x-kom hosting

problem - an error 1006 has occurred

marcin_os
utworzono
utworzono (edytowane)

Witam.

Mam problem przy instalacji programow ściągniętych z sieci.
Chce zainstalować avasta, wyskakuje mi komunikat: an error 1006 has occurred.

Proszę o pomoc.
Poniżej logi z OTL.

[log]OTL Extras logfile created on: 2013-01-01 18:32:43 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Ania\Desktop
64bit- Professional (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,74 Gb Total Physical Memory | 2,21 Gb Available Physical Memory | 59,23% Memory free
7,48 Gb Paging File | 5,39 Gb Available in Paging File | 72,07% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 421,81 Gb Total Space | 359,95 Gb Free Space | 85,33% Space Free | Partition Type: NTFS
Drive D: | 29,00 Gb Total Space | 27,79 Gb Free Space | 95,86% Space Free | Partition Type: NTFS

Computer Name: ANIA-KOMPUTER | User Name: Ania | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 60 Days

[color=#e56717]========== Extra Registry (SafeList) ==========[/color]


[color=#e56717]========== File Associations ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.url[@ = InternetShortcut] -- C:\windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.cpl [@ = cplfile] -- C:\windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-1055744232-3505066323-1831296020-1002\SOFTWARE\Classes\]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[color=#e56717]========== Shell Spawning ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- "C:\windows\system32\rundll32.exe" "C:\windows\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#e56717]========== Security Center Settings ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[color=#e56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[color=#e56717]========== Authorized Applications List ==========[/color]


[color=#e56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{19AF5FF7-32BE-4DBF-8F36-CD9053041303}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{233EECAC-2EBB-4CDB-9EF2-CC8983AB99C7}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{5103594C-2659-40E9-B359-3E2605CB3C68}" = lport=2869 | protocol=6 | dir=in | app=system |
"{57A7D2E7-1634-4F48-88C2-E14DAADF9525}" = rport=139 | protocol=6 | dir=out | app=system |
"{5C85A4FA-6C36-442D-8AD4-2208B56E1C2B}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5F78F8CE-C66D-4036-A626-18FB499B8D47}" = lport=137 | protocol=17 | dir=in | app=system |
"{6730A0F8-43A8-466C-84BA-F4719C517E84}" = lport=139 | protocol=6 | dir=in | app=system |
"{75054065-4392-4691-8E25-F04458D9D6EE}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{76C732D5-1773-42B4-9C5C-892E7DC5DE63}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{89D74271-4253-4087-A9B5-D05628077C91}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8AB41B23-96C2-4CF1-9D69-61BC6F9CE105}" = lport=445 | protocol=6 | dir=in | app=system |
"{95235E74-2882-4AAC-93E1-6082064D21D2}" = rport=137 | protocol=17 | dir=out | app=system |
"{9BBFE202-ADC5-4A6B-B5A1-7B8B65615638}" = lport=10243 | protocol=6 | dir=in | app=system |
"{A689D5C7-7FF5-4A10-9375-38EB54965F47}" = rport=138 | protocol=17 | dir=out | app=system |
"{B7DEB505-A1D8-4949-A327-0BF5FA79457D}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{B89F8212-B7BB-4850-A446-265F0C7A512C}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email="name=@firewallapi.dll,-28539"]name=@firewallapi.dll,-28539[/email] |
"{C0E365F0-0233-4512-971D-74BB5F0493CF}" = rport=445 | protocol=6 | dir=out | app=system |
"{C2E187E3-EFE0-4850-9E95-2EBA8DDB84EA}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{C88100A8-91A4-4476-8012-8DDC4BBE8687}" = lport=138 | protocol=17 | dir=in | app=system |
"{D24709AE-5B0F-43B0-8A5E-73DF7AF981AE}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{F2B05C69-D79B-4D21-B28E-6AB29D4C3532}" = lport=2869 | protocol=6 | dir=in | app=system |
"{F4058B30-659C-4E72-95DF-497F58F27D63}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F7829C38-0DE3-4EC4-B130-E75019DAFAA3}" = rport=10243 | protocol=6 | dir=out | app=system |

[color=#e56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00A93ED8-A4E1-4DC0-9F53-301F840A57BA}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{01FF3250-684B-4CD7-993C-F815FEC8BA28}" = dir=in | app=c:\program files\lenovo\readycomm\appsvc.exe |
"{05CC913D-3CAC-4F5F-B8F6-D2A72BC285ED}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{06F2C232-28A6-4E9E-99D4-86153DA15643}" = dir=out | app=c:\windows\system32\igrssvcs.exe |
"{09924511-33F4-40F7-A3CE-1AE4C77FA607}" = dir=out | app=c:\program files\lenovo\readycomm\readycomm.exe |
"{1B349516-6456-4429-9BD4-56E92A70663E}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{1BA065DC-467D-47B5-9423-658635250043}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{1DF2E915-DF31-449C-97BE-5728CE97AD60}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{235F2B62-8D88-43C0-8240-DECAE76A7DD8}" = dir=in | app=c:\program files\lenovo\readycomm\connsvc.exe |
"{2B686CAE-E830-4DC9-A1FA-DE648FF19F6F}" = protocol=6 | dir=in | app=c:\program files (x86)\sweetim\communicator\sweetpacksupdatemanager.exe |
"{3217974D-5F90-4579-BD50-38294ED0F132}" = dir=in | app=c:\program files (x86)\nokia\nokia suite\nokiasuite.exe |
"{37C296DC-53F9-4D3D-A321-85F9F78024EB}" = dir=in | app=c:\program files\lenovo\readycomm\projectionist.exe |
"{381FD924-F628-481E-B8A5-1EB94263009F}" = protocol=6 | dir=in | app=c:\windows\syswow64\msiexec.exe |
"{42815D22-22F1-4397-9BAF-AC2279FDB368}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{4BBC9A25-275F-410D-B92C-5E07534F7424}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4FAE0C11-3B35-480D-B943-8658C0F74861}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{58473631-3608-4680-9371-3C37B79BEA85}" = dir=in | app=c:\program files (x86)\lenovo\readycomm\common\igrs.exe |
"{5C4C3ED1-7762-41C1-9EAC-F8DF1F0E5501}" = dir=in | app=c:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe |
"{671FC76A-A1A5-4E28-A0FB-3B0D5DEB4D6E}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{69BE8005-C41A-4774-85C1-06F37452BAD1}" = protocol=1 | dir=out | [email="name=@firewallapi.dll,-28544"]name=@firewallapi.dll,-28544[/email] |
"{6A6511E7-92DC-4112-9EAA-9C5D3BAD0064}" = protocol=6 | dir=out | app=system |
"{6F3C2683-2089-4AA1-9D9D-9825CF1ABC91}" = dir=in | app=c:\windows\system32\igrssvcs.exe |
"{727CD420-92DF-4F3C-B42D-6A085D065BD4}" = protocol=17 | dir=in | app=c:\program files (x86)\nvidia corporation\nvidia updatus\daemonu.exe |
"{7F727351-B3AF-4EBF-9BF8-8115FEBBF05F}" = dir=out | app=c:\program files\lenovo\readycomm\projectionist.exe |
"{859CA878-5212-4E25-9FF1-F4EA07FE48B9}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{875A2E02-2737-42E3-9D5C-8756DA32C7EF}" = protocol=58 | dir=in | [email="name=@firewallapi.dll,-28545"]name=@firewallapi.dll,-28545[/email] |
"{8A3A89B8-DD0E-4B8D-978C-C942F22135CA}" = protocol=17 | dir=in | app=c:\windows\syswow64\msiexec.exe |
"{8C790E12-07D4-4B8C-9677-CE13EA10F6FE}" = dir=in | app=c:\program files (x86)\nokia\nokia ovi suite\nokiaovisuite.exe |
"{93396193-5AC9-463D-9F97-8D43B9EEC8DA}" = protocol=6 | dir=in | app=c:\program files (x86)\bearshare applications\bearshare\bearshare.exe |
"{957B995F-FD47-4294-8348-E7D630230172}" = dir=in | app=c:\program files\lenovo\readycomm\readycom.exe |
"{9ADA17C4-4CEF-4319-90CE-8655B03B09DD}" = protocol=58 | dir=out | [email="name=@firewallapi.dll,-28546"]name=@firewallapi.dll,-28546[/email] |
"{9DEE94CD-8331-4DF3-8F3E-0FD840AD5A54}" = protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\nvidia updatus\daemonu.exe |
"{9F204D88-BEC7-4789-9135-6300D96D6144}" = protocol=17 | dir=in | app=c:\program files (x86)\bearshare applications\bearshare\bearshare.exe |
"{B1270F14-8F38-45A3-98D7-EDF5E6EB1330}" = protocol=1 | dir=in | [email="name=@firewallapi.dll,-28543"]name=@firewallapi.dll,-28543[/email] |
"{B3A20F10-7106-42A9-AA7C-583C35B76DE9}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{B532548E-FCD4-439B-9FA4-47EB5F19C1A3}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{B546C223-2E72-48B2-BC9C-62C2D60B8902}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C6435773-1C69-4BE2-97DD-E4F0B6C7971C}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{CD53D5F2-7F69-4043-9065-21BDDC709210}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{CDBD3489-4AF1-4811-AA8D-D40C59BE8F66}" = dir=in | app=c:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe |
"{D60CA20A-CD1E-4943-948A-B675450E06E7}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{D7247A04-DCC0-439F-A5CD-D6AD203F956F}" = protocol=17 | dir=in | app=c:\program files (x86)\bearshare applications\bearshare\bearshare.exe |
"{DDE40FE8-8A41-4757-AE5B-888FB6EA13F7}" = protocol=6 | dir=in | app=c:\program files (x86)\bearshare applications\bearshare\bearshare.exe |
"{E09DC9B5-102E-4DD2-8E46-BD9A5364B176}" = dir=in | app=c:\program files (x86)\lenovo\readycomm\common\igrs.exe |
"{EC431DA0-4956-45CA-A6D9-EA1B7AAF8C2A}" = dir=out | app=c:\program files\lenovo\readycomm\appsvc.exe |
"{F33F4E57-3F7E-400E-8550-FC451DA332DD}" = dir=out | app=c:\program files\lenovo\readycomm\connsvc.exe |
"{F555F2D8-9046-47D2-B9E4-BB88E27BD436}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{F8518CC5-312F-4595-BF15-7E1F33F69887}" = dir=out | app=c:\program files (x86)\lenovo\readycomm\common\igrs.exe |
"{FA03E527-B3CE-40E6-A23B-86B03DD43CCE}" = dir=out | app=c:\program files (x86)\lenovo\readycomm\common\igrs.exe |
"{FF15ACE9-48FF-4946-B9F6-05E8983A7E44}" = protocol=17 | dir=in | app=c:\program files (x86)\sweetim\communicator\sweetpacksupdatemanager.exe |
"TCP Query User{C7A37200-85DD-4207-9A26-B69C6C0BC236}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=6 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe |
"TCP Query User{F9ACB008-DA09-43D3-AEEF-564CD4C81090}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=6 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe |
"UDP Query User{C95E6567-A02E-4D97-AC9A-02F0D7698525}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=17 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe |
"UDP Query User{CE220CD1-82AD-43ED-B39E-07BE62A809EE}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=17 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe |

[color=#e56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{1F494B8A-D6E6-4540-9A74-F773B63164A6}" = Port Locker
"{43592B2E-C393-433F-8D0E-5A4B15A8C786}" = Microsoft Antimalware Service PL-PL Language Pack
"{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{4D668D4F-FAA2-4726-834C-31F4614F312E}" = MSVC80_x64_v2
"{5ACF5427-B4E4-4F85-A512-151E0BECF7E3}" = RtLED
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{680EDA59-9266-44B4-949E-0C24F65DFF82}" = Microsoft_VC100_CRT_SP1_x64
"{75104836-CAC7-444E-A39E-3F54151942F5}" = Apple Mobile Device Support
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90140000-006D-0415-1000-0000000FF1CE}" = Moduł Szybka instalacja pakietu Microsoft Office 2010
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}" = Lenovo Bluetooth with Enhanced Data Rate Software
"{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}" = MSVC90_x64
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{C78D3032-9DFD-41D0-9DE9-58EAE750CBA4}" = Microsoft Security Client
"{DC911ADF-7B60-40F2-A112-FB1EB6402D07}" = Microsoft Security Client PL-PL Language Pack
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"0A4175B489A1B4A6E07E11B063A6263480C51D71" = Pakiet sterowników systemu Windows - Lenovo (ACPIVPC) System (10/19/2009 5.4.0.1)
"3BA80AB4C7E9F8497C115C844953A3D4BEB84D21" = Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800)
"DE7217D2A8B057F15EC6E52329FDAB84231521E8" = Windows Driver Package - Broadcom (BTHUSB) Bluetooth (04/08/2010 6.3.5.430)
"Elantech" = ETDWare PS/2-x64 7.0.4.17_WHQL
"FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D" = Pakiet sterowników systemu Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft Security Client" = Microsoft Security Essentials
"Mp3 Cover Downloader_is1" = Creevity Mp3 Cover Downloader
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"WinRAR archiver" = WinRAR 4.01 (64-bitowy)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{0034859F-8E01-4C1D-BE77-F891C4786FBC}" = Lenovo Security Suite
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"{0CE226F3-EB27-4ECD-BBF5-F088716779FD}" = Energy Management
"{17542DBF-E17C-4562-BC4D-FA3EF3076C45}" = Lenovo ReadyComm 5
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Narzędzie do przekazywania usługi Windows Live
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216033FF}" = Java™ 6 Update 37
"{28E82311-8616-11E1-BEB0-B8AC6F97B88E}" = Google Earth
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3CD07764-6A66-D39C-5189-8828EC8C045F}" = AirportMadness4
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel® Rapid Storage Technology
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{47FA2C44-D148-4DBC-AF60-B91934AA4842}" = Adobe AIR
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AA68A73-DB9C-439D-9481-981C82BD008B}" = Nokia Connectivity Cable Driver
"{51958BA7-21E4-4A8B-9098-CD8375BD17B2}" = Asystent rejestracji usługi Windows Live
"{5E192FF0-93AC-4255-8945-5408B3E517E5}" = BMW BRx Converter
"{6053FE9B-5473-41D6-AEBF-AD6F98138191}" = Windows Live Movie Maker
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components
"{675F03FF-46A0-4FC9-862B-60BA1DC8E9AA}" = Commandos 3 - Destination Berlin
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{76C66170-C538-4E77-B54D-48E136B5B533}" = Lenovo ReadyComm 5.0 Service
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{87441A59-5E64-4096-A170-14EFE67200C3}" = Picture Control Utility
"{8991E763-21F5-4DEA-A938-5D9D77DCB488}" = Broadcom 802.11 Wireless Driver
"{8A74E887-8F0F-4017-AF53-CBA42211AAA5}" = Microsoft Sync Framework Runtime Native v1.0 (x86)
"{90140011-0066-0415-0000-0000000FF1CE}" = Microsoft Office Starter 2010 - Polski
"{92D1CEBC-7C72-4ECF-BFC6-C131EF3FE6A7}" = Nokia Suite
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
"{9862473C-E063-4C68-A161-2CDE0E8048A5}" = Podstawowe programy Windows Live
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9AB614A6-719C-4A6E-A63E-831E0A35F62A}" = Windows Live Writer
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9CDEAEC9-2F14-4D39-8541-C1EEC4B5D1CB}" = Galeria fotografii usługi Windows Live
"{A2AA4204-C05A-4013-888A-AD153139297F}" = PC Connectivity Solution
"{A6FEE06D-C7E1-48CB-A9DF-1E317CF83CA4}" = Port Locker
"{A7388312-4FBB-48E5-8DC0-B63DA02658AE}" = Windows Live Toolbar
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1045-7B44-A95000000001}" = Adobe Reader 9.5.2 - Polish
"{ACF31D9F-70C2-40A1-9C7A-28BA16E64B56}" = BioExcess
"{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}" = Lenovo EasyCamera
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}" = Microsoft Sync Framework Services Native v1.0 (x86)
"{C35FE07E-24B5-410F-85B7-122087A0C7DD}" = Poczta usługi Windows Live
"{C8616041-2802-4DE2-B3BD-6285AAD65C2A}" = Nikon RAW Codec
"{D1803CD4-0CE7-4484-98E3-88D7A2D629A4}" = Windows Live Messenger
"{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}" = Nikon Message Center
"{E0D51394-1D45-460A-B62D-383BC4F8B335}" = QuickTime
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E3B64CC5-C011-40C0-92BC-7316CD5E5688}" = Microsoft_VC100_CRT_SP1_x86
"{E9757890-7EC5-46C8-99AB-B00F07B6525C}" = Nikon Transfer
"{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}" = Update Manager for SweetPacks 1.1
"{EB87675F-5281-4767-A54B-31931794C23D}" = OpenOffice.org 3.3
"{F007CBCE-D714-4C0B-8CE9-9B0D78116468}" = ViewNX
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel® Graphics Media Accelerator Driver
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F493761C-E465-4B9E-9FC1-A312F161DE0A}" = Active Protection System
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel® Control Center
"Absolute MP3 Splitter_is1" = Absolute MP3 Splitter version 3.1.1
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"AirportMadness4" = AirportMadness4
"Citrix Web Client" = Citrix Web Client
"Gadu-Gadu 10" = Gadu-Gadu 10
"HijackThis" = HijackThis 2.0.2
"InstallShield_{0034859F-8E01-4C1D-BE77-F891C4786FBC}" = Lenovo Security Suite
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"InstallShield_{A6FEE06D-C7E1-48CB-A9DF-1E317CF83CA4}" = Port Locker
"InstallShield_{ACF31D9F-70C2-40A1-9C7A-28BA16E64B56}" = BioExcess
"Mozilla Firefox 7.0.1 (x86 pl)" = Mozilla Firefox 7.0.1 (x86 pl)
"Mp3tag" = Mp3tag v2.53
"Nokia Suite" = Nokia Suite
"NVIDIA.Updatus" = NVIDIA Updatus
"Office14.Click2Run" = Moduł Szybka instalacja pakietu Microsoft Office 2010
"OpenTTD" = OpenTTD 1.1.5
"PokerStars.eu" = PokerStars.eu
"RBR Lamer Pack 1.2" = RBR Lamer Pack 1.2
"Totalcmd" = Total Commander (Remove or Repair)
"WinLiveSuite_Wave3" = Podstawowe programy Windows Live

[color=#e56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-1055744232-3505066323-1831296020-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"UnityWebPlayer" = Unity Web Player

[color=#e56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-1055744232-3505066323-1831296020-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"UnityWebPlayer" = Unity Web Player

[color=#e56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2012-04-01 06:01:42 | Computer Name = Ania-Komputer | Source = CVHSVC | ID = 100
Description = Tylko informacje. Nie można ukończyć akcji. Spróbuj wykonać ją ponownie.
Jeśli problem będzie się powtarzać, skontaktuj się z Pomocą techniczną firmy Microsoft.

Error - 2012-04-01 09:34:37 | Computer Name = Ania-Komputer | Source = CVHSVC | ID = 100
Description = Tylko informacje. Error: Product {90140011-0066-0415-0000-0000000FF1CE}
found in the registry but SoftGrid doesn't know about it, skipping...

Error - 2012-04-01 09:34:37 | Computer Name = Ania-Komputer | Source = CVHSVC | ID = 100
Description = Tylko informacje. Product registration is corrupted for {90140011-0066-0415-0000-0000000FF1CE}

Error - 2012-04-01 09:34:37 | Computer Name = Ania-Komputer | Source = CVHSVC | ID = 100
Description = Tylko informacje. Error: Product {90140011-0066-0415-0000-0000000FF1CE}
found in the registry but SoftGrid doesn't know about it, skipping...

Error - 2012-04-01 09:34:37 | Computer Name = Ania-Komputer | Source = CVHSVC | ID = 100
Description = Tylko informacje. Product registration is corrupted for {90140011-0066-0415-0000-0000000FF1CE}

Error - 2012-04-01 09:34:37 | Computer Name = Ania-Komputer | Source = CVHSVC | ID = 100
Description = Tylko informacje. Error: Product {90140011-0066-0415-0000-0000000FF1CE}
found in the registry but SoftGrid doesn't know about it, skipping...

Error - 2012-04-01 09:34:37 | Computer Name = Ania-Komputer | Source = CVHSVC | ID = 100
Description = Tylko informacje. Product registration is corrupted for {90140011-0066-0415-0000-0000000FF1CE}

Error - 2012-04-01 09:34:37 | Computer Name = Ania-Komputer | Source = CVHSVC | ID = 100
Description = Tylko informacje. Nie można ukończyć akcji. Spróbuj wykonać ją ponownie.
Jeśli problem będzie się powtarzać, skontaktuj się z Pomocą techniczną firmy Microsoft.

Error - 2012-04-01 09:34:37 | Computer Name = Ania-Komputer | Source = Application Virtualization Client | ID = 3037
Description = {tid=F24} Program Application Virtualization Client nie może otworzyć
OfficeVirt 9014006604150000

Error - 2012-04-01 09:44:37 | Computer Name = Ania-Komputer | Source = CVHSVC | ID = 100
Description = Tylko informacje. Nie można ukończyć akcji. Spróbuj wykonać ją ponownie.
Jeśli problem będzie się powtarzać, skontaktuj się z Pomocą techniczną firmy Microsoft.

[ System Events ]
Error - 2012-12-29 14:23:44 | Computer Name = Ania-Komputer | Source = Service Control Manager | ID = 7009
Description = Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się
z usługą Apple Mobile Device.

Error - 2012-12-29 14:23:44 | Computer Name = Ania-Komputer | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Apple Mobile Device z powodu następującego
błędu: %%1053

Error - 2012-12-29 14:23:45 | Computer Name = Ania-Komputer | Source = Application Popup | ID = 875
Description = Sterownik atksgt.sys został zablokowany dla ładowania.

Error - 2012-12-29 14:23:45 | Computer Name = Ania-Komputer | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi atksgt z powodu następującego błędu: %%1275

Error - 2012-12-29 14:23:50 | Computer Name = Ania-Komputer | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi ReadyComm.DirectRouter z powodu następującego
błędu: %%2

Error - 2012-12-30 07:43:43 | Computer Name = Ania-Komputer | Source = Service Control Manager | ID = 7009
Description = Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się
z usługą Apple Mobile Device.

Error - 2012-12-30 07:43:43 | Computer Name = Ania-Komputer | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Apple Mobile Device z powodu następującego
błędu: %%1053

Error - 2012-12-30 07:43:46 | Computer Name = Ania-Komputer | Source = Application Popup | ID = 875
Description = Sterownik atksgt.sys został zablokowany dla ładowania.

Error - 2012-12-30 07:43:46 | Computer Name = Ania-Komputer | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi atksgt z powodu następującego błędu: %%1275

Error - 2012-12-30 07:43:58 | Computer Name = Ania-Komputer | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi ReadyComm.DirectRouter z powodu następującego
błędu: %%2


< End of report >
[/log]


[log]
OTL logfile created on: 2013-01-01 18:32:43 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Ania\Desktop
64bit- Professional (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,74 Gb Total Physical Memory | 2,21 Gb Available Physical Memory | 59,23% Memory free
7,48 Gb Paging File | 5,39 Gb Available in Paging File | 72,07% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 421,81 Gb Total Space | 359,95 Gb Free Space | 85,33% Space Free | Partition Type: NTFS
Drive D: | 29,00 Gb Total Space | 27,79 Gb Free Space | 95,86% Space Free | Partition Type: NTFS

Computer Name: ANIA-KOMPUTER | User Name: Ania | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 60 Days

[color=#e56717]========== Processes (All) ==========[/color]

PRC - [2013-01-01 18:22:11 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Ania\Desktop\OTL.exe
PRC - [2012-12-28 22:22:13 | 000,697,272 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.exe
PRC - [2012-10-27 06:02:44 | 000,672,832 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
PRC - [2012-08-15 18:08:34 | 000,231,768 | ---- | M] (SweetIM Technologies Ltd.) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
PRC - [2012-07-11 20:00:46 | 000,919,008 | R--- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
PRC - [2012-02-01 08:11:34 | 001,083,264 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
PRC - [2012-01-04 14:22:40 | 000,822,624 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
PRC - [2012-01-04 12:32:36 | 000,718,888 | ---- | M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
PRC - [2012-01-04 12:32:06 | 000,148,520 | ---- | M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
PRC - [2011-10-01 08:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
PRC - [2011-10-01 08:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
PRC - [2011-01-17 19:50:30 | 011,322,880 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
PRC - [2011-01-17 19:50:30 | 011,314,688 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
PRC - [2010-07-11 19:09:20 | 001,620,584 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2010-05-28 04:14:52 | 000,376,176 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisTSR.exe
PRC - [2010-05-28 04:14:02 | 000,709,488 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisService.exe
PRC - [2010-05-28 04:13:38 | 000,314,736 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisDSService.exe
PRC - [2010-05-19 18:21:46 | 000,364,400 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\EgisPLTSR.exe
PRC - [2010-05-19 18:21:26 | 000,322,416 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\Egishlpsvc.exe
PRC - [2010-03-10 23:11:56 | 000,407,920 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
PRC - [2010-03-10 23:11:42 | 000,201,584 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
PRC - [2010-03-03 21:16:06 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2010-03-03 21:16:04 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
PRC - [2010-03-02 23:37:40 | 000,171,104 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
PRC - [2010-01-15 12:38:46 | 000,536,576 | ---- | M] (Vimicro) -- C:\Program Files (x86)\USB Camera\VM331_STI.EXE
PRC - [2009-09-30 13:02:38 | 002,320,920 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2009-09-30 13:02:36 | 000,268,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2009-07-14 15:27:26 | 000,038,152 | ---- | M] (Lenovo Group Limited) -- C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe
PRC - [2008-06-05 10:19:18 | 000,479,232 | ---- | M] (Nikon Corporation) -- C:\Program Files (x86)\Common Files\Nikon\Monitor\NkMonitor.exe


[color=#e56717]========== Modules (All) ==========[/color]

