok
14:58:09.0313 0316  [ 3C6FA2F4D58611579B21798E0568F548 ] C:\Program Files\Adobe\Reader 10.0\Reader\reader_sl.exe
14:58:09.0313 0316  C:\Program Files\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
14:58:09.0323 0316  [ 08FC1FAD357F053043016597B6559BDC ] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
14:58:09.0323 0316  C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe - ok
14:58:09.0333 0316  [ 7619D9ABB017DEBB29D0793A9C2B64A8 ] C:\Program Files\DAEMON Tools Lite\DTLite.exe
14:58:09.0333 0316  C:\Program Files\DAEMON Tools Lite\DTLite.exe - ok
14:58:09.0343 0316  [ BB50B21FEE2A6F3E5FC92B330ECCF050 ] C:\Windows\System32\hhctrl.ocx
14:58:09.0343 0316  C:\Windows\System32\hhctrl.ocx - ok
14:58:09.0353 0316  [ 82685F1428D91993698FAA35D388CD59 ] C:\Windows\System32\RTCOM\RtkCfg.dll
14:58:09.0353 0316  C:\Windows\System32\RTCOM\RtkCfg.dll - ok
14:58:09.0363 0316  [ E94037020D973D8CE196ADAA264BB19E ] C:\Program Files\DAEMON Tools Lite\DTCommonRes.dll
14:58:09.0363 0316  C:\Program Files\DAEMON Tools Lite\DTCommonRes.dll - ok
14:58:09.0373 0316  [ 8E38CE628D4817D949DD31D77A7F21CD ] C:\Windows\System32\jsproxy.dll
14:58:09.0373 0316  C:\Windows\System32\jsproxy.dll - ok
14:58:09.0383 0316  [ AAE606B26B42AE596B2D9FBBD35A3A19 ] C:\Program Files\DAEMON Tools Lite\Engine.dll
14:58:09.0383 0316  C:\Program Files\DAEMON Tools Lite\Engine.dll - ok
14:58:09.0383 0316  [ 912649A1B3F9E6ACB3899FBDABA2ED5F ] C:\Windows\System32\stobject.dll
14:58:09.0393 0316  C:\Windows\System32\stobject.dll - ok
14:58:09.0403 0316  [ 67C1B58706B47EEBA4E117AC197289E6 ] C:\Windows\System32\batmeter.dll
14:58:09.0403 0316  C:\Windows\System32\batmeter.dll - ok
14:58:09.0413 0316  [ 51138BEEA3E2C21EC44D0932C71762A8 ] C:\Windows\System32\rundll32.exe
14:58:09.0413 0316  C:\Windows\System32\rundll32.exe - ok
14:58:09.0423 0316  [ 96C70BD48D49B87475F4572DEDC62EB9 ] C:\Windows\AppPatch\AcLayers.dll
14:58:09.0423 0316  C:\Windows\AppPatch\AcLayers.dll - ok
14:58:09.0433 0316  [ C8333F1F77A1B2E25F2202E892CAF634 ] C:\Windows\System32\prnfldr.dll
14:58:09.0433 0316  C:\Windows\System32\prnfldr.dll - ok
14:58:09.0443 0316  [ 3FF0FA0A81910617739644A06D06D016 ] C:\Windows\System32\fdProxy.dll
14:58:09.0443 0316  C:\Windows\System32\fdProxy.dll - ok
14:58:09.0453 0316  [ ADDB05C93272A62606599B24730BD645 ] C:\Windows\System32\DXP.dll
14:58:09.0453 0316  C:\Windows\System32\DXP.dll - ok
14:58:09.0463 0316  [ 856CFFCD835528136367BB1A8FE1DB87 ] C:\Windows\System32\Syncreg.dll
14:58:09.0463 0316  C:\Windows\System32\Syncreg.dll - ok
14:58:09.0473 0316  [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
14:58:09.0473 0316  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
14:58:09.0473 0316  [ F8F03D206F7D5811D630349A23E9B9B9 ] C:\Windows\ehome\ehSSO.dll
14:58:09.0473 0316  C:\Windows\ehome\ehSSO.dll - ok
14:58:09.0483 0316  [ C2F51897E8BB86000E30575E25256878 ] C:\Program Files\Avira\AntiVir Desktop\ccupdw.dll
14:58:09.0483 0316  C:\Program Files\Avira\AntiVir Desktop\ccupdw.dll - ok
14:58:09.0503 0316  [ B2B3DAE040F6B5AE1DF52B0CD7631A18 ] C:\Windows\System32\AltTab.dll
14:58:09.0503 0316  C:\Windows\System32\AltTab.dll - ok
14:58:09.0503 0316  [ 735263DA17BF5BAF9CCD483843BF9D5A ] C:\Windows\System32\WPDShServiceObj.dll
14:58:09.0503 0316  C:\Windows\System32\WPDShServiceObj.dll - ok