MOD - [2013-01-01 18:22:11 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Ania\Desktop\OTL.exe
MOD - [2012-12-28 22:22:13 | 014,460,856 | R--- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_5_502_135.ocx
MOD - [2012-12-28 22:22:13 | 000,697,272 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.exe
MOD - [2012-12-28 22:22:13 | 000,476,088 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.dll
MOD - [2012-11-20 23:26:08 | 000,452,608 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\c0dc6f48b089aa04822d3e205f124f88\IAStorUtil.ni.dll
MOD - [2012-11-17 17:18:06 | 000,771,584 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\1430191d067c0f28c3a676d3ecb85b26\System.Runtime.Remoting.ni.dll
MOD - [2012-11-17 17:17:12 | 012,433,920 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\515c6ffea562bb0f03a1ed8f75279648\System.Windows.Forms.ni.dll
MOD - [2012-11-17 17:16:57 | 001,591,808 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\f4be07261983040b29685575b69085e8\System.Drawing.ni.dll
MOD - [2012-11-17 17:16:32 | 003,325,952 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\6a68e4c50351a220511a5dfc3e025685\WindowsBase.ni.dll
MOD - [2012-11-17 17:16:19 | 005,453,312 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d2d47118e5da6db054d5676e665f2be2\System.Xml.ni.dll
MOD - [2012-11-17 17:16:10 | 000,971,264 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\2f44dac350b6161a9e9ce7222ae94335\System.Configuration.ni.dll
MOD - [2012-11-17 17:16:08 | 007,973,888 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System\c8ebcd93a2b547dc72dee2fcfabcdd50\System.ni.dll
MOD - [2012-11-17 17:15:52 | 011,490,816 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\5530227809880c9b8b1d834e5434e840\mscorlib.ni.dll
MOD - [2012-11-12 14:24:42 | 006,029,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mshtml.dll
MOD - [2012-10-27 06:02:44 | 000,672,832 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
MOD - [2012-10-27 06:00:40 | 000,981,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wininet.dll
MOD - [2012-10-27 06:00:37 | 001,230,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\urlmon.dll
MOD - [2012-10-27 06:00:11 | 000,627,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msfeeds.dll
MOD - [2012-10-27 05:59:25 | 002,072,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\iertutil.dll
MOD - [2012-10-27 05:59:25 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ieui.dll
MOD - [2012-10-27 05:59:24 | 011,019,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ieframe.dll
MOD - [2012-10-27 05:59:24 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\iepeers.dll
MOD - [2012-10-27 05:59:24 | 000,163,328 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\ieproxy.dll
MOD - [2012-10-04 17:54:17 | 001,114,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\kernel32.dll
MOD - [2012-10-04 17:54:17 | 000,274,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\KernelBase.dll
MOD - [2012-09-24 16:00:16 | 000,059,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
MOD - [2012-09-12 16:19:44 | 000,077,800 | ---- | M] (Microsoft Corporation) -- c:\Program Files (x86)\Microsoft Security Client\MpOAv.dll
MOD - [2012-08-31 12:02:23 | 005,919,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
MOD - [2012-08-24 18:10:47 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wintrust.dll
MOD - [2012-08-15 18:08:40 | 000,061,272 | ---- | M] (SweetIM Technologies Ltd.) -- C:\Program Files (x86)\SweetIM\Communicator\mgxml_wrapper.dll
MOD - [2012-08-15 18:08:38 | 000,071,512 | ---- | M] (SweetIM Technologies Ltd.) -- C:\Program Files (x86)\SweetIM\Communicator\mgsimcommon.dll
MOD - [2012-08-15 18:08:36 | 000,041,304 | ---- | M] (SweetIM Technologies Ltd.) -- C:\Program Files (x86)\SweetIM\Communicator\mgcommunication.dll
MOD - [2012-08-15 18:08:34 | 000,650,584 | R--- | M] (SweetIM Technologies Ltd.) -- C:\Program Files (x86)\SweetIM\Communicator\mgcommon.dll
MOD - [2012-08-15 18:08:34 | 000,231,768 | ---- | M] (SweetIM Technologies Ltd.) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
MOD - [2012-07-30 22:43:36 | 000,061,920 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
MOD - [2012-07-30 22:43:29 | 000,075,232 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
MOD - [2012-07-11 20:00:46 | 000,919,008 | R--- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
MOD - [2012-07-04 22:26:19 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\netapi32.dll
MOD - [2012-07-03 20:45:16 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Java\jre6\bin\MSVCR71.dll
MOD - [2012-06-16 05:36:19 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\jscript.dll
MOD - [2012-06-09 05:46:56 | 012,868,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shell32.dll
MOD - [2012-06-06 06:09:46 | 001,236,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msxml3.dll
MOD - [2012-06-02 05:48:39 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\secur32.dll
MOD - [2012-06-02 05:48:35 | 000,225,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\schannel.dll
MOD - [2012-06-02 05:47:31 | 000,219,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ncrypt.dll
MOD - [2012-06-02 05:45:21 | 001,157,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\crypt32.dll
MOD - [2012-06-02 05:45:21 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cryptnet.dll
MOD - [2012-06-02 05:42:51 | 000,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sspicli.dll
MOD - [2012-05-05 08:44:48 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\srclient.dll
MOD - [2012-04-21 05:23:06 | 001,625,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\GdiPlus.dll
MOD - [2012-04-07 12:34:37 | 002,342,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msi.dll
MOD - [2012-03-01 06:45:05 | 000,158,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\imagehlp.dll
MOD - [2012-02-01 18:58:59 | 003,766,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90.dll
MOD - [2012-02-01 08:12:34 | 000,423,808 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\ssoengine.dll
MOD - [2012-02-01 08:12:32 | 000,058,240 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\securestorage.dll
MOD - [2012-02-01 08:12:30 | 000,272,768 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\phonon4.dll
MOD - [2012-02-01 08:12:30 | 000,095,104 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\qjson.dll
MOD - [2012-02-01 08:12:28 | 001,128,320 | ---- | M] (Nokia Corporation) -- C:\Program Files (x86)\Nokia\Nokia Suite\nossu2fn.dll
MOD - [2012-02-01 08:12:26 | 000,709,504 | ---- | M] (Nokia Corporation) -- C:\Program Files (x86)\Nokia\Nokia Suite\nossu2dm.dll
MOD - [2012-02-01 08:12:22 | 000,596,864 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\WidgetLibrary.dll
MOD - [2012-02-01 08:12:20 | 000,253,312 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\UI-QML_Library.dll
MOD - [2012-02-01 08:12:18 | 000,050,048 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\TrayIcon.dll
MOD - [2012-02-01 08:12:16 | 003,260,800 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\styles\Style.dll
MOD - [2012-02-01 08:12:14 | 000,384,896 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QxtCore.dll
MOD - [2012-02-01 08:12:14 | 000,165,248 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QxtWeb.dll
MOD - [2012-02-01 08:12:12 | 010,843,520 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtWebKit4.dll
MOD - [2012-02-01 08:12:12 | 002,557,312 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtXmlPatterns4.dll
MOD - [2012-02-01 08:12:12 | 000,346,496 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtXml4.dll
MOD - [2012-02-01 08:12:08 | 001,294,208 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtScript4.dll
MOD - [2012-02-01 08:12:08 | 000,196,480 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtSql4.dll
MOD - [2012-02-01 08:12:06 | 000,919,936 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtNetwork4.dll
MOD - [2012-02-01 08:12:06 | 000,682,880 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtOpenGL4.dll
MOD - [2012-02-01 08:12:06 | 000,517,504 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtMultimediaKit1.dll
MOD - [2012-02-01 08:12:04 | 008,172,928 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtGui4.dll
MOD - [2012-02-01 08:12:04 | 002,252,672 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtDeclarative4.dll
MOD - [2012-02-01 08:12:02 | 002,288,512 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtCore4.dll
MOD - [2012-02-01 08:12:00 | 001,962,880 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\Photos.dll
MOD - [2012-02-01 08:12:00 | 000,422,272 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\sqldrivers\qsqlite4.dll
MOD - [2012-02-01 08:11:58 | 004,954,496 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\Music.dll
MOD - [2012-02-01 08:11:56 | 000,202,624 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qjpeg4.dll
MOD - [2012-02-01 08:11:56 | 000,034,688 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qico4.dll
MOD - [2012-02-01 08:11:54 | 001,226,112 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\dashboard.dll
MOD - [2012-02-01 08:11:54 | 000,032,640 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qgif4.dll
MOD - [2012-02-01 08:11:52 | 001,371,008 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\contacts.dll
MOD - [2012-02-01 08:11:52 | 000,380,288 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\carousel.dll
MOD - [2012-02-01 08:11:50 | 000,066,944 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\WhatsNew.dll
MOD - [2012-02-01 08:11:48 | 002,191,744 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\SoftwareUpdater.dll
MOD - [2012-02-01 08:11:48 | 000,208,256 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\Settings.dll
MOD - [2012-02-01 08:11:46 | 000,627,584 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\NokiaAccount.dll
MOD - [2012-02-01 08:11:46 | 000,510,848 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\PIM.dll
MOD - [2012-02-01 08:11:44 | 001,531,776 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\Messages.dll
MOD - [2012-02-01 08:11:44 | 000,141,184 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\nps.dll
MOD - [2012-02-01 08:11:42 | 000,993,152 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\maps.dll
MOD - [2012-02-01 08:11:42 | 000,589,696 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\FirstTimeUse.dll
MOD - [2012-02-01 08:11:40 | 000,865,152 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\ConnectToInternet.dll
MOD - [2012-02-01 08:11:40 | 000,294,272 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\customerfeedback.dll
MOD - [2012-02-01 08:11:38 | 000,924,544 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\caresuite.dll
MOD - [2012-02-01 08:11:38 | 000,196,480 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\BringYourStuff.dll
MOD - [2012-02-01 08:11:36 | 000,702,336 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\BackUp.dll
MOD - [2012-02-01 08:11:36 | 000,388,480 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\OviShareLib.dll
MOD - [2012-02-01 08:11:36 | 000,214,400 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\ApplicationInstaller.dll
MOD - [2012-02-01 08:11:34 | 001,083,264 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
MOD - [2012-02-01 08:11:28 | 000,437,632 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\NService.dll
MOD - [2012-02-01 08:11:26 | 001,131,904 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\MThumbnailService.dll
MOD - [2012-02-01 08:11:22 | 002,141,056 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\MItemPlugins.dll
MOD - [2012-02-01 08:11:22 | 000,850,304 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\MItems.dll
MOD - [2012-02-01 08:11:20 | 002,914,176 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\MDataStore.dll
MOD - [2012-02-01 08:11:20 | 000,459,136 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\MEvent.dll
MOD - [2012-02-01 08:11:18 | 001,037,696 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\Maps Service API.dll
MOD - [2012-02-01 08:11:12 | 000,055,680 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\MMSParser.dll
MOD - [2012-02-01 08:11:02 | 001,081,216 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\Dal.dll
MOD - [2012-02-01 08:11:00 | 002,521,984 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\DAL\Service.dll
MOD - [2012-02-01 08:11:00 | 001,352,576 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\DAL\Pccs.dll
MOD - [2012-02-01 08:11:00 | 000,654,208 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\DAL\Sync.dll
MOD - [2012-02-01 08:10:58 | 000,506,240 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\DAL\NokiaService.dll
MOD - [2012-02-01 08:10:58 | 000,357,760 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\DAL\NossuService.dll
MOD - [2012-02-01 08:10:56 | 000,405,376 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\DAL\MapsService.dll
MOD - [2012-02-01 08:10:54 | 000,942,976 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\CommonWidgets.dll
MOD - [2012-02-01 08:10:54 | 000,880,000 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\CommonUtilities.dll
MOD - [2012-02-01 08:10:52 | 000,758,656 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\CommonUpdateChecker.dll
MOD - [2012-02-01 08:10:50 | 000,189,824 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\CDC.DLL
MOD - [2012-01-30 22:23:38 | 000,086,016 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\uwinapi.dll
MOD - [2012-01-30 22:23:37 | 000,597,504 | ---- | M] (STLport Consulting, Inc.) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\stlport_vc7145.dll
MOD - [2012-01-30 22:23:37 | 000,092,672 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\stocservices.uno.dll
MOD - [2012-01-30 22:23:37 | 000,053,248 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\store3.dll
MOD - [2012-01-30 22:23:36 | 001,740,800 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\sal3.dll
MOD - [2012-01-30 22:23:36 | 000,092,672 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\reg3.dll
MOD - [2012-01-30 22:23:36 | 000,013,312 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\salhelper3MSC.dll
MOD - [2012-01-30 22:23:35 | 000,092,160 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\jvmfwk3.dll
MOD - [2012-01-30 22:23:35 | 000,051,712 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\msci_uno.dll
MOD - [2012-01-30 22:23:33 | 000,452,608 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\bootstrap.uno.dll
MOD - [2012-01-30 22:23:33 | 000,432,128 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\cppuhelper3MSC.dll
MOD - [2012-01-30 22:23:33 | 000,142,848 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\cppu3.dll
MOD - [2012-01-30 22:23:30 | 000,531,456 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\xcrmi.dll
MOD - [2012-01-30 22:23:30 | 000,094,208 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\vos3MSC.dll
MOD - [2012-01-30 22:23:29 | 003,266,560 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\vclmi.dll
MOD - [2012-01-30 22:23:28 | 000,958,464 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\utlmi.dll
MOD - [2012-01-30 22:23:27 | 000,257,024 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\ucpfile1.dll
MOD - [2012-01-30 22:23:26 | 000,529,408 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\tlmi.dll
MOD - [2012-01-30 22:23:26 | 000,358,912 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\ucbhelper4MSC.dll
MOD - [2012-01-30 22:23:26 | 000,212,992 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\ucb1.dll
MOD - [2012-01-30 22:23:25 | 002,186,752 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\tkmi.dll
MOD - [2012-01-30 22:23:22 | 002,863,616 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\svtmi.dll
MOD - [2012-01-30 22:23:22 | 000,777,216 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\svlmi.dll
MOD - [2012-01-30 22:23:21 | 000,379,904 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\sofficeapp.dll
MOD - [2012-01-30 22:23:21 | 000,256,000 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\sotmi.dll
MOD - [2012-01-30 22:23:20 | 003,234,816 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\sfxmi.dll
MOD - [2012-01-30 22:23:17 | 001,577,984 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\sbmi.dll
MOD - [2012-01-30 22:23:14 | 000,083,968 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\oooimprovementmi.dll
MOD - [2012-01-30 22:23:13 | 000,287,232 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\oleautobridge.uno.dll
MOD - [2012-01-30 22:23:09 | 000,985,088 | ---- | M] () -- C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
MOD - [2012-01-30 22:23:09 | 000,024,064 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\localebe1.uno.dll
MOD - [2012-01-30 22:23:08 | 000,832,000 | ---- | M] (Oracle) -- C:\Program Files (x86)\OpenOffice.org 3\program\libdb47.dll
MOD - [2012-01-30 22:23:06 | 000,951,296 | ---- | M] (IBM Corporation and others) -- C:\Program Files (x86)\OpenOffice.org 3\program\icuuc40.dll
MOD - [2012-01-30 22:23:05 | 013,914,112 | ---- | M] (IBM Corporation and others) -- C:\Program Files (x86)\OpenOffice.org 3\program\icudt40.dll
MOD - [2012-01-30 22:23:05 | 001,071,616 | ---- | M] (IBM Corporation and others) -- C:\Program Files (x86)\OpenOffice.org 3\program\icuin40.dll
MOD - [2012-01-30 22:23:05 | 000,066,560 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\i18nutilMSC.dll
MOD - [2012-01-30 22:23:04 | 001,317,376 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\i18npool.uno.dll
MOD - [2012-01-30 22:23:04 | 000,029,184 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\i18npapermi.dll
MOD - [2012-01-30 22:23:04 | 000,026,112 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\i18nisolang1MSC.dll
MOD - [2012-01-30 22:23:03 | 001,649,152 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\fwkmi.dll
MOD - [2012-01-30 22:23:02 | 000,869,888 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\fwemi.dll
MOD - [2012-01-30 22:23:02 | 000,311,296 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\fwimi.dll
MOD - [2012-01-30 22:22:58 | 000,148,480 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\emsermi.dll
MOD - [2012-01-30 22:22:54 | 000,135,680 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\deploymentmiscmi.dll
MOD - [2012-01-30 22:22:51 | 001,033,728 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\comphelp4MSC.dll
MOD - [2012-01-30 22:22:51 | 000,396,800 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\configmgr.uno.dll
MOD - [2012-01-30 22:22:49 | 000,700,928 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\basegfxmi.dll
MOD - [2012-01-05 14:19:12 | 000,112,640 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\mediaservice\dsengine.dll
MOD - [2012-01-05 14:17:32 | 001,145,344 | ---- | M] (The OpenSSL Project, [url="http://www.openssl.org/"]http://www.openssl.org/[/url]) -- C:\Program Files (x86)\Nokia\Nokia Suite\libeay32.DLL
MOD - [2012-01-05 14:17:32 | 000,237,056 | ---- | M] (The OpenSSL Project, [url="http://www.openssl.org/"]http://www.openssl.org/[/url]) -- C:\Program Files (x86)\Nokia\Nokia Suite\ssleay32.dll
MOD - [2012-01-04 12:32:24 | 000,265,256 | ---- | M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\PCCS_ABAPI.dll
MOD - [2012-01-04 12:32:06 | 000,148,520 | ---- | M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
MOD - [2012-01-04 12:31:40 | 001,485,352 | ---- | M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\DAAPI.dll
MOD - [2012-01-04 12:31:36 | 000,661,544 | ---- | M] (Nokia.) -- C:\Program Files (x86)\PC Connectivity Solution\ConnAPI.dll
MOD - [2012-01-04 12:31:34 | 000,205,352 | ---- | M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\ConfServer.dll
MOD - [2012-01-04 10:03:07 | 000,442,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntshrui.dll
MOD - [2012-01-04 03:51:14 | 000,364,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
MOD - [2011-12-21 10:11:12 | 000,325,120 | ---- | M] (Nokia Corporation.) -- C:\Program Files (x86)\Nokia\Nokia Suite\syncRuntimeAPI.dll
MOD - [2011-12-21 10:10:48 | 000,942,080 | ---- | M] (Nokia Corporation.) -- C:\Program Files (x86)\Nokia\Nokia Suite\ilsyncEx.dll
MOD - [2011-12-21 10:10:16 | 000,599,040 | ---- | M] (Nokia Corporation.) -- C:\Program Files (x86)\Nokia\Nokia Suite\iltif32.dll
MOD - [2011-12-21 10:09:50 | 000,056,832 | ---- | M] (Nokia Corporation.) -- C:\Program Files (x86)\Nokia\Nokia Suite\Attendees.dll
MOD - [2011-12-21 10:09:44 | 001,061,888 | ---- | M] (Nokia Corporation.) -- C:\Program Files (x86)\Nokia\Nokia Suite\recipients.dll
MOD - [2011-12-21 10:09:26 | 000,069,120 | ---- | M] (Nokia Corporation.) -- C:\Program Files (x86)\Nokia\Nokia Suite\PTATTACH.dll
MOD - [2011-12-16 08:59:17 | 000,690,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msvcrt.dll
MOD - [2011-11-17 06:41:38 | 001,292,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntdll.dll
MOD - [2011-11-17 06:39:28 | 000,314,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\webio.dll
MOD - [2011-10-26 05:28:26 | 001,328,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\quartz.dll
MOD - [2011-10-16 20:41:59 | 000,653,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
MOD - [2011-10-16 20:41:59 | 000,569,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
MOD - [2011-08-27 05:43:07 | 000,571,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\oleaut32.dll
MOD - [2011-08-27 05:43:06 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\oleacc.dll
MOD - [2011-07-06 22:49:59 | 001,101,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll
MOD - [2011-07-06 22:49:59 | 001,093,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
MOD - [2011-07-06 22:49:49 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
MOD - [2011-07-06 22:49:49 | 000,554,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
MOD - [2011-06-16 05:35:50 | 000,180,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\xmllite.dll
MOD - [2011-05-24 11:34:20 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\devobj.dll
MOD - [2011-05-24 11:34:20 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\devrtl.dll
MOD - [2011-05-24 11:34:00 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cfgmgr32.dll
MOD - [2011-05-17 08:27:52 | 000,413,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
MOD - [2011-05-04 05:53:10 | 001,553,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\tquery.dll
MOD - [2011-03-03 06:29:23 | 000,269,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dnsapi.dll
MOD - [2011-02-19 22:03:12 | 000,421,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msvcp100.dll
MOD - [2011-02-18 23:40:50 | 000,773,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msvcr100.dll
MOD - [2011-01-17 19:50:30 | 011,322,880 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
MOD - [2011-01-17 19:50:30 | 011,314,688 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
MOD - [2010-12-21 06:38:22 | 000,350,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winhttp.dll
MOD - [2010-11-19 12:42:42 | 000,083,456 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\saxmi.dll
MOD - [2010-09-20 23:37:58 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msasn1.dll
MOD - [2010-09-20 23:33:12 | 000,311,296 | ---- | M] () -- C:\windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_pl_b77a5c561934e089\mscorlib.resources.dll
MOD - [2010-09-20 23:33:07 | 000,032,768 | ---- | M] () -- C:\windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_pl_b77a5c561934e089\System.Runtime.Remoting.resources.dll
MOD - [2010-08-21 06:33:24 | 000,530,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll
MOD - [2010-08-21 06:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
MOD - [2010-07-11 22:40:00 | 001,625,704 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWOW64\nvapi.dll
MOD - [2010-07-11 22:40:00 | 000,441,448 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWOW64\nvumdshim.dll
MOD - [2010-07-11 22:40:00 | 000,227,432 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvdxgiwrap.dll
MOD - [2010-07-11 22:40:00 | 000,186,472 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll
MOD - [2010-07-11 22:40:00 | 000,100,968 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWOW64\nvinit.dll
MOD - [2010-07-11 22:40:00 | 000,010,856 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
MOD - [2010-06-29 06:02:02 | 001,413,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ole32.dll
MOD - [2010-06-19 07:23:50 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rtutils.dll
MOD - [2010-05-28 04:14:54 | 000,053,104 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\LoggerUtility.dll
MOD - [2010-05-28 04:14:52 | 000,376,176 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisTSR.exe
MOD - [2010-05-28 04:14:44 | 000,357,744 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisFeature.dll
MOD - [2010-05-28 04:14:40 | 000,318,832 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisAuthShell.dll
MOD - [2010-05-28 04:14:24 | 000,523,632 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec BioExcess\CryptoAPI.dll
MOD - [2010-05-28 04:14:20 | 000,053,616 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisIEPwdBank.dll
MOD - [2010-05-28 04:14:18 | 000,405,872 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisPBUI.dll
MOD - [2010-05-28 04:14:06 | 000,422,768 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisLaunch.dll
MOD - [2010-05-28 04:14:00 | 000,360,304 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisFingerEnroll.dll
MOD - [2010-05-28 04:13:58 | 000,329,072 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisFactorProxy.dll
MOD - [2010-05-28 04:13:54 | 000,743,280 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec BioExcess\LibFrame.dll
MOD - [2010-05-28 04:13:52 | 000,232,304 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec BioExcess\FrameUtility.dll
MOD - [2010-05-28 04:13:50 | 000,482,160 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisUtility.dll
MOD - [2010-05-19 18:21:54 | 000,743,280 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec Port Locker\LibFrame.dll
MOD - [2010-05-19 18:21:52 | 000,226,672 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec Port Locker\FrameUtility.dll
MOD - [2010-05-19 18:21:48 | 000,476,528 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\EgisPLUtility.dll
MOD - [2010-05-19 18:21:48 | 000,053,104 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\LoggerUtility.dll
MOD - [2010-05-19 18:21:46 | 000,364,400 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\EgisPLTSR.exe
MOD - [2010-05-19 18:21:40 | 000,319,344 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\EgisPLFeature.dll
MOD - [2010-05-19 18:21:36 | 000,316,784 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\EgisPLAuthShell.dll
MOD - [2010-05-19 18:21:34 | 000,305,520 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\EgisPLAbout.dll
MOD - [2010-05-19 18:21:24 | 000,523,632 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec Port Locker\CryptoAPI.dll
MOD - [2010-05-05 07:46:55 | 000,363,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\StructuredQuery.dll
MOD - [2010-03-30 17:39:18 | 004,960,256 | ---- | M] (Intel Corporation) -- C:\Windows\SysWOW64\igdumd32.dll
MOD - [2010-03-30 17:35:22 | 000,571,904 | ---- | M] (Intel Corporation) -- C:\Windows\SysWOW64\igdumdx32.dll
MOD - [2010-03-10 23:12:02 | 000,072,560 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\UpdateModel.dll
MOD - [2010-03-10 23:11:56 | 000,407,920 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
MOD - [2010-03-10 23:11:52 | 000,788,848 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\LiveUpdateUI.dll
MOD - [2010-03-10 23:11:50 | 000,068,976 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\LicenseCenter.dll
MOD - [2010-03-10 23:11:48 | 000,068,976 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\KernelController.dll
MOD - [2010-03-10 23:11:42 | 000,201,584 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
MOD - [2010-03-03 21:16:04 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
MOD - [2010-03-03 21:13:06 | 000,032,768 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\pl-PL\IAStorIcon.resources.dll
MOD - [2010-03-03 21:13:00 | 000,004,608 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\pl-PL\IntelVisualDesign.resources.dll
MOD - [2010-03-03 21:08:36 | 000,163,328 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUIHelper.dll
MOD - [2010-03-03 21:08:30 | 001,046,528 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll
MOD - [2010-03-02 23:39:42 | 001,056,352 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Lenovo\YouCam\MFC71U.DLL
MOD - [2010-03-02 23:39:42 | 000,506,976 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Lenovo\YouCam\MSVCP71.dll
MOD - [2010-03-02 23:39:42 | 000,351,328 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Lenovo\YouCam\MSVCR71.dll
MOD - [2010-03-02 23:37:40 | 000,171,104 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
MOD - [2010-01-15 12:38:46 | 000,536,576 | ---- | M] (Vimicro) -- C:\Program Files (x86)\USB Camera\VM331_STI.EXE
MOD - [2009-11-25 11:47:34 | 000,297,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mscoree.dll
MOD - [2009-09-07 16:38:22 | 000,013,096 | ---- | M] (TODO: ) -- C:\Program Files (x86)\Lenovo\YouCam\Custom\Lang\PLK\IM.dll
MOD - [2009-07-14 02:17:54 | 000,249,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\bcryptprimitives.dll
MOD - [2009-07-14 02:17:54 | 000,242,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rsaenh.dll
MOD - [2009-07-14 02:16:20 | 000,308,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\Wpc.dll
MOD - [2009-07-14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ws2_32.dll
MOD - [2009-07-14 02:16:20 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wtsapi32.dll
MOD - [2009-07-14 02:16:20 | 000,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wshbth.dll
MOD - [2009-07-14 02:16:20 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wsock32.dll
MOD - [2009-07-14 02:16:20 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wship6.dll
MOD - [2009-07-14 02:16:20 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WSHTCPIP.DLL
MOD - [2009-07-14 02:16:19 | 000,616,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wmdrmsdk.dll
MOD - [2009-07-14 02:16:19 | 000,268,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\Wldap32.dll
MOD - [2009-07-14 02:16:19 | 000,237,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WMASF.DLL
MOD - [2009-07-14 02:16:19 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winmm.dll
MOD - [2009-07-14 02:16:19 | 000,156,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winsta.dll
MOD - [2009-07-14 02:16:19 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wkscli.dll
MOD - [2009-07-14 02:16:19 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winrnr.dll
MOD - [2009-07-14 02:16:19 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winnsi.dll
MOD - [2009-07-14 02:16:18 | 001,011,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WindowsCodecs.dll
MOD - [2009-07-14 02:16:18 | 000,377,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wer.dll
MOD - [2009-07-14 02:16:18 | 000,262,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wevtapi.dll
MOD - [2009-07-14 02:16:17 | 001,123,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\vssapi.dll
MOD - [2009-07-14 02:16:17 | 000,627,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\usp10.dll
MOD - [2009-07-14 02:16:17 | 000,079,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\userenv.dll
MOD - [2009-07-14 02:16:17 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\vsstrace.dll
MOD - [2009-07-14 02:16:17 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\version.dll
MOD - [2009-07-14 02:16:16 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Common Files\microsoft shared\ink\tiptsf.dll
MOD - [2009-07-14 02:16:15 | 000,380,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sxs.dll
MOD - [2009-07-14 02:16:15 | 000,171,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\spp.dll
MOD - [2009-07-14 02:16:15 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\srvcli.dll
MOD - [2009-07-14 02:16:15 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\slc.dll
MOD - [2009-07-14 02:16:14 | 001,668,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\setupapi.dll
MOD - [2009-07-14 02:16:14 | 000,350,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shlwapi.dll
MOD - [2009-07-14 02:16:14 | 000,179,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shdocvw.dll
MOD - [2009-07-14 02:16:14 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shfolder.dll
MOD - [2009-07-14 02:16:13 | 000,643,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\SearchFolder.dll
MOD - [2009-07-14 02:16:13 | 000,473,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\riched20.dll
MOD - [2009-07-14 02:16:13 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sechost.dll
MOD - [2009-07-14 02:16:13 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\samlib.dll
MOD - [2009-07-14 02:16:13 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\samcli.dll
MOD - [2009-07-14 02:16:13 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\RpcRtRemote.dll
MOD - [2009-07-14 02:16:13 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\SensApi.dll
MOD - [2009-07-14 02:16:13 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\riched32.dll
MOD - [2009-07-14 02:16:12 | 002,504,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WMVCORE.DLL
MOD - [2009-07-14 02:16:12 | 000,988,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\propsys.dll
MOD - [2009-07-14 02:16:12 | 000,791,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\opengl32.dll
MOD - [2009-07-14 02:16:12 | 000,547,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\PortableDeviceApi.dll
MOD - [2009-07-14 02:16:12 | 000,325,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rasapi32.dll
MOD - [2009-07-14 02:16:12 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\powrprof.dll
MOD - [2009-07-14 02:16:12 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\olepro32.dll
MOD - [2009-07-14 02:16:12 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rasman.dll
MOD - [2009-07-14 02:16:12 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\pnrpnsp.dll
MOD - [2009-07-14 02:16:12 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\pngfilt.dll
MOD - [2009-07-14 02:16:12 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\profapi.dll
MOD - [2009-07-14 02:16:12 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\qmgrprxy.dll
MOD - [2009-07-14 02:16:12 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rasadhlp.dll
MOD - [2009-07-14 02:16:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\psapi.dll
MOD - [2009-07-14 02:16:11 | 000,121,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntmarta.dll
MOD - [2009-07-14 02:16:11 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\npmproxy.dll
MOD - [2009-07-14 02:16:11 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\nsi.dll
MOD - [2009-07-14 02:16:03 | 002,494,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\netshell.dll
MOD - [2009-07-14 02:16:03 | 001,661,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\networkexplorer.dll
MOD - [2009-07-14 02:16:03 | 001,537,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\NlsData0000.dll
MOD - [2009-07-14 02:16:03 | 000,360,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\netprofm.dll
MOD - [2009-07-14 02:16:03 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\nlaapi.dll
MOD - [2009-07-14 02:16:03 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\netutils.dll
MOD - [2009-07-14 02:16:02 | 000,801,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\NaturalLanguage6.dll
MOD - [2009-07-14 02:16:02 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\NapiNSP.dll
MOD - [2009-07-14 02:15:51 | 000,232,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mswsock.dll
MOD - [2009-07-14 02:15:48 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mssprxy.dll
MOD - [2009-07-14 02:15:47 | 000,195,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msrating.dll
MOD - [2009-07-14 02:15:45 | 000,157,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msls31.dll
MOD - [2009-07-14 02:15:44 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msimtf.dll
MOD - [2009-07-14 02:15:44 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msiltcfg.dll
MOD - [2009-07-14 02:15:44 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msimg32.dll
MOD - [2009-07-14 02:15:43 | 000,828,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msctf.dll
MOD - [2009-07-14 02:15:43 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msdmo.dll
MOD - [2009-07-14 02:15:42 | 000,481,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mscms.dll
MOD - [2009-07-14 02:15:42 | 000,072,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msacm32.dll
MOD - [2009-07-14 02:15:41 | 000,213,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\MMDevAPI.dll
MOD - [2009-07-14 02:15:41 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mpr.dll
MOD - [2009-07-14 02:15:40 | 000,177,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mlang.dll
MOD - [2009-07-14 02:15:40 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\midimap.dll
MOD - [2009-07-14 02:15:39 | 000,352,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mfplat.dll
MOD - [2009-07-14 02:15:36 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\linkinfo.dll
MOD - [2009-07-14 02:15:35 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ksuser.dll
MOD - [2009-07-14 02:15:33 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\IPHLPAPI.DLL
MOD - [2009-07-14 02:15:32 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\imgutil.dll
MOD - [2009-07-14 02:15:28 | 000,200,704 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\IEShims.dll
MOD - [2009-07-14 02:15:27 | 000,445,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ieapfltr.dll
MOD - [2009-07-14 02:15:22 | 000,130,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\glu32.dll
MOD - [2009-07-14 02:15:22 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\gpapi.dll
MOD - [2009-07-14 02:15:21 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\FWPUCLNT.DLL
MOD - [2009-07-14 02:15:19 | 001,495,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ExplorerFrame.dll
MOD - [2009-07-14 02:15:14 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\EhStorShell.dll
MOD - [2009-07-14 02:15:14 | 000,128,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\EhStorAPI.dll
MOD - [2009-07-14 02:15:13 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dui70.dll
MOD - [2009-07-14 02:15:13 | 000,507,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dxgi.dll
MOD - [2009-07-14 02:15:13 | 000,453,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dsound.dll
MOD - [2009-07-14 02:15:13 | 000,346,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dxtmsft.dll
MOD - [2009-07-14 02:15:13 | 000,215,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dxtrans.dll
MOD - [2009-07-14 02:15:13 | 000,181,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\duser.dll
MOD - [2009-07-14 02:15:13 | 000,088,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dxva2.dll
MOD - [2009-07-14 02:15:13 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dwmapi.dll
MOD - [2009-07-14 02:15:11 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dhcpcsvc.dll
MOD - [2009-07-14 02:15:11 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dhcpcsvc6.dll
MOD - [2009-07-14 02:15:10 | 000,531,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ddraw.dll
MOD - [2009-07-14 02:15:10 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\devenum.dll
MOD - [2009-07-14 02:15:10 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ddrawex.dll
MOD - [2009-07-14 02:15:09 | 000,854,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dbghelp.dll
MOD - [2009-07-14 02:15:09 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dciman32.dll
MOD - [2009-07-14 02:15:08 | 001,826,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d9.dll
MOD - [2009-07-14 02:15:08 | 001,036,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d8.dll
MOD - [2009-07-14 02:15:08 | 000,817,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3dim700.dll
MOD - [2009-07-14 02:15:08 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d8thk.dll
MOD - [2009-07-14 02:15:07 | 001,030,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d10.dll
MOD - [2009-07-14 02:15:07 | 000,522,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d11.dll
MOD - [2009-07-14 02:15:07 | 000,486,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\comdlg32.dll
MOD - [2009-07-14 02:15:07 | 000,190,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d10core.dll
MOD - [2009-07-14 02:15:07 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cryptsp.dll
MOD - [2009-07-14 02:15:07 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cryptbase.dll
MOD - [2009-07-14 02:15:07 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cscapi.dll
MOD - [2009-07-14 02:15:07 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\credssp.dll
MOD - [2009-07-14 02:15:03 | 000,522,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\clbcatq.dll
MOD - [2009-07-14 02:14:59 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\bitsprx5.dll
MOD - [2009-07-14 02:14:59 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\bitsprx2.dll
MOD - [2009-07-14 02:14:59 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\bitsprx3.dll
MOD - [2009-07-14 02:14:58 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\avrt.dll
MOD - [2009-07-14 02:14:57 | 000,195,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\AudioSes.dll
MOD - [2009-07-14 02:14:57 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\atl.dll
MOD - [2009-07-14 02:14:53 | 000,640,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\advapi32.dll
MOD - [2009-07-14 02:14:53 | 000,292,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\apphelp.dll
MOD - [2009-07-14 02:14:52 | 000,309,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\actxprxy.dll
MOD - [2009-07-14 02:14:11 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ksproxy.ax
MOD - [2009-07-14 02:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx
MOD - [2009-07-14 02:14:08 | 000,692,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\bthprops.cpl
MOD - [2009-07-14 02:14:08 | 000,319,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winspool.drv
MOD - [2009-07-14 02:14:08 | 000,172,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wdmaud.drv
MOD - [2009-07-14 02:14:08 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msacm32.drv
MOD - [2009-07-14 02:11:24 | 000,833,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\user32.dll
MOD - [2009-07-14 02:11:24 | 000,245,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\uxtheme.dll
MOD - [2009-07-14 02:11:23 | 000,662,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rpcrt4.dll
MOD - [2009-07-14 02:11:23 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\lpk.dll
MOD - [2009-07-14 02:11:21 | 000,310,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\gdi32.dll
MOD - [2009-07-14 02:11:21 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\imm32.dll
MOD - [2009-07-14 02:11:20 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\bcrypt.dll
MOD - [2009-07-14 02:09:15 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\oleaccrc.dll
MOD - [2009-07-14 02:09:00 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\normaliz.dll
MOD - [2009-06-10 22:22:51 | 000,572,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
MOD - [2009-05-19 23:16:18 | 000,099,624 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\Lenovo\YouCam\MUITransfer\MUITransfer.dll
MOD - [2008-06-05 10:19:18 | 000,479,232 | ---- | M] (Nikon Corporation) -- C:\Program Files (x86)\Common Files\Nikon\Monitor\NkMonitor.exe


[color=#e56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2012-09-12 20:21:48 | 000,368,896 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:[b]64bit:[/b] - [2012-09-12 20:21:48 | 000,022,072 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:[b]64bit:[/b] - [2010-04-20 14:29:08 | 000,903,456 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe -- (btwdins)
SRV:[b]64bit:[/b] - [2010-02-05 15:43:20 | 000,311,296 | ---- | M] (Realtek Semiconductor Corp.) [Auto | Running] -- C:\Program Files\Realtek\RtLED\RtLEDService.exe -- (RtLedService)
SRV:[b]64bit:[/b] - [2009-12-09 10:52:52 | 000,047,712 | ---- | M] (Lenovo.) [Auto | Running] -- C:\Windows\SysNative\TPHDEXLG64.exe -- (TPHDEXLGSVC)
SRV:[b]64bit:[/b] - [2009-09-22 19:16:32 | 000,579,400 | ---- | M] (Lenovo Group Limited) [On_Demand | Stopped] -- C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe -- (Lenovo ReadyComm ConnSvc)
SRV:[b]64bit:[/b] - [2009-08-14 15:22:48 | 000,509,192 | ---- | M] (Lenovo Group Limited) [On_Demand | Stopped] -- C:\Program Files\Lenovo\ReadyComm\AppSvc.exe -- (Lenovo ReadyComm AppSvc)
SRV:[b]64bit:[/b] - [2009-07-14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2009-07-14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2012-01-04 12:32:36 | 000,718,888 | ---- | M] (Nokia) [On_Demand | Running] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2011-10-01 08:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa)
SRV - [2011-10-01 08:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist)
SRV - [2010-07-11 19:09:20 | 001,620,584 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2010-05-28 04:14:02 | 000,709,488 | ---- | M] (Egis Technology Inc. ) [Auto | Running] -- C:\Program Files (x86)\EgisTec BioExcess\EgisService.exe -- (EgisTec Service)
SRV - [2010-05-28 04:13:38 | 000,314,736 | ---- | M] (Egis Technology Inc. ) [Auto | Running] -- C:\Program Files (x86)\EgisTec BioExcess\EgisDSService.exe -- (EgisTec Data Security Service)
SRV - [2010-05-19 18:21:26 | 000,322,416 | ---- | M] (Egis Technology Inc. ) [Auto | Running] -- C:\Program Files (x86)\EgisTec Port Locker\Egishlpsvc.exe -- (EgisTec Service Help)
SRV - [2010-03-18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010-03-03 21:16:06 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2009-09-30 13:02:38 | 002,320,920 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2009-09-30 13:02:36 | 000,268,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2009-07-16 04:12:42 | 000,276,296 | ---- | M] (Lenovo Group Limited) [On_Demand | Stopped] -- C:\Program Files (x86)\Lenovo\ReadyComm\PS_MDP.dll -- (PS_MDP)
SRV - [2009-07-14 15:27:26 | 000,038,152 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe -- (IGRS)
SRV - [2009-07-14 15:27:20 | 000,103,688 | ---- | M] (Lenovo Group Limited) [Auto | Stopped] -- C:\Program Files (x86)\Lenovo\ReadyComm\common\router.dll -- (ReadyComm.DirectRouter)
SRV - [2009-06-10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


[color=#e56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2012-10-07 15:13:32 | 000,311,968 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt)
DRV:[b]64bit:[/b] - [2012-10-07 15:10:30 | 000,043,168 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt)
DRV:[b]64bit:[/b] - [2012-08-30 21:03:48 | 000,128,456 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:[b]64bit:[/b] - [2012-03-01 07:54:38 | 000,022,896 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2012-02-14 23:04:30 | 000,034,040 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MusCAudio.sys -- (MusCAudio)
DRV:[b]64bit:[/b] - [2011-10-01 08:30:22 | 000,022,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftvollh.sys -- (Sftvol)
DRV:[b]64bit:[/b] - [2011-10-01 08:30:18 | 000,268,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftplaylh.sys -- (Sftplay)
DRV:[b]64bit:[/b] - [2011-10-01 08:30:18 | 000,025,960 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftredirlh.sys -- (Sftredir)
DRV:[b]64bit:[/b] - [2011-10-01 08:30:10 | 000,764,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftfslh.sys -- (Sftfs)
DRV:[b]64bit:[/b] - [2011-03-11 07:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2011-03-11 07:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2010-09-20 16:46:21 | 000,055,880 | ---- | M] (Egis Technology Inc.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\EgisTecFF.sys -- (EgisTecFF)
DRV:[b]64bit:[/b] - [2010-09-20 16:29:35 | 000,035,888 | ---- | M] (EgisTec) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\FPSensor.sys -- (FPSensor)
DRV:[b]64bit:[/b] - [2010-09-20 16:29:33 | 000,060,464 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDVDisk.sys -- (mwlPSDVDisk)
DRV:[b]64bit:[/b] - [2010-09-20 16:29:33 | 000,022,576 | ---- | M] (Egis Technology Inc.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDFilter.sys -- (mwlPSDFilter)
DRV:[b]64bit:[/b] - [2010-09-20 16:29:33 | 000,020,016 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDNserv.sys -- (mwlPSDNServ)
DRV:[b]64bit:[/b] - [2010-07-11 22:40:00 | 000,024,680 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:[b]64bit:[/b] - [2010-04-08 17:11:12 | 000,054,824 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btusbflt.sys -- (btusbflt)
DRV:[b]64bit:[/b] - [2010-03-30 17:47:08 | 010,322,848 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2010-03-26 10:14:50 | 000,162,304 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:[b]64bit:[/b] - [2010-03-24 10:57:20 | 000,243,744 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:[b]64bit:[/b] - [2010-03-18 11:35:10 | 000,215,168 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vm331avs.sys -- (vm331avs)
DRV:[b]64bit:[/b] - [2010-03-03 20:51:40 | 000,540,696 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:[b]64bit:[/b] - [2010-02-25 18:32:12 | 000,158,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:[b]64bit:[/b] - [2010-02-22 11:03:44 | 000,075,304 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
DRV:[b]64bit:[/b] - [2010-02-02 16:52:02 | 003,058,168 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:[b]64bit:[/b] - [2010-02-02 08:38:30 | 000,271,872 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:[b]64bit:[/b] - [2010-01-15 19:08:34 | 000,039,008 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\LhdX64.sys -- (LHDmgr)
DRV:[b]64bit:[/b] - [2010-01-15 07:23:20 | 000,098,344 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwaudio.sys -- (btwaudio)
DRV:[b]64bit:[/b] - [2010-01-15 07:23:14 | 000,132,648 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwavdt.sys -- (btwavdt)
DRV:[b]64bit:[/b] - [2010-01-15 07:23:10 | 000,021,288 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwrchid.sys -- (btwrchid)
DRV:[b]64bit:[/b] - [2009-12-09 10:52:28 | 000,023,648 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ApsHM64.sys -- (TPDIGIMN)
DRV:[b]64bit:[/b] - [2009-12-09 10:52:22 | 000,135,264 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ApsX64.sys -- (Shockprf)
DRV:[b]64bit:[/b] - [2009-10-19 01:40:50 | 000,028,176 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AcpiVpc.sys -- (ACPIVPC)
DRV:[b]64bit:[/b] - [2009-09-17 05:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64)
DRV:[b]64bit:[/b] - [2009-07-21 15:20:06 | 000,121,840 | ---- | M] (CyberLink) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wsvd.sys -- (wsvd)
DRV:[b]64bit:[/b] - [2009-07-16 12:55:34 | 000,011,280 | ---- | M] (Lenovo) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WDMirror.sys -- (wdmirror)
DRV:[b]64bit:[/b] - [2009-07-16 04:38:20 | 000,079,376 | ---- | M] (Lenovo) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WDBridge.sys -- (Bridge0)
DRV:[b]64bit:[/b] - [2009-07-14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009-07-14 02:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009-06-10 21:35:28 | 005,434,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:36 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\k57nd60a.sys -- (k57nd60a)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009-06-10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:[b]64bit:[/b] - [2009-04-07 08:33:08 | 000,035,104 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwl2cap.sys -- (btwl2cap)
DRV:[b]64bit:[/b] - [2008-08-28 10:44:42 | 000,025,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV - [2009-07-14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


[color=#e56717]========== Standard Registry (SafeList) ==========[/color]


[color=#e56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {9BB47C17-9C68-4BB3-B188-DD9AF0FD22}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://www.bing.com/search?q=%7BsearchTerms%7D&FORM=IE8SRC"]http://www.bing.com/...ms}&FORM=IE8SRC[/url]
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}: "URL" = [url="http://search.bearshare.com//web?src=ieb&appid=0&systemid=2&sr=0&q=%7BsearchTerms"]http://search.bearsh...&q={searchTerms[/url]}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url="http://home.sweetim.com/?crg=3.1010000.10011&barid=%7B8018C938-043C-11E2-8BB2-C0CB38E78EFA"]http://home.sweetim....B2-C0CB38E78EFA[/url]}
IE - HKLM\..\SearchScopes,DefaultScope = {EEE6C360-6118-11DC-9C72-001320C79847}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://www.bing.com/search?q=%7BsearchTerms%7D&FORM=IE8SRC"]http://www.bing.com/...ms}&FORM=IE8SRC[/url]
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}: "URL" = [url="http://search.bearshare.com//web?src=ieb&appid=0&systemid=2&sr=0&q=%7BsearchTerms"]http://search.bearsh...&q={searchTerms[/url]}
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = [url="http://search.conduit.com/ResultsExt.aspx?q=%7BsearchTerms%7D&SearchSource=4&ctid=CT2790392"]http://search.condui...&ctid=CT2790392[/url]
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = [url="http://search.sweetim.com/search.asp?src=6&q=%7BsearchTerms%7D&crg=3.1010000.10011&barid=%7B8018C938-043C-11E2-8BB2-C0CB38E78EFA"]http://search.sweeti...B2-C0CB38E78EFA[/url]}


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = [url="http://www.lenovo.com"]http://www.lenovo.com[/url]
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [url="http://www.lenovo.com/"]http://www.lenovo.com/[/url] [binary data]
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url="http://www.lenovo.com"]http://www.lenovo.com[/url]
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No CLSID value found
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://www.bing.com/search?q=%7BsearchTerms%7D&form=LENDF8&pc=MALN&src=IE-SearchBox"]http://www.bing.com/...rc=IE-SearchBox[/url]
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}: "URL" = [url="http://search.bearshare.com//web?src=ieb&appid=0&systemid=2&sr=0&q=%7BsearchTerms"]http://search.bearsh...&q={searchTerms[/url]}
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = [url="http://search.sweetim.com/search.asp?src=6&q=%7BsearchTerms%7D&crg=3.1010000.10011&barid=%7B8018C938-043C-11E2-8BB2-C0CB38E78EFA"]http://search.sweeti...B2-C0CB38E78EFA[/url]}
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\..\SearchScopes\{F534EC89-A1CC-4E20-96FB-B74999DC3401}: "URL" = [url="http://www.google.com/search?hl=pl&q=%7BsearchTerms"]http://www.google.co...&q={searchTerms[/url]}
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = pl.v9.com/idg/idg_1331323256_496480
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url="http://www.google.pl/"]http://www.google.pl/[/url]
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No CLSID value found
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\..\SearchScopes,DefaultScope = {F534EC89-A1CC-4E20-96FB-B74999DC3401}
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}: "URL" = [url="http://search.bearshare.com//web?src=ieb&appid=0&systemid=2&sr=0&q=%7BsearchTerms"]http://search.bearsh...&q={searchTerms[/url]}
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = [url="http://search.sweetim.com/search.asp?src=6&q=%7BsearchTerms%7D&crg=3.1010000.10011&barid=%7B8018C938-043C-11E2-8BB2-C0CB38E78EFA"]http://search.sweeti...B2-C0CB38E78EFA[/url]}
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\..\SearchScopes\{F534EC89-A1CC-4E20-96FB-B74999DC3401}: "URL" = [url="http://www.google.com/search?hl=pl&q=%7BsearchTerms"]http://www.google.co...&q={searchTerms[/url]}
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#e56717]========== FireFox ==========[/color]

FF - prefs.js..extensions.enabledAddons: {4ED1F68A-5463-4931-9384-8FFF5ED91D92}:3.4.0
FF - prefs.js..network.proxy.type: 0
FF - prefs.js..browser.startup.homepage: "[url="http://home.sweetim.com/?crg=3.1010000.10011&barid=%7B8018C938-043C-11E2-8BB2-C0CB38E78EFA"]http://home.sweetim....B2-C0CB38E78EFA[/url]}"
FF - prefs.js..browser.startup.homepage: "pl.v9.com/idg/idg_1331323256_496480"
FF - prefs.js..browser.search.defaultenginename: "SweetIM Search"
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: ""
FF - prefs.js..browser.search.selectedEngine: "SweetIM Search"
FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: ""
FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..keyword.URL: "[url="http://search.sweetim.com/search.asp?src=2&barid=%7B8018C938-043C-11E2-8BB2-C0CB38E78EFA%7D&q"]http://search.sweeti...C0CB38E78EFA}[/url]="
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: ""


FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_37: C:\windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Ania\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\fe_7.0@nokia.com: C:\Program Files (x86)\Nokia\Nokia Suite\Connectors\Bookmarks Connector\FirefoxExtension_7.0 [2012-05-08 20:30:36 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012-11-25 23:09:41 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\te_9.0@nokia.com: C:\Program Files (x86)\Nokia\Nokia Suite\Connectors\Thunderbird Connector\ThunderbirdExtension_9.0 [2012-05-08 20:30:55 | 000,000,000 | ---D | M]

[2011-10-02 22:32:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ania\AppData\Roaming\mozilla\Extensions
[2012-09-21 23:35:02 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ania\AppData\Roaming\mozilla\Firefox\Profiles\q8g7bbby.default\extensions
[2012-09-21 23:32:32 | 000,000,000 | ---D | M] (OneClickDownloader) -- C:\Users\Ania\AppData\Roaming\mozilla\Firefox\Profiles\q8g7bbby.default\extensions\OneClickDownload@OneClickDownload.com
[2012-09-21 23:34:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ania\AppData\Roaming\mozilla\Firefox\Profiles\q8g7bbby.default\extensions\staged
[2012-07-31 12:59:18 | 000,221,380 | ---- | M] () (No name found) -- C:\Users\Ania\AppData\Roaming\mozilla\firefox\profiles\q8g7bbby.default\extensions\gophoto@gophoto.it.xpi
[2012-09-21 23:34:40 | 000,169,792 | ---- | M] () (No name found) -- C:\Users\Ania\AppData\Roaming\mozilla\firefox\profiles\q8g7bbby.default\extensions\staged\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
[2012-09-21 23:34:59 | 000,003,998 | ---- | M] () -- C:\Users\Ania\AppData\Roaming\mozilla\firefox\profiles\q8g7bbby.default\searchplugins\sweetim.xml
[2012-10-28 09:21:53 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2012-07-03 20:45:39 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
[2012-09-24 20:29:38 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
[2012-10-28 09:21:53 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES (X86)\MCAFEE\SITEADVISOR
[2011-09-29 08:30:14 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011-09-29 01:52:42 | 000,002,767 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\allegro-pl.xml
[2011-09-29 01:52:42 | 000,001,406 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fbc-pl.xml
[2011-09-29 01:52:42 | 000,000,917 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\merlin-pl.xml
[2011-09-29 01:52:42 | 000,000,858 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\pwn-pl.xml
[2011-09-29 01:52:42 | 000,001,183 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-pl.xml
[2011-09-29 01:52:42 | 000,001,683 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wp-pl.xml

[color=#e56717]========== Chrome ==========[/color]


O1 HOSTS File: ([2009-06-10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (IEPwdBankBHO Class) - {56CBB761-DA41-4E31-B270-B13B4B0A61D0} - C:\Program Files (x86)\EgisTec BioExcess\EgisIEPwdBank.dll (Egis Technology Inc. )
O2 - BHO: (Babylon IE plugin) - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll File not found
O2 - BHO: (MediaBar) - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\ToolBar\bsdtxmltbpi.dll File not found
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (MediaBar) - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\ToolBar\bsdtxmltbpi.dll File not found
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\..\Toolbar\WebBrowser: (no name) - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - No CLSID value found.
O3 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\..\Toolbar\WebBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
O3 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\..\Toolbar\WebBrowser: (no name) - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - No CLSID value found.
O3 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\..\Toolbar\WebBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
O4:[b]64bit:[/b] - HKLM..\Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited)
O4:[b]64bit:[/b] - HKLM..\Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\utility.exe (Lenovo(beijing) Limited)
O4:[b]64bit:[/b] - HKLM..\Run: [ETDWare] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [TpShocks] C:\Windows\SysNative\TpShocks.exe (Lenovo.)
O4:[b]64bit:[/b] - HKLM..\Run: [UpdatePRCShortCut] C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331_STI.EXE (Vimicro)
O4 - HKLM..\Run: [EgisTecPMMUpdate] C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe (Egis Technology Inc.)
O4 - HKLM..\Run: [EgisUpdate] C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe (Egis Technology Inc.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [IMSS] C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe ()
O4 - HKLM..\Run: [PLTSR] C:\Program Files (x86)\EgisTec Port Locker\EgisPLTSR.exe (Egis Technology Inc. )
O4 - HKLM..\Run: [Sweetpacks Communicator] C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (SweetIM Technologies Ltd.)
O4 - HKLM..\Run: [UCam_Menu] C:\Program Files (x86)\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdateP2GShortCut] C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePRCShortCut] C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [VitaKeyTSR] C:\Program Files (x86)\EgisTec BioExcess\EgisTSR.exe (Egis Technology Inc. )
O4 - HKLM..\Run: [YouCam Mirror Tray icon] C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe (CyberLink Corp.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000..\Run: [] File not found
O4 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000..\Run: [FactoryTest] C:\Windows\Test.bat File not found
O4 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe (Nokia)
O4 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000..\Run: [Power2GoExpress] C:\Program Files (x86)\Lenovo\Power2Go\Power2GoExpress.exe (Cyberlink)
O4 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002..\Run: [] File not found
O4 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe (Nokia)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - Startup: C:\Users\Ania\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O7 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O8:[b]64bit:[/b] - Extra context menu item: Translate this web page with Babylon - res://C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm File not found
O8:[b]64bit:[/b] - Extra context menu item: Translate with Babylon - res://C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm File not found
O8:[b]64bit:[/b] - Extra context menu item: Wyślij obraz do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm ()
O8:[b]64bit:[/b] - Extra context menu item: Wyślij stronę do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Translate this web page with Babylon - res://C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm File not found
O8 - Extra context menu item: Translate with Babylon - res://C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm File not found
O8 - Extra context menu item: Wyślij obraz do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Wyślij stronę do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9:[b]64bit:[/b] - Extra Button: @C:\Program Files\Lenovo\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : @C:\Program Files\Lenovo\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: PokerStars.eu - {07BA1DA9-F501-4796-8728-74D1B91A6CD5} - C:\Program Files (x86)\PokerStars.EU\PokerStarsUpdate.exe (PokerStars)
O9 - Extra Button: Wyślij do interfejsu Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Wyślij do urządzenia &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - res://C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm File not found
O9 - Extra 'Tools' menuitem : Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - res://C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm File not found
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} [url="http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab"]http://download.macr...director/sw.cab[/url] (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_37)
O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_37)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_37)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} [url="http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab"]http://platformdl.ad...Plus/1.6/gp.cab[/url] (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.179.1.63 62.179.1.62
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{22D5BAA4-B440-41E3-A350-07E4697C398D}: DhcpNameServer = 62.179.1.63 62.179.1.62
O18:[b]64bit:[/b] - Protocol\Handler\livecall - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\msnim - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml - No CLSID value found
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O20:[b]64bit:[/b] - AppInit_DLLs: (C:\windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20 - AppInit_DLLs: (C:\windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

[color=#e56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2013-01-01 18:22:05 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Ania\Desktop\OTL.exe
[2013-01-01 18:18:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HijackThis
[2013-01-01 18:18:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Trend Micro
[2012-12-15 22:58:18 | 000,000,000 | ---D | C] -- C:\Users\Ania\AppData\Roaming\Mp3tag
[2012-12-15 22:58:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mp3tag
[2012-12-02 00:33:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2012-12-02 00:33:28 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2012-12-02 00:33:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2012-11-30 23:36:58 | 000,000,000 | ---D | C] -- C:\Users\Ania\Desktop\zdjęcia 1
[2012-11-25 23:29:14 | 000,000,000 | ---D | C] -- C:\Users\Ania\AppData\Local\Windows Live
[2012-11-25 23:22:30 | 000,110,592 | R--- | C] (Nikon Corporation) -- C:\windows\SysWow64\RCSigProc.dll
[2012-11-25 23:22:29 | 006,475,096 | ---- | C] (Nikon, Inc.) -- C:\windows\SysWow64\NEFcodec.dll
[2012-11-25 23:22:29 | 000,200,704 | R--- | C] (Nikon Corporation) -- C:\windows\SysWow64\Strato7.dll
[2012-11-25 23:16:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ViewNX
[2012-11-25 23:15:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Trance Pad
[2012-11-25 23:14:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Transfer
[2012-11-25 23:14:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\muvee Technologies
[2012-11-25 23:13:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Nikon
[2012-11-25 23:13:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Nikon
[2012-11-25 23:13:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Nikon
[2012-11-25 23:12:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Ultima_T15
[2012-11-25 23:12:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Sync Services
[2012-11-25 23:12:03 | 000,000,000 | ---D | C] -- C:\ProgramData\EnterNHelp
[2012-11-25 23:09:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2012-11-25 23:08:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2012-11-25 23:08:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon
[2012-11-14 22:34:03 | 000,000,000 | ---D | C] -- C:\Users\Ania\AppData\Local\PokerStars.EU
[2012-11-14 22:34:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PokerStars.EU
[2012-11-14 22:33:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PokerStars.EU
[1 C:\windows\SysWow64\*.tmp files -> C:\windows\SysWow64\*.tmp -> ]
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]

[color=#e56717]========== Files - Modified Within 60 Days ==========[/color]

[2013-01-01 18:35:20 | 002,883,584 | -HS- | M] () -- C:\Users\Ania\NTUSER.DAT
[2013-01-01 18:29:00 | 000,001,044 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2013-01-01 18:22:11 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Ania\Desktop\OTL.exe
[2013-01-01 18:18:58 | 000,002,097 | ---- | M] () -- C:\Users\Ania\Desktop\HijackThis.lnk
[2013-01-01 18:06:54 | 000,001,040 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2013-01-01 18:04:15 | 102,315,992 | ---- | M] () -- C:\Users\Ania\Desktop\avast_free_antivirus_setup.exe
[2013-01-01 17:58:18 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2012-12-30 20:47:02 | 001,407,135 | ---- | M] () -- C:\Users\Ania\Desktop\dsc05611g.jpg
[2012-12-30 20:47:01 | 000,124,302 | ---- | M] () -- C:\Users\Ania\Desktop\dsc05612s.jpg
[2012-12-30 20:47:01 | 000,108,133 | ---- | M] () -- C:\Users\Ania\Desktop\bm22.jpg
[2012-12-30 20:46:10 | 000,127,161 | ---- | M] () -- C:\Users\Ania\Desktop\3erS30B1.jpg
[2012-12-30 12:53:11 | 000,013,648 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012-12-30 12:53:11 | 000,013,648 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012-12-30 12:43:37 | 000,000,006 | -H-- | M] () -- C:\windows\tasks\SA.DAT
[2012-12-30 12:42:55 | 3010,797,568 | -HS- | M] () -- C:\hiberfil.sys
[2012-12-30 02:41:28 | 006,744,871 | -H-- | M] () -- C:\Users\Ania\AppData\Local\IconCache.db
[2012-12-22 22:18:25 | 001,551,484 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2012-12-22 22:18:25 | 000,698,598 | ---- | M] () -- C:\windows\SysNative\perfh015.dat
[2012-12-22 22:18:25 | 000,616,694 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2012-12-22 22:18:25 | 000,135,418 | ---- | M] () -- C:\windows\SysNative\perfc015.dat
[2012-12-22 22:18:25 | 000,106,816 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2012-12-22 16:03:26 | 000,009,740 | ---- | M] () -- C:\Users\Ania\Desktop\Bez tytułu 2e46.ods
[2012-12-21 21:31:18 | 000,310,560 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
[2012-12-15 22:58:02 | 000,000,983 | ---- | M] () -- C:\Users\Public\Desktop\Mp3tag.lnk
[2012-12-15 22:57:34 | 003,204,456 | ---- | M] () -- C:\Users\Ania\Desktop\mp3tagv253setup.exe
[2012-12-03 20:58:09 | 000,504,320 | ---- | M] () -- C:\Users\Ania\Desktop\Zestawienie Ania K._xls
[2012-11-27 12:06:36 | 000,441,531 | ---- | M] () -- C:\Users\Ania\Desktop\Zdjęcie0113.jpg
[2012-11-27 12:06:18 | 000,452,758 | ---- | M] () -- C:\Users\Ania\Desktop\Zdjęcie0112.jpg
[2012-11-25 23:22:33 | 000,000,000 | -H-- | M] () -- C:\windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2012-11-25 23:16:25 | 000,001,949 | ---- | M] () -- C:\Users\Public\Desktop\ViewNX.lnk
[2012-11-25 23:15:13 | 000,000,268 | RH-- | M] () -- C:\ProgramData\Contextual Menu Items
[2012-11-25 23:15:13 | 000,000,268 | RH-- | M] () -- C:\Users\Ania\AppData\Roaming\Conditionals
[2012-11-25 23:15:13 | 000,000,020 | -H-- | M] () -- C:\ProgramData\PKP_DLdw.DAT
[2012-11-25 23:14:17 | 000,002,206 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Nikon Monitor.lnk
[2012-11-25 23:14:10 | 000,002,018 | ---- | M] () -- C:\Users\Public\Desktop\Nikon Transfer.lnk
[2012-11-25 23:12:03 | 000,000,268 | RH-- | M] () -- C:\ProgramData\Console
[2012-11-25 23:12:03 | 000,000,268 | RH-- | M] () -- C:\Users\Ania\AppData\Roaming\Components
[2012-11-25 23:12:03 | 000,000,020 | -H-- | M] () -- C:\ProgramData\PKP_DLdu.DAT
[2012-11-25 23:09:30 | 000,001,845 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012-11-17 17:13:29 | 000,066,960 | ---- | M] () -- C:\Users\Ania\AppData\Local\GDIPFONTCACHEV1.DAT
[2012-11-14 22:34:03 | 000,001,088 | ---- | M] () -- C:\Users\Public\Desktop\PokerStars.eu MsM3M5 cztery44.lnk
[1 C:\windows\SysWow64\*.tmp files -> C:\windows\SysWow64\*.tmp -> ]
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]

[color=#e56717]========== Files Created - No Company Name ==========[/color]

[2013-01-01 18:18:58 | 000,002,097 | ---- | C] () -- C:\Users\Ania\Desktop\HijackThis.lnk
[2013-01-01 18:04:11 | 102,315,992 | ---- | C] () -- C:\Users\Ania\Desktop\avast_free_antivirus_setup.exe
[2012-12-30 20:58:31 | 000,127,161 | ---- | C] () -- C:\Users\Ania\Desktop\3erS30B1.jpg
[2012-12-30 20:54:12 | 000,124,302 | ---- | C] () -- C:\Users\Ania\Desktop\dsc05612s.jpg
[2012-12-30 20:54:07 | 001,407,135 | ---- | C] () -- C:\Users\Ania\Desktop\dsc05611g.jpg
[2012-12-30 20:53:46 | 000,108,133 | ---- | C] () -- C:\Users\Ania\Desktop\bm22.jpg
[2012-12-22 16:03:24 | 000,009,740 | ---- | C] () -- C:\Users\Ania\Desktop\Bez tytułu 2e46.ods
[2012-12-15 22:58:02 | 000,000,983 | ---- | C] () -- C:\Users\Public\Desktop\Mp3tag.lnk
[2012-12-15 22:57:32 | 003,204,456 | ---- | C] () -- C:\Users\Ania\Desktop\mp3tagv253setup.exe
[2012-12-03 20:58:09 | 000,504,320 | ---- | C] () -- C:\Users\Ania\Desktop\Zestawienie Ania K._xls
[2012-11-27 22:26:31 | 000,441,531 | ---- | C] () -- C:\Users\Ania\Desktop\Zdjęcie0113.jpg
[2012-11-27 22:26:29 | 000,452,758 | ---- | C] () -- C:\Users\Ania\Desktop\Zdjęcie0112.jpg
[2012-11-25 23:22:33 | 000,000,000 | -H-- | C] () -- C:\windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2012-11-25 23:16:25 | 000,001,949 | ---- | C] () -- C:\Users\Public\Desktop\ViewNX.lnk
[2012-11-25 23:15:13 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Contextual Menu Items
[2012-11-25 23:15:13 | 000,000,268 | RH-- | C] () -- C:\Users\Ania\AppData\Roaming\Conditionals
[2012-11-25 23:15:13 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLdw.DAT
[2012-11-25 23:14:17 | 000,002,206 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Nikon Monitor.lnk
[2012-11-25 23:14:10 | 000,002,018 | ---- | C] () -- C:\Users\Public\Desktop\Nikon Transfer.lnk
[2012-11-25 23:12:03 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Console
[2012-11-25 23:12:03 | 000,000,268 | RH-- | C] () -- C:\Users\Ania\AppData\Roaming\Components
[2012-11-25 23:12:03 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLdu.DAT
[2012-11-25 23:09:30 | 000,001,845 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012-11-16 22:15:27 | 000,000,003 | ---- | C] () -- C:\windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2012-11-16 22:03:09 | 000,000,003 | ---- | C] () -- C:\windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2012-11-14 22:34:03 | 000,001,088 | ---- | C] () -- C:\Users\Public\Desktop\PokerStars.eu MsM3M5 cztery44.lnk
[2012-01-30 22:33:31 | 000,210,032 | ---- | C] () -- C:\windows\SysWow64\DBCLIENT.DLL
[2011-09-27 18:08:35 | 000,000,640 | RHS- | C] () -- C:\Users\Ania\ntuser.pol
[2011-08-19 19:49:41 | 000,006,144 | ---- | C] () -- C:\Users\Ania\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-07-05 19:33:00 | 001,578,194 | ---- | C] () -- C:\windows\SysWow64\PerfStringBackup.INI
[2011-07-02 22:47:56 | 006,744,871 | -H-- | C] () -- C:\Users\Ania\AppData\Local\IconCache.db
[2011-07-02 19:58:09 | 000,066,960 | ---- | C] () -- C:\Users\Ania\AppData\Local\GDIPFONTCACHEV1.DAT
[2011-07-02 19:57:14 | 002,883,584 | -HS- | C] () -- C:\Users\Ania\NTUSER.DAT
[2011-07-02 19:57:14 | 000,524,288 | -HS- | C] () -- C:\Users\Ania\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2011-07-02 19:57:14 | 000,524,288 | -HS- | C] () -- C:\Users\Ania\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2011-07-02 19:57:14 | 000,065,536 | -HS- | C] () -- C:\Users\Ania\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2011-07-02 19:57:14 | 000,000,020 | -HS- | C] () -- C:\Users\Ania\ntuser.ini

[color=#e56717]========== ZeroAccess Check ==========[/color]

[2009-07-14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012-06-09 06:30:56 | 014,165,504 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012-06-09 05:46:56 | 012,868,608 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009-07-14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009-07-14 02:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009-07-14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#e56717]========== LOP Check ==========[/color]

[2012-10-10 21:45:24 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\AirportMadness4
[2011-09-16 21:42:50 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Awem
[2012-10-10 21:35:00 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\com.bigfatsimulations.airportmadness3.3A85083A650345D1ADAB4572C5816AD2DC9802A3.1
[2012-03-09 22:35:39 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Creevity Mp3 Cover Downloader
[2012-09-21 23:43:11 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\DivoGames
[2012-03-04 19:52:53 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Easy Image Modifier
[2011-12-14 22:27:09 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Gadu-Gadu 10
[2012-01-15 22:40:56 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\GHISLER
[2012-04-14 19:35:07 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\ICAClient
[2011-09-15 22:47:41 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\iWin
[2011-11-09 00:05:21 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\md studio
[2012-12-15 23:31:28 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Mp3tag
[2011-08-19 19:46:34 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\MusicNet
[2012-05-08 20:32:36 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Nokia
[2011-10-11 22:25:42 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Nokia Ovi Suite
[2012-05-08 20:49:00 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Nokia Suite
[2012-01-08 10:54:43 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\OpenFM
[2012-01-30 22:39:15 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\OpenOffice.org
[2011-10-11 22:42:16 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\PC Suite
[2011-09-25 17:05:53 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\pdfforge
[2012-09-18 22:32:25 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Peace Craft
[2012-12-16 00:40:02 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\SoftGrid Client
[2011-07-05 19:35:08 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\TP
[2012-09-17 21:41:35 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\wargaming.net
[2012-09-18 23:02:41 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\World-LooM

[color=#e56717]========== Purity Check ==========[/color]



[color=#e56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 148 bytes -> C:\ProgramData\Temp:A039EDF9
@Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:D2397415
@Alternate Data Stream - 118 bytes -> C:\ProgramData\Temp:08DB8D99
< End of report >
[/log]