14:58:09.0513 0316  [ CF4274CEEA9F7791FB7FC40A066BC2C7 ] C:\Windows\System32\cscobj.dll
14:58:09.0513 0316  C:\Windows\System32\cscobj.dll - ok
14:58:09.0523 0316  [ 674B0C0F6A448EB185CAAB9C51D44032 ] C:\Windows\System32\srchadmin.dll
14:58:09.0523 0316  C:\Windows\System32\srchadmin.dll - ok
14:58:09.0533 0316  [ 7CCCFCA7510684768DA22092D1FA4DB2 ] C:\Windows\System32\netman.dll
14:58:09.0533 0316  C:\Windows\System32\netman.dll - ok
14:58:09.0543 0316  [ D39DA70FEA6BD713682F70635587DA9E ] C:\Windows\System32\rasdlg.dll
14:58:09.0543 0316  C:\Windows\System32\rasdlg.dll - ok
14:58:09.0553 0316  [ BFB8225B54B9DFB2B4A556546C47F59D ] C:\Program Files\Avira\AntiVir Desktop\cclicw.dll
14:58:09.0553 0316  C:\Program Files\Avira\AntiVir Desktop\cclicw.dll - ok
14:58:09.0553 0316  [ 236F286E103FD44BD85FDD93097FD5DD ] C:\Windows\System32\SearchIndexer.exe
14:58:09.0553 0316  C:\Windows\System32\SearchIndexer.exe - ok
14:58:09.0563 0316  [ 9A39A2A5F443A756C568C6ED5748AFE4 ] C:\Windows\System32\ActionCenter.dll
14:58:09.0563 0316  C:\Windows\System32\ActionCenter.dll - ok
14:58:09.0573 0316  [ 4DE1EBB2314E2F10AC9EC83138193F8B ] C:\Program Files\DAEMON Tools Lite\imgengine.dll
14:58:09.0573 0316  C:\Program Files\DAEMON Tools Lite\imgengine.dll - ok
14:58:09.0583 0316  [ 4A2A05B25DF4385F5AEC6F07B1C1E93D ] C:\Program Files\RocketDock\RocketDock.dll
14:58:09.0583 0316  C:\Program Files\RocketDock\RocketDock.dll - ok
14:58:09.0603 0316  [ C2D6A4475B87651D5909E364439FDA52 ] C:\Windows\System32\FXSST.dll
14:58:09.0603 0316  C:\Windows\System32\FXSST.dll - ok
14:58:09.0603 0316  [ 942E57152F1CD0533644AB30EF1A4728 ] C:\Windows\System32\FXSAPI.dll
14:58:09.0603 0316  C:\Windows\System32\FXSAPI.dll - ok
14:58:09.0613 0316  [ 77EA11B065E0A8AB902D78145CA51E10 ] C:\Windows\System32\drivers\cdfs.sys
14:58:09.0613 0316  C:\Windows\System32\drivers\cdfs.sys - ok
14:58:09.0623 0316  [ AA549421B84C6C873732DC25A3F96F80 ] C:\Program Files\Spybot - Search & Destroy\advcheck.dll
14:58:09.0623 0316  C:\Program Files\Spybot - Search & Destroy\advcheck.dll - ok
14:58:09.0633 0316  [ C4096CA42199428B3D63DC206C197F0E ] C:\Windows\System32\FXSRESM.dll
14:58:09.0633 0316  C:\Windows\System32\FXSRESM.dll - ok
14:58:09.0653 0316  [ 967EA5B213E9984CBE270205DF37755B ] C:\Windows\System32\FXSSVC.exe
14:58:09.0653 0316  C:\Windows\System32\FXSSVC.exe - ok
14:58:09.0653 0316  [ 465DBF63A5049E4DB4BC5C12FFE781CB ] C:\Windows\System32\tquery.dll
14:58:09.0653 0316  C:\Windows\System32\tquery.dll - ok
14:58:09.0663 0316  [ 0241CB16136B9A4939CA0395768AE286 ] C:\Windows\System32\mssrch.dll
14:58:09.0663 0316  C:\Windows\System32\mssrch.dll - ok
14:58:09.0683 0316  [ 5C3F9DBA818CD93379D1A0F215270374 ] C:\Windows\System32\esent.dll
14:58:09.0683 0316  C:\Windows\System32\esent.dll - ok
14:58:09.0683 0316  [ 81600E2E27ED61427AAD865B9BCDDB9D ] C:\Windows\System32\msidle.dll
14:58:09.0683 0316  C:\Windows\System32\msidle.dll - ok
14:58:09.0693 0316  [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\System32\mssprxy.dll
14:58:09.0693 0316  C:\Windows\System32\mssprxy.dll - ok
14:58:09.0703 0316  [ 613BF4820361543956909043A265C6AC ] C:\Windows\System32\tapisrv.dll
14:58:09.0703 0316  C:\Windows\System32\tapisrv.dll - ok
14:58:09.0723 0316  [ CB9E04DC05EACF5B9A36CA276D475006 ] C:\Windows\System32\rasmans.dll
14:58:09.0723 0316  C:\Windows\System32\rasmans.dll - ok
14:58:09.0733 0316  [ B2E1E4A16EDD02396F451F915FA3CBFA ] C:\Windows\System32\rastapi.dll
14:58:09.0733 0316  C:\Windows\System32\rastapi.dll - ok
14:58:09.0733 0316  [ BA32509D9B340162327B341013DE6522 ] C:\Windows\System32\tapi32.dll
14:58:09.0733 0316  C:\Windows\System32\tapi32.dll - ok
14:58:09.0743 0316  [ 377F0C1DDBFA6A43CB7E7568BC0ECED0 ] C:\Windows\System32\unimdm.tsp
14:58:09.0743 0316  C:\Windows\System32\unimdm.tsp - ok
14:58:09.0753 0316  [ E675DE8CF57D8814218733B3DAE896D7 ] C:\Windows\System32\uniplat.dll
14:58:09.0753 0316  C:\Windows\System32\uniplat.dll - ok
14:58:09.0763 0316  [ F3FB146CDBDD26FCD0CF7941C547BEE4 ] C:\Windows\System32\kmddsp.tsp
14:58:09.0763 0316  C:\Windows\System32\kmddsp.tsp - ok
14:58:09.0773 0316  [ AA11A26692E0DB2996CAEFE9EC61F61F ] C:\Windows\System32\ndptsp.tsp
14:58:09.0773 0316  C:\Windows\System32\ndptsp.tsp - ok
14:58:09.0793 0316  [ E2F6CC0D191361EE94FEA3957653F531 ] C:\Windows\System32\hidphone.tsp
14:58:09.0793 0316  C:\Windows\System32\hidphone.tsp - ok
14:58:09.0803 0316  [ 67F9B5C7E215B48F9256757E9CC09A7B ] C:\Windows\System32\rasppp.dll
14:58:09.0803 0316  C:\Windows\System32\rasppp.dll - ok
14:58:09.0823 0316  [ 80B562B5B59ED850C328DD75F964F3D8 ] C:\Windows\System32\vpnike.dll
14:58:09.0823 0316  C:\Windows\System32\vpnike.dll - ok
14:58:09.0823 0316  [ 5193DE33F3284C447E0D31DAFBF92570 ] C:\Windows\System32\webcheck.dll
14:58:09.0823 0316  C:\Windows\System32\webcheck.dll - ok
14:58:09.0833 0316  [ 207CF171B1C6B8AE50C1FBF87363EEBC ] C:\Windows\System32\raschap.dll
14:58:09.0833 0316  C:\Windows\System32\raschap.dll - ok
14:58:09.0843 0316  [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\System32\mlang.dll
14:58:09.0843 0316  C:\Windows\System32\mlang.dll - ok
14:58:09.0853 0316  [ E1AC89F6C5252057E6062843E36A6701 ] C:\Windows\System32\SearchProtocolHost.exe
14:58:09.0853 0316  C:\Windows\System32\SearchProtocolHost.exe - ok
14:58:09.0853 0316  [ 2DDEA2C345DA5BC589EFD398F220DB0E ] C:\Windows\System32\SyncCenter.dll
14:58:09.0853 0316  C:\Windows\System32\SyncCenter.dll - ok
14:58:09.0863 0316  [ A5D237B8673025B052C0E6FDB6A883E8 ] C:\Windows\System32\msshooks.dll
14:58:09.0863 0316  C:\Windows\System32\msshooks.dll - ok
14:58:09.0873 0316  [ A6CD6B3F71E13E2E45B727FB8A47EA87 ] C:\Windows\System32\SearchFilterHost.exe
14:58:09.0873 0316  C:\Windows\System32\SearchFilterHost.exe - ok
14:58:09.0883 0316  [ 2D11BC8B460957E62E4420373A0D8BDA ] C:\Windows\System32\imapi2.dll
14:58:09.0883 0316  C:\Windows\System32\imapi2.dll - ok
14:58:09.0893 0316  [ C02AA67276FEE0C15CC4D6D616BDE95E ] C:\Windows\System32\WWanAPI.dll
14:58:09.0893 0316  C:\Windows\System32\WWanAPI.dll - ok
14:58:09.0903 0316  [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\System32\mscoree.dll
14:58:09.0903 0316  C:\Windows\System32\mscoree.dll - ok
14:58:09.0913 0316  [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
14:58:09.0913 0316  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
14:58:09.0923 0316  [ C7952D0A4C43A965A1741916BB134751 ] C:\Windows\System32\hgcpl.dll
14:58:09.0923 0316  C:\Windows\System32\hgcpl.dll - ok
14:58:09.0933 0316  [ DB67C7C62038BDE813CB6486581A7611 ] C:\Windows\System32\mssph.dll
14:58:09.0933 0316  C:\Windows\System32\mssph.dll - ok