Logi z RSIT

[log]
info.txt logfile of random's system information tool 1.09 2013-01-01 18:54:45
======Uninstall list======
-->"C:\Program Files (x86)\InstallShield Installation Information\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}\setup.exe" /z-uninstall
Absolute MP3 Splitter version 3.1.1-->"C:\Program Files (x86)\Absolute MP3 Splitter\unins000.exe"
Active Protection System-->C:\Program Files (x86)\InstallShield Installation Information\{F493761C-E465-4B9E-9FC1-A312F161DE0A}\setup.exe -runfromtemp -l0x0015 -removeonly
Adobe AIR-->C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{47FA2C44-D148-4DBC-AF60-B91934AA4842}
Adobe Flash Player 10 Plugin-->C:\windows\SysWOW64\Macromed\Flash\uninstall_plugin.exe
Adobe Flash Player 11 ActiveX-->C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.exe -maintain activex
Adobe Reader 9.5.2 - Polish-->MsiExec.exe /I{AC76BA86-7AD7-1045-7B44-A95000000001}
Adobe Shockwave Player 11.6-->"C:\windows\SysWOW64\Adobe\Shockwave 11\uninstaller.exe"
AirportMadness4-->msiexec /qb /x {3CD07764-6A66-D39C-5189-8828EC8C045F}
AirportMadness4-->MsiExec.exe /I{3CD07764-6A66-D39C-5189-8828EC8C045F}
Apple Software Update-->MsiExec.exe /I{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
Asystent rejestracji usługi Windows Live-->MsiExec.exe /I{51958BA7-21E4-4A8B-9098-CD8375BD17B2}
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver-->"C:\Program Files (x86)\InstallShield Installation Information\{3108C217-BE83-42E4-AE9E-A56A2A92E549}\setup.exe" -runfromtemp -l0x0015 -removeonly
BioExcess-->"C:\Program Files (x86)\InstallShield Installation Information\{ACF31D9F-70C2-40A1-9C7A-28BA16E64B56}\setup.exe" -runfromtemp -l0x0409 -removeonly
BioExcess-->MsiExec.exe /X{ACF31D9F-70C2-40A1-9C7A-28BA16E64B56}
BMW BRx Converter-->MsiExec.exe /I{5E192FF0-93AC-4255-8945-5408B3E517E5}
Broadcom 802.11 Wireless Driver-->C:\Program Files (x86)\InstallShield Installation Information\{8991E763-21F5-4DEA-A938-5D9D77DCB488}\setup.exe -runfromtemp -l0x0015 -removeonly
Citrix Web Client-->C:\windows\system32\ctxsetup.exe /uninst C:\PROGRA~2\Citrix\icaweb32\uninst.inf
Commandos 3 - Destination Berlin-->"C:\Program Files (x86)\InstallShield Installation Information\{675F03FF-46A0-4FC9-862B-60BA1DC8E9AA}\setup.exe" -runfromtemp -l0x0015 -removeonly
CyberLink YouCam-->"C:\Program Files (x86)\InstallShield Installation Information\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\setup.exe" /z-uninstall
CyberLink YouCam-->"C:\Program Files (x86)\InstallShield Installation Information\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\setup.exe" /z-uninstall
Energy Management-->"C:\Program Files (x86)\InstallShield Installation Information\{0CE226F3-EB27-4ECD-BBF5-F088716779FD}\setup.exe" -runfromtemp -l0x0015 -removeonly
Gadu-Gadu 10-->C:\Program Files (x86)\Gadu-Gadu 10\Uninstall.exe
Galeria fotografii usługi Windows Live-->MsiExec.exe /X{9CDEAEC9-2F14-4D39-8541-C1EEC4B5D1CB}
Google Earth-->MsiExec.exe /X{28E82311-8616-11E1-BEB0-B8AC6F97B88E}
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
HijackThis 2.0.2-->"C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Intel® Control Center-->C:\Program Files (x86)\Intel\Intel Control Center\uninstaller\SetupICC.exe -uninstall -force -confirm
Intel® Graphics Media Accelerator Driver-->C:\Program Files (x86)\Intel\Intel® Graphics Media Accelerator Driver\Uninstall\setup.exe -uninstall
Intel® Management Engine Components-->C:\Program Files (x86)\Intel\Intel® Management Engine Components\Uninstall\setup.exe -uninstall
Intel® Rapid Storage Technology-->C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\Uninstall\setup.exe -uninstall
Java™ 6 Update 37-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216033FF}
Junk Mail filter update-->MsiExec.exe /I{E2DFE069-083E-4631-9B6C-43C48E991DE5}
Lenovo EasyCamera-->C:\Program Files (x86)\InstallShield Installation Information\{ADE16A9D-FBDC-4ECC-B6BD-9C31E51D0332}\setup.exe -runfromtemp -l0x0009 -removeonly
Lenovo OneKey Recovery-->"C:\Program Files (x86)\InstallShield Installation Information\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}\setup.exe" /z-uninstall
Lenovo ReadyComm 5.0 Service-->MsiExec.exe /X{76C66170-C538-4E77-B54D-48E136B5B533}
Lenovo ReadyComm 5-->C:\Program Files (x86)\InstallShield Installation Information\{17542DBF-E17C-4562-BC4D-FA3EF3076C45}\Setup.exe -runfromtemp -removeonly
Lenovo Security Suite-->"C:\Program Files (x86)\InstallShield Installation Information\{0034859F-8E01-4C1D-BE77-F891C4786FBC}\setup.exe" -runfromtemp -l0x0415 -removeonly
Lenovo Security Suite-->MsiExec.exe /I{0034859F-8E01-4C1D-BE77-F891C4786FBC}
Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}
Microsoft Office 2010-->MsiExec.exe /X{95140000-0070-0000-0000-0000000FF1CE}
Microsoft Office Starter 2010 - Polski-->C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\cvhbs.exe /uninstall {90140011-0066-0415-0000-0000000FF1CE}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319-->MsiExec.exe /X{196BB40D-1578-3D01-B289-BEFC77A11A1E}
Microsoft_VC100_CRT_SP1_x86-->MsiExec.exe /I{E3B64CC5-C011-40C0-92BC-7316CD5E5688}
Moduł Szybka instalacja pakietu Microsoft Office 2010-->"C:\PROGRA~2\COMMON~1\MICROS~1\VIRTUA~1\CVHBS.EXE" /removeall
Mozilla Firefox 7.0.1 (x86 pl)-->C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
Mp3tag v2.53-->C:\Program Files (x86)\Mp3tag\Mp3tagUninstall.EXE
MSVC80_x86_v2-->MsiExec.exe /I{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}
MSVC90_x86-->MsiExec.exe /I{AF111648-99A1-453E-81DD-80DBBF6DAD0D}
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
Narzędzie do przekazywania usługi Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Nikon Message Center-->MsiExec.exe /X{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}
Nikon RAW Codec-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{C8616041-2802-4DE2-B3BD-6285AAD65C2A}\Setup.exe" -l0x15 -removeonly
Nikon Transfer-->MsiExec.exe /X{E9757890-7EC5-46C8-99AB-B00F07B6525C}
Nokia Connectivity Cable Driver-->MsiExec.exe /I{4AA68A73-DB9C-439D-9481-981C82BD008B}
Nokia Suite-->C:\ProgramData\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\{92D1CEBC-7C72-4ECF-BFC6-C131EF3FE6A7}\Installer.exe
Nokia Suite-->MsiExec.exe /X{92D1CEBC-7C72-4ECF-BFC6-C131EF3FE6A7}
NVIDIA Updatus-->"C:\Program Files (x86)\InstallShield Installation Information\{7357286A-CBE7-4F4A-BABC-EC4B3DD63862}\setup.exe" -runfromtemp -l0x0009
OpenOffice.org 3.3-->MsiExec.exe /I{EB87675F-5281-4767-A54B-31931794C23D}
OpenTTD 1.1.5-->C:\Program Files (x86)\OpenTTD\uninstall.exe
PC Connectivity Solution-->MsiExec.exe /I{A2AA4204-C05A-4013-888A-AD153139297F}
PDFCreator-->C:\Program Files (x86)\PDFCreator\unins000.exe
Picture Control Utility-->MsiExec.exe /X{87441A59-5E64-4096-A170-14EFE67200C3}
Poczta usługi Windows Live-->MsiExec.exe /I{C35FE07E-24B5-410F-85B7-122087A0C7DD}
Podstawowe programy Windows Live-->C:\Program Files (x86)\Windows Live\Installer\wlarp.exe
Podstawowe programy Windows Live-->MsiExec.exe /I{9862473C-E063-4C68-A161-2CDE0E8048A5}
PokerStars.eu-->"C:\Program Files (x86)\PokerStars.EU\PokerStarsUninstall.exe" /u:PokerStars.eu
Port Locker-->"C:\Program Files (x86)\InstallShield Installation Information\{A6FEE06D-C7E1-48CB-A9DF-1E317CF83CA4}\setup.exe" -runfromtemp -l0x0409 -removeonly
Port Locker-->MsiExec.exe /I{A6FEE06D-C7E1-48CB-A9DF-1E317CF83CA4}
Power2Go-->"C:\Program Files (x86)\InstallShield Installation Information\{40BF1E83-20EB-11D8-97C5-0009C5020658}\Setup.exe" -uninstall
QuickTime-->MsiExec.exe /I{E0D51394-1D45-460A-B62D-383BC4F8B335}
RBR Lamer Pack 1.2-->"C:\Users\Ania\Desktop\Richard Burns Rally\uninstall RBR LAMER Pack.exe"
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -removeonly
Realtek USB 2.0 Card Reader-->"C:\Program Files (x86)\InstallShield Installation Information\{96AE7E41-E34E-47D0-AC07-1091A8127911}\setup.exe" -runfromtemp -removeonly
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)-->C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {F66C3466-1FDB-347C-B3AE-FB6C50627B10} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)-->C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {B5BD3CA1-11AB-35A6-B22A-6A219DC0668E} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)-->C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {E720AD01-93D5-3E8E-BB8D-E4EF5AF4E5DD} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)-->C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {BCD37DCB-F479-3D4D-A90E-A0F7575549C4} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)-->C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {FF811680-AECE-3F35-A98C-1B84B6E09168} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)-->C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {6AF6C62E-4E3D-33BF-A591-9E4D53BDF22F} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)-->C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5D45782A-1099-317E-ABCC-FF63D5B21386} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)-->C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {E59B2174-E924-311F-8549-AD714C14664D} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)-->C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {FDD13F1E-9C6B-311E-A0D9-D6E172FC28FF} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)-->C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {DA36C2E5-6B34-3A6A-9C0A-7D1CC1C5A768} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)-->C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {7B82A51A-768B-3A7B-ADFA-F777097A8079} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)-->C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {E40184A4-4A61-3D2E-9035-CB6E1E610E07} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)-->C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {4736E989-32D9-3B91-90D7-C68848E118CA} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)-->C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {F1696E2F-4803-362F-A756-65B363483FE6} /parameterfolder Client
swMSM-->MsiExec.exe /I{612C34C7-5E90-47D8-9B5C-0F717DD82726}
Total Commander (Remove or Repair)-->c:\totalcmd\tcuninst.exe
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)-->C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {29C7BE97-DE59-37A2-A687-2ADD5321948A} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)-->C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {7D799A81-5661-3159-BF92-754161CED6E6} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)-->C:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {4DFA8287-EA36-3469-99FE-F568FEC81653} /parameterfolder Client
Update Manager for SweetPacks 1.1-->MsiExec.exe /X{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}
ViewNX-->MsiExec.exe /X{F007CBCE-D714-4C0B-8CE9-9B0D78116468}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Messenger-->MsiExec.exe /X{D1803CD4-0CE7-4484-98E3-88D7A2D629A4}
Windows Live Movie Maker-->MsiExec.exe /X{6053FE9B-5473-41D6-AEBF-AD6F98138191}
Windows Live Toolbar-->MsiExec.exe /X{A7388312-4FBB-48E5-8DC0-B63DA02658AE}
Windows Live Writer-->MsiExec.exe /X{9AB614A6-719C-4A6E-A63E-831E0A35F62A}
======System event log======
Computer Name: Ania-Komputer
Event Code: 7036
Message: Usługa Microsoft .NET Framework NGEN v4.0.30319_X86 weszła w stan zatrzymania.
Record Number: 140469
Source Name: Service Control Manager
Time Written: 20120704171538.479645-000
Event Type: Informacje
User:
Computer Name: Ania-Komputer
Event Code: 7036
Message: Usługa Microsoft .NET Framework NGEN v4.0.30319_X86 weszła w stan uruchomienia.
Record Number: 140468
Source Name: Service Control Manager
Time Written: 20120704171538.479645-000
Event Type: Informacje
User:
Computer Name: Ania-Komputer
Event Code: 1500
Message: Pomyślnie przetworzono ustawienia zasad grupy dla tego komputera. Nie wykryto żadnych zmian od czasu ostatniego pomyślnego przetworzenia zasad grupy.
Record Number: 140467
Source Name: Microsoft-Windows-GroupPolicy
Time Written: 20120704171537.372043-000
Event Type: Informacje
User: ZARZĄDZANIE NT\SYSTEM
Computer Name: Ania-Komputer
Event Code: 1501
Message: Pomyślnie przetworzono ustawienia zasad grupy dla tego użytkownika. Nie wykryto żadnych zmian od czasu ostatniego pomyślnego przetworzenia zasad grupy.
Record Number: 140466
Source Name: Microsoft-Windows-GroupPolicy
Time Written: 20120704171537.372043-000
Event Type: Informacje
User: Ania-Komputer\Ania
Computer Name: Ania-Komputer
Event Code: 7036
Message: Usługa Klient zasad grupy weszła w stan uruchomienia.
Record Number: 140465
Source Name: Service Control Manager
Time Written: 20120704171537.340843-000
Event Type: Informacje
User:
=====Application event log=====
Computer Name: Ania-Komputer
Event Code: 301
Message: Windows (6616) Windows: Aparat bazy danych rozpoczął ponowne odtwarzanie pliku dziennika C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS006D2.log.
Record Number: 29640
Source Name: ESENT
Time Written: 20120325084600.000000-000
Event Type: Informacje
User:
Computer Name: Ania-Komputer
Event Code: 301
Message: Windows (6616) Windows: Aparat bazy danych rozpoczął ponowne odtwarzanie pliku dziennika C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS006D1.log.
Record Number: 29639
Source Name: ESENT
Time Written: 20120325084548.000000-000
Event Type: Informacje
User:
Computer Name: Ania-Komputer
Event Code: 300
Message: Windows (6616) Windows: Aparat bazy danych inicjuje procedurę przywracania.
Record Number: 29638
Source Name: ESENT
Time Written: 20120325084548.000000-000
Event Type: Informacje
User:
Computer Name: Ania-Komputer
Event Code: 102
Message: Windows (6616) Windows: Aparat bazy danych (6.01.7600.0000) uruchomił nowe wystąpienie (0).
Record Number: 29637
Source Name: ESENT
Time Written: 20120325084547.000000-000
Event Type: Informacje
User:
Computer Name: Ania-Komputer
Event Code: 2000
Message: Intel® User Notification Service started.
Record Number: 29636
Source Name: UNS
Time Written: 20120325084545.000000-000
Event Type: Informacje
User:
=====Security event log=====
Computer Name: Ania-Komputer
Event Code: 4648
Message: Podjęto próbę logowania przy użyciu jawnych poświadczeń.
Podmiot:
Identyfikator zabezpieczeń: S-1-5-18
Nazwa konta: ANIA-KOMPUTER$
Domena konta: WORKGROUP
Identyfikator logowania: 0x3e7
Identyfikator GUID logowania: {00000000-0000-0000-0000-000000000000}
Konto, którego poświadczenia zostały użyte:
Nazwa konta: Ania
Domena konta: Ania-Komputer
Identyfikator GUID logowania: {00000000-0000-0000-0000-000000000000}
Serwer docelowy:
Nazwa serwera docelowego: localhost
Informacje dodatkowe: localhost
Informacje o procesie:
Identyfikator procesu: 0x450
Nazwa procesu: C:\Windows\System32\winlogon.exe
Informacje o sieci:
Adres sieciowy: 127.0.0.1
Port: 0
To zdarzenie jest generowane, gdy proces podejmie próbę zalogowania się na koncie, określając w sposób jawny poświadczenia konta. To zdarzenie najczęściej występuje w konfiguracjach wsadowych, takich jak zaplanowane zadania, lub podczas używania polecenia RUNAS.
Record Number: 34673
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20120506220305.043202-000
Event Type: Sukcesy inspekcji
User:
Computer Name: Ania-Komputer
Event Code: 4672
Message: Przypisano specjalne uprawnienia do nowego logowania.
Podmiot:
Identyfikator zabezpieczeń: S-1-5-18
Nazwa konta: SYSTEM
Domena konta: ZARZĄDZANIE NT
Identyfikator logowania: 0x3e7
Uprawnienia: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 34672
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20120506215237.294288-000
Event Type: Sukcesy inspekcji
User:
Computer Name: Ania-Komputer
Event Code: 4624
Message: Użytkownik pomyślnie zalogował się na koncie.
Podmiot:
Identyfikator zabezpieczeń: S-1-5-18
Nazwa konta: ANIA-KOMPUTER$
Domena konta: WORKGROUP
Identyfikator logowania: 0x3e7
Typ logowania: 5
Nowe logowanie:
Identyfikator zabezpieczeń: S-1-5-18
Nazwa konta: SYSTEM
Domena konta: ZARZĄDZANIE NT
Identyfikator logowania: 0x3e7
Identyfikator GUID logowania: {00000000-0000-0000-0000-000000000000}
Informacje o procesie:
Identyfikator procesu: 0x2b8
Nazwa procesu: C:\Windows\System32\services.exe
Informacje o sieci:
Nazwa stacji roboczej:
Adres źródłowy sieci: -
Port źródłowy: -
Szczegółowe informacje o uwierzytelnianiu:
Proces logowania: Advapi
Pakiet uwierzytelniania: Negotiate
Usługi przejściowe: -
Nazwa pakietu (tylko NTLM): -
Długość klucza: 0
To zdarzenie jest generowane w momencie utworzenia sesji logowania. Jest ono generowane na komputerze, do którego został uzyskany dostęp.
Pola podmiotu wskazują konto w systemie lokalnym, które zażądało logowania. Najczęściej jest to usługa, na przykład usługa Serwer, lub proces lokalny taki jak Winlogon.exe lub Services.exe.
Pole typu logowania wskazuje rodzaj zaistniałego logowania. Najczęstsze typy to 2 (interakcyjne) i 3 (sieciowe).
Pola nowego logowania wskazują konto, dla którego zostało utworzone nowe logowanie, czyli konto, które zostało zalogowane.
Pola sieci wskazują lokalizację, z której pochodziło zdalne żądanie logowania. Nazwa stacji roboczej nie zawsze jest dostępna i w niektórych przypadkach może być pusta.
Pola informacji o uwierzytelnianiu zawierają szczegółowe informacje o tym konkretnym żądaniu logowania.
- Identyfikator GUID logowania to unikatowy identyfikator, za pomocą którego można skorelować to zdarzenie ze zdarzeniem centrum dystrybucji kluczy.
- Usługi przejściowe wskazują, które usługi pośrednie uczestniczyły w tym żądaniu logowania.
- Nazwa pakietu wskazuje, który protokół podrzędny spośród protokołów NTLM został użyty.
- Długość klucza wskazuje długość wygenerowanego klucza sesji. Jeśli nie zażądano klucza sesji, jest to wartość 0.
Record Number: 34671
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20120506215237.294288-000
Event Type: Sukcesy inspekcji
User:
Computer Name: Ania-Komputer
Event Code: 4672
Message: Przypisano specjalne uprawnienia do nowego logowania.
Podmiot:
Identyfikator zabezpieczeń: S-1-5-18
Nazwa konta: SYSTEM
Domena konta: ZARZĄDZANIE NT
Identyfikator logowania: 0x3e7
Uprawnienia: SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 34670
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20120506182009.621163-000
Event Type: Sukcesy inspekcji
User:
Computer Name: Ania-Komputer
Event Code: 4624
Message: Użytkownik pomyślnie zalogował się na koncie.
Podmiot:
Identyfikator zabezpieczeń: S-1-5-18
Nazwa konta: ANIA-KOMPUTER$
Domena konta: WORKGROUP
Identyfikator logowania: 0x3e7
Typ logowania: 5
Nowe logowanie:
Identyfikator zabezpieczeń: S-1-5-18
Nazwa konta: SYSTEM
Domena konta: ZARZĄDZANIE NT
Identyfikator logowania: 0x3e7
Identyfikator GUID logowania: {00000000-0000-0000-0000-000000000000}
Informacje o procesie:
Identyfikator procesu: 0x2b8
Nazwa procesu: C:\Windows\System32\services.exe
Informacje o sieci:
Nazwa stacji roboczej:
Adres źródłowy sieci: -
Port źródłowy: -
Szczegółowe informacje o uwierzytelnianiu:
Proces logowania: Advapi
Pakiet uwierzytelniania: Negotiate
Usługi przejściowe: -
Nazwa pakietu (tylko NTLM): -
Długość klucza: 0
To zdarzenie jest generowane w momencie utworzenia sesji logowania. Jest ono generowane na komputerze, do którego został uzyskany dostęp.
Pola podmiotu wskazują konto w systemie lokalnym, które zażądało logowania. Najczęściej jest to usługa, na przykład usługa Serwer, lub proces lokalny taki jak Winlogon.exe lub Services.exe.
Pole typu logowania wskazuje rodzaj zaistniałego logowania. Najczęstsze typy to 2 (interakcyjne) i 3 (sieciowe).
Pola nowego logowania wskazują konto, dla którego zostało utworzone nowe logowanie, czyli konto, które zostało zalogowane.
Pola sieci wskazują lokalizację, z której pochodziło zdalne żądanie logowania. Nazwa stacji roboczej nie zawsze jest dostępna i w niektórych przypadkach może być pusta.
Pola informacji o uwierzytelnianiu zawierają szczegółowe informacje o tym konkretnym żądaniu logowania.
- Identyfikator GUID logowania to unikatowy identyfikator, za pomocą którego można skorelować to zdarzenie ze zdarzeniem centrum dystrybucji kluczy.
- Usługi przejściowe wskazują, które usługi pośrednie uczestniczyły w tym żądaniu logowania.
- Nazwa pakietu wskazuje, który protokół podrzędny spośród protokołów NTLM został użyty.
- Długość klucza wskazuje długość wygenerowanego klucza sesji. Jeśli nie zażądano klucza sesji, jest to wartość 0.
Record Number: 34669
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20120506182009.621163-000
Event Type: Sukcesy inspekcji
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\Program Files (x86)\PC Connectivity Solution\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Lenovo\Bluetooth Software\;C:\Program Files\Lenovo\Bluetooth Software\syswow64;C:\Program Files (x86)\EgisTec BioExcess\;C:\Program Files (x86)\EgisTec BioExcess\x64;C:\Program Files (x86)\EgisTec Port Locker\x64;C:\Program Files (x86)\EgisTec Port Locker\;C:\Program Files (x86)\QuickTime\QTSystem\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 37 Stepping 5, GenuineIntel
"PROCESSOR_REVISION"=2505
"configsetroot"=%SystemRoot%\ConfigSetRoot
"LenovoTestLogFile"=preload.log
"LenovoTestPath"=C:\prdv10\
"asl.log"=Destination=file
"CLASSPATH"=.;C:\Program Files (x86)\Java\jre6\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files (x86)\Java\jre6\lib\ext\QTJava.zip
-----------------EOF-----------------[/log]

[log]
Logfile of random's system information tool 1.09 (written by random/random)
Run by Ania at 2013-01-01 18:54:37
Microsoft Windows 7 Professional
System drive C: has 369 GB (85%) free of 432 GB
Total RAM: 3828 MB (55% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:54:40, on 2013-01-01
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.17153)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Common Files\Nikon\Monitor\NkMonitor.exe
C:\Program Files (x86)\USB Camera\VM331_STI.EXE
C:\Program Files (x86)\EgisTec BioExcess\EgisTSR.exe
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\EgisTec Port Locker\EgisPLTSR.exe
C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\Ania\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QO9647C4\RSIT[1].exe
C:\Program Files (x86)\trend micro\Ania.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = pl.v9.com/idg/idg_1331323256_496480
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft....k/?LinkId=54896[/url]
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [url="http://www.google.pl/"]http://www.google.pl/[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [url="http://go.microsoft.com/fwlink/?LinkId=69157"]http://go.microsoft....k/?LinkId=69157[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft....k/?LinkId=54896[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft....k/?LinkId=54896[/url]
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [url="http://home.sweetim.com/?crg=3.1010000.10011&barid=%7B8018C938-043C-11E2-8BB2-C0CB38E78EFA"]http://home.sweetim....B2-C0CB38E78EFA[/url]}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: IEPwdBankBHO - {56CBB761-DA41-4E31-B270-B13B4B0A61D0} - C:\Program Files (x86)\EgisTec BioExcess\EgisIEPwdBank.dll
O2 - BHO: Pomocnik rejestracji usługi Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Babylon IE plugin - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (file missing)
O2 - BHO: MediaBar - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\ToolBar\bsdtxmltbpi.dll (file missing)
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: MediaBar - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\ToolBar\bsdtxmltbpi.dll (file missing)
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331_STI.EXE
O4 - HKLM\..\Run: [VitaKeyTSR] "C:\Program Files (x86)\EgisTec BioExcess\EgisTSR.exe"
O4 - HKLM\..\Run: [UCam_Menu] "C:\Program Files (x86)\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\3.0"
O4 - HKLM\..\Run: [YouCam Mirror Tray icon] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
O4 - HKLM\..\Run: [PLTSR] "C:\Program Files (x86)\EgisTec Port Locker\EgisPLTSR.exe"
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [UpdatePRCShortCut] "C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\OneKey App\OneKey Recovery" UpdateWithCreateOnce "Software\Lenovo\OneKey App\OneKey Recovery"
O4 - HKLM\..\Run: [Sweetpacks Communicator] C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-21-1055744232-3505066323-1831296020-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1055744232-3505066323-1831296020-1000\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1055744232-3505066323-1831296020-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\RunOnce: [WLStart] "C:\Program Files (x86)\Windows Live\Installer\wlstart.exe" /nosearch /nohomepage (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [WLStart] "C:\Program Files (x86)\Windows Live\Installer\wlstart.exe" /nosearch /nohomepage (User 'Default user')
O4 - Startup: OpenOffice.org 3.3.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Nikon Monitor.lnk = C:\Program Files (x86)\Common Files\Nikon\Monitor\NkMonitor.exe
O8 - Extra context menu item: Translate this web page with Babylon - res://C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm
O8 - Extra context menu item: Translate with Babylon - res://C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm
O8 - Extra context menu item: Wyślij obraz do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Wyślij stronę do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: PokerStars.eu - {07BA1DA9-F501-4796-8728-74D1B91A6CD5} - C:\Program Files (x86)\PokerStars.EU\PokerStarsUpdate.exe
O9 - Extra button: Wpis w blogu - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Wpis w blogu w Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Wyślij do interfejsu Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Wyślij do urządzenia &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (file missing)
O9 - Extra 'Tools' menuitem: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (file missing)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - [url="http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab"]http://platformdl.ad...Plus/1.6/gp.cab[/url]
O20 - AppInit_DLLs: C:\windows\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: EgisTec Data Security Service - Egis Technology Inc. - C:\Program Files (x86)\EgisTec BioExcess\EgisDSService.exe
O23 - Service: EgisTec Service - Egis Technology Inc. - C:\Program Files (x86)\EgisTec BioExcess\EgisService.exe
O23 - Service: EgisTec Service Help - Egis Technology Inc. - C:\Program Files (x86)\EgisTec Port Locker\Egishlpsvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Usługa Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Usługa Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: IGRS - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo ReadyComm AppSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\AppSvc.exe
O23 - Service: Lenovo ReadyComm ConnSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe
O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: RtLedService Installer (RtLedService) - Realtek Semiconductor Corp. - C:\Program Files\Realtek\RtLED\RtLEDService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Unknown owner - C:\windows\System32\TPHDEXLG64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14536 bytes
======Scheduled tasks folder======
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Ania\AppData\Roaming\Mozilla\Firefox\Profiles\q8g7bbby.default
prefs.js - "browser.startup.homepage" - "[url="http://home.sweetim.com/?crg=3.1010000.10011&barid=%7B8018C938-043C-11E2-8BB2-C0CB38E78EFA"]http://home.sweetim....B2-C0CB38E78EFA[/url]}"
prefs.js - "keyword.URL" - "[url="http://search.sweetim.com/search.asp?src=2&barid=%7B8018C938-043C-11E2-8BB2-C0CB38E78EFA%7D&q"]http://search.sweeti...C0CB38E78EFA}[/url]="<p>"
[/log]

Natsuki Kuga
komentarz
komentarz

Log z RSIT jest niekompletny.

Do OTL wklej:
[code]
:OTL
IE:64bit: - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}: "URL" = http://search.bearsh...&q={searchTerms}\
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim....B2-C0CB38E78EFA}
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}: "URL" = http://search.bearsh...&q={searchTerms}
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.condui...&ctid=CT2790392
IE - HKLM\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweeti...B2-C0CB38E78EFA}
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No CLSID value found
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}: "URL" = http://search.bearsh...&q={searchTerms}
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweeti...B2-C0CB38E78EFA}
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = pl.v9.com/idg/idg_1331323256_496480
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No CLSID value found
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\..\SearchScopes,DefaultScope = {F534EC89-A1CC-4E20-96FB-B74999DC3401}
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}: "URL" = http://search.bearsh...&q={searchTerms}
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\..\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}: "URL" = http://search.sweeti...B2-C0CB38E78EFA}
FF - prefs.js..extensions.enabledAddons: {4ED1F68A-5463-4931-9384-8FFF5ED91D92}:3.4.0
FF - prefs.js..browser.startup.homepage: "http://home.sweetim....B2-C0CB38E78EFA}"
FF - prefs.js..browser.startup.homepage: "pl.v9.com/idg/idg_1331323256_496480"
FF - prefs.js..browser.search.defaultenginename: "SweetIM Search"
FF - prefs.js..sweetim.toolbar.previous.browser.search.defaultenginename: ""
FF - prefs.js..browser.search.selectedEngine: "SweetIM Search"
FF - prefs.js..sweetim.toolbar.previous.browser.search.selectedEngine: ""
FF - prefs.js..browser.search.defaulturl: ""
FF - prefs.js..keyword.URL: "http://search.sweeti...C0CB38E78EFA}="
[2012-09-21 23:34:59 | 000,003,998 | ---- | M] () -- C:\Users\Ania\AppData\Roaming\mozilla\firefox\profiles\q8g7bbby.default\searchplugins\sweetim.xml
O2 - BHO: (Babylon IE plugin) - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll File not found
O2 - BHO: (MediaBar) - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\ToolBar\bsdtxmltbpi.dll File not found
O3:64bit: - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (MediaBar) - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\ToolBar\bsdtxmltbpi.dll File not found
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\..\Toolbar\WebBrowser: (no name) - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - No CLSID value found.
O3 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\..\Toolbar\WebBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
O3 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\..\Toolbar\WebBrowser: (no name) - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - No CLSID value found.
O3 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\..\Toolbar\WebBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
O4 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000..\Run: [] File not found
O4 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000..\Run: [FactoryTest] C:\Windows\Test.bat File not found
O4 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002..\Run: [] File not found
O8 - Extra context menu item: Translate this web page with Babylon - res://C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm File not found
O8 - Extra context menu item: Translate with Babylon - res://C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm File not found
O9 - Extra Button: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - res://C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm File not found
O9 - Extra 'Tools' menuitem : Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - res://C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm File not found
@Alternate Data Stream - 148 bytes -> C:\ProgramData\Temp:A039EDF9
@Alternate Data Stream - 121 bytes -> C:\ProgramData\Temp:D2397415
@Alternate Data Stream - 118 bytes -> C:\ProgramData\Temp:08DB8D99

:Files
C:\Program Files (x86)\Babylon
C:\PROGRA~2\BEARSH~1\MediaBar

:Commands
[emptytemp]
[emptyflash]
[/code]
[b]Wykonaj skrypt,[/b] pokaż raport.

Użyj [url="http://download.bleepingcomputer.com/dl/1e5bdaa465f479e8f8e0d58ce650e203/50e1462e/windows/security/security-utilities/a/adwcleaner/AdwCleaner.exe"][b]AdwCleaner[/b][/url] z opcji [b]Delete.[/b] Pokaż raport.

Wykonaj skanowanie programem [url="http://support.kaspersky.com/downloads/utils/tdsskiller.exe"][b]TDSSKiller.[/b][/url] Pokaż raport.

Po wykonaniu pokaż nowe logi z OTL i RSIT oraz log z [url="http://download.bleepingcomputer.com/farbar/FSS.exe"][b]Farbar Service Scanner.[/b][/url] (zaznacz wszystkie opcje i kliknij Scan)

  • Dobra wypowiedź 1
marcin_os
komentarz
komentarz (edytowane)

Natsuki Kuga, bardzo dziękuję za opdowiedź.
Po wklejeniu do OTL i wykonaniu skryptu komputer wymusił restart, po włączeniu od razu pojawił się następujący komunikat z OTL.
[log]
All processes killed
========== OTL ==========
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}\ not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{afdbddaa-5d3f-42ee-b79c-185a7020515b}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C360-6118-11DC-9C72-001320C79847}\ not found.
Registry value HKEY_USERS\S-1-5-21-1055744232-3505066323-1831296020-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{88c7f2aa-f93f-432c-8f0e-b7d85967a527} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}\ not found.
Registry key HKEY_USERS\S-1-5-21-1055744232-3505066323-1831296020-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}\ not found.
Registry key HKEY_USERS\S-1-5-21-1055744232-3505066323-1831296020-1000\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C360-6118-11DC-9C72-001320C79847}\ not found.
HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-1055744232-3505066323-1831296020-1002\Software\Microsoft\Internet Explorer\URLSearchHooks\\{88c7f2aa-f93f-432c-8f0e-b7d85967a527} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}\ not found.
HKEY_USERS\S-1-5-21-1055744232-3505066323-1831296020-1002\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-1055744232-3505066323-1831296020-1002\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9BB47C17-9C68-4BB3-B188-DD9AF0FD22}\ not found.
Registry key HKEY_USERS\S-1-5-21-1055744232-3505066323-1831296020-1002\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C360-6118-11DC-9C72-001320C79847}\ not found.
Prefs.js: {4ED1F68A-5463-4931-9384-8FFF5ED91D92}:3.4.0 removed from extensions.enabledAddons
Prefs.js: "" removed from browser.startup.homepage
Prefs.js: "pl.v9.com/idg/idg_1331323256_496480" removed from browser.startup.homepage
Prefs.js: "SweetIM Search" removed from browser.search.defaultenginename
Prefs.js: "" removed from sweetim.toolbar.previous.browser.search.defaultenginename
Prefs.js: "SweetIM Search" removed from browser.search.selectedEngine
Prefs.js: "" removed from sweetim.toolbar.previous.browser.search.selectedEngine
Prefs.js: "" removed from browser.search.defaulturl
Prefs.js: "" removed from keyword.URL
C:\Users\Ania\AppData\Roaming\mozilla\firefox\profiles\q8g7bbby.default\searchplugins\sweetim.xml moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}\ deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_USERS\S-1-5-21-1055744232-3505066323-1831296020-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{88C7F2AA-F93F-432C-8F0E-B7D85967A527} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}\ not found.
Registry value HKEY_USERS\S-1-5-21-1055744232-3505066323-1831296020-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EEE6C35B-6118-11DC-9C72-001320C79847} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}\ not found.
Registry value HKEY_USERS\S-1-5-21-1055744232-3505066323-1831296020-1002\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{88C7F2AA-F93F-432C-8F0E-B7D85967A527} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{88C7F2AA-F93F-432C-8F0E-B7D85967A527}\ not found.
Registry value HKEY_USERS\S-1-5-21-1055744232-3505066323-1831296020-1002\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EEE6C35B-6118-11DC-9C72-001320C79847} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}\ not found.
Registry value HKEY_USERS\S-1-5-21-1055744232-3505066323-1831296020-1000\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_USERS\S-1-5-21-1055744232-3505066323-1831296020-1000\Software\Microsoft\Windows\CurrentVersion\Run\\FactoryTest deleted successfully.
Registry value HKEY_USERS\S-1-5-21-1055744232-3505066323-1831296020-1002\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Translate this web page with Babylon\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Translate with Babylon\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478}\ not found.
ADS C:\ProgramData\Temp:A039EDF9 deleted successfully.
ADS C:\ProgramData\Temp:D2397415 deleted successfully.
ADS C:\ProgramData\Temp:08DB8D99 deleted successfully.
========== FILES ==========
C:\Program Files (x86)\Babylon\Babylon-Pro\Utils folder moved successfully.
C:\Program Files (x86)\Babylon\Babylon-Pro folder moved successfully.
C:\Program Files (x86)\Babylon folder moved successfully.
File\Folder C:\PROGRA~2\BEARSH~1\MediaBar not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Ania
->Temp folder emptied: 899215214 bytes
->Temporary Internet Files folder emptied: 1002460957 bytes
->Java cache emptied: 32310390 bytes
->FireFox cache emptied: 14103914 bytes
->Flash cache emptied: 58485 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56466 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 571515049 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 228564 bytes
RecycleBin emptied: 319 bytes

Total Files Cleaned = 2 403,00 mb


[EMPTYFLASH]

User: All Users

User: Ania
->Flash cache emptied: 0 bytes

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Public

User: UpdatusUser

Total Flash Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 01022013_202110
Files\Folders moved on Reboot...
C:\Users\Ania\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Ania\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z8XIC702\index[5].htm moved successfully.
C:\Users\Ania\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1RPVO4CS\ads[3].htm moved successfully.
C:\Users\Ania\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1RPVO4CS\ads[4].htm moved successfully.
C:\Users\Ania\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1RPVO4CS\fastbutton[1].htm moved successfully.
C:\Users\Ania\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1RPVO4CS\fastbutton[2].htm moved successfully.
C:\Users\Ania\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1RPVO4CS\index[4].htm moved successfully.
C:\Users\Ania\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1RPVO4CS\si[1].htm moved successfully.
C:\Users\Ania\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1RPVO4CS\zrt_lookup[1].html moved successfully.
C:\Users\Ania\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\2CEDBFBC-DBA8-43AA-B1FD-CC8E6316E3E2.dat moved successfully.
C:\Users\Ania\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\MSIMGSIZ.DAT moved successfully.
C:\Users\Ania\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\SuggestedSites.dat moved successfully.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...[/log]

Raport z AdwCleaner.
[log]
# AdwCleaner v2.104 - Log utworzony 02/01/2013 o 21:01:02
# Aktualizacja 29/12/2012 przez Xplode
# System operacyjny : Windows 7 Professional (64 bits)
# Użytkownik : Ania - ANIA-KOMPUTER
# Tryb uruchomienia : Normalny
# Ścieżka : C:\Users\Ania\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YM6BHV48\AdwCleaner[1].exe
# Opcja [Usuń]
***** [Usługi] *****

***** [Pliki / Foldery] *****
Folder Usunięto : C:\Program Files (x86)\1ClickDownload
Folder Usunięto : C:\Program Files (x86)\SweetIM
Folder Usunięto : C:\ProgramData\SweetIM
Folder Usunięto : C:\ProgramData\Trymedia
Folder Usunięto : C:\Users\Ania\AppData\Local\Conduit
Folder Usunięto : C:\Users\Ania\AppData\LocalLow\Conduit
Folder Usunięto : C:\Users\Ania\AppData\LocalLow\PriceGong
Folder Usunięto : C:\Users\Ania\AppData\Roaming\iWin
Folder Usunięto : C:\Users\Ania\AppData\Roaming\Mozilla\Firefox\Profiles\q8g7bbby.default\extensions\OneClickDownload@OneClickDownload.com
Folder Usunięto : C:\Users\Ania\AppData\Roaming\Mozilla\Firefox\Profiles\q8g7bbby.default\extensions\staged
Folder Usunięto : C:\Users\Ania\AppData\Roaming\pdfforge
***** [Rejestr] *****
Klucz Usunięto : HKCU\Software\1ClickDownload
Klucz Usunięto : HKCU\Software\AppDataLow\Software\Conduit
Klucz Usunięto : HKCU\Software\AppDataLow\Software\conduitEngine
Klucz Usunięto : HKCU\Software\AppDataLow\Software\PriceGong
Klucz Usunięto : HKCU\Software\DataMngr
Klucz Usunięto : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Klucz Usunięto : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Klucz Usunięto : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Klucz Usunięto : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
Klucz Usunięto : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Klucz Usunięto : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C2D64FF7-0AB8-4263-89C9-EA3B0F8F050C}
Klucz Usunięto : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Klucz Usunięto : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Klucz Usunięto : HKCU\Software\SweetIM
Klucz Usunięto : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Klucz Usunięto : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Klucz Usunięto : HKLM\SOFTWARE\Classes\AppID\{B16632F1-24E0-4D99-A68D-70BFB6447C48}
Klucz Usunięto : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Klucz Usunięto : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Klucz Usunięto : HKLM\SOFTWARE\Classes\AppID\BabylonIEPI.DLL
Klucz Usunięto : HKLM\SOFTWARE\Classes\BabylonIEPI.BabylonIEBho
Klucz Usunięto : HKLM\SOFTWARE\Classes\BabylonIEPI.BabylonIEBho.1
Klucz Usunięto : HKLM\SOFTWARE\Classes\Conduit.Engine
Klucz Usunięto : HKLM\SOFTWARE\Classes\Prod.cap
Klucz Usunięto : HKLM\SOFTWARE\Classes\Toolbar.CT2790392
Klucz Usunięto : HKLM\SOFTWARE\Classes\TypeLib\{A1489C85-4F6F-48C4-AC9E-18B63AF4703E}
Klucz Usunięto : HKLM\Software\Conduit
Klucz Usunięto : HKLM\Software\Iminent
Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASAPI32
Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASMANCS
Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\619673c3cb25b69d0048a7d738ab1f4c
Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\cdf846d74350c8253f68d76ce898dd7c
Klucz Usunięto : HKLM\Software\SweetIM
Klucz Usunięto : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5F339F0B-716F-408F-A627-DEEB5DEB4020}
Klucz Usunięto : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Klucz Usunięto : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Klucz Usunięto : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pmlghpafmmnmmkjdhacccolfgnkiboco
Klucz Usunięto : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2F603A45-D956-496B-81B5-50D782424976}
Klucz Usunięto : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B85C4CB2-B352-4BD8-818C-BCE353599107}
Klucz Usunięto : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}
Klucz Usunięto : HKLM\SOFTWARE\Classes\Interface\{5F339F0B-716F-408F-A627-DEEB5DEB4020}
Klucz Usunięto : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Klucz Usunięto : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{2F603A45-D956-496B-81B5-50D782424976}
Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B85C4CB2-B352-4BD8-818C-BCE353599107}
Klucz Usunięto : HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Wartość Usunięto : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Sweetpacks Communicator]
***** [Przeglądarki Internetowe] *****
-\\ Internet Explorer v8.0.7600.17153
[OK] Rejestr w porządku.
-\\ Mozilla Firefox v7.0.1 (pl)
Plik : C:\Users\Ania\AppData\Roaming\Mozilla\Firefox\Profiles\q8g7bbby.default\prefs.js
C:\Users\Ania\AppData\Roaming\Mozilla\Firefox\Profiles\q8g7bbby.default\user.js ... Usunięto !
Usunięto : user_pref("browser.startup.homepage", "hxxp://home.sweetim.com/?crg=3.1010000.10011&barid={8018C938-[...]
Usunięto : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Usunięto : user_pref("sweetim.toolbar.urls.homepage", "hxxp://home.sweetim.com/?crg=3.1010000.10011&barid={8018[...]
Usunięto : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
Usunięto : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Usunięto : user_pref("keyword.URL", "hxxp://search.sweetim.com/search.asp?src=2&barid={8018C938-043C-11E2-8BB2-[...]
Usunięto : user_pref("sweetim.toolbar.previous.keyword.URL", "");
-\\ Google Chrome v [Nie udało się określić wersji]
Plik : C:\Users\Ania\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] Plik w porządku.
*************************
AdwCleaner[S1].txt - [6532 octets] - [02/01/2013 21:01:02]
########## EOF - C:\AdwCleaner[S1].txt - [6592 octets] ##########[/log]