14:58:09.0943 0316  [ 8BC9DB92C4B2F3BE89185BEAB2AFC1F6 ] C:\Windows\System32\mapi32.dll
14:58:09.0943 0316  C:\Windows\System32\mapi32.dll - ok
14:58:09.0943 0316  [ E3D5E244807AD655787FCD25477CC1BC ] C:\Windows\System32\bthprops.cpl
14:58:09.0953 0316  C:\Windows\System32\bthprops.cpl - ok
14:58:09.0953 0316  [ 5744FFF8E72D105C138DAE9E17BB29FE ] C:\Program Files\Mozilla Firefox\firefox.exe
14:58:09.0953 0316  C:\Program Files\Mozilla Firefox\firefox.exe - ok
14:58:09.0963 0316  [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files\Mozilla Firefox\msvcr100.dll
14:58:09.0963 0316  C:\Program Files\Mozilla Firefox\msvcr100.dll - ok
14:58:09.0973 0316  [ C2EFE31691B0220BA2D366F6ECD9EEBC ] C:\Program Files\Mozilla Firefox\mozglue.dll
14:58:09.0973 0316  C:\Program Files\Mozilla Firefox\mozglue.dll - ok
14:58:09.0983 0316  [ 4D8CAE21D3617DBC539F0A7ACEB66FAD ] C:\Program Files\Mozilla Firefox\nspr4.dll
14:58:09.0983 0316  C:\Program Files\Mozilla Firefox\nspr4.dll - ok
14:58:09.0993 0316  [ 03E9314004F504A14A61C3D364B62F66 ] C:\Program Files\Mozilla Firefox\msvcp100.dll
14:58:09.0993 0316  C:\Program Files\Mozilla Firefox\msvcp100.dll - ok
14:58:10.0003 0316  [ 2D64A5315260AAD1D6BEEE65D2681DB3 ] C:\Program Files\Mozilla Firefox\mozjs.dll
14:58:10.0003 0316  C:\Program Files\Mozilla Firefox\mozjs.dll - ok
14:58:10.0013 0316  [ 6F255F96534FCF5FF4B611B52C1AB813 ] C:\Program Files\Mozilla Firefox\plc4.dll
14:58:10.0013 0316  C:\Program Files\Mozilla Firefox\plc4.dll - ok
14:58:10.0023 0316  [ 15A9691C1F00631BC5475CEEF9A6EA62 ] C:\Program Files\Mozilla Firefox\nssutil3.dll
14:58:10.0023 0316  C:\Program Files\Mozilla Firefox\nssutil3.dll - ok
14:58:10.0033 0316  [ 6B85D6ADEF244F9077BD7874610574A9 ] C:\Program Files\Mozilla Firefox\plds4.dll
14:58:10.0033 0316  C:\Program Files\Mozilla Firefox\plds4.dll - ok
14:58:10.0043 0316  [ 0206166F245BE09DC9C1550AFB2C0B8D ] C:\Program Files\Mozilla Firefox\nss3.dll
14:58:10.0043 0316  C:\Program Files\Mozilla Firefox\nss3.dll - ok
14:58:10.0053 0316  [ 9F135327116E63D522BFEF39F37CB2E6 ] C:\Program Files\Mozilla Firefox\smime3.dll
14:58:10.0053 0316  C:\Program Files\Mozilla Firefox\smime3.dll - ok
14:58:10.0063 0316  [ F5720ED4EEA3D62A3C9AF0950F2B7D23 ] C:\Program Files\Mozilla Firefox\ssl3.dll
14:58:10.0063 0316  C:\Program Files\Mozilla Firefox\ssl3.dll - ok
14:58:10.0073 0316  [ 52652560BCE03F232CE6AF381D82CE5F ] C:\Program Files\Mozilla Firefox\mozalloc.dll
14:58:10.0073 0316  C:\Program Files\Mozilla Firefox\mozalloc.dll - ok
14:58:10.0083 0316  [ 3D2706E87D3E4433DB929B86207CA928 ] C:\Program Files\Mozilla Firefox\mozsqlite3.dll
14:58:10.0083 0316  C:\Program Files\Mozilla Firefox\mozsqlite3.dll - ok
14:58:10.0083 0316  [ A38B82A306CDDA0BB141225F92FC9F85 ] C:\Program Files\Mozilla Firefox\gkmedias.dll
14:58:10.0083 0316  C:\Program Files\Mozilla Firefox\gkmedias.dll - ok
14:58:10.0093 0316  [ 4C44A99BB7584D6B70507987BE786259 ] C:\Program Files\Mozilla Firefox\xul.dll
14:58:10.0093 0316  C:\Program Files\Mozilla Firefox\xul.dll - ok
14:58:10.0103 0316  [ 4D774B94671141D491CFCB4CA3650EBF ] C:\Program Files\Mozilla Firefox\xpcom.dll
14:58:10.0103 0316  C:\Program Files\Mozilla Firefox\xpcom.dll - ok
14:58:10.0123 0316  [ A29D734F650F958424743BE3BAA052C8 ] C:\Windows\System32\DWrite.dll
14:58:10.0123 0316  C:\Windows\System32\DWrite.dll - ok
14:58:10.0123 0316  [ 520B9EF148145FDE39E4FB77E0C7FC48 ] C:\Program Files\Mozilla Firefox\components\browsercomps.dll
14:58:10.0123 0316  C:\Program Files\Mozilla Firefox\components\browsercomps.dll - ok
14:58:10.0133 0316  [ 6B140B1382F1FE04BA57B196AEB19725 ] C:\Windows\System32\t2embed.dll
14:58:10.0133 0316  C:\Windows\System32\t2embed.dll - ok
14:58:10.0143 0316  [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] C:\Windows\System32\FntCache.dll
14:58:10.0143 0316  C:\Windows\System32\FntCache.dll - ok
14:58:10.0153 0316  [ 816B681CC308FAA128EDCB90643DCED7 ] C:\Windows\System32\icm32.dll
14:58:10.0153 0316  C:\Windows\System32\icm32.dll - ok
14:58:10.0163 0316  [ D9FA57CBA32ABA63D5C30B854F660F07 ] C:\Program Files\Mozilla Firefox\freebl3.dll
14:58:10.0163 0316  C:\Program Files\Mozilla Firefox\freebl3.dll - ok
14:58:10.0173 0316  [ CF7C83513AD0F22070B6795590F6BA68 ] C:\Program Files\Mozilla Firefox\nssdbm3.dll
14:58:10.0173 0316  C:\Program Files\Mozilla Firefox\nssdbm3.dll - ok
14:58:10.0173 0316  [ 9662E514A77389EB6F7E846DB8B44C4D ] C:\Program Files\Mozilla Firefox\softokn3.dll
14:58:10.0173 0316  C:\Program Files\Mozilla Firefox\softokn3.dll - ok
14:58:10.0183 0316  [ 2944201BCD2BCC92897551A95757DDBE ] C:\Program Files\Mozilla Firefox\nssckbi.dll
14:58:10.0183 0316  C:\Program Files\Mozilla Firefox\nssckbi.dll - ok
14:58:10.0193 0316  [ A2631C4465BBCE72B7E371DFB924A9D3 ] C:\Windows\System32\feclient.dll
14:58:10.0193 0316  C:\Windows\System32\feclient.dll - ok
14:58:10.0203 0316  [ 370349F79315D4DB86CD992CACEFEE61 ] C:\Windows\System32\VAN.dll
14:58:10.0203 0316  C:\Windows\System32\VAN.dll - ok
14:58:10.0213 0316  [ F405B990E4C5BFC89E2CA19C6901529B ] C:\Windows\System32\wwanmm.dll
14:58:10.0213 0316  C:\Windows\System32\wwanmm.dll - ok
14:58:10.0223 0316  [ 27F3D44B29E14658EDE13D7D044E7420 ] C:\Windows\System32\RASMM.dll
14:58:10.0223 0316  C:\Windows\System32\RASMM.dll - ok
14:58:10.0233 0316  [ 4B8441782918424827F2937CFB669136 ] C:\Windows\System32\WlanMM.dll
14:58:10.0233 0316  C:\Windows\System32\WlanMM.dll - ok
14:58:10.0243 0316  [ 93A690B9DCDE48B64DE7A87AAC2CC9BC ] C:\Windows\System32\xwizards.dll
14:58:10.0243 0316  C:\Windows\System32\xwizards.dll - ok
14:58:10.0253 0316  [ CC3755148498C0A44F57A88BF2ABDCD7 ] C:\Windows\System32\xwtpdui.dll
14:58:10.0253 0316  C:\Windows\System32\xwtpdui.dll - ok
14:58:10.0263 0316  [ 24B914FA98F6FBD9290A140712B774BF ] C:\Windows\System32\xwreg.dll
14:58:10.0263 0316  C:\Windows\System32\xwreg.dll - ok
14:58:10.0263 0316  [ EB1EF79F82CAE9FB0E874716B310ED2D ] C:\Windows\System32\rasgcw.dll
14:58:10.0263 0316  C:\Windows\System32\rasgcw.dll - ok
14:58:10.0273 0316  [ 5FC2D30C05487B480C2A154D5D281BA0 ] C:\Windows\System32\connect.dll
14:58:10.0273 0316  C:\Windows\System32\connect.dll - ok
14:58:10.0283 0316  [ F148865E4AC4F715E322EA06E6E21D84 ] C:\Windows\System32\wbem\NCProv.dll
14:58:10.0283 0316  C:\Windows\System32\wbem\NCProv.dll - ok
14:58:10.0303 0316  [ CCA67BD391CFC9F036323B2522887A6A ] C:\Windows\System32\mobsync.exe
14:58:10.0303 0316  C:\Windows\System32\mobsync.exe - ok
14:58:10.0303 0316  [ 469E61ED4C5E018E1D0B130ACE65D85F ] C:\Windows\System32\SyncInfrastructure.dll
14:58:10.0303 0316  C:\Windows\System32\SyncInfrastructure.dll - ok