Raport z TDSSKiller:
[log]
[size=2]21:14:07.0740 5024 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35[/size]
[size=2]21:14:07.0870 5024 ============================================================[/size]
[size=2]21:14:07.0870 5024 Current date / time: 2013/01/02 21:14:07.0870[/size]
[size=2]21:14:07.0870 5024 SystemInfo:[/size]
[size=2]21:14:07.0870 5024 [/size]
[size=2]21:14:07.0870 5024 OS Version: 6.1.7600 ServicePack: 0.0[/size]
[size=2]21:14:07.0870 5024 Product type: Workstation[/size]
[size=2]21:14:07.0870 5024 ComputerName: ANIA-KOMPUTER[/size]
[size=2]21:14:07.0870 5024 UserName: Ania[/size]
[size=2]21:14:07.0870 5024 Windows directory: C:\windows[/size]
[size=2]21:14:07.0870 5024 System windows directory: C:\windows[/size]
[size=2]21:14:07.0870 5024 Running under WOW64[/size]
[size=2]21:14:07.0870 5024 Processor architecture: Intel x64[/size]
[size=2]21:14:07.0871 5024 Number of processors: 4[/size]
[size=2]21:14:07.0871 5024 Page size: 0x1000[/size]
[size=2]21:14:07.0871 5024 Boot type: Normal boot[/size]
[size=2]21:14:07.0871 5024 ============================================================[/size]
[size=2]21:14:09.0013 5024 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040[/size]
[size=2]21:14:09.0022 5024 ============================================================[/size]
[size=2]21:14:09.0022 5024 \Device\Harddisk0\DR0:[/size]
[size=2]21:14:09.0022 5024 MBR partitions:[/size]
[size=2]21:14:09.0022 5024 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x64000[/size]
[size=2]21:14:09.0022 5024 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64800, BlocksNum 0x34BA1000[/size]
[size=2]21:14:09.0043 5024 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x34C06000, BlocksNum 0x39FD800[/size]
[size=2]21:14:09.0043 5024 ============================================================[/size]
[size=2]21:14:09.0076 5024 C: <-> \Device\Harddisk0\DR0\Partition2[/size]
[size=2]21:14:09.0115 5024 D: <-> \Device\Harddisk0\DR0\Partition3[/size]
[size=2]21:14:09.0115 5024 ============================================================[/size]
[size=2]21:14:09.0115 5024 Initialize success[/size]
[size=2]21:14:09.0115 5024 ============================================================[/size]
[size=2]21:14:12.0796 3032 ============================================================[/size]
[size=2]21:14:12.0797 3032 Scan started[/size]
[size=2]21:14:12.0797 3032 Mode: Manual; [/size]
[size=2]21:14:12.0797 3032 ============================================================[/size]
[size=2]21:14:12.0964 3032 ================ Scan system memory ========================[/size]
[size=2]21:14:12.0964 3032 System memory - ok[/size]
[size=2]21:14:12.0965 3032 ================ Scan services =============================[/size]
[size=2]21:14:13.0133 3032 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\windows\system32\DRIVERS\1394ohci.sys[/size]
[size=2]21:14:13.0138 3032 1394ohci - ok[/size]
[size=2]21:14:13.0165 3032 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\windows\system32\DRIVERS\ACPI.sys[/size]
[size=2]21:14:13.0171 3032 ACPI - ok[/size]
[size=2]21:14:13.0196 3032 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\windows\system32\DRIVERS\acpipmi.sys[/size]
[size=2]21:14:13.0198 3032 AcpiPmi - ok[/size]
[size=2]21:14:13.0239 3032 [ DC201246A14CB3B274DF59FAF539AB07 ] ACPIVPC C:\windows\system32\DRIVERS\AcpiVpc.sys[/size]
[size=2]21:14:13.0240 3032 ACPIVPC - ok[/size]
[size=2]21:14:13.0272 3032 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys[/size]
[size=2]21:14:13.0282 3032 adp94xx - ok[/size]
[size=2]21:14:13.0321 3032 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys[/size]
[size=2]21:14:13.0329 3032 adpahci - ok[/size]
[size=2]21:14:13.0355 3032 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys[/size]
[size=2]21:14:13.0359 3032 adpu320 - ok[/size]
[size=2]21:14:13.0387 3032 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll[/size]
[size=2]21:14:13.0389 3032 AeLookupSvc - ok[/size]
[size=2]21:14:13.0445 3032 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\windows\system32\drivers\afd.sys[/size]
[size=2]21:14:13.0455 3032 AFD - ok[/size]
[size=2]21:14:13.0476 3032 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\DRIVERS\agp440.sys[/size]
[size=2]21:14:13.0479 3032 agp440 - ok[/size]
[size=2]21:14:13.0513 3032 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe[/size]
[size=2]21:14:13.0516 3032 ALG - ok[/size]
[size=2]21:14:13.0563 3032 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\DRIVERS\aliide.sys[/size]
[size=2]21:14:13.0565 3032 aliide - ok[/size]
[size=2]21:14:13.0574 3032 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\DRIVERS\amdide.sys[/size]
[size=2]21:14:13.0576 3032 amdide - ok[/size]
[size=2]21:14:13.0584 3032 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys[/size]
[size=2]21:14:13.0587 3032 AmdK8 - ok[/size]
[size=2]21:14:13.0597 3032 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys[/size]
[size=2]21:14:13.0599 3032 AmdPPM - ok[/size]
[size=2]21:14:13.0648 3032 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\windows\system32\drivers\amdsata.sys[/size]
[size=2]21:14:13.0652 3032 amdsata - ok[/size]
[size=2]21:14:13.0693 3032 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys[/size]
[size=2]21:14:13.0698 3032 amdsbs - ok[/size]
[size=2]21:14:13.0714 3032 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\windows\system32\drivers\amdxata.sys[/size]
[size=2]21:14:13.0715 3032 amdxata - ok[/size]
[size=2]21:14:13.0743 3032 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\windows\system32\drivers\appid.sys[/size]
[size=2]21:14:13.0745 3032 AppID - ok[/size]
[size=2]21:14:13.0774 3032 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll[/size]
[size=2]21:14:13.0776 3032 AppIDSvc - ok[/size]
[size=2]21:14:13.0795 3032 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\windows\System32\appinfo.dll[/size]
[size=2]21:14:13.0798 3032 Appinfo - ok[/size]
[size=2]21:14:13.0879 3032 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe[/size]
[size=2]21:14:13.0883 3032 Apple Mobile Device - ok[/size]
[size=2]21:14:13.0911 3032 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\windows\System32\appmgmts.dll[/size]
[size=2]21:14:13.0916 3032 AppMgmt - ok[/size]
[size=2]21:14:13.0954 3032 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\DRIVERS\arc.sys[/size]
[size=2]21:14:13.0957 3032 arc - ok[/size]
[size=2]21:14:13.0966 3032 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\DRIVERS\arcsas.sys[/size]
[size=2]21:14:13.0968 3032 arcsas - ok[/size]
[size=2]21:14:13.0986 3032 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys[/size]
[size=2]21:14:13.0988 3032 AsyncMac - ok[/size]
[size=2]21:14:14.0010 3032 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\DRIVERS\atapi.sys[/size]
[size=2]21:14:14.0011 3032 atapi - ok[/size]
[size=2]21:14:14.0074 3032 [ 1FD0FA6618B31FAD14385740D0F6C333 ] atksgt C:\windows\system32\DRIVERS\atksgt.sys[/size]
[size=2]21:14:14.0101 3032 atksgt - ok[/size]
[size=2]21:14:14.0140 3032 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll[/size]
[size=2]21:14:14.0153 3032 AudioEndpointBuilder - ok[/size]
[size=2]21:14:14.0170 3032 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\windows\System32\Audiosrv.dll[/size]
[size=2]21:14:14.0179 3032 AudioSrv - ok[/size]
[size=2]21:14:14.0205 3032 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\windows\System32\AxInstSV.dll[/size]
[size=2]21:14:14.0209 3032 AxInstSV - ok[/size]
[size=2]21:14:14.0249 3032 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys[/size]
[size=2]21:14:14.0258 3032 b06bdrv - ok[/size]
[size=2]21:14:14.0292 3032 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys[/size]
[size=2]21:14:14.0298 3032 b57nd60a - ok[/size]
[size=2]21:14:14.0406 3032 [ 5B5C36B2EC500462A715DB6BCBAF5DA7 ] BCM43XX C:\windows\system32\DRIVERS\bcmwl664.sys[/size]
[size=2]21:14:14.0444 3032 BCM43XX - ok[/size]
[size=2]21:14:14.0485 3032 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll[/size]
[size=2]21:14:14.0489 3032 BDESVC - ok[/size]
[size=2]21:14:14.0524 3032 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys[/size]
[size=2]21:14:14.0526 3032 Beep - ok[/size]
[size=2]21:14:14.0564 3032 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\windows\System32\bfe.dll[/size]
[size=2]21:14:14.0578 3032 BFE - ok[/size]
[size=2]21:14:14.0614 3032 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\windows\System32\qmgr.dll[/size]
[size=2]21:14:14.0633 3032 BITS - ok[/size]
[size=2]21:14:14.0654 3032 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys[/size]
[size=2]21:14:14.0656 3032 blbdrive - ok[/size]
[size=2]21:14:14.0701 3032 [ 19D20159708E152267E53B66677A4995 ] bowser C:\windows\system32\DRIVERS\bowser.sys[/size]
[size=2]21:14:14.0704 3032 bowser - ok[/size]
[size=2]21:14:14.0733 3032 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys[/size]
[size=2]21:14:14.0735 3032 BrFiltLo - ok[/size]
[size=2]21:14:14.0742 3032 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys[/size]
[size=2]21:14:14.0743 3032 BrFiltUp - ok[/size]
[size=2]21:14:14.0772 3032 [ 34F786535F9245E4028C57B28248C9D8 ] Bridge0 C:\windows\system32\drivers\WDBridge.sys[/size]
[size=2]21:14:14.0775 3032 Bridge0 - ok[/size]
[size=2]21:14:14.0800 3032 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\windows\System32\browser.dll[/size]
[size=2]21:14:14.0804 3032 Browser - ok[/size]
[size=2]21:14:14.0826 3032 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys[/size]
[size=2]21:14:14.0833 3032 Brserid - ok[/size]
[size=2]21:14:14.0840 3032 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys[/size]
[size=2]21:14:14.0842 3032 BrSerWdm - ok[/size]
[size=2]21:14:14.0849 3032 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys[/size]
[size=2]21:14:14.0853 3032 BrUsbMdm - ok[/size]
[size=2]21:14:14.0860 3032 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys[/size]
[size=2]21:14:14.0861 3032 BrUsbSer - ok[/size]
[size=2]21:14:14.0900 3032 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys[/size]
[size=2]21:14:14.0903 3032 BthEnum - ok[/size]
[size=2]21:14:14.0919 3032 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys[/size]
[size=2]21:14:14.0921 3032 BTHMODEM - ok[/size]
[size=2]21:14:14.0935 3032 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys[/size]
[size=2]21:14:14.0939 3032 BthPan - ok[/size]
[size=2]21:14:14.0962 3032 [ D59773C7FDD3D795D6FE402EEEA8D71E ] BTHPORT C:\windows\System32\Drivers\BTHport.sys[/size]
[size=2]21:14:14.0973 3032 BTHPORT - ok[/size]
[size=2]21:14:15.0005 3032 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll[/size]
[size=2]21:14:15.0008 3032 bthserv - ok[/size]
[size=2]21:14:15.0027 3032 [ 8504842634DD144C075B6B0C982CCEC4 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys[/size]
[size=2]21:14:15.0029 3032 BTHUSB - ok[/size]
[size=2]21:14:15.0061 3032 [ 2641A3FE3D7B0646308F33B67F3B5300 ] btusbflt C:\windows\system32\drivers\btusbflt.sys[/size]
[size=2]21:14:15.0063 3032 btusbflt - ok[/size]
[size=2]21:14:15.0086 3032 [ A72A9101F9730DB7332714E566614E4D ] btwaudio C:\windows\system32\drivers\btwaudio.sys[/size]
[size=2]21:14:15.0089 3032 btwaudio - ok[/size]
[size=2]21:14:15.0110 3032 [ 5CEEC634B617525F2B6AD29F871033F7 ] btwavdt C:\windows\system32\DRIVERS\btwavdt.sys[/size]
[size=2]21:14:15.0114 3032 btwavdt - ok[/size]
[size=2]21:14:15.0174 3032 [ FA77B00B7B825DF75960691871CCA3FF ] btwdins C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe[/size]
[size=2]21:14:15.0188 3032 btwdins - ok[/size]
[size=2]21:14:15.0201 3032 [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap C:\windows\system32\DRIVERS\btwl2cap.sys[/size]
[size=2]21:14:15.0203 3032 btwl2cap - ok[/size]
[size=2]21:14:15.0272 3032 [ 2AF5604D28BEF77B7CF4B9D232FE7CD3 ] btwrchid C:\windows\system32\DRIVERS\btwrchid.sys[/size]
[size=2]21:14:15.0274 3032 btwrchid - ok[/size]
[size=2]21:14:15.0305 3032 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys[/size]
[size=2]21:14:15.0308 3032 cdfs - ok[/size]
[size=2]21:14:15.0350 3032 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\windows\system32\DRIVERS\cdrom.sys[/size]
[size=2]21:14:15.0354 3032 cdrom - ok[/size]
[size=2]21:14:15.0389 3032 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\windows\System32\certprop.dll[/size]
[size=2]21:14:15.0392 3032 CertPropSvc - ok[/size]
[size=2]21:14:15.0418 3032 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\DRIVERS\circlass.sys[/size]
[size=2]21:14:15.0420 3032 circlass - ok[/size]
[size=2]21:14:15.0450 3032 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys[/size]
[size=2]21:14:15.0458 3032 CLFS - ok[/size]
[size=2]21:14:15.0530 3032 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe[/size]
[size=2]21:14:15.0533 3032 clr_optimization_v2.0.50727_32 - ok[/size]
[size=2]21:14:15.0585 3032 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe[/size]
[size=2]21:14:15.0589 3032 clr_optimization_v2.0.50727_64 - ok[/size]
[size=2]21:14:15.0642 3032 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe[/size]
[size=2]21:14:15.0645 3032 clr_optimization_v4.0.30319_32 - ok[/size]
[size=2]21:14:15.0691 3032 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe[/size]
[size=2]21:14:15.0695 3032 clr_optimization_v4.0.30319_64 - ok[/size]
[size=2]21:14:15.0751 3032 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys[/size]
[size=2]21:14:15.0753 3032 CmBatt - ok[/size]
[size=2]21:14:15.0804 3032 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\DRIVERS\cmdide.sys[/size]
[size=2]21:14:15.0805 3032 cmdide - ok[/size]
[size=2]21:14:15.0856 3032 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\windows\system32\Drivers\cng.sys[/size]
[size=2]21:14:15.0865 3032 CNG - ok[/size]
[size=2]21:14:15.0882 3032 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys[/size]
[size=2]21:14:15.0887 3032 Compbatt - ok[/size]
[size=2]21:14:15.0938 3032 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys[/size]
[size=2]21:14:15.0942 3032 CompositeBus - ok[/size]
[size=2]21:14:15.0957 3032 COMSysApp - ok[/size]
[size=2]21:14:15.0972 3032 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys[/size]
[size=2]21:14:15.0987 3032 crcdisk - ok[/size]
[size=2]21:14:16.0027 3032 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\windows\system32\cryptsvc.dll[/size]
[size=2]21:14:16.0031 3032 CryptSvc - ok[/size]
[size=2]21:14:16.0069 3032 [ 4A6173C2279B498CD8F57CAE504564CB ] CSC C:\windows\system32\drivers\csc.sys[/size]
[size=2]21:14:16.0078 3032 CSC - ok[/size]
[size=2]21:14:16.0111 3032 [ 873FBF927C06E5CEE04DEC617502F8FD ] CscService C:\windows\System32\cscsvc.dll[/size]
[size=2]21:14:16.0123 3032 CscService - ok[/size]
[size=2]21:14:16.0225 3032 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE[/size]
[size=2]21:14:16.0239 3032 cvhsvc - ok[/size]
[size=2]21:14:16.0280 3032 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\windows\system32\rpcss.dll[/size]
[size=2]21:14:16.0293 3032 DcomLaunch - ok[/size]
[size=2]21:14:16.0322 3032 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll[/size]
[size=2]21:14:16.0329 3032 defragsvc - ok[/size]
[size=2]21:14:16.0356 3032 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\windows\system32\Drivers\dfsc.sys[/size]
[size=2]21:14:16.0359 3032 DfsC - ok[/size]
[size=2]21:14:16.0385 3032 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\windows\system32\dhcpcore.dll[/size]
[size=2]21:14:16.0393 3032 Dhcp - ok[/size]
[size=2]21:14:16.0414 3032 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys[/size]
[size=2]21:14:16.0416 3032 discache - ok[/size]
[size=2]21:14:16.0435 3032 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\DRIVERS\disk.sys[/size]
[size=2]21:14:16.0438 3032 Disk - ok[/size]
[size=2]21:14:16.0466 3032 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\windows\System32\dnsrslvr.dll[/size]
[size=2]21:14:16.0471 3032 Dnscache - ok[/size]
[size=2]21:14:16.0487 3032 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\windows\System32\dot3svc.dll[/size]
[size=2]21:14:16.0494 3032 dot3svc - ok[/size]
[size=2]21:14:16.0509 3032 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\windows\system32\dps.dll[/size]
[size=2]21:14:16.0514 3032 DPS - ok[/size]
[size=2]21:14:16.0547 3032 drfmmwft - ok[/size]
[size=2]21:14:16.0570 3032 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys[/size]
[size=2]21:14:16.0572 3032 drmkaud - ok[/size]
[size=2]21:14:16.0606 3032 [ 372117D46A16ADD8CA6E3EE3B3BDD57C ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys[/size]
[size=2]21:14:16.0618 3032 DXGKrnl - ok[/size]
[size=2]21:14:16.0637 3032 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll[/size]
[size=2]21:14:16.0641 3032 EapHost - ok[/size]
[size=2]21:14:16.0728 3032 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\DRIVERS\evbda.sys[/size]
[size=2]21:14:16.0783 3032 ebdrv - ok[/size]
[size=2]21:14:16.0815 3032 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\windows\System32\lsass.exe[/size]
[size=2]21:14:16.0818 3032 EFS - ok[/size]
[size=2]21:14:16.0866 3032 [ C49212D3D964B77D15755412CC55144C ] EgisTec Data Security Service C:\Program Files (x86)\EgisTec BioExcess\EgisDSService.exe[/size]
[size=2]21:14:16.0872 3032 EgisTec Data Security Service - ok[/size]
[size=2]21:14:16.0898 3032 [ FB74FD6A2CBB69926078645010B65943 ] EgisTec Service C:\Program Files (x86)\EgisTec BioExcess\EgisService.exe[/size]
[size=2]21:14:16.0910 3032 EgisTec Service - ok[/size]
[size=2]21:14:16.0957 3032 [ 7C27FA958D752CBF4B28087F44D6F604 ] EgisTec Service Help C:\Program Files (x86)\EgisTec Port Locker\Egishlpsvc.exe[/size]
[size=2]21:14:16.0963 3032 EgisTec Service Help - ok[/size]
[size=2]21:14:16.0978 3032 [ 33708C6D915F8DE734CF3ABB0731515B ] EgisTecFF C:\windows\system32\DRIVERS\EgisTecFF.sys[/size]
[size=2]21:14:16.0979 3032 EgisTecFF - ok[/size]
[size=2]21:14:17.0047 3032 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\windows\ehome\ehRecvr.exe[/size]
[size=2]21:14:17.0060 3032 ehRecvr - ok[/size]
[size=2]21:14:17.0087 3032 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe[/size]
[size=2]21:14:17.0090 3032 ehSched - ok[/size]
[size=2]21:14:17.0141 3032 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys[/size]
[size=2]21:14:17.0151 3032 elxstor - ok[/size]
[size=2]21:14:17.0159 3032 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\DRIVERS\errdev.sys[/size]
[size=2]21:14:17.0160 3032 ErrDev - ok[/size]
[size=2]21:14:17.0201 3032 [ F6AD6E0674EF94390F0554BF946977AF ] ETD C:\windows\system32\DRIVERS\ETD.sys[/size]
[size=2]21:14:17.0204 3032 ETD - ok[/size]
[size=2]21:14:17.0236 3032 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll[/size]
[size=2]21:14:17.0245 3032 EventSystem - ok[/size]
[size=2]21:14:17.0272 3032 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys[/size]
[size=2]21:14:17.0276 3032 exfat - ok[/size]
[size=2]21:14:17.0296 3032 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys[/size]
[size=2]21:14:17.0301 3032 fastfat - ok[/size]
[size=2]21:14:17.0338 3032 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\windows\system32\fxssvc.exe[/size]
[size=2]21:14:17.0352 3032 Fax - ok[/size]
[size=2]21:14:17.0379 3032 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\DRIVERS\fdc.sys[/size]
[size=2]21:14:17.0381 3032 fdc - ok[/size]
[size=2]21:14:17.0406 3032 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll[/size]
[size=2]21:14:17.0408 3032 fdPHost - ok[/size]
[size=2]21:14:17.0422 3032 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll[/size]
[size=2]21:14:17.0425 3032 FDResPub - ok[/size]
[size=2]21:14:17.0443 3032 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys[/size]
[size=2]21:14:17.0447 3032 FileInfo - ok[/size]
[size=2]21:14:17.0465 3032 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys[/size]
[size=2]21:14:17.0467 3032 Filetrace - ok[/size]
[size=2]21:14:17.0493 3032 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys[/size]
[size=2]21:14:17.0495 3032 flpydisk - ok[/size]
[size=2]21:14:17.0526 3032 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\windows\system32\drivers\fltmgr.sys[/size]
[size=2]21:14:17.0532 3032 FltMgr - ok[/size]
[size=2]21:14:17.0574 3032 [ 8AC4CB4EA61E41009FAE9AE7B2B5DA3A ] FontCache C:\windows\system32\FntCache.dll[/size]
[size=2]21:14:17.0596 3032 FontCache - ok[/size]
[size=2]21:14:17.0649 3032 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe[/size]
[size=2]21:14:17.0651 3032 FontCache3.0.0.0 - ok[/size]
[size=2]21:14:17.0686 3032 [ 54A9C5A6AA0BB0041A4AF7172FFC3D9F ] FPSensor C:\windows\system32\Drivers\FPSensor.sys[/size]
[size=2]21:14:17.0687 3032 FPSensor - ok[/size]
[size=2]21:14:17.0703 3032 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys[/size]
[size=2]21:14:17.0705 3032 FsDepends - ok[/size]
[size=2]21:14:17.0737 3032 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys[/size]
[size=2]21:14:17.0738 3032 Fs_Rec - ok[/size]
[size=2]21:14:17.0758 3032 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys[/size]
[size=2]21:14:17.0762 3032 fvevol - ok[/size]
[size=2]21:14:17.0801 3032 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys[/size]
[size=2]21:14:17.0803 3032 gagp30kx - ok[/size]
[size=2]21:14:17.0835 3032 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\windows\System32\gpsvc.dll[/size]
[size=2]21:14:17.0851 3032 gpsvc - ok[/size]
[size=2]21:14:17.0923 3032 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe[/size]
[size=2]21:14:17.0926 3032 gupdate - ok[/size]
[size=2]21:14:17.0933 3032 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe[/size]
[size=2]21:14:17.0935 3032 gupdatem - ok[/size]
[size=2]21:14:17.0952 3032 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys[/size]
[size=2]21:14:17.0954 3032 hcw85cir - ok[/size]
[size=2]21:14:17.0980 3032 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys[/size]
[size=2]21:14:17.0987 3032 HdAudAddService - ok[/size]
[size=2]21:14:18.0011 3032 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys[/size]
[size=2]21:14:18.0014 3032 HDAudBus - ok[/size]
[size=2]21:14:18.0043 3032 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\windows\system32\DRIVERS\HECIx64.sys[/size]
[size=2]21:14:18.0044 3032 HECIx64 - ok[/size]
[size=2]21:14:18.0063 3032 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys[/size]
[size=2]21:14:18.0065 3032 HidBatt - ok[/size]
[size=2]21:14:18.0074 3032 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys[/size]
[size=2]21:14:18.0077 3032 HidBth - ok[/size]
[size=2]21:14:18.0090 3032 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys[/size]
[size=2]21:14:18.0092 3032 HidIr - ok[/size]
[size=2]21:14:18.0117 3032 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll[/size]
[size=2]21:14:18.0120 3032 hidserv - ok[/size]
[size=2]21:14:18.0142 3032 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys[/size]
[size=2]21:14:18.0143 3032 HidUsb - ok[/size]
[size=2]21:14:18.0157 3032 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\windows\system32\kmsvc.dll[/size]
[size=2]21:14:18.0162 3032 hkmsvc - ok[/size]
[size=2]21:14:18.0188 3032 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\windows\system32\ListSvc.dll[/size]
[size=2]21:14:18.0195 3032 HomeGroupListener - ok[/size]
[size=2]21:14:18.0216 3032 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\windows\system32\provsvc.dll[/size]
[size=2]21:14:18.0223 3032 HomeGroupProvider - ok[/size]
[size=2]21:14:18.0231 3032 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\windows\system32\DRIVERS\HpSAMD.sys[/size]
[size=2]21:14:18.0234 3032 HpSAMD - ok[/size]
[size=2]21:14:18.0258 3032 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\windows\system32\drivers\HTTP.sys[/size]
[size=2]21:14:18.0275 3032 HTTP - ok[/size]
[size=2]21:14:18.0297 3032 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys[/size]
[size=2]21:14:18.0299 3032 hwpolicy - ok[/size]
[size=2]21:14:18.0310 3032 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys[/size]
[size=2]21:14:18.0314 3032 i8042prt - ok[/size]
[size=2]21:14:18.0351 3032 [ ABBF174CB394F5C437410A788B7E404A ] iaStor C:\windows\system32\DRIVERS\iaStor.sys[/size]
[size=2]21:14:18.0357 3032 iaStor - ok[/size]
[size=2]21:14:18.0417 3032 [ 31A0E93CDF29007D6C6FFFB632F375ED ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe[/size]
[size=2]21:14:18.0418 3032 IAStorDataMgrSvc - ok[/size]
[size=2]21:14:18.0448 3032 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\windows\system32\drivers\iaStorV.sys[/size]
[size=2]21:14:18.0457 3032 iaStorV - ok[/size]
[size=2]21:14:18.0523 3032 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe[/size]
[size=2]21:14:18.0527 3032 IDriverT - ok[/size]
[size=2]21:14:18.0583 3032 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe[/size]
[size=2]21:14:18.0599 3032 idsvc - ok[/size]
[size=2]21:14:18.0830 3032 [ 09CE164AFA8483E41808784D7FCA154E ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys[/size]
[size=2]21:14:19.0046 3032 igfx - ok[/size]
[size=2]21:14:19.0177 3032 [ D951D20153E51928F9DB2227D6FF5C7A ] IGRS C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe[/size]
[size=2]21:14:19.0179 3032 IGRS - ok[/size]
[size=2]21:14:19.0215 3032 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys[/size]
[size=2]21:14:19.0217 3032 iirsp - ok[/size]
[size=2]21:14:19.0255 3032 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\windows\System32\ikeext.dll[/size]
[size=2]21:14:19.0272 3032 IKEEXT - ok[/size]
[size=2]21:14:19.0310 3032 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\windows\system32\DRIVERS\Impcd.sys[/size]
[size=2]21:14:19.0313 3032 Impcd - ok[/size]
[size=2]21:14:19.0393 3032 [ DAECB75C7C2A4BDEAFEAD19A6FD327C5 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys[/size]
[size=2]21:14:19.0422 3032 IntcAzAudAddService - ok[/size]
[size=2]21:14:19.0470 3032 [ 58CF58DEE26C909BD6F977B61D246295 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys[/size]
[size=2]21:14:19.0476 3032 IntcDAud - ok[/size]
[size=2]21:14:19.0499 3032 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\DRIVERS\intelide.sys[/size]
[size=2]21:14:19.0500 3032 intelide - ok[/size]
[size=2]21:14:19.0532 3032 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys[/size]
[size=2]21:14:19.0533 3032 intelppm - ok[/size]
[size=2]21:14:19.0555 3032 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll[/size]
[size=2]21:14:19.0560 3032 IPBusEnum - ok[/size]
[size=2]21:14:19.0576 3032 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys[/size]
[size=2]21:14:19.0579 3032 IpFilterDriver - ok[/size]
[size=2]21:14:19.0607 3032 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\windows\System32\iphlpsvc.dll[/size]
[size=2]21:14:19.0619 3032 iphlpsvc - ok[/size]
[size=2]21:14:19.0637 3032 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\windows\system32\DRIVERS\IPMIDrv.sys[/size]
[size=2]21:14:19.0639 3032 IPMIDRV - ok[/size]
[size=2]21:14:19.0649 3032 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys[/size]
[size=2]21:14:19.0652 3032 IPNAT - ok[/size]
[size=2]21:14:19.0672 3032 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys[/size]
[size=2]21:14:19.0673 3032 IRENUM - ok[/size]
[size=2]21:14:19.0682 3032 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\DRIVERS\isapnp.sys[/size]
[size=2]21:14:19.0683 3032 isapnp - ok[/size]
[size=2]21:14:19.0705 3032 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\windows\system32\DRIVERS\msiscsi.sys[/size]
[size=2]21:14:19.0710 3032 iScsiPrt - ok[/size]
[size=2]21:14:19.0724 3032 jseucxfv - ok[/size]
[size=2]21:14:19.0739 3032 [ 7DBAFE10C1B777305C80BEA42FBDA710 ] k57nd60a C:\windows\system32\DRIVERS\k57nd60a.sys[/size]
[size=2]21:14:19.0745 3032 k57nd60a - ok[/size]
[size=2]21:14:19.0771 3032 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys[/size]
[size=2]21:14:19.0773 3032 kbdclass - ok[/size]
[size=2]21:14:19.0788 3032 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\windows\system32\DRIVERS\kbdhid.sys[/size]
[size=2]21:14:19.0791 3032 kbdhid - ok[/size]
[size=2]21:14:19.0815 3032 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\windows\system32\lsass.exe[/size]
[size=2]21:14:19.0818 3032 KeyIso - ok[/size]
[size=2]21:14:19.0847 3032 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys[/size]
[size=2]21:14:19.0849 3032 KSecDD - ok[/size]
[size=2]21:14:19.0863 3032 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys[/size]
[size=2]21:14:19.0867 3032 KSecPkg - ok[/size]
[size=2]21:14:19.0878 3032 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys[/size]
[size=2]21:14:19.0880 3032 ksthunk - ok[/size]
[size=2]21:14:19.0906 3032 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll[/size]
[size=2]21:14:19.0915 3032 KtmRm - ok[/size]
[size=2]21:14:19.0935 3032 [ 55480B9C63F3F91A8EBBADCBF28FE581 ] L1C C:\windows\system32\DRIVERS\L1C62x64.sys[/size]
[size=2]21:14:19.0937 3032 L1C - ok[/size]
[size=2]21:14:19.0967 3032 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\windows\system32\srvsvc.dll[/size]
[size=2]21:14:19.0975 3032 LanmanServer - ok[/size]
[size=2]21:14:20.0002 3032 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\windows\System32\wkssvc.dll[/size]
[size=2]21:14:20.0008 3032 LanmanWorkstation - ok[/size]
[size=2]21:14:20.0074 3032 [ 7FCB3EC66361F157BCD5B5C33CE2AC16 ] Lenovo ReadyComm AppSvc C:\Program Files\Lenovo\ReadyComm\AppSvc.exe[/size]
[size=2]21:14:20.0084 3032 Lenovo ReadyComm AppSvc - ok[/size]
[size=2]21:14:20.0098 3032 [ 5287074E79E4BA82510886F684DC5F72 ] Lenovo ReadyComm ConnSvc C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe[/size]
[size=2]21:14:20.0109 3032 Lenovo ReadyComm ConnSvc - ok[/size]
[size=2]21:14:20.0140 3032 [ BE166935083F9C38EDFDC21B9A7A679B ] LHDmgr C:\windows\system32\DRIVERS\LhdX64.sys[/size]
[size=2]21:14:20.0142 3032 LHDmgr - ok[/size]
[size=2]21:14:20.0207 3032 [ 5EA407821BB3104C31A705175AB4F309 ] lirsgt C:\windows\system32\DRIVERS\lirsgt.sys[/size]
[size=2]21:14:20.0238 3032 lirsgt - ok[/size]
[size=2]21:14:20.0266 3032 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys[/size]
[size=2]21:14:20.0269 3032 lltdio - ok[/size]
[size=2]21:14:20.0294 3032 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll[/size]
[size=2]21:14:20.0303 3032 lltdsvc - ok[/size]
[size=2]21:14:20.0325 3032 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll[/size]
[size=2]21:14:20.0329 3032 lmhosts - ok[/size]
[size=2]21:14:20.0381 3032 [ 0B4F38AA22D5634C48EDB18FE257F005 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe[/size]
[size=2]21:14:20.0387 3032 LMS - ok[/size]
[size=2]21:14:20.0424 3032 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys[/size]
[size=2]21:14:20.0428 3032 LSI_FC - ok[/size]
[size=2]21:14:20.0441 3032 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys[/size]
[size=2]21:14:20.0445 3032 LSI_SAS - ok[/size]
[size=2]21:14:20.0452 3032 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys[/size]
[size=2]21:14:20.0454 3032 LSI_SAS2 - ok[/size]
[size=2]21:14:20.0470 3032 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys[/size]
[size=2]21:14:20.0474 3032 LSI_SCSI - ok[/size]
[size=2]21:14:20.0500 3032 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys[/size]
[size=2]21:14:20.0503 3032 luafv - ok[/size]
[size=2]21:14:20.0545 3032 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll[/size]
[size=2]21:14:20.0549 3032 Mcx2Svc - ok[/size]
[size=2]21:14:20.0556 3032 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\DRIVERS\megasas.sys[/size]
[size=2]21:14:20.0558 3032 megasas - ok[/size]
[size=2]21:14:20.0580 3032 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys[/size]
[size=2]21:14:20.0586 3032 MegaSR - ok[/size]
[size=2]21:14:20.0613 3032 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll[/size]
[size=2]21:14:20.0617 3032 MMCSS - ok[/size]
[size=2]21:14:20.0632 3032 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys[/size]
[size=2]21:14:20.0634 3032 Modem - ok[/size]
[size=2]21:14:20.0646 3032 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys[/size]
[size=2]21:14:20.0647 3032 monitor - ok[/size]
[size=2]21:14:20.0663 3032 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys[/size]
[size=2]21:14:20.0665 3032 mouclass - ok[/size]
[size=2]21:14:20.0693 3032 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys[/size]
[size=2]21:14:20.0695 3032 mouhid - ok[/size]
[size=2]21:14:20.0735 3032 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\windows\system32\drivers\mountmgr.sys[/size]
[size=2]21:14:20.0737 3032 mountmgr - ok[/size]
[size=2]21:14:20.0785 3032 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\windows\system32\DRIVERS\MpFilter.sys[/size]
[size=2]21:14:20.0790 3032 MpFilter - ok[/size]
[size=2]21:14:20.0811 3032 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\windows\system32\DRIVERS\mpio.sys[/size]
[size=2]21:14:20.0816 3032 mpio - ok[/size]
[size=2]21:14:20.0829 3032 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys[/size]
[size=2]21:14:20.0832 3032 mpsdrv - ok[/size]
[size=2]21:14:20.0867 3032 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\windows\system32\mpssvc.dll[/size]
[size=2]21:14:20.0883 3032 MpsSvc - ok[/size]
[size=2]21:14:20.0893 3032 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\windows\system32\drivers\mrxdav.sys[/size]
[size=2]21:14:20.0897 3032 MRxDAV - ok[/size]
[size=2]21:14:20.0930 3032 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys[/size]
[size=2]21:14:20.0934 3032 mrxsmb - ok[/size]
[size=2]21:14:20.0959 3032 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys[/size]
[size=2]21:14:20.0965 3032 mrxsmb10 - ok[/size]
[size=2]21:14:20.0979 3032 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys[/size]
[size=2]21:14:20.0983 3032 mrxsmb20 - ok[/size]
[size=2]21:14:21.0004 3032 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\windows\system32\DRIVERS\msahci.sys[/size]
[size=2]21:14:21.0006 3032 msahci - ok[/size]
[size=2]21:14:21.0024 3032 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\windows\system32\DRIVERS\msdsm.sys[/size]
[size=2]21:14:21.0027 3032 msdsm - ok[/size]
[size=2]21:14:21.0042 3032 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe[/size]
[size=2]21:14:21.0048 3032 MSDTC - ok[/size]
[size=2]21:14:21.0066 3032 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys[/size]
[size=2]21:14:21.0068 3032 Msfs - ok[/size]
[size=2]21:14:21.0093 3032 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys[/size]
[size=2]21:14:21.0095 3032 mshidkmdf - ok[/size]
[size=2]21:14:21.0106 3032 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\DRIVERS\msisadrv.sys[/size]
[size=2]21:14:21.0107 3032 msisadrv - ok[/size]
[size=2]21:14:21.0136 3032 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll[/size]
[size=2]21:14:21.0141 3032 MSiSCSI - ok[/size]
[size=2]21:14:21.0147 3032 msiserver - ok[/size]
[size=2]21:14:21.0170 3032 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys[/size]
[size=2]21:14:21.0171 3032 MSKSSRV - ok[/size]
[size=2]21:14:21.0239 3032 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe[/size]
[size=2]21:14:21.0240 3032 MsMpSvc - ok[/size]
[size=2]21:14:21.0256 3032 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys[/size]
[size=2]21:14:21.0258 3032 MSPCLOCK - ok[/size]
[size=2]21:14:21.0274 3032 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys[/size]
[size=2]21:14:21.0276 3032 MSPQM - ok[/size]
[size=2]21:14:21.0291 3032 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\windows\system32\drivers\MsRPC.sys[/size]
[size=2]21:14:21.0299 3032 MsRPC - ok[/size]
[size=2]21:14:21.0313 3032 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys[/size]
[size=2]21:14:21.0314 3032 mssmbios - ok[/size]
[size=2]21:14:21.0327 3032 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys[/size]
[size=2]21:14:21.0329 3032 MSTEE - ok[/size]
[size=2]21:14:21.0339 3032 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys[/size]
[size=2]21:14:21.0341 3032 MTConfig - ok[/size]
[size=2]21:14:21.0360 3032 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys[/size]
[size=2]21:14:21.0362 3032 Mup - ok[/size]
[size=2]21:14:21.0403 3032 [ 31694AB89B6BA4E8D6E1677A9EA916CC ] MusCAudio C:\windows\system32\drivers\MusCAudio.sys[/size]
[size=2]21:14:21.0429 3032 MusCAudio - ok[/size]
[size=2]21:14:21.0459 3032 [ 6FFECC25B39DC7652A0CEC0ADA9DB589 ] mwlPSDFilter C:\windows\system32\DRIVERS\mwlPSDFilter.sys[/size]
[size=2]21:14:21.0460 3032 mwlPSDFilter - ok[/size]
[size=2]21:14:21.0484 3032 [ 0BEFE32CA56D6EE89D58175725596A85 ] mwlPSDNServ C:\windows\system32\DRIVERS\mwlPSDNServ.sys[/size]
[size=2]21:14:21.0486 3032 mwlPSDNServ - ok[/size]
[size=2]21:14:21.0518 3032 [ D43BC633B8660463E446E28E14A51262 ] mwlPSDVDisk C:\windows\system32\DRIVERS\mwlPSDVDisk.sys[/size]
[size=2]21:14:21.0519 3032 mwlPSDVDisk - ok[/size]
[size=2]21:14:21.0555 3032 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\windows\system32\qagentRT.dll[/size]
[size=2]21:14:21.0567 3032 napagent - ok[/size]
[size=2]21:14:21.0613 3032 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys[/size]
[size=2]21:14:21.0620 3032 NativeWifiP - ok[/size]
[size=2]21:14:21.0665 3032 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\windows\system32\drivers\ndis.sys[/size]
[size=2]21:14:21.0681 3032 NDIS - ok[/size]
[size=2]21:14:21.0695 3032 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys[/size]
[size=2]21:14:21.0696 3032 NdisCap - ok[/size]
[size=2]21:14:21.0717 3032 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys[/size]
[size=2]21:14:21.0718 3032 NdisTapi - ok[/size]
[size=2]21:14:21.0737 3032 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys[/size]
[size=2]21:14:21.0739 3032 Ndisuio - ok[/size]
[size=2]21:14:21.0750 3032 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys[/size]
[size=2]21:14:21.0754 3032 NdisWan - ok[/size]
[size=2]21:14:21.0764 3032 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\windows\system32\drivers\NDProxy.sys[/size]
[size=2]21:14:21.0767 3032 NDProxy - ok[/size]
[size="2"]21:14:21.0800 3032 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys[/size]
[size="2"]21:14:21.0802 3032 NetBIOS - ok[/size]
[size="2"]21:14:21.0822 3032 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\windows\system32\DRIVERS\netbt.sys[/size]
[size="2"]21:14:21.0827 3032 NetBT - ok[/size]
[size="2"]21:14:21.0848 3032 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\windows\system32\lsass.exe[/size]
[size="2"]21:14:21.0851 3032 Netlogon - ok[/size]
[size="2"]21:14:21.0887 3032 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll[/size]
[size="2"]21:14:21.0897 3032 Netman - ok[/size]
[size="2"]21:14:21.0918 3032 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll[/size]
[size="2"]21:14:21.0929 3032 netprofm - ok[/size]
[size="2"]21:14:21.0953 3032 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe[/size]
[size="2"]21:14:21.0957 3032 NetTcpPortSharing - ok[/size]
[size="2"]21:14:22.0087 3032 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\windows\system32\DRIVERS\netw5v64.sys[/size]
[size="2"]21:14:22.0175 3032 netw5v64 - ok[/size]
[size="2"]21:14:22.0199 3032 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys[/size]
[size="2"]21:14:22.0201 3032 nfrd960 - ok[/size]
[size="2"]21:14:22.0239 3032 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\windows\system32\DRIVERS\NisDrvWFP.sys[/size]
[size="2"]21:14:22.0242 3032 NisDrv - ok[/size]
[size="2"]21:14:22.0282 3032 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe[/size]
[size="2"]21:14:22.0289 3032 NisSrv - ok[/size]
[size="2"]21:14:22.0327 3032 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\windows\System32\nlasvc.dll[/size]
[size="2"]21:14:22.0336 3032 NlaSvc - ok[/size]
[size="2"]21:14:22.0349 3032 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys[/size]
[size="2"]21:14:22.0351 3032 Npfs - ok[/size]
[size="2"]21:14:22.0363 3032 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll[/size]
[size="2"]21:14:22.0367 3032 nsi - ok[/size]
[size="2"]21:14:22.0383 3032 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys[/size]
[size="2"]21:14:22.0384 3032 nsiproxy - ok[/size]
[size="2"]21:14:22.0447 3032 [ 184C189D4FC416978550FC599BB4EDDA ] Ntfs C:\windows\system32\drivers\Ntfs.sys[/size]
[size="2"]21:14:22.0476 3032 Ntfs - ok[/size]
[size="2"]21:14:22.0497 3032 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys[/size]
[size="2"]21:14:22.0499 3032 Null - ok[/size]
[size="2"]21:14:22.0781 3032 [ 14C777444E3B0A01BE0FF48F1F3F1F42 ] nvlddmkm C:\windows\system32\DRIVERS\nvlddmkm.sys[/size]
[size="2"]21:14:22.0929 3032 nvlddmkm - ok[/size]
[size="2"]21:14:22.0963 3032 [ 3CBCDB9D73DBAB26744B01BE7732FC42 ] nvpciflt C:\windows\system32\DRIVERS\nvpciflt.sys[/size]
[size="2"]21:14:22.0964 3032 nvpciflt - ok[/size]
[size="2"]21:14:23.0013 3032 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\windows\system32\drivers\nvraid.sys[/size]
[size="2"]21:14:23.0018 3032 nvraid - ok[/size]
[size="2"]21:14:23.0036 3032 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\windows\system32\drivers\nvstor.sys[/size]
[size="2"]21:14:23.0041 3032 nvstor - ok[/size]
[size="2"]21:14:23.0070 3032 [ FAA8605D93ACDA06FC5D77F0E637885B ] nvsvc C:\windows\system32\nvvsvc.exe[/size]
[size="2"]21:14:23.0076 3032 nvsvc - ok[/size]
[size="2"]21:14:23.0140 3032 [ 25CDB34CACC78903C8F0EC649F924A8A ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[/size]
[size="2"]21:14:23.0168 3032 nvUpdatusService - ok[/size]
[size="2"]21:14:23.0196 3032 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\DRIVERS\nv_agp.sys[/size]
[size="2"]21:14:23.0200 3032 nv_agp - ok[/size]
[size="2"]21:14:23.0207 3032 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\DRIVERS\ohci1394.sys[/size]
[size="2"]21:14:23.0210 3032 ohci1394 - ok[/size]
[size="2"]21:14:23.0249 3032 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE[/size]
[size="2"]21:14:23.0253 3032 ose - ok[/size]
[size="2"]21:14:23.0387 3032 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE[/size]
[size="2"]21:14:23.0469 3032 osppsvc - ok[/size]
[size="2"]21:14:23.0516 3032 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll[/size]
[size="2"]21:14:23.0525 3032 p2pimsvc - ok[/size]
[size="2"]21:14:23.0553 3032 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll[/size]
[size="2"]21:14:23.0564 3032 p2psvc - ok[/size]
[size="2"]21:14:23.0588 3032 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\DRIVERS\parport.sys[/size]
[size="2"]21:14:23.0591 3032 Parport - ok[/size]
[size="2"]21:14:23.0630 3032 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\windows\system32\drivers\partmgr.sys[/size]
[size="2"]21:14:23.0632 3032 partmgr - ok[/size]
[size="2"]21:14:23.0651 3032 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll[/size]
[size="2"]21:14:23.0658 3032 PcaSvc - ok[/size]
[size="2"]21:14:23.0695 3032 [ BC0018C2D29F655188A0ED3FA94FDB24 ] pccsmcfd C:\windows\system32\DRIVERS\pccsmcfdx64.sys[/size]
[size="2"]21:14:23.0697 3032 pccsmcfd - ok[/size]
[size="2"]21:14:23.0715 3032 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\windows\system32\DRIVERS\pci.sys[/size]
[size="2"]21:14:23.0719 3032 pci - ok[/size]
[size="2"]21:14:23.0725 3032 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\DRIVERS\pciide.sys[/size]
[size="2"]21:14:23.0726 3032 pciide - ok[/size]
[size="2"]21:14:23.0736 3032 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys[/size]
[size="2"]21:14:23.0740 3032 pcmcia - ok[/size]
[size="2"]21:14:23.0750 3032 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys[/size]
[size="2"]21:14:23.0752 3032 pcw - ok[/size]
[size="2"]21:14:23.0776 3032 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys[/size]
[size="2"]21:14:23.0787 3032 PEAUTH - ok[/size]
[size="2"]21:14:23.0838 3032 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\windows\system32\peerdistsvc.dll[/size]
[size="2"]21:14:23.0864 3032 PeerDistSvc - ok[/size]
[size="2"]21:14:23.0949 3032 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe[/size]
[size="2"]21:14:23.0953 3032 PerfHost - ok[/size]
[size="2"]21:14:24.0017 3032 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\windows\system32\pla.dll[/size]
[size="2"]21:14:24.0044 3032 pla - ok[/size]
[size="2"]21:14:24.0089 3032 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\windows\system32\umpnpmgr.dll[/size]
[size="2"]21:14:24.0101 3032 PlugPlay - ok[/size]
[size="2"]21:14:24.0117 3032 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll[/size]
[size="2"]21:14:24.0122 3032 PNRPAutoReg - ok[/size]
[size="2"]21:14:24.0149 3032 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll[/size]
[size="2"]21:14:24.0156 3032 PNRPsvc - ok[/size]
[size="2"]21:14:24.0199 3032 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\windows\System32\ipsecsvc.dll[/size]
[size="2"]21:14:24.0210 3032 PolicyAgent - ok[/size]
[size="2"]21:14:24.0250 3032 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll[/size]
[size="2"]21:14:24.0257 3032 Power - ok[/size]
[size="2"]21:14:24.0284 3032 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys[/size]
[size="2"]21:14:24.0288 3032 PptpMiniport - ok[/size]
[size="2"]21:14:24.0300 3032 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\DRIVERS\processr.sys[/size]
[size="2"]21:14:24.0302 3032 Processor - ok[/size]
[size="2"]21:14:24.0336 3032 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\windows\system32\profsvc.dll[/size]
[size="2"]21:14:24.0343 3032 ProfSvc - ok[/size]
[size="2"]21:14:24.0356 3032 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\windows\system32\lsass.exe[/size]
[size="2"]21:14:24.0359 3032 ProtectedStorage - ok[/size]
[size="2"]21:14:24.0379 3032 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\windows\system32\DRIVERS\pacer.sys[/size]
[size="2"]21:14:24.0383 3032 Psched - ok[/size]
[size="2"]21:14:24.0389 3032 PS_MDP - ok[/size]
[size="2"]21:14:24.0442 3032 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys[/size]
[size="2"]21:14:24.0468 3032 ql2300 - ok[/size]
[size="2"]21:14:24.0477 3032 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys[/size]
[size="2"]21:14:24.0480 3032 ql40xx - ok[/size]
[size="2"]21:14:24.0507 3032 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll[/size]
[size="2"]21:14:24.0515 3032 QWAVE - ok[/size]
[size="2"]21:14:24.0543 3032 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys[/size]
[size="2"]21:14:24.0545 3032 QWAVEdrv - ok[/size]
[size="2"]21:14:24.0557 3032 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys[/size]
[size="2"]21:14:24.0558 3032 RasAcd - ok[/size]
[size="2"]21:14:24.0584 3032 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys[/size]
[size="2"]21:14:24.0586 3032 RasAgileVpn - ok[/size]
[size="2"]21:14:24.0605 3032 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll[/size]
[size="2"]21:14:24.0611 3032 RasAuto - ok[/size]
[size="2"]21:14:24.0624 3032 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys[/size]
[size="2"]21:14:24.0628 3032 Rasl2tp - ok[/size]
[size="2"]21:14:24.0657 3032 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\windows\System32\rasmans.dll[/size]
[size="2"]21:14:24.0667 3032 RasMan - ok[/size]
[size="2"]21:14:24.0675 3032 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys[/size]
[size="2"]21:14:24.0678 3032 RasPppoe - ok[/size]
[size="2"]21:14:24.0693 3032 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys[/size]
[size="2"]21:14:24.0696 3032 RasSstp - ok[/size]
[size="2"]21:14:24.0715 3032 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\windows\system32\DRIVERS\rdbss.sys[/size]
[size="2"]21:14:24.0722 3032 rdbss - ok[/size]
[size="2"]21:14:24.0734 3032 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys[/size]
[size="2"]21:14:24.0735 3032 rdpbus - ok[/size]
[size="2"]21:14:24.0751 3032 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys[/size]
[size="2"]21:14:24.0752 3032 RDPCDD - ok[/size]
[size="2"]21:14:24.0781 3032 [ 9706B84DBABFC4B4CA46C5A82B14DFA3 ] RDPDR C:\windows\system32\drivers\rdpdr.sys[/size]
[size="2"]21:14:24.0784 3032 RDPDR - ok[/size]
[size="2"]21:14:24.0806 3032 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys[/size]
[size="2"]21:14:24.0807 3032 RDPENCDD - ok[/size]
[size="2"]21:14:24.0835 3032 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys[/size]
[size="2"]21:14:24.0837 3032 RDPREFMP - ok[/size]
[size="2"]21:14:24.0872 3032 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\windows\system32\drivers\RDPWD.sys[/size]
[size="2"]21:14:24.0877 3032 RDPWD - ok[/size]
[size="2"]21:14:24.0897 3032 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\windows\system32\drivers\rdyboost.sys[/size]
[size="2"]21:14:24.0902 3032 rdyboost - ok[/size]
[size="2"]21:14:24.0911 3032 ReadyComm.DirectRouter - ok[/size]
[size="2"]21:14:24.0938 3032 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll[/size]
[size="2"]21:14:24.0942 3032 RemoteAccess - ok[/size]
[size="2"]21:14:24.0967 3032 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll[/size]
[size="2"]21:14:24.0974 3032 RemoteRegistry - ok[/size]
[size="2"]21:14:25.0001 3032 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys[/size]
[size="2"]21:14:25.0004 3032 RFCOMM - ok[/size]
[size="2"]21:14:25.0018 3032 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll[/size]
[size="2"]21:14:25.0023 3032 RpcEptMapper - ok[/size]
[size="2"]21:14:25.0037 3032 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe[/size]
[size="2"]21:14:25.0041 3032 RpcLocator - ok[/size]
[size="2"]21:14:25.0063 3032 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\windows\system32\rpcss.dll[/size]
[size="2"]21:14:25.0073 3032 RpcSs - ok[/size]
[size="2"]21:14:25.0091 3032 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys[/size]
[size="2"]21:14:25.0094 3032 rspndr - ok[/size]
[size="2"]21:14:25.0125 3032 [ 79BAD3E977966AF21DF982DEF5A99C76 ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys[/size]
[size="2"]21:14:25.0131 3032 RSUSBSTOR - ok[/size]
[size="2"]21:14:25.0172 3032 [ 0D2BB5612CC0AF08EDD08FF8E196A9A5 ] RtLedService C:\Program Files\Realtek\RtLED\RtLEDService.exe[/size]
[size="2"]21:14:25.0202 3032 RtLedService - ok[/size]
[size="2"]21:14:25.0229 3032 [ 88AF6E02AB19DF7FD07ECDF9C91E9AF6 ] s3cap C:\windows\system32\DRIVERS\vms3cap.sys[/size]
[size="2"]21:14:25.0231 3032 s3cap - ok[/size]
[size="2"]21:14:25.0248 3032 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\windows\system32\lsass.exe[/size]
[size="2"]21:14:25.0251 3032 SamSs - ok[/size]
[size="2"]21:14:25.0266 3032 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\windows\system32\DRIVERS\sbp2port.sys[/size]
[size="2"]21:14:25.0270 3032 sbp2port - ok[/size]
[size="2"]21:14:25.0303 3032 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll[/size]
[size="2"]21:14:25.0311 3032 SCardSvr - ok[/size]
[size="2"]21:14:25.0329 3032 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\windows\system32\DRIVERS\scfilter.sys[/size]
[size="2"]21:14:25.0331 3032 scfilter - ok[/size]
[size="2"]21:14:25.0390 3032 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\windows\system32\schedsvc.dll[/size]
[size="2"]21:14:25.0413 3032 Schedule - ok[/size]
[size="2"]21:14:25.0449 3032 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\windows\System32\certprop.dll[/size]
[size="2"]21:14:25.0451 3032 SCPolicySvc - ok[/size]
[size="2"]21:14:25.0477 3032 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\windows\System32\SDRSVC.dll[/size]
[size="2"]21:14:25.0484 3032 SDRSVC - ok[/size]
[size="2"]21:14:25.0521 3032 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys[/size]
[size="2"]21:14:25.0523 3032 secdrv - ok[/size]
[size="2"]21:14:25.0543 3032 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\windows\system32\seclogon.dll[/size]
[size="2"]21:14:25.0548 3032 seclogon - ok[/size]
[size="2"]21:14:25.0577 3032 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll[/size]
[size="2"]21:14:25.0583 3032 SENS - ok[/size]
[size="2"]21:14:25.0607 3032 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll[/size]
[size="2"]21:14:25.0611 3032 SensrSvc - ok[/size]
[size="2"]21:14:25.0642 3032 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\DRIVERS\serenum.sys[/size]
[size="2"]21:14:25.0644 3032 Serenum - ok[/size]
[size="2"]21:14:25.0651 3032 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\DRIVERS\serial.sys[/size]
[size="2"]21:14:25.0656 3032 Serial - ok[/size]
[size="2"]21:14:25.0672 3032 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys[/size]
[size="2"]21:14:25.0674 3032 sermouse - ok[/size]
[size="2"]21:14:25.0748 3032 [ F31E9531AF225CA25350D5E87E999B31 ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe[/size]
[size="2"]21:14:25.0761 3032 ServiceLayer - ok[/size]
[size="2"]21:14:25.0807 3032 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\windows\system32\sessenv.dll[/size]
[size="2"]21:14:25.0813 3032 SessionEnv - ok[/size]
[size="2"]21:14:25.0843 3032 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\DRIVERS\sffdisk.sys[/size]
[size="2"]21:14:25.0844 3032 sffdisk - ok[/size]
[size="2"]21:14:25.0866 3032 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\DRIVERS\sffp_mmc.sys[/size]
[size="2"]21:14:25.0867 3032 sffp_mmc - ok[/size]
[size="2"]21:14:25.0875 3032 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\windows\system32\DRIVERS\sffp_sd.sys[/size]
[size="2"]21:14:25.0879 3032 sffp_sd - ok[/size]
[size="2"]21:14:25.0905 3032 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys[/size]
[size="2"]21:14:25.0907 3032 sfloppy - ok[/size]
[size="2"]21:14:25.0975 3032 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\windows\system32\DRIVERS\Sftfslh.sys[/size]
[size="2"]21:14:25.0985 3032 Sftfs - ok[/size]
[size="2"]21:14:26.0048 3032 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe[/size]
[size="2"]21:14:26.0057 3032 sftlist - ok[/size]
[size="2"]21:14:26.0079 3032 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\windows\system32\DRIVERS\Sftplaylh.sys[/size]
[size="2"]21:14:26.0083 3032 Sftplay - ok[/size]
[size="2"]21:14:26.0100 3032 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\windows\system32\DRIVERS\Sftredirlh.sys[/size]
[size="2"]21:14:26.0102 3032 Sftredir - ok[/size]
[size="2"]21:14:26.0131 3032 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\windows\system32\DRIVERS\Sftvollh.sys[/size]
[size="2"]21:14:26.0132 3032 Sftvol - ok[/size]
[size="2"]21:14:26.0150 3032 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe[/size]
[size="2"]21:14:26.0155 3032 sftvsa - ok[/size]
[size="2"]21:14:26.0193 3032 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll[/size]
[size="2"]21:14:26.0202 3032 SharedAccess - ok[/size]
[size="2"]21:14:26.0230 3032 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\windows\System32\shsvcs.dll[/size]
[size="2"]21:14:26.0240 3032 ShellHWDetection - ok[/size]
[size="2"]21:14:26.0299 3032 [ C42DD1B109A6EBF9ED52E5B53801A03A ] Shockprf C:\windows\system32\DRIVERS\Apsx64.sys[/size]
[size="2"]21:14:26.0303 3032 Shockprf - ok[/size]
[size="2"]21:14:26.0331 3032 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys[/size]
[size="2"]21:14:26.0333 3032 SiSRaid2 - ok[/size]
[size="2"]21:14:26.0350 3032 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys[/size]
[size="2"]21:14:26.0353 3032 SiSRaid4 - ok[/size]
[size="2"]21:14:26.0365 3032 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys[/size]
[size="2"]21:14:26.0369 3032 Smb - ok[/size]
[size="2"]21:14:26.0400 3032 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe[/size]
[size="2"]21:14:26.0404 3032 SNMPTRAP - ok[/size]
[size="2"]21:14:26.0419 3032 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys[/size]
[size="2"]21:14:26.0420 3032 spldr - ok[/size]
[size="2"]21:14:26.0464 3032 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\windows\System32\spoolsv.exe[/size]
[size="2"]21:14:26.0478 3032 Spooler - ok[/size]
[size="2"]21:14:26.0584 3032 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\windows\system32\sppsvc.exe[/size]
[size="2"]21:14:26.0644 3032 sppsvc - ok[/size]
[size="2"]21:14:26.0673 3032 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll[/size]
[size="2"]21:14:26.0678 3032 sppuinotify - ok[/size]
[size="2"]21:14:26.0709 3032 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\windows\system32\DRIVERS\srv.sys[/size]
[size="2"]21:14:26.0718 3032 srv - ok[/size]
[size="2"]21:14:26.0743 3032 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\windows\system32\DRIVERS\srv2.sys[/size]
[size="2"]21:14:26.0750 3032 srv2 - ok[/size]
[size="2"]21:14:26.0770 3032 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\windows\system32\DRIVERS\srvnet.sys[/size]
[size="2"]21:14:26.0774 3032 srvnet - ok[/size]
[size="2"]21:14:26.0801 3032 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll[/size]
[size="2"]21:14:26.0809 3032 SSDPSRV - ok[/size]
[size="2"]21:14:26.0822 3032 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll[/size]
[size="2"]21:14:26.0828 3032 SstpSvc - ok[/size]
[size="2"]21:14:26.0851 3032 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\DRIVERS\stexstor.sys[/size]
[size="2"]21:14:26.0853 3032 stexstor - ok[/size]
[size="2"]21:14:26.0881 3032 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\windows\System32\wiaservc.dll[/size]
[size="2"]21:14:26.0896 3032 stisvc - ok[/size]
[size="2"]21:14:26.0924 3032 [ FFD7A6F15B14234B5B0E5D49E7961895 ] storflt C:\windows\system32\DRIVERS\vmstorfl.sys[/size]
[size="2"]21:14:26.0925 3032 storflt - ok[/size]
[size="2"]21:14:26.0957 3032 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\windows\system32\storsvc.dll[/size]
[size="2"]21:14:26.0962 3032 StorSvc - ok[/size]
[size="2"]21:14:26.0989 3032 [ 8FCCBEFC5C440B3C23454656E551B09A ] storvsc C:\windows\system32\DRIVERS\storvsc.sys[/size]
[size="2"]21:14:26.0991 3032 storvsc - ok[/size]
[size="2"]21:14:27.0015 3032 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys[/size]
[size="2"]21:14:27.0016 3032 swenum - ok[/size]
[size="2"]21:14:27.0048 3032 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll[/size]
[size="2"]21:14:27.0062 3032 swprv - ok[/size]
[size="2"]21:14:27.0107 3032 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\windows\system32\sysmain.dll[/size]
[size="2"]21:14:27.0141 3032 SysMain - ok[/size]
[size="2"]21:14:27.0153 3032 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\windows\System32\TabSvc.dll[/size]
[size="2"]21:14:27.0159 3032 TabletInputService - ok[/size]
[size="2"]21:14:27.0182 3032 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\windows\System32\tapisrv.dll[/size]
[size="2"]21:14:27.0192 3032 TapiSrv - ok[/size]
[size="2"]21:14:27.0205 3032 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll[/size]
[size="2"]21:14:27.0210 3032 TBS - ok[/size]
[size="2"]21:14:27.0277 3032 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\windows\system32\drivers\tcpip.sys[/size]
[size="2"]21:14:27.0309 3032 Tcpip - ok[/size]
[size="2"]21:14:27.0355 3032 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys[/size]
[size="2"]21:14:27.0379 3032 TCPIP6 - ok[/size]
[size="2"]21:14:27.0410 3032 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys[/size]
[size="2"]21:14:27.0412 3032 tcpipreg - ok[/size]
[size="2"]21:14:27.0430 3032 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys[/size]
[size="2"]21:14:27.0432 3032 TDPIPE - ok[/size]
[size="2"]21:14:27.0462 3032 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\windows\system32\drivers\tdtcp.sys[/size]
[size="2"]21:14:27.0464 3032 TDTCP - ok[/size]
[size="2"]21:14:27.0486 3032 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\windows\system32\DRIVERS\tdx.sys[/size]
[size="2"]21:14:27.0490 3032 tdx - ok[/size]
[size="2"]21:14:27.0505 3032 [ C448651339196C0E869A355171875522 ] TermDD C:\windows\system32\DRIVERS\termdd.sys[/size]
[size="2"]21:14:27.0507 3032 TermDD - ok[/size]
[size="2"]21:14:27.0543 3032 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\windows\System32\termsrv.dll[/size]
[size="2"]21:14:27.0558 3032 TermService - ok[/size]
[size="2"]21:14:27.0574 3032 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll[/size]
[size="2"]21:14:27.0579 3032 Themes - ok[/size]
[size="2"]21:14:27.0605 3032 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll[/size]
[size="2"]21:14:27.0608 3032 THREADORDER - ok[/size]
[size="2"]21:14:27.0637 3032 [ 74868C001C7214FBD88B1A57EBB04811 ] TPDIGIMN C:\windows\system32\DRIVERS\ApsHM64.sys[/size]
[size="2"]21:14:27.0638 3032 TPDIGIMN - ok[/size]
[size="2"]21:14:27.0653 3032 [ 130E6B36A8EEE48AA4F0AC404236836B ] TPHDEXLGSVC C:\windows\system32\TPHDEXLG64.exe[/size]
[size="2"]21:14:27.0659 3032 TPHDEXLGSVC - ok[/size]
[size="2"]21:14:27.0674 3032 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll[/size]
[size="2"]21:14:27.0681 3032 TrkWks - ok[/size]
[size="2"]21:14:27.0719 3032 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe[/size]
[size="2"]21:14:27.0724 3032 TrustedInstaller - ok[/size]
[size="2"]21:14:27.0741 3032 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys[/size]
[size="2"]21:14:27.0743 3032 tssecsrv - ok[/size]
[size="2"]21:14:27.0780 3032 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys[/size]
[size="2"]21:14:27.0783 3032 tunnel - ok[/size]
[size="2"]21:14:27.0795 3032 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys[/size]
[size="2"]21:14:27.0798 3032 uagp35 - ok[/size]
[size="2"]21:14:27.0812 3032 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\windows\system32\DRIVERS\udfs.sys[/size]
[size="2"]21:14:27.0819 3032 udfs - ok[/size]
[size="2"]21:14:27.0844 3032 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe[/size]
[size="2"]21:14:27.0849 3032 UI0Detect - ok[/size]
[size="2"]21:14:27.0857 3032 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\DRIVERS\uliagpkx.sys[/size]
[size="2"]21:14:27.0860 3032 uliagpkx - ok[/size]
[size="2"]21:14:27.0888 3032 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\windows\system32\DRIVERS\umbus.sys[/size]
[size="2"]21:14:27.0890 3032 umbus - ok[/size]
[size="2"]21:14:27.0901 3032 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\DRIVERS\umpass.sys[/size]
[size="2"]21:14:27.0904 3032 UmPass - ok[/size]
[size="2"]21:14:27.0932 3032 [ AF0AC98EE5077EB844413EB54287FDE3 ] UmRdpService C:\windows\System32\umrdp.dll[/size]
[size="2"]21:14:27.0941 3032 UmRdpService - ok[/size]
[size="2"]21:14:28.0068 3032 [ 6FDB1CA1ADD261F893C90738EBA37197 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe[/size]
[size="2"]21:14:28.0108 3032 UNS - ok[/size]
[size="2"]21:14:28.0134 3032 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll[/size]
[size="2"]21:14:28.0145 3032 upnphost - ok[/size]
[size="2"]21:14:28.0181 3032 [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys[/size]
[size="2"]21:14:28.0184 3032 usbccgp - ok[/size]
[size="2"]21:14:28.0217 3032 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\DRIVERS\usbcir.sys[/size]
[size="2"]21:14:28.0220 3032 usbcir - ok[/size]
[size="2"]21:14:28.0238 3032 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci C:\windows\system32\drivers\usbehci.sys[/size]
[size="2"]21:14:28.0241 3032 usbehci - ok[/size]
[size="2"]21:14:28.0272 3032 [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub C:\windows\system32\DRIVERS\usbhub.sys[/size]
[size="2"]21:14:28.0279 3032 usbhub - ok[/size]
[size="2"]21:14:28.0295 3032 [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci C:\windows\system32\drivers\usbohci.sys[/size]
[size="2"]21:14:28.0297 3032 usbohci - ok[/size]
[size="2"]21:14:28.0313 3032 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys[/size]
[size="2"]21:14:28.0314 3032 usbprint - ok[/size]
[size="2"]21:14:28.0327 3032 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS[/size]
[size="2"]21:14:28.0351 3032 USBSTOR - ok[/size]
[size="2"]21:14:28.0368 3032 [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci C:\windows\system32\drivers\usbuhci.sys[/size]
[size="2"]21:14:28.0370 3032 usbuhci - ok[/size]
[size="2"]21:14:28.0407 3032 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\windows\System32\Drivers\usbvideo.sys[/size]
[size="2"]21:14:28.0411 3032 usbvideo - ok[/size]
[size="2"]21:14:28.0436 3032 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll[/size]
[size="2"]21:14:28.0441 3032 UxSms - ok[/size]
[size="2"]21:14:28.0456 3032 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\windows\system32\lsass.exe[/size]
[size="2"]21:14:28.0459 3032 VaultSvc - ok[/size]
[size="2"]21:14:28.0491 3032 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\DRIVERS\vdrvroot.sys[/size]
[size="2"]21:14:28.0493 3032 vdrvroot - ok[/size]
[size="2"]21:14:28.0520 3032 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\windows\System32\vds.exe[/size]
[size="2"]21:14:28.0535 3032 vds - ok[/size]
[size="2"]21:14:28.0554 3032 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys[/size]
[size="2"]21:14:28.0556 3032 vga - ok[/size]
[size="2"]21:14:28.0566 3032 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys[/size]
[size="2"]21:14:28.0568 3032 VgaSave - ok[/size]
[size="2"]21:14:28.0580 3032 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\windows\system32\DRIVERS\vhdmp.sys[/size]
[size="2"]21:14:28.0586 3032 vhdmp - ok[/size]
[size="2"]21:14:28.0593 3032 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\DRIVERS\viaide.sys[/size]
[size="2"]21:14:28.0594 3032 viaide - ok[/size]
[size="2"]21:14:28.0640 3032 [ 4D7427E0212D98CACB81C919E777B909 ] vm331avs C:\windows\system32\Drivers\vm331avs.sys[/size]
[size="2"]21:14:28.0648 3032 vm331avs - ok[/size]
[size="2"]21:14:28.0686 3032 [ 1501699D7EDA984ABC4155A7DA5738D1 ] vmbus C:\windows\system32\DRIVERS\vmbus.sys[/size]
[size="2"]21:14:28.0691 3032 vmbus - ok[/size]
[size="2"]21:14:28.0708 3032 [ AE10C35761889E65A6F7176937C5592C ] VMBusHID C:\windows\system32\DRIVERS\VMBusHID.sys[/size]
[size="2"]21:14:28.0709 3032 VMBusHID - ok[/size]
[size="2"]21:14:28.0738 3032 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\windows\system32\DRIVERS\volmgr.sys[/size]
[size="2"]21:14:28.0741 3032 volmgr - ok[/size]
[size="2"]21:14:28.0763 3032 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\windows\system32\drivers\volmgrx.sys[/size]
[size="2"]21:14:28.0771 3032 volmgrx - ok[/size]
[size="2"]21:14:28.0803 3032 [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap C:\windows\system32\drivers\volsnap.sys[/size]
[size="2"]21:14:28.0809 3032 volsnap - ok[/size]
[size="2"]21:14:28.0827 3032 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys[/size]
[size="2"]21:14:28.0832 3032 vsmraid - ok[/size]
[size="2"]21:14:28.0888 3032 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\windows\system32\vssvc.exe[/size]
[size="2"]21:14:28.0922 3032 VSS - ok[/size]
[size="2"]21:14:28.0938 3032 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys[/size]
[size="2"]21:14:28.0940 3032 vwifibus - ok[/size]
[size="2"]21:14:28.0963 3032 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys[/size]
[size="2"]21:14:28.0965 3032 vwififlt - ok[/size]
[size="2"]21:14:28.0989 3032 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll[/size]
[size="2"]21:14:29.0001 3032 W32Time - ok[/size]
[size="2"]21:14:29.0017 3032 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys[/size]
[size="2"]21:14:29.0018 3032 WacomPen - ok[/size]
[size="2"]21:14:29.0040 3032 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\windows\system32\DRIVERS\wanarp.sys[/size]
[size="2"]21:14:29.0043 3032 WANARP - ok[/size]
[size="2"]21:14:29.0049 3032 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys[/size]
[size="2"]21:14:29.0051 3032 Wanarpv6 - ok[/size]
[size="2"]21:14:29.0121 3032 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe[/size]
[size="2"]21:14:29.0144 3032 WatAdminSvc - ok[/size]
[size="2"]21:14:29.0204 3032 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\windows\system32\wbengine.exe[/size]
[size="2"]21:14:29.0235 3032 wbengine - ok[/size]
[size="2"]21:14:29.0252 3032 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll[/size]
[size="2"]21:14:29.0261 3032 WbioSrvc - ok[/size]
[size="2"]21:14:29.0302 3032 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\windows\System32\wcncsvc.dll[/size]
[size="2"]21:14:29.0313 3032 wcncsvc - ok[/size]
[size="2"]21:14:29.0329 3032 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll[/size]
[size="2"]21:14:29.0334 3032 WcsPlugInService - ok[/size]
[size="2"]21:14:29.0356 3032 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\DRIVERS\wd.sys[/size]
[size="2"]21:14:29.0357 3032 Wd - ok[/size]
[size="2"]21:14:29.0412 3032 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys[/size]
[size="2"]21:14:29.0427 3032 Wdf01000 - ok[/size]
[size="2"]21:14:29.0450 3032 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll[/size]
[size="2"]21:14:29.0456 3032 WdiServiceHost - ok[/size]
[size="2"]21:14:29.0463 3032 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll[/size]
[size="2"]21:14:29.0469 3032 WdiSystemHost - ok[/size]
[size="2"]21:14:29.0497 3032 [ 2A444ACF7DD446505BCC801F8F6AE5FD ] wdmirror C:\windows\system32\DRIVERS\WDMirror.sys[/size]
[size="2"]21:14:29.0498 3032 wdmirror - ok[/size]
[size="2"]21:14:29.0526 3032 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\windows\System32\webclnt.dll[/size]
[size="2"]21:14:29.0535 3032 WebClient - ok[/size]
[size="2"]21:14:29.0554 3032 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll[/size]
[size="2"]21:14:29.0563 3032 Wecsvc - ok[/size]
[size="2"]21:14:29.0576 3032 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll[/size]
[size="2"]21:14:29.0583 3032 wercplsupport - ok[/size]
[size="2"]21:14:29.0611 3032 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll[/size]
[size="2"]21:14:29.0619 3032 WerSvc - ok[/size]
[size="2"]21:14:29.0640 3032 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys[/size]
[size="2"]21:14:29.0645 3032 WfpLwf - ok[/size]
[size="2"]21:14:29.0678 3032 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys[/size]
[size="2"]21:14:29.0680 3032 WIMMount - ok[/size]
[size="2"]21:14:29.0691 3032 WinDefend - ok[/size]
[size="2"]21:14:29.0698 3032 WinHttpAutoProxySvc - ok[/size]
[size="2"]21:14:29.0748 3032 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll[/size]
[size="2"]21:14:29.0754 3032 Winmgmt - ok[/size]
[size="2"]21:14:29.0815 3032 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\windows\system32\WsmSvc.dll[/size]
[size="2"]21:14:29.0852 3032 WinRM - ok[/size]
[size="2"]21:14:29.0918 3032 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys[/size]
[size="2"]21:14:29.0920 3032 WinUsb - ok[/size]
[size="2"]21:14:29.0951 3032 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll[/size]
[size="2"]21:14:29.0972 3032 Wlansvc - ok[/size]
[size="2"]21:14:29.0992 3032 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys[/size]
[size="2"]21:14:29.0993 3032 WmiAcpi - ok[/size]
[size="2"]21:14:30.0026 3032 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe[/size]
[size="2"]21:14:30.0031 3032 wmiApSrv - ok[/size]
[size="2"]21:14:30.0056 3032 WMPNetworkSvc - ok[/size]
[size="2"]21:14:30.0086 3032 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll[/size]
[size="2"]21:14:30.0091 3032 WPCSvc - ok[/size]
[size="2"]21:14:30.0109 3032 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\windows\system32\wpdbusenum.dll[/size]
[size="2"]21:14:30.0117 3032 WPDBusEnum - ok[/size]
[size="2"]21:14:30.0127 3032 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys[/size]
[size="2"]21:14:30.0129 3032 ws2ifsl - ok[/size]
[size="2"]21:14:30.0154 3032 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\windows\System32\wscsvc.dll[/size]
[size="2"]21:14:30.0161 3032 wscsvc - ok[/size]
[size="2"]21:14:30.0167 3032 WSearch - ok[/size]
[size="2"]21:14:30.0204 3032 [ 83575C43B2BFE9AB0661A7F957E843C0 ] wsvd C:\windows\system32\DRIVERS\wsvd.sys[/size]
[size="2"]21:14:30.0207 3032 wsvd - ok[/size]
[size="2"]21:14:30.0289 3032 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll[/size]
[size="2"]21:14:30.0335 3032 wuauserv - ok[/size]
[size="2"]21:14:30.0368 3032 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys[/size]
[size="2"]21:14:30.0371 3032 WudfPf - ok[/size]
[size="2"]21:14:30.0406 3032 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys[/size]
[size="2"]21:14:30.0410 3032 WUDFRd - ok[/size]
[size="2"]21:14:30.0453 3032 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll[/size]
[size="2"]21:14:30.0460 3032 wudfsvc - ok[/size]
[size="2"]21:14:30.0486 3032 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll[/size]
[size="2"]21:14:30.0495 3032 WwanSvc - ok[/size]
[size="2"]21:14:30.0524 3032 ================ Scan global ===============================[/size]
[size="2"]21:14:30.0553 3032 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll[/size]
[size="2"]21:14:30.0586 3032 [ 4343295C52C8B1ADD906F1A37B940AA1 ] C:\windows\system32\winsrv.dll[/size]
[size="2"]21:14:30.0602 3032 [ 4343295C52C8B1ADD906F1A37B940AA1 ] C:\windows\system32\winsrv.dll[/size]
[size="2"]21:14:30.0628 3032 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll[/size]
[size="2"]21:14:30.0653 3032 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe[/size]
[size="2"]21:14:30.0663 3032 [Global] - ok[/size]
[size="2"]21:14:30.0663 3032 ================ Scan MBR ==================================[/size]
[size="2"]21:14:30.0681 3032 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0[/size]
[size="2"]21:14:30.0855 3032 \Device\Harddisk0\DR0 - ok[/size]
[size="2"]21:14:30.0857 3032 ================ Scan VBR ==================================[/size]
[size="2"]21:14:30.0862 3032 [ A9849A6F976A60E1BC5A97FAD2CF14C7 ] \Device\Harddisk0\DR0\Partition1[/size]
[size="2"]21:14:30.0864 3032 \Device\Harddisk0\DR0\Partition1 - ok[/size]
[size="2"]21:14:30.0872 3032 [ C65F08F3334B934A5847CDF244DFB2B8 ] \Device\Harddisk0\DR0\Partition2[/size]
[size="2"]21:14:30.0875 3032 \Device\Harddisk0\DR0\Partition2 - ok[/size]
[size="2"]21:14:30.0903 3032 [ 83AE7E146656966C4B47B7B4D15B7E65 ] \Device\Harddisk0\DR0\Partition3[/size]
[size="2"]21:14:30.0905 3032 \Device\Harddisk0\DR0\Partition3 - ok[/size]
[size="2"]21:14:30.0906 3032 ============================================================[/size]
[size="2"]21:14:30.0906 3032 Scan finished[/size]
[size="2"]21:14:30.0906 3032 ============================================================[/size]
[size="2"]21:14:30.0929 1408 Detected object count: 0[/size]
[size="2"]21:14:30.0929 1408 Actual detected object count: 0[/size]
[size="2"][/log][/size]