14:58:10.0323 0316  [ A80C173AC5C75706BB74AE4D78F2A53D ] C:\Program Files\Windows Media Player\wmplayer.exe
14:58:10.0323 0316  C:\Program Files\Windows Media Player\wmplayer.exe - ok
14:58:10.0333 0316  [ C142445B59C1DABA31F6397A34C42C74 ] C:\Program Files\Mozilla Firefox\plugin-container.exe
14:58:10.0333 0316  C:\Program Files\Mozilla Firefox\plugin-container.exe - ok
14:58:10.0333 0316  [ 54FC590185D7D00D65E53B9A5990DC14 ] C:\Windows\System32\Macromed\Flash\NPSWF32_11_5_502_135.dll
14:58:10.0333 0316  C:\Windows\System32\Macromed\Flash\NPSWF32_11_5_502_135.dll - ok
14:58:10.0353 0316  [ 26807EED9A80328943CD8385BC7E6991 ] C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe
14:58:10.0353 0316  C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_5_502_135.exe - ok
14:58:10.0363 0316  [ 294E1D24CED78C545E46ABC88B88A729 ] C:\Program Files\Avira\AntiVir Desktop\ipmgui.exe
14:58:10.0363 0316  C:\Program Files\Avira\AntiVir Desktop\ipmgui.exe - ok
14:58:10.0373 0316  [ 07F649CD36F266BBE33B814FA678AA43 ] C:\Windows\System32\mshtml.dll
14:58:10.0373 0316  C:\Windows\System32\mshtml.dll - ok
14:58:10.0373 0316  [ 1F27643C4C626457FCE8F047AE1CD7E1 ] C:\Windows\System32\dxva2.dll
14:58:10.0373 0316  C:\Windows\System32\dxva2.dll - ok
14:58:10.0383 0316  [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:58:10.0383 0316  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
14:58:10.0403 0316  [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\System32\msvcr100_clr0400.dll
14:58:10.0403 0316  C:\Windows\System32\msvcr100_clr0400.dll - ok
14:58:10.0413 0316  [ 7A3B55C05B035042B4DCAD7FF9365E1B ] C:\Program Files\Google\Update\1.3.21.124\goopdateres_pl.dll
14:58:10.0413 0316  C:\Program Files\Google\Update\1.3.21.124\goopdateres_pl.dll - ok
14:58:10.0423 0316  [ 0629259E3AF6BB0534FCECA208973404 ] C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
14:58:10.0423 0316  C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe - ok
14:58:10.0433 0316  [ 9C17DCD6DDFEB1A012544FAF4F2789F6 ] C:\Windows\AppPatch\AcGenral.dll
14:58:10.0433 0316  C:\Windows\AppPatch\AcGenral.dll - ok
14:58:10.0443 0316  [ CF87A1DE791347E75B98885214CED2B8 ] C:\Windows\System32\sppsvc.exe
14:58:10.0443 0316  C:\Windows\System32\sppsvc.exe - ok
14:58:10.0453 0316  [ D16D818E9930A6E5B4F6476DD0998D1A ] C:\Windows\System32\drivers\spsys.sys
14:58:10.0453 0316  C:\Windows\System32\drivers\spsys.sys - ok
14:58:10.0463 0316  [ 3B40D3A61AA8C21B88AE57C58AB3122E ] C:\Program Files\Windows Media Player\wmpnetwk.exe
14:58:10.0463 0316  C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
14:58:10.0473 0316  [ 6F5D49EFE0E7164E03AE773A3FE25340 ] C:\Windows\System32\wscsvc.dll
14:58:10.0473 0316  C:\Windows\System32\wscsvc.dll - ok
14:58:10.0483 0316  [ 3A11396EAC2414012155AB14E5C1E332 ] C:\Windows\System32\sppwinob.dll
14:58:10.0483 0316  C:\Windows\System32\sppwinob.dll - ok
14:58:10.0493 0316  [ 5CF15474FFDB5005E54958DF6EDD97AB ] C:\Windows\System32\wmdrmdev.dll
14:58:10.0493 0316  C:\Windows\System32\wmdrmdev.dll - ok
14:58:10.0503 0316  [ 47D052D9EE1FD3BA2A55D13F61E3EF24 ] C:\Windows\System32\drmv2clt.dll
14:58:10.0503 0316  C:\Windows\System32\drmv2clt.dll - ok
14:58:10.0513 0316  [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\Windows\System32\wuaueng.dll
14:58:10.0513 0316  C:\Windows\System32\wuaueng.dll - ok
14:58:10.0523 0316  [ EA2B00551F3E7B3D5F7FB730A55F8246 ] C:\Windows\System32\blackbox.dll
14:58:10.0523 0316  C:\Windows\System32\blackbox.dll - ok
14:58:10.0533 0316  [ 7A6986DD659B96398A11AF5173892715 ] C:\Windows\System32\cabinet.dll
14:58:10.0533 0316  C:\Windows\System32\cabinet.dll - ok
14:58:10.0543 0316  [ 954EA9B34F155C844B11F4047A8F6F89 ] C:\Windows\System32\upnp.dll
14:58:10.0543 0316  C:\Windows\System32\upnp.dll - ok
14:58:10.0553 0316  [ 387A8A473ECC5BA02CF453277C1F3274 ] C:\Windows\System32\mspatcha.dll
14:58:10.0553 0316  C:\Windows\System32\mspatcha.dll - ok
14:58:10.0563 0316  [ D887C9FD02AC9FA880F6E5027A43E118 ] C:\Windows\System32\ssdpsrv.dll
14:58:10.0563 0316  C:\Windows\System32\ssdpsrv.dll - ok
14:58:10.0573 0316  [ 1A617835452EEE5060976C9B9F5FE635 ] C:\Windows\System32\wuapi.dll
14:58:10.0573 0316  C:\Windows\System32\wuapi.dll - ok
14:58:10.0583 0316  [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\Windows\System32\wups.dll
14:58:10.0583 0316  C:\Windows\System32\wups.dll - ok
14:58:10.0593 0316  [ 421D9645B72CD341ECDBB0FCE06C97DE ] C:\Windows\System32\sppobjs.dll
14:58:10.0593 0316  C:\Windows\System32\sppobjs.dll - ok
14:58:10.0593 0316  [ 0FBC74AA20FE0AE6884279F893169C60 ] C:\Windows\System32\wmploc.DLL
14:58:10.0603 0316  C:\Windows\System32\wmploc.DLL - ok
14:58:10.0603 0316  [ BDC0C99E472176C8C2C853A68ADC5073 ] C:\Windows\System32\wups2.dll
14:58:10.0603 0316  C:\Windows\System32\wups2.dll - ok
14:58:10.0613 0316  [ FDEA65F06B4C3409E37127D10EDDF904 ] C:\Program Files\Avira\AntiVir Desktop\avwsc.exe
14:58:10.0613 0316  C:\Program Files\Avira\AntiVir Desktop\avwsc.exe - ok
14:58:10.0623 0316  [ 62CBF36E3E10BAA74224BC7A6DD998B5 ] C:\Program Files\Internet Explorer\ieproxy.dll
14:58:10.0623 0316  C:\Program Files\Internet Explorer\ieproxy.dll - ok
14:58:10.0633 0316  [ 3F2B83695E5BF11930C16AF50E991F96 ] C:\Windows\System32\wmpps.dll
14:58:10.0633 0316  C:\Windows\System32\wmpps.dll - ok
14:58:10.0643 0316  [ 7B97346CE563B74BBCC120FC83E5A6D9 ] C:\Windows\System32\wmpmde.dll
14:58:10.0643 0316  C:\Windows\System32\wmpmde.dll - ok
14:58:10.0653 0316  [ 81C0FA250EF6DC1C6B3FA2BCE81D6C2E ] C:\Windows\System32\WinSATAPI.dll
14:58:10.0653 0316  C:\Windows\System32\WinSATAPI.dll - ok
14:58:10.0653 0316  [ ADD2ADE1C2B285AB8378D2DAAF991481 ] C:\Windows\System32\drivers\asyncmac.sys
14:58:10.0653 0316  C:\Windows\System32\drivers\asyncmac.sys - ok
14:58:10.0663 0316  [ 2424231BBD703A677D115C29983B4293 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
14:58:10.0663 0316  C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
14:58:10.0683 0316  [ CBBD4D79EEC3EF5A4ADAE9697944C6B9 ] C:\Windows\System32\MSMPEG2ENC.DLL
14:58:10.0683 0316  C:\Windows\System32\MSMPEG2ENC.DLL - ok
14:58:10.0693 0316  [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\System32\devenum.dll
14:58:10.0693 0316  C:\Windows\System32\devenum.dll - ok
14:58:10.0703 0316  [ 7069AAB8536F29ED7323140973A2894B ] C:\Windows\System32\msdmo.dll
14:58:10.0703 0316  C:\Windows\System32\msdmo.dll - ok
14:58:10.0713 0316  [ 833FBB672460EFCE8011D262175FAD33 ] C:\Windows\System32\upnphost.dll
14:58:10.0713 0316  C:\Windows\System32\upnphost.dll - ok
14:58:10.0723 0316  [ 4FB491AC8D46AAF22BA8BC5C73DABEF7 ] C:\Windows\System32\wbem\WmiPrvSE.exe