Raporty z OTL:
[log]
OTL logfile created on: 2013-01-02 21:17:25 - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Ania\Desktop
64bit- Professional (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,74 Gb Total Physical Memory | 2,13 Gb Available Physical Memory | 56,90% Memory free
7,48 Gb Paging File | 5,64 Gb Available in Paging File | 75,38% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 421,81 Gb Total Space | 362,71 Gb Free Space | 85,99% Space Free | Partition Type: NTFS
Drive D: | 29,00 Gb Total Space | 27,79 Gb Free Space | 95,86% Space Free | Partition Type: NTFS

Computer Name: ANIA-KOMPUTER | User Name: Ania | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 60 Days

[color=#e56717]========== Processes (All) ==========[/color]

PRC - [2013-01-01 18:22:11 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Ania\Desktop\OTL.exe
PRC - [2012-12-28 22:22:13 | 000,697,272 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.exe
PRC - [2012-10-27 06:02:44 | 000,672,832 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
PRC - [2012-07-11 20:00:46 | 000,919,008 | R--- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
PRC - [2012-02-01 08:11:34 | 001,083,264 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
PRC - [2012-01-04 14:22:40 | 000,822,624 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
PRC - [2012-01-04 12:32:36 | 000,718,888 | ---- | M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
PRC - [2012-01-04 12:32:06 | 000,148,520 | ---- | M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
PRC - [2011-10-01 08:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
PRC - [2011-10-01 08:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
PRC - [2011-01-17 19:50:30 | 011,322,880 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
PRC - [2011-01-17 19:50:30 | 011,314,688 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
PRC - [2010-07-11 19:09:20 | 001,620,584 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2010-05-28 04:14:52 | 000,376,176 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisTSR.exe
PRC - [2010-05-28 04:14:02 | 000,709,488 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisService.exe
PRC - [2010-05-28 04:13:38 | 000,314,736 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisDSService.exe
PRC - [2010-05-19 18:21:46 | 000,364,400 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\EgisPLTSR.exe
PRC - [2010-05-19 18:21:26 | 000,322,416 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\Egishlpsvc.exe
PRC - [2010-03-10 23:11:56 | 000,407,920 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
PRC - [2010-03-10 23:11:42 | 000,201,584 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
PRC - [2010-03-03 21:16:06 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2010-03-03 21:16:04 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
PRC - [2010-03-02 23:37:40 | 000,171,104 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
PRC - [2010-01-15 12:38:46 | 000,536,576 | ---- | M] (Vimicro) -- C:\Program Files (x86)\USB Camera\VM331_STI.EXE
PRC - [2009-09-30 13:02:38 | 002,320,920 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2009-09-30 13:02:36 | 000,268,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2009-07-14 15:27:26 | 000,038,152 | ---- | M] (Lenovo Group Limited) -- C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe
PRC - [2008-06-05 10:19:18 | 000,479,232 | ---- | M] (Nikon Corporation) -- C:\Program Files (x86)\Common Files\Nikon\Monitor\NkMonitor.exe


[color=#e56717]========== Modules (All) ==========[/color]

MOD - [2013-01-01 18:22:11 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Ania\Desktop\OTL.exe
MOD - [2012-12-28 22:22:13 | 014,460,856 | R--- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_5_502_135.ocx
MOD - [2012-12-28 22:22:13 | 000,697,272 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.exe
MOD - [2012-12-28 22:22:13 | 000,476,088 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.dll
MOD - [2012-11-20 23:26:08 | 000,452,608 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\c0dc6f48b089aa04822d3e205f124f88\IAStorUtil.ni.dll
MOD - [2012-11-17 17:18:06 | 000,771,584 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\1430191d067c0f28c3a676d3ecb85b26\System.Runtime.Remoting.ni.dll
MOD - [2012-11-17 17:17:12 | 012,433,920 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\515c6ffea562bb0f03a1ed8f75279648\System.Windows.Forms.ni.dll
MOD - [2012-11-17 17:16:57 | 001,591,808 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\f4be07261983040b29685575b69085e8\System.Drawing.ni.dll
MOD - [2012-11-17 17:16:32 | 003,325,952 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\6a68e4c50351a220511a5dfc3e025685\WindowsBase.ni.dll
MOD - [2012-11-17 17:16:19 | 005,453,312 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d2d47118e5da6db054d5676e665f2be2\System.Xml.ni.dll
MOD - [2012-11-17 17:16:10 | 000,971,264 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\2f44dac350b6161a9e9ce7222ae94335\System.Configuration.ni.dll
MOD - [2012-11-17 17:16:08 | 007,973,888 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System\c8ebcd93a2b547dc72dee2fcfabcdd50\System.ni.dll
MOD - [2012-11-17 17:15:52 | 011,490,816 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\5530227809880c9b8b1d834e5434e840\mscorlib.ni.dll
MOD - [2012-11-12 14:24:42 | 006,029,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mshtml.dll
MOD - [2012-10-27 06:02:44 | 000,672,832 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
MOD - [2012-10-27 06:00:40 | 000,981,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wininet.dll
MOD - [2012-10-27 06:00:37 | 001,230,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\urlmon.dll
MOD - [2012-10-27 06:00:11 | 000,627,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msfeeds.dll
MOD - [2012-10-27 05:59:25 | 002,072,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\iertutil.dll
MOD - [2012-10-27 05:59:25 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ieui.dll
MOD - [2012-10-27 05:59:24 | 011,019,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ieframe.dll
MOD - [2012-10-27 05:59:24 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\iepeers.dll
MOD - [2012-10-27 05:59:24 | 000,163,328 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\ieproxy.dll
MOD - [2012-10-04 17:54:17 | 001,114,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\kernel32.dll
MOD - [2012-10-04 17:54:17 | 000,274,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\KernelBase.dll
MOD - [2012-09-24 16:00:16 | 000,059,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
MOD - [2012-09-12 16:19:44 | 000,077,800 | ---- | M] (Microsoft Corporation) -- c:\Program Files (x86)\Microsoft Security Client\MpOAv.dll
MOD - [2012-08-31 12:02:23 | 005,919,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
MOD - [2012-08-24 18:10:47 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wintrust.dll
MOD - [2012-07-30 22:43:36 | 000,061,920 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
MOD - [2012-07-30 22:43:29 | 000,075,232 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
MOD - [2012-07-11 20:00:46 | 000,919,008 | R--- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
MOD - [2012-07-04 22:26:19 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\netapi32.dll
MOD - [2012-07-03 20:45:16 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Java\jre6\bin\MSVCR71.dll
MOD - [2012-06-16 05:36:19 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\jscript.dll
MOD - [2012-06-09 05:46:56 | 012,868,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shell32.dll
MOD - [2012-06-06 06:09:46 | 001,236,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msxml3.dll
MOD - [2012-06-02 05:48:39 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\secur32.dll
MOD - [2012-06-02 05:48:35 | 000,225,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\schannel.dll
MOD - [2012-06-02 05:47:31 | 000,219,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ncrypt.dll
MOD - [2012-06-02 05:45:21 | 001,157,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\crypt32.dll
MOD - [2012-06-02 05:45:21 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cryptnet.dll
MOD - [2012-06-02 05:42:51 | 000,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sspicli.dll
MOD - [2012-05-05 08:44:48 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\srclient.dll
MOD - [2012-04-21 05:23:06 | 001,625,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\GdiPlus.dll
MOD - [2012-04-07 12:34:37 | 002,342,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msi.dll
MOD - [2012-03-01 06:45:05 | 000,158,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\imagehlp.dll
MOD - [2012-02-01 18:58:59 | 003,766,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90.dll
MOD - [2012-02-01 08:12:34 | 000,423,808 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\ssoengine.dll
MOD - [2012-02-01 08:12:32 | 000,058,240 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\securestorage.dll
MOD - [2012-02-01 08:12:30 | 000,272,768 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\phonon4.dll
MOD - [2012-02-01 08:12:30 | 000,095,104 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\qjson.dll
MOD - [2012-02-01 08:12:28 | 001,128,320 | ---- | M] (Nokia Corporation) -- C:\Program Files (x86)\Nokia\Nokia Suite\nossu2fn.dll
MOD - [2012-02-01 08:12:26 | 000,709,504 | ---- | M] (Nokia Corporation) -- C:\Program Files (x86)\Nokia\Nokia Suite\nossu2dm.dll
MOD - [2012-02-01 08:12:22 | 000,596,864 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\WidgetLibrary.dll
MOD - [2012-02-01 08:12:20 | 000,253,312 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\UI-QML_Library.dll
MOD - [2012-02-01 08:12:18 | 000,050,048 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\TrayIcon.dll
MOD - [2012-02-01 08:12:16 | 003,260,800 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\styles\Style.dll
MOD - [2012-02-01 08:12:14 | 000,384,896 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QxtCore.dll
MOD - [2012-02-01 08:12:14 | 000,165,248 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QxtWeb.dll
MOD - [2012-02-01 08:12:12 | 010,843,520 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtWebKit4.dll
MOD - [2012-02-01 08:12:12 | 002,557,312 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtXmlPatterns4.dll
MOD - [2012-02-01 08:12:12 | 000,346,496 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtXml4.dll
MOD - [2012-02-01 08:12:08 | 001,294,208 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtScript4.dll
MOD - [2012-02-01 08:12:08 | 000,196,480 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtSql4.dll
MOD - [2012-02-01 08:12:06 | 000,919,936 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtNetwork4.dll
MOD - [2012-02-01 08:12:06 | 000,682,880 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtOpenGL4.dll
MOD - [2012-02-01 08:12:06 | 000,517,504 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtMultimediaKit1.dll
MOD - [2012-02-01 08:12:04 | 008,172,928 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtGui4.dll
MOD - [2012-02-01 08:12:04 | 002,252,672 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtDeclarative4.dll
MOD - [2012-02-01 08:12:02 | 002,288,512 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtCore4.dll
MOD - [2012-02-01 08:12:00 | 001,962,880 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\Photos.dll
MOD - [2012-02-01 08:12:00 | 000,422,272 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\sqldrivers\qsqlite4.dll
MOD - [2012-02-01 08:11:58 | 004,954,496 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\Music.dll
MOD - [2012-02-01 08:11:56 | 000,202,624 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qjpeg4.dll
MOD - [2012-02-01 08:11:56 | 000,034,688 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qico4.dll
MOD - [2012-02-01 08:11:54 | 001,226,112 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\dashboard.dll
MOD - [2012-02-01 08:11:54 | 000,032,640 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qgif4.dll
MOD - [2012-02-01 08:11:52 | 001,371,008 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\contacts.dll
MOD - [2012-02-01 08:11:52 | 000,380,288 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\carousel.dll
MOD - [2012-02-01 08:11:50 | 000,066,944 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\WhatsNew.dll
MOD - [2012-02-01 08:11:48 | 002,191,744 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\SoftwareUpdater.dll
MOD - [2012-02-01 08:11:48 | 000,208,256 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\Settings.dll
MOD - [2012-02-01 08:11:46 | 000,627,584 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\NokiaAccount.dll
MOD - [2012-02-01 08:11:46 | 000,510,848 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\PIM.dll
MOD - [2012-02-01 08:11:44 | 001,531,776 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\Messages.dll
MOD - [2012-02-01 08:11:44 | 000,141,184 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\nps.dll
MOD - [2012-02-01 08:11:42 | 000,993,152 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\maps.dll
MOD - [2012-02-01 08:11:42 | 000,589,696 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\FirstTimeUse.dll
MOD - [2012-02-01 08:11:40 | 000,865,152 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\ConnectToInternet.dll
MOD - [2012-02-01 08:11:40 | 000,294,272 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\customerfeedback.dll
MOD - [2012-02-01 08:11:38 | 000,924,544 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\caresuite.dll
MOD - [2012-02-01 08:11:38 | 000,196,480 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\BringYourStuff.dll
MOD - [2012-02-01 08:11:36 | 000,702,336 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\BackUp.dll
MOD - [2012-02-01 08:11:36 | 000,388,480 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\OviShareLib.dll
MOD - [2012-02-01 08:11:36 | 000,214,400 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\ApplicationInstaller.dll
MOD - [2012-02-01 08:11:34 | 001,083,264 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
MOD - [2012-02-01 08:11:28 | 000,437,632 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\NService.dll
MOD - [2012-02-01 08:11:26 | 001,131,904 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\MThumbnailService.dll
MOD - [2012-02-01 08:11:22 | 002,141,056 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\MItemPlugins.dll
MOD - [2012-02-01 08:11:22 | 000,850,304 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\MItems.dll
MOD - [2012-02-01 08:11:20 | 002,914,176 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\MDataStore.dll
MOD - [2012-02-01 08:11:20 | 000,459,136 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\MEvent.dll
MOD - [2012-02-01 08:11:18 | 001,037,696 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\Maps Service API.dll
MOD - [2012-02-01 08:11:12 | 000,055,680 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\MMSParser.dll
MOD - [2012-02-01 08:11:02 | 001,081,216 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\Dal.dll
MOD - [2012-02-01 08:11:00 | 002,521,984 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\DAL\Service.dll
MOD - [2012-02-01 08:11:00 | 001,352,576 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\DAL\Pccs.dll
MOD - [2012-02-01 08:11:00 | 000,654,208 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\DAL\Sync.dll
MOD - [2012-02-01 08:10:58 | 000,506,240 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\DAL\NokiaService.dll
MOD - [2012-02-01 08:10:58 | 000,357,760 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\DAL\NossuService.dll
MOD - [2012-02-01 08:10:56 | 000,405,376 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\DAL\MapsService.dll
MOD - [2012-02-01 08:10:54 | 000,942,976 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\CommonWidgets.dll
MOD - [2012-02-01 08:10:54 | 000,880,000 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\CommonUtilities.dll
MOD - [2012-02-01 08:10:52 | 000,758,656 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\CommonUpdateChecker.dll
MOD - [2012-02-01 08:10:50 | 000,189,824 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\CDC.DLL
MOD - [2012-01-30 22:23:38 | 000,086,016 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\uwinapi.dll
MOD - [2012-01-30 22:23:37 | 000,597,504 | ---- | M] (STLport Consulting, Inc.) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\stlport_vc7145.dll
MOD - [2012-01-30 22:23:37 | 000,092,672 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\stocservices.uno.dll
MOD - [2012-01-30 22:23:37 | 000,053,248 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\store3.dll
MOD - [2012-01-30 22:23:36 | 001,740,800 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\sal3.dll
MOD - [2012-01-30 22:23:36 | 000,098,816 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\reflection.uno.dll
MOD - [2012-01-30 22:23:36 | 000,092,672 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\reg3.dll
MOD - [2012-01-30 22:23:36 | 000,013,312 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\salhelper3MSC.dll
MOD - [2012-01-30 22:23:35 | 000,092,160 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\jvmfwk3.dll
MOD - [2012-01-30 22:23:35 | 000,051,712 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\msci_uno.dll
MOD - [2012-01-30 22:23:33 | 000,452,608 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\bootstrap.uno.dll
MOD - [2012-01-30 22:23:33 | 000,432,128 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\cppuhelper3MSC.dll
MOD - [2012-01-30 22:23:33 | 000,142,848 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\cppu3.dll
MOD - [2012-01-30 22:23:33 | 000,098,816 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\introspection.uno.dll
MOD - [2012-01-30 22:23:32 | 000,346,112 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\xstor.dll
MOD - [2012-01-30 22:23:31 | 002,967,552 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\xomi.dll
MOD - [2012-01-30 22:23:30 | 000,531,456 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\xcrmi.dll
MOD - [2012-01-30 22:23:30 | 000,094,208 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\vos3MSC.dll
MOD - [2012-01-30 22:23:29 | 003,266,560 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\vclmi.dll
MOD - [2012-01-30 22:23:28 | 000,958,464 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\utlmi.dll
MOD - [2012-01-30 22:23:28 | 000,294,400 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\unoxmlmi.dll
MOD - [2012-01-30 22:23:28 | 000,226,304 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\uuimi.dll
MOD - [2012-01-30 22:23:28 | 000,174,080 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\updchk.uno.dll
MOD - [2012-01-30 22:23:28 | 000,053,760 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\updatefeed.uno.dll
MOD - [2012-01-30 22:23:27 | 000,257,024 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\ucpfile1.dll
MOD - [2012-01-30 22:23:26 | 000,529,408 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\tlmi.dll
MOD - [2012-01-30 22:23:26 | 000,358,912 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\ucbhelper4MSC.dll
MOD - [2012-01-30 22:23:26 | 000,286,720 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\ucpdav1.dll
MOD - [2012-01-30 22:23:26 | 000,260,096 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\ucpchelp1.dll
MOD - [2012-01-30 22:23:26 | 000,212,992 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\ucb1.dll
MOD - [2012-01-30 22:23:26 | 000,024,064 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\ucpexpand1.uno.dll
MOD - [2012-01-30 22:23:25 | 002,186,752 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\tkmi.dll
MOD - [2012-01-30 22:23:25 | 000,106,496 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\sysdtrans.dll
MOD - [2012-01-30 22:23:24 | 007,884,800 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\swmi.dll
MOD - [2012-01-30 22:23:24 | 000,054,784 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\swdmi.dll
MOD - [2012-01-30 22:23:23 | 005,470,208 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\svxcoremi.dll
MOD - [2012-01-30 22:23:23 | 002,524,672 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\svxmi.dll
MOD - [2012-01-30 22:23:22 | 002,863,616 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\svtmi.dll
MOD - [2012-01-30 22:23:22 | 000,777,216 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\svlmi.dll
MOD - [2012-01-30 22:23:22 | 000,209,920 | ---- | M] (The OpenSSL Project, [url="http://www.openssl.org/"]http://www.openssl.org/[/url]) -- C:\Program Files (x86)\OpenOffice.org 3\program\SSLEAY32.dll
MOD - [2012-01-30 22:23:21 | 000,379,904 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\sofficeapp.dll
MOD - [2012-01-30 22:23:21 | 000,256,000 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\sotmi.dll
MOD - [2012-01-30 22:23:21 | 000,160,768 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\spellmi.dll
MOD - [2012-01-30 22:23:20 | 003,234,816 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\sfxmi.dll
MOD - [2012-01-30 22:23:17 | 001,577,984 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\sbmi.dll
MOD - [2012-01-30 22:23:17 | 000,156,672 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\sax.uno.dll
MOD - [2012-01-30 22:23:14 | 000,282,112 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\package2.dll
MOD - [2012-01-30 22:23:14 | 000,083,968 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\oooimprovementmi.dll
MOD - [2012-01-30 22:23:13 | 000,287,232 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\oleautobridge.uno.dll
MOD - [2012-01-30 22:23:13 | 000,008,192 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\onlinecheck.DLL
MOD - [2012-01-30 22:23:12 | 001,078,784 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\mswordmi.DLL
MOD - [2012-01-30 22:23:12 | 000,110,592 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\neon.dll
MOD - [2012-01-30 22:23:11 | 000,705,024 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\msfiltermi.dll
MOD - [2012-01-30 22:23:10 | 000,697,344 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\localedata_euro.dll
MOD - [2012-01-30 22:23:10 | 000,103,936 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\localedata_en.dll
MOD - [2012-01-30 22:23:10 | 000,033,280 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\mcnttype.dll
MOD - [2012-01-30 22:23:09 | 000,991,744 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\lngmi.dll
MOD - [2012-01-30 22:23:09 | 000,985,088 | ---- | M] () -- C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
MOD - [2012-01-30 22:23:09 | 000,170,496 | ---- | M] () -- C:\Program Files (x86)\OpenOffice.org 3\program\libxslt.dll
MOD - [2012-01-30 22:23:09 | 000,056,320 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\lnthmi.dll
MOD - [2012-01-30 22:23:09 | 000,024,064 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\localebe1.uno.dll
MOD - [2012-01-30 22:23:09 | 000,014,336 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\libtextcat.dll
MOD - [2012-01-30 22:23:08 | 001,015,296 | ---- | M] (The OpenSSL Project, [url="http://www.openssl.org/"]http://www.openssl.org/[/url]) -- C:\Program Files (x86)\OpenOffice.org 3\program\LIBEAY32.dll
MOD - [2012-01-30 22:23:08 | 000,832,000 | ---- | M] (Oracle) -- C:\Program Files (x86)\OpenOffice.org 3\program\libdb47.dll
MOD - [2012-01-30 22:23:08 | 000,180,224 | ---- | M] (The cURL library, [url="http://curl.haxx.se/"]http://curl.haxx.se/[/url]) -- C:\Program Files (x86)\OpenOffice.org 3\program\libcurl.dll
MOD - [2012-01-30 22:23:06 | 000,951,296 | ---- | M] (IBM Corporation and others) -- C:\Program Files (x86)\OpenOffice.org 3\program\icuuc40.dll
MOD - [2012-01-30 22:23:05 | 013,914,112 | ---- | M] (IBM Corporation and others) -- C:\Program Files (x86)\OpenOffice.org 3\program\icudt40.dll
MOD - [2012-01-30 22:23:05 | 001,071,616 | ---- | M] (IBM Corporation and others) -- C:\Program Files (x86)\OpenOffice.org 3\program\icuin40.dll
MOD - [2012-01-30 22:23:05 | 000,066,560 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\i18nutilMSC.dll
MOD - [2012-01-30 22:23:05 | 000,037,888 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\i18nsearch.uno.dll
MOD - [2012-01-30 22:23:04 | 001,317,376 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\i18npool.uno.dll
MOD - [2012-01-30 22:23:04 | 000,154,624 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\helplinkermi.dll
MOD - [2012-01-30 22:23:04 | 000,057,344 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\hyphenmi.dll
MOD - [2012-01-30 22:23:04 | 000,032,768 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\i18nregexpMSC.dll
MOD - [2012-01-30 22:23:04 | 000,029,184 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\i18npapermi.dll
MOD - [2012-01-30 22:23:04 | 000,026,112 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\i18nisolang1MSC.dll
MOD - [2012-01-30 22:23:03 | 001,649,152 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\fwkmi.dll
MOD - [2012-01-30 22:23:03 | 000,343,040 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\fwlmi.dll
MOD - [2012-01-30 22:23:03 | 000,036,352 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\guesslangmi.dll
MOD - [2012-01-30 22:23:02 | 000,869,888 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\fwemi.dll
MOD - [2012-01-30 22:23:02 | 000,311,296 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\fwimi.dll
MOD - [2012-01-30 22:23:02 | 000,093,696 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\fsstorage.uno.dll
MOD - [2012-01-30 22:23:02 | 000,050,688 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\ftransl.dll
MOD - [2012-01-30 22:23:00 | 000,186,880 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\filterconfig1.dll
MOD - [2012-01-30 22:22:59 | 000,051,712 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\fileacc.dll
MOD - [2012-01-30 22:22:58 | 000,148,480 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\emsermi.dll
MOD - [2012-01-30 22:22:57 | 001,457,152 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\editengmi.dll
MOD - [2012-01-30 22:22:57 | 001,026,560 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\drawinglayermi.dll
MOD - [2012-01-30 22:22:57 | 000,115,200 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\dnd.dll
MOD - [2012-01-30 22:22:57 | 000,040,960 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\dtrans.dll
MOD - [2012-01-30 22:22:54 | 000,542,208 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\deploymentmi.uno.dll
MOD - [2012-01-30 22:22:54 | 000,135,680 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\deploymentmiscmi.dll
MOD - [2012-01-30 22:22:52 | 000,285,184 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\cppcanvasmi.dll
MOD - [2012-01-30 22:22:51 | 001,033,728 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\comphelp4MSC.dll
MOD - [2012-01-30 22:22:51 | 000,396,800 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\configmgr.uno.dll
MOD - [2012-01-30 22:22:50 | 000,503,296 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\canvastoolsmi.dll
MOD - [2012-01-30 22:22:49 | 000,700,928 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\basegfxmi.dll
MOD - [2012-01-30 22:22:49 | 000,211,456 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\avmediami.dll
MOD - [2012-01-30 22:22:48 | 000,129,024 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\aggmi.dll
MOD - [2012-01-05 14:19:12 | 000,112,640 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\mediaservice\dsengine.dll
MOD - [2012-01-05 14:17:32 | 001,145,344 | ---- | M] (The OpenSSL Project, [url="http://www.openssl.org/"]http://www.openssl.org/[/url]) -- C:\Program Files (x86)\Nokia\Nokia Suite\libeay32.DLL
MOD - [2012-01-05 14:17:32 | 000,237,056 | ---- | M] (The OpenSSL Project, [url="http://www.openssl.org/"]http://www.openssl.org/[/url]) -- C:\Program Files (x86)\Nokia\Nokia Suite\ssleay32.dll
MOD - [2012-01-04 12:32:24 | 000,265,256 | ---- | M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\PCCS_ABAPI.dll
MOD - [2012-01-04 12:32:06 | 000,148,520 | ---- | M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
MOD - [2012-01-04 12:31:40 | 001,485,352 | ---- | M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\DAAPI.dll
MOD - [2012-01-04 12:31:36 | 000,661,544 | ---- | M] (Nokia.) -- C:\Program Files (x86)\PC Connectivity Solution\ConnAPI.dll
MOD - [2012-01-04 12:31:34 | 000,205,352 | ---- | M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\ConfServer.dll
MOD - [2012-01-04 10:03:07 | 000,442,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntshrui.dll
MOD - [2012-01-04 03:51:14 | 000,364,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
MOD - [2011-12-21 10:11:12 | 000,325,120 | ---- | M] (Nokia Corporation.) -- C:\Program Files (x86)\Nokia\Nokia Suite\syncRuntimeAPI.dll
MOD - [2011-12-21 10:10:48 | 000,942,080 | ---- | M] (Nokia Corporation.) -- C:\Program Files (x86)\Nokia\Nokia Suite\ilsyncEx.dll
MOD - [2011-12-21 10:10:16 | 000,599,040 | ---- | M] (Nokia Corporation.) -- C:\Program Files (x86)\Nokia\Nokia Suite\iltif32.dll
MOD - [2011-12-21 10:09:50 | 000,056,832 | ---- | M] (Nokia Corporation.) -- C:\Program Files (x86)\Nokia\Nokia Suite\Attendees.dll
MOD - [2011-12-21 10:09:44 | 001,061,888 | ---- | M] (Nokia Corporation.) -- C:\Program Files (x86)\Nokia\Nokia Suite\recipients.dll
MOD - [2011-12-21 10:09:26 | 000,069,120 | ---- | M] (Nokia Corporation.) -- C:\Program Files (x86)\Nokia\Nokia Suite\PTATTACH.dll
MOD - [2011-12-16 08:59:17 | 000,690,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msvcrt.dll
MOD - [2011-11-17 06:41:38 | 001,292,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntdll.dll
MOD - [2011-11-17 06:39:28 | 000,314,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\webio.dll
MOD - [2011-10-26 05:28:26 | 001,328,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\quartz.dll
MOD - [2011-10-16 20:41:59 | 000,653,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
MOD - [2011-10-16 20:41:59 | 000,569,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
MOD - [2011-08-27 05:43:07 | 000,571,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\oleaut32.dll
MOD - [2011-08-27 05:43:06 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\oleacc.dll
MOD - [2011-07-06 22:49:59 | 001,101,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll
MOD - [2011-07-06 22:49:59 | 001,093,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
MOD - [2011-07-06 22:49:49 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
MOD - [2011-07-06 22:49:49 | 000,554,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
MOD - [2011-06-16 05:35:50 | 000,180,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\xmllite.dll
MOD - [2011-05-24 11:34:20 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\devobj.dll
MOD - [2011-05-24 11:34:20 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\devrtl.dll
MOD - [2011-05-24 11:34:00 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cfgmgr32.dll
MOD - [2011-05-17 08:27:52 | 000,413,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
MOD - [2011-05-04 05:53:10 | 001,553,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\tquery.dll
MOD - [2011-03-03 06:29:23 | 000,269,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dnsapi.dll
MOD - [2011-02-19 22:03:12 | 000,421,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msvcp100.dll
MOD - [2011-02-18 23:40:50 | 000,773,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msvcr100.dll
MOD - [2011-01-17 19:50:30 | 011,322,880 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
MOD - [2011-01-17 19:50:30 | 011,314,688 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
MOD - [2010-12-21 06:38:22 | 000,350,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winhttp.dll
MOD - [2010-11-19 12:42:42 | 000,083,456 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\saxmi.dll
MOD - [2010-09-20 23:37:58 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msasn1.dll
MOD - [2010-09-20 23:33:12 | 000,311,296 | ---- | M] () -- C:\windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_pl_b77a5c561934e089\mscorlib.resources.dll
MOD - [2010-09-20 23:33:07 | 000,032,768 | ---- | M] () -- C:\windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_pl_b77a5c561934e089\System.Runtime.Remoting.resources.dll
MOD - [2010-08-21 06:33:24 | 000,530,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll
MOD - [2010-08-21 06:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
MOD - [2010-07-11 22:40:00 | 001,625,704 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWOW64\nvapi.dll
MOD - [2010-07-11 22:40:00 | 000,441,448 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWOW64\nvumdshim.dll
MOD - [2010-07-11 22:40:00 | 000,227,432 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvdxgiwrap.dll
MOD - [2010-07-11 22:40:00 | 000,186,472 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll
MOD - [2010-07-11 22:40:00 | 000,100,968 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWOW64\nvinit.dll
MOD - [2010-07-11 22:40:00 | 000,010,856 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
MOD - [2010-06-29 06:02:02 | 001,413,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ole32.dll
MOD - [2010-06-19 07:23:50 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rtutils.dll
MOD - [2010-05-28 04:14:54 | 000,053,104 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\LoggerUtility.dll
MOD - [2010-05-28 04:14:52 | 000,376,176 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisTSR.exe
MOD - [2010-05-28 04:14:44 | 000,357,744 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisFeature.dll
MOD - [2010-05-28 04:14:40 | 000,318,832 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisAuthShell.dll
MOD - [2010-05-28 04:14:24 | 000,523,632 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec BioExcess\CryptoAPI.dll
MOD - [2010-05-28 04:14:20 | 000,053,616 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisIEPwdBank.dll
MOD - [2010-05-28 04:14:18 | 000,405,872 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisPBUI.dll
MOD - [2010-05-28 04:14:06 | 000,422,768 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisLaunch.dll
MOD - [2010-05-28 04:14:00 | 000,360,304 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisFingerEnroll.dll
MOD - [2010-05-28 04:13:58 | 000,329,072 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisFactorProxy.dll
MOD - [2010-05-28 04:13:54 | 000,743,280 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec BioExcess\LibFrame.dll
MOD - [2010-05-28 04:13:52 | 000,232,304 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec BioExcess\FrameUtility.dll
MOD - [2010-05-28 04:13:50 | 000,482,160 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisUtility.dll
MOD - [2010-05-19 18:21:54 | 000,743,280 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec Port Locker\LibFrame.dll
MOD - [2010-05-19 18:21:52 | 000,226,672 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec Port Locker\FrameUtility.dll
MOD - [2010-05-19 18:21:48 | 000,476,528 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\EgisPLUtility.dll
MOD - [2010-05-19 18:21:48 | 000,053,104 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\LoggerUtility.dll
MOD - [2010-05-19 18:21:46 | 000,364,400 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\EgisPLTSR.exe
MOD - [2010-05-19 18:21:40 | 000,319,344 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\EgisPLFeature.dll
MOD - [2010-05-19 18:21:36 | 000,316,784 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\EgisPLAuthShell.dll
MOD - [2010-05-19 18:21:34 | 000,305,520 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\EgisPLAbout.dll
MOD - [2010-05-19 18:21:24 | 000,523,632 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec Port Locker\CryptoAPI.dll
MOD - [2010-05-05 07:46:55 | 000,363,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\StructuredQuery.dll
MOD - [2010-03-30 17:39:18 | 004,960,256 | ---- | M] (Intel Corporation) -- C:\Windows\SysWOW64\igdumd32.dll
MOD - [2010-03-30 17:35:22 | 000,571,904 | ---- | M] (Intel Corporation) -- C:\Windows\SysWOW64\igdumdx32.dll
MOD - [2010-03-10 23:12:02 | 000,072,560 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\UpdateModel.dll
MOD - [2010-03-10 23:11:56 | 000,407,920 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
MOD - [2010-03-10 23:11:52 | 000,788,848 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\LiveUpdateUI.dll
MOD - [2010-03-10 23:11:50 | 000,068,976 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\LicenseCenter.dll
MOD - [2010-03-10 23:11:48 | 000,068,976 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\KernelController.dll
MOD - [2010-03-10 23:11:42 | 000,201,584 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
MOD - [2010-03-03 21:16:04 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
MOD - [2010-03-03 21:13:06 | 000,032,768 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\pl-PL\IAStorIcon.resources.dll
MOD - [2010-03-03 21:13:00 | 000,004,608 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\pl-PL\IntelVisualDesign.resources.dll
MOD - [2010-03-03 21:08:36 | 000,163,328 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUIHelper.dll
MOD - [2010-03-03 21:08:30 | 001,046,528 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll
MOD - [2010-03-02 23:39:42 | 001,056,352 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Lenovo\YouCam\MFC71U.DLL
MOD - [2010-03-02 23:39:42 | 000,506,976 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Lenovo\YouCam\MSVCP71.dll
MOD - [2010-03-02 23:39:42 | 000,351,328 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Lenovo\YouCam\MSVCR71.dll
MOD - [2010-03-02 23:37:40 | 000,171,104 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
MOD - [2010-01-15 12:38:46 | 000,536,576 | ---- | M] (Vimicro) -- C:\Program Files (x86)\USB Camera\VM331_STI.EXE
MOD - [2009-11-25 11:47:34 | 000,297,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mscoree.dll
MOD - [2009-09-07 16:38:22 | 000,013,096 | ---- | M] (TODO: ) -- C:\Program Files (x86)\Lenovo\YouCam\Custom\Lang\PLK\IM.dll
MOD - [2009-07-14 02:17:54 | 000,249,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\bcryptprimitives.dll
MOD - [2009-07-14 02:17:54 | 000,242,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rsaenh.dll
MOD - [2009-07-14 02:16:20 | 000,308,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\Wpc.dll
MOD - [2009-07-14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ws2_32.dll
MOD - [2009-07-14 02:16:20 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wtsapi32.dll
MOD - [2009-07-14 02:16:20 | 000,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wshbth.dll
MOD - [2009-07-14 02:16:20 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wsock32.dll
MOD - [2009-07-14 02:16:20 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wship6.dll
MOD - [2009-07-14 02:16:20 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WSHTCPIP.DLL
MOD - [2009-07-14 02:16:19 | 000,616,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wmdrmsdk.dll
MOD - [2009-07-14 02:16:19 | 000,268,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\Wldap32.dll
MOD - [2009-07-14 02:16:19 | 000,237,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WMASF.DLL
MOD - [2009-07-14 02:16:19 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winmm.dll
MOD - [2009-07-14 02:16:19 | 000,156,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winsta.dll
MOD - [2009-07-14 02:16:19 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wkscli.dll
MOD - [2009-07-14 02:16:19 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winrnr.dll
MOD - [2009-07-14 02:16:19 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winnsi.dll
MOD - [2009-07-14 02:16:18 | 001,011,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WindowsCodecs.dll
MOD - [2009-07-14 02:16:18 | 000,377,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wer.dll
MOD - [2009-07-14 02:16:18 | 000,262,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wevtapi.dll
MOD - [2009-07-14 02:16:17 | 001,123,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\vssapi.dll
MOD - [2009-07-14 02:16:17 | 000,627,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\usp10.dll
MOD - [2009-07-14 02:16:17 | 000,079,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\userenv.dll
MOD - [2009-07-14 02:16:17 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\vsstrace.dll
MOD - [2009-07-14 02:16:17 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\version.dll
MOD - [2009-07-14 02:16:15 | 000,380,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sxs.dll
MOD - [2009-07-14 02:16:15 | 000,171,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\spp.dll
MOD - [2009-07-14 02:16:15 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\srvcli.dll
MOD - [2009-07-14 02:16:15 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\slc.dll
MOD - [2009-07-14 02:16:14 | 001,668,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\setupapi.dll
MOD - [2009-07-14 02:16:14 | 000,350,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shlwapi.dll
MOD - [2009-07-14 02:16:14 | 000,179,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shdocvw.dll
MOD - [2009-07-14 02:16:14 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shfolder.dll
MOD - [2009-07-14 02:16:13 | 000,473,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\riched20.dll
MOD - [2009-07-14 02:16:13 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sechost.dll
MOD - [2009-07-14 02:16:13 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\samlib.dll
MOD - [2009-07-14 02:16:13 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\samcli.dll
MOD - [2009-07-14 02:16:13 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\RpcRtRemote.dll
MOD - [2009-07-14 02:16:13 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\SensApi.dll
MOD - [2009-07-14 02:16:13 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\riched32.dll
MOD - [2009-07-14 02:16:12 | 002,504,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WMVCORE.DLL
MOD - [2009-07-14 02:16:12 | 000,988,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\propsys.dll
MOD - [2009-07-14 02:16:12 | 000,791,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\opengl32.dll
MOD - [2009-07-14 02:16:12 | 000,325,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rasapi32.dll
MOD - [2009-07-14 02:16:12 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\powrprof.dll
MOD - [2009-07-14 02:16:12 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\olepro32.dll
MOD - [2009-07-14 02:16:12 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rasman.dll
MOD - [2009-07-14 02:16:12 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\pnrpnsp.dll
MOD - [2009-07-14 02:16:12 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\pngfilt.dll
MOD - [2009-07-14 02:16:12 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\profapi.dll
MOD - [2009-07-14 02:16:12 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rasadhlp.dll
MOD - [2009-07-14 02:16:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\psapi.dll
MOD - [2009-07-14 02:16:11 | 000,121,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntmarta.dll
MOD - [2009-07-14 02:16:11 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\npmproxy.dll
MOD - [2009-07-14 02:16:11 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\nsi.dll
MOD - [2009-07-14 02:16:03 | 002,494,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\netshell.dll
MOD - [2009-07-14 02:16:03 | 001,537,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\NlsData0000.dll
MOD - [2009-07-14 02:16:03 | 000,360,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\netprofm.dll
MOD - [2009-07-14 02:16:03 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\nlaapi.dll
MOD - [2009-07-14 02:16:03 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\netutils.dll
MOD - [2009-07-14 02:16:02 | 000,801,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\NaturalLanguage6.dll
MOD - [2009-07-14 02:16:02 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\NapiNSP.dll
MOD - [2009-07-14 02:15:51 | 000,232,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mswsock.dll
MOD - [2009-07-14 02:15:47 | 000,195,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msrating.dll
MOD - [2009-07-14 02:15:45 | 000,157,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msls31.dll
MOD - [2009-07-14 02:15:44 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msimtf.dll
MOD - [2009-07-14 02:15:44 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msiltcfg.dll
MOD - [2009-07-14 02:15:44 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msimg32.dll
MOD - [2009-07-14 02:15:43 | 000,828,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msctf.dll
MOD - [2009-07-14 02:15:43 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msdmo.dll
MOD - [2009-07-14 02:15:42 | 000,481,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mscms.dll
MOD - [2009-07-14 02:15:42 | 000,072,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msacm32.dll
MOD - [2009-07-14 02:15:41 | 000,213,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\MMDevAPI.dll
MOD - [2009-07-14 02:15:41 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mpr.dll
MOD - [2009-07-14 02:15:40 | 000,177,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mlang.dll
MOD - [2009-07-14 02:15:40 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\midimap.dll
MOD - [2009-07-14 02:15:39 | 000,352,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mfplat.dll
MOD - [2009-07-14 02:15:36 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\linkinfo.dll
MOD - [2009-07-14 02:15:35 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ksuser.dll
MOD - [2009-07-14 02:15:33 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\IPHLPAPI.DLL
MOD - [2009-07-14 02:15:32 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\imgutil.dll
MOD - [2009-07-14 02:15:28 | 000,200,704 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\IEShims.dll
MOD - [2009-07-14 02:15:27 | 000,445,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ieapfltr.dll
MOD - [2009-07-14 02:15:22 | 000,130,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\glu32.dll
MOD - [2009-07-14 02:15:22 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\gpapi.dll
MOD - [2009-07-14 02:15:21 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\FWPUCLNT.DLL
MOD - [2009-07-14 02:15:19 | 001,495,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ExplorerFrame.dll
MOD - [2009-07-14 02:15:14 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\EhStorShell.dll
MOD - [2009-07-14 02:15:13 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dui70.dll
MOD - [2009-07-14 02:15:13 | 000,507,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dxgi.dll
MOD - [2009-07-14 02:15:13 | 000,453,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dsound.dll
MOD - [2009-07-14 02:15:13 | 000,346,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dxtmsft.dll
MOD - [2009-07-14 02:15:13 | 000,215,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dxtrans.dll
MOD - [2009-07-14 02:15:13 | 000,181,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\duser.dll
MOD - [2009-07-14 02:15:13 | 000,088,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dxva2.dll
MOD - [2009-07-14 02:15:13 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dwmapi.dll
MOD - [2009-07-14 02:15:11 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dhcpcsvc.dll
MOD - [2009-07-14 02:15:11 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dhcpcsvc6.dll
MOD - [2009-07-14 02:15:10 | 000,531,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ddraw.dll
MOD - [2009-07-14 02:15:10 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\devenum.dll
MOD - [2009-07-14 02:15:10 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ddrawex.dll
MOD - [2009-07-14 02:15:09 | 000,854,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dbghelp.dll
MOD - [2009-07-14 02:15:09 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dciman32.dll
MOD - [2009-07-14 02:15:08 | 001,826,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d9.dll
MOD - [2009-07-14 02:15:08 | 001,036,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d8.dll
MOD - [2009-07-14 02:15:08 | 000,817,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3dim700.dll
MOD - [2009-07-14 02:15:08 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d8thk.dll
MOD - [2009-07-14 02:15:07 | 001,030,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d10.dll
MOD - [2009-07-14 02:15:07 | 000,522,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d11.dll
MOD - [2009-07-14 02:15:07 | 000,486,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\comdlg32.dll
MOD - [2009-07-14 02:15:07 | 000,190,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d10core.dll
MOD - [2009-07-14 02:15:07 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cryptsp.dll
MOD - [2009-07-14 02:15:07 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cryptbase.dll
MOD - [2009-07-14 02:15:07 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cscapi.dll
MOD - [2009-07-14 02:15:07 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\credssp.dll
MOD - [2009-07-14 02:15:03 | 000,522,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\clbcatq.dll
MOD - [2009-07-14 02:14:58 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\avrt.dll
MOD - [2009-07-14 02:14:57 | 000,195,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\AudioSes.dll
MOD - [2009-07-14 02:14:57 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\atl.dll
MOD - [2009-07-14 02:14:53 | 000,640,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\advapi32.dll
MOD - [2009-07-14 02:14:53 | 000,292,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\apphelp.dll
MOD - [2009-07-14 02:14:52 | 000,309,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\actxprxy.dll
MOD - [2009-07-14 02:14:11 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ksproxy.ax
MOD - [2009-07-14 02:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx
MOD - [2009-07-14 02:14:08 | 000,692,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\bthprops.cpl
MOD - [2009-07-14 02:14:08 | 000,319,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winspool.drv
MOD - [2009-07-14 02:14:08 | 000,172,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wdmaud.drv
MOD - [2009-07-14 02:14:08 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msacm32.drv
MOD - [2009-07-14 02:11:24 | 000,833,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\user32.dll
MOD - [2009-07-14 02:11:24 | 000,245,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\uxtheme.dll
MOD - [2009-07-14 02:11:23 | 000,662,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rpcrt4.dll
MOD - [2009-07-14 02:11:23 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\lpk.dll
MOD - [2009-07-14 02:11:21 | 000,310,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\gdi32.dll
MOD - [2009-07-14 02:11:21 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\imm32.dll
MOD - [2009-07-14 02:11:20 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\bcrypt.dll
MOD - [2009-07-14 02:09:15 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\oleaccrc.dll
MOD - [2009-07-14 02:09:00 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\normaliz.dll
MOD - [2009-06-10 22:22:51 | 000,572,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
MOD - [2009-05-19 23:16:18 | 000,099,624 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\Lenovo\YouCam\MUITransfer\MUITransfer.dll
MOD - [2008-06-05 10:19:18 | 000,479,232 | ---- | M] (Nikon Corporation) -- C:\Program Files (x86)\Common Files\Nikon\Monitor\NkMonitor.exe