14:58:10.0723 0316  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
14:58:10.0733 0316  [ C6B0509AA89F656247694E2D6ABF7255 ] C:\Windows\System32\wbem\wmiprov.dll
14:58:10.0733 0316  C:\Windows\System32\wbem\wmiprov.dll - ok
14:58:10.0743 0316  [ 230EA9ABBC3432CDE388F4891E76E867 ] C:\Windows\System32\udhisapi.dll
14:58:10.0743 0316  C:\Windows\System32\udhisapi.dll - ok
14:58:10.0753 0316  [ F175E53C7C3B25A9029A131FB578B155 ] C:\Windows\System32\wscinterop.dll
14:58:10.0753 0316  C:\Windows\System32\wscinterop.dll - ok
14:58:10.0763 0316  [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\System32\wscapi.dll
14:58:10.0763 0316  C:\Windows\System32\wscapi.dll - ok
14:58:10.0773 0316  [ 7FD5532C142DB6C9CC47AA4DCF71FDEC ] C:\Windows\System32\wscui.cpl
14:58:10.0773 0316  C:\Windows\System32\wscui.cpl - ok
14:58:10.0773 0316  [ 1869BD251211FB6275067372A45682D6 ] C:\Windows\System32\werconcpl.dll
14:58:10.0773 0316  C:\Windows\System32\werconcpl.dll - ok
14:58:10.0783 0316  [ D0481FB85BEEDD30A0884BE327880F80 ] C:\Windows\System32\framedynos.dll
14:58:10.0783 0316  C:\Windows\System32\framedynos.dll - ok
14:58:10.0793 0316  [ AC804569BB2364FB6017370258A4091B ] C:\Windows\System32\wercplsupport.dll
14:58:10.0793 0316  C:\Windows\System32\wercplsupport.dll - ok
14:58:10.0803 0316  [ 57CE9D8350B1DD76EEC596C423C3C0BC ] C:\Windows\System32\hcproviders.dll
14:58:10.0803 0316  C:\Windows\System32\hcproviders.dll - ok
14:58:10.0813 0316  [ CB67C2B94302DC94BC15ED6553A5C1C7 ] C:\Windows\System32\wbem\cimwin32.dll
14:58:10.0813 0316  C:\Windows\System32\wbem\cimwin32.dll - ok
14:58:10.0823 0316  [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\System32\security.dll
14:58:10.0823 0316  C:\Windows\System32\security.dll - ok
14:58:10.0833 0316  [ A42E7748BE906434C5FD17161D168C20 ] C:\Windows\System32\schedcli.dll
14:58:10.0833 0316  C:\Windows\System32\schedcli.dll - ok
14:58:10.0833 0316  [ 43BE3B9CA431F88E049928DC45C4365C ] C:\Windows\System32\wbem\wmipcima.dll
14:58:10.0833 0316  C:\Windows\System32\wbem\wmipcima.dll - ok
14:58:10.0843 0316  [ 907281ED4AD35D41B29FFDC211EBAD80 ] C:\Windows\System32\wmi.dll
14:58:10.0843 0316  C:\Windows\System32\wmi.dll - ok
14:58:10.0853 0316  [ 2E0B0A051FFAA86E358465BB0880D453 ] C:\Windows\System32\wuauclt.exe
14:58:10.0853 0316  C:\Windows\System32\wuauclt.exe - ok
14:58:10.0863 0316  [ 285C594C4913FA9DC7BB6BA3AD6F101A ] C:\Windows\System32\wucltux.dll
14:58:10.0863 0316  C:\Windows\System32\wucltux.dll - ok
14:58:10.0863 0316  ============================================================
14:58:10.0863 0316  Scan finished
14:58:10.0863 0316  ============================================================
14:58:10.0893 2628  Detected object count: 3
14:58:10.0893 2628  Actual detected object count: 3
14:58:31.0726 2628  C:\Windows\system32\DRIVERS\libusb0.sys - copied to quarantine
14:58:31.0726 2628  libusb0 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
14:58:31.0756 2628  C:\Windows\system32\DRIVERS\ousb2hub.sys - copied to quarantine
14:58:31.0756 2628  ousb2hub ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
14:58:31.0806 2628  C:\Windows\system32\Drivers\ousbehci.sys - copied to quarantine
14:58:31.0806 2628  ousbehci ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
[/log]

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.