[color=#e56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2012-09-12 20:21:48 | 000,368,896 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:[b]64bit:[/b] - [2012-09-12 20:21:48 | 000,022,072 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:[b]64bit:[/b] - [2010-04-20 14:29:08 | 000,903,456 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe -- (btwdins)
SRV:[b]64bit:[/b] - [2010-02-05 15:43:20 | 000,311,296 | ---- | M] (Realtek Semiconductor Corp.) [Auto | Running] -- C:\Program Files\Realtek\RtLED\RtLEDService.exe -- (RtLedService)
SRV:[b]64bit:[/b] - [2009-12-09 10:52:52 | 000,047,712 | ---- | M] (Lenovo.) [Auto | Running] -- C:\Windows\SysNative\TPHDEXLG64.exe -- (TPHDEXLGSVC)
SRV:[b]64bit:[/b] - [2009-09-22 19:16:32 | 000,579,400 | ---- | M] (Lenovo Group Limited) [On_Demand | Stopped] -- C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe -- (Lenovo ReadyComm ConnSvc)
SRV:[b]64bit:[/b] - [2009-08-14 15:22:48 | 000,509,192 | ---- | M] (Lenovo Group Limited) [On_Demand | Stopped] -- C:\Program Files\Lenovo\ReadyComm\AppSvc.exe -- (Lenovo ReadyComm AppSvc)
SRV:[b]64bit:[/b] - [2009-07-14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2009-07-14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2012-01-04 12:32:36 | 000,718,888 | ---- | M] (Nokia) [On_Demand | Running] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2011-10-01 08:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa)
SRV - [2011-10-01 08:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist)
SRV - [2010-07-11 19:09:20 | 001,620,584 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2010-05-28 04:14:02 | 000,709,488 | ---- | M] (Egis Technology Inc. ) [Auto | Running] -- C:\Program Files (x86)\EgisTec BioExcess\EgisService.exe -- (EgisTec Service)
SRV - [2010-05-28 04:13:38 | 000,314,736 | ---- | M] (Egis Technology Inc. ) [Auto | Running] -- C:\Program Files (x86)\EgisTec BioExcess\EgisDSService.exe -- (EgisTec Data Security Service)
SRV - [2010-05-19 18:21:26 | 000,322,416 | ---- | M] (Egis Technology Inc. ) [Auto | Running] -- C:\Program Files (x86)\EgisTec Port Locker\Egishlpsvc.exe -- (EgisTec Service Help)
SRV - [2010-03-18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010-03-03 21:16:06 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2009-09-30 13:02:38 | 002,320,920 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2009-09-30 13:02:36 | 000,268,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2009-07-16 04:12:42 | 000,276,296 | ---- | M] (Lenovo Group Limited) [On_Demand | Stopped] -- C:\Program Files (x86)\Lenovo\ReadyComm\PS_MDP.dll -- (PS_MDP)
SRV - [2009-07-14 15:27:26 | 000,038,152 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe -- (IGRS)
SRV - [2009-07-14 15:27:20 | 000,103,688 | ---- | M] (Lenovo Group Limited) [Auto | Stopped] -- C:\Program Files (x86)\Lenovo\ReadyComm\common\router.dll -- (ReadyComm.DirectRouter)
SRV - [2009-06-10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


[color=#e56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2012-10-07 15:13:32 | 000,311,968 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt)
DRV:[b]64bit:[/b] - [2012-10-07 15:10:30 | 000,043,168 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt)
DRV:[b]64bit:[/b] - [2012-08-30 21:03:48 | 000,128,456 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:[b]64bit:[/b] - [2012-03-01 07:54:38 | 000,022,896 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2012-02-14 23:04:30 | 000,034,040 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MusCAudio.sys -- (MusCAudio)
DRV:[b]64bit:[/b] - [2011-10-01 08:30:22 | 000,022,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftvollh.sys -- (Sftvol)
DRV:[b]64bit:[/b] - [2011-10-01 08:30:18 | 000,268,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftplaylh.sys -- (Sftplay)
DRV:[b]64bit:[/b] - [2011-10-01 08:30:18 | 000,025,960 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftredirlh.sys -- (Sftredir)
DRV:[b]64bit:[/b] - [2011-10-01 08:30:10 | 000,764,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftfslh.sys -- (Sftfs)
DRV:[b]64bit:[/b] - [2011-03-11 07:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2011-03-11 07:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2010-09-20 16:46:21 | 000,055,880 | ---- | M] (Egis Technology Inc.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\EgisTecFF.sys -- (EgisTecFF)
DRV:[b]64bit:[/b] - [2010-09-20 16:29:35 | 000,035,888 | ---- | M] (EgisTec) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\FPSensor.sys -- (FPSensor)
DRV:[b]64bit:[/b] - [2010-09-20 16:29:33 | 000,060,464 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDVDisk.sys -- (mwlPSDVDisk)
DRV:[b]64bit:[/b] - [2010-09-20 16:29:33 | 000,022,576 | ---- | M] (Egis Technology Inc.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDFilter.sys -- (mwlPSDFilter)
DRV:[b]64bit:[/b] - [2010-09-20 16:29:33 | 000,020,016 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDNserv.sys -- (mwlPSDNServ)
DRV:[b]64bit:[/b] - [2010-07-11 22:40:00 | 000,024,680 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:[b]64bit:[/b] - [2010-04-08 17:11:12 | 000,054,824 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btusbflt.sys -- (btusbflt)
DRV:[b]64bit:[/b] - [2010-03-30 17:47:08 | 010,322,848 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2010-03-26 10:14:50 | 000,162,304 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:[b]64bit:[/b] - [2010-03-24 10:57:20 | 000,243,744 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:[b]64bit:[/b] - [2010-03-18 11:35:10 | 000,215,168 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vm331avs.sys -- (vm331avs)
DRV:[b]64bit:[/b] - [2010-03-03 20:51:40 | 000,540,696 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:[b]64bit:[/b] - [2010-02-25 18:32:12 | 000,158,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:[b]64bit:[/b] - [2010-02-22 11:03:44 | 000,075,304 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
DRV:[b]64bit:[/b] - [2010-02-02 16:52:02 | 003,058,168 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:[b]64bit:[/b] - [2010-02-02 08:38:30 | 000,271,872 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:[b]64bit:[/b] - [2010-01-15 19:08:34 | 000,039,008 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\LhdX64.sys -- (LHDmgr)
DRV:[b]64bit:[/b] - [2010-01-15 07:23:20 | 000,098,344 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwaudio.sys -- (btwaudio)
DRV:[b]64bit:[/b] - [2010-01-15 07:23:14 | 000,132,648 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwavdt.sys -- (btwavdt)
DRV:[b]64bit:[/b] - [2010-01-15 07:23:10 | 000,021,288 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwrchid.sys -- (btwrchid)
DRV:[b]64bit:[/b] - [2009-12-09 10:52:28 | 000,023,648 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ApsHM64.sys -- (TPDIGIMN)
DRV:[b]64bit:[/b] - [2009-12-09 10:52:22 | 000,135,264 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ApsX64.sys -- (Shockprf)
DRV:[b]64bit:[/b] - [2009-10-19 01:40:50 | 000,028,176 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AcpiVpc.sys -- (ACPIVPC)
DRV:[b]64bit:[/b] - [2009-09-17 05:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64)
DRV:[b]64bit:[/b] - [2009-07-21 15:20:06 | 000,121,840 | ---- | M] (CyberLink) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wsvd.sys -- (wsvd)
DRV:[b]64bit:[/b] - [2009-07-16 12:55:34 | 000,011,280 | ---- | M] (Lenovo) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WDMirror.sys -- (wdmirror)
DRV:[b]64bit:[/b] - [2009-07-16 04:38:20 | 000,079,376 | ---- | M] (Lenovo) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WDBridge.sys -- (Bridge0)
DRV:[b]64bit:[/b] - [2009-07-14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009-07-14 02:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009-06-10 21:35:28 | 005,434,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:36 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\k57nd60a.sys -- (k57nd60a)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009-06-10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:[b]64bit:[/b] - [2009-04-07 08:33:08 | 000,035,104 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwl2cap.sys -- (btwl2cap)
DRV:[b]64bit:[/b] - [2008-08-28 10:44:42 | 000,025,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV - [2009-07-14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


[color=#e56717]========== Standard Registry (SafeList) ==========[/color]


[color=#e56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope =
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC"]http://www.bing.com/...ms}&FORM=IE8SRC[/url]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC"]http://www.bing.com/...ms}&FORM=IE8SRC[/url]


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = [url="http://www.lenovo.com"]http://www.lenovo.com[/url]
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [url="http://www.lenovo.com/"]http://www.lenovo.com/[/url] [binary data]
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url="http://www.lenovo.com"]http://www.lenovo.com[/url]
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox"]http://www.bing.com/...rc=IE-SearchBox[/url]
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\..\SearchScopes\{F534EC89-A1CC-4E20-96FB-B74999DC3401}: "URL" = [url="http://www.google.com/search?hl=pl&q={searchTerms"]http://www.google.co...&q={searchTerms[/url]}
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url="http://www.google.pl/"]http://www.google.pl/[/url]
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\..\SearchScopes\{F534EC89-A1CC-4E20-96FB-B74999DC3401}: "URL" = [url="http://www.google.com/search?hl=pl&q={searchTerms"]http://www.google.co...&q={searchTerms[/url]}
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#e56717]========== FireFox ==========[/color]

FF - prefs.js..extensions.enabledAddons:
FF - prefs.js..network.proxy.type: 0
FF - prefs.js..browser.search.defaultenginename: ""
FF - prefs.js..browser.search.selectedEngine: ""
FF - prefs.js..browser.search.defaulturl: ""
FF - user.js - File not found

FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_37: C:\windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Ania\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\fe_7.0@nokia.com: C:\Program Files (x86)\Nokia\Nokia Suite\Connectors\Bookmarks Connector\FirefoxExtension_7.0 [2012-05-08 20:30:36 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012-11-25 23:09:41 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\te_9.0@nokia.com: C:\Program Files (x86)\Nokia\Nokia Suite\Connectors\Thunderbird Connector\ThunderbirdExtension_9.0 [2012-05-08 20:30:55 | 000,000,000 | ---D | M]

[2011-10-02 22:32:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ania\AppData\Roaming\mozilla\Extensions
[2013-01-02 21:01:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ania\AppData\Roaming\mozilla\Firefox\Profiles\q8g7bbby.default\extensions
[2012-07-31 12:59:18 | 000,221,380 | ---- | M] () (No name found) -- C:\Users\Ania\AppData\Roaming\mozilla\firefox\profiles\q8g7bbby.default\extensions\gophoto@gophoto.it.xpi
[2012-10-28 09:21:53 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2012-07-03 20:45:39 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
[2012-09-24 20:29:38 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
[2012-10-28 09:21:53 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES (X86)\MCAFEE\SITEADVISOR
[2011-09-29 08:30:14 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011-09-29 01:52:42 | 000,002,767 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\allegro-pl.xml
[2011-09-29 01:52:42 | 000,001,406 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fbc-pl.xml
[2011-09-29 01:52:42 | 000,000,917 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\merlin-pl.xml
[2011-09-29 01:52:42 | 000,000,858 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\pwn-pl.xml
[2011-09-29 01:52:42 | 000,001,183 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-pl.xml
[2011-09-29 01:52:42 | 000,001,683 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wp-pl.xml

[color=#e56717]========== Chrome ==========[/color]


O1 HOSTS File: ([2009-06-10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (IEPwdBankBHO Class) - {56CBB761-DA41-4E31-B270-B13B4B0A61D0} - C:\Program Files (x86)\EgisTec BioExcess\EgisIEPwdBank.dll (Egis Technology Inc. )
O4:[b]64bit:[/b] - HKLM..\Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited)
O4:[b]64bit:[/b] - HKLM..\Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\utility.exe (Lenovo(beijing) Limited)
O4:[b]64bit:[/b] - HKLM..\Run: [ETDWare] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [TpShocks] C:\Windows\SysNative\TpShocks.exe (Lenovo.)
O4:[b]64bit:[/b] - HKLM..\Run: [UpdatePRCShortCut] C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331_STI.EXE (Vimicro)
O4 - HKLM..\Run: [EgisTecPMMUpdate] C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe (Egis Technology Inc.)
O4 - HKLM..\Run: [EgisUpdate] C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe (Egis Technology Inc.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [IMSS] C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe ()
O4 - HKLM..\Run: [PLTSR] C:\Program Files (x86)\EgisTec Port Locker\EgisPLTSR.exe (Egis Technology Inc. )
O4 - HKLM..\Run: [UCam_Menu] C:\Program Files (x86)\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdateP2GShortCut] C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePRCShortCut] C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [VitaKeyTSR] C:\Program Files (x86)\EgisTec BioExcess\EgisTSR.exe (Egis Technology Inc. )
O4 - HKLM..\Run: [YouCam Mirror Tray icon] C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe (CyberLink Corp.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe (Nokia)
O4 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000..\Run: [Power2GoExpress] C:\Program Files (x86)\Lenovo\Power2Go\Power2GoExpress.exe (Cyberlink)
O4 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe (Nokia)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - Startup: C:\Users\Ania\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O7 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O8:[b]64bit:[/b] - Extra context menu item: Wyślij obraz do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm ()
O8:[b]64bit:[/b] - Extra context menu item: Wyślij stronę do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Wyślij obraz do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Wyślij stronę do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9:[b]64bit:[/b] - Extra Button: @C:\Program Files\Lenovo\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : @C:\Program Files\Lenovo\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: PokerStars.eu - {07BA1DA9-F501-4796-8728-74D1B91A6CD5} - C:\Program Files (x86)\PokerStars.EU\PokerStarsUpdate.exe File not found
O9 - Extra Button: Wyślij do interfejsu Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Wyślij do urządzenia &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} [url="http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab"]http://download.macr...director/sw.cab[/url] (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_37)
O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_37)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_37)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} [url="http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab"]http://platformdl.ad...Plus/1.6/gp.cab[/url] (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.179.1.63 62.179.1.62
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{22D5BAA4-B440-41E3-A350-07E4697C398D}: DhcpNameServer = 62.179.1.63 62.179.1.62
O18:[b]64bit:[/b] - Protocol\Handler\livecall - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\msnim - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml - No CLSID value found
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O20:[b]64bit:[/b] - AppInit_DLLs: (C:\windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20:[b]64bit:[/b] - AppInit_DLLs: (C:\windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20 - AppInit_DLLs: (C:\windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

[color=#e56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2013-01-02 20:21:10 | 000,000,000 | ---D | C] -- C:\_OTL
[2013-01-01 18:54:37 | 000,000,000 | ---D | C] -- C:\rsit
[2013-01-01 18:22:05 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Ania\Desktop\OTL.exe
[2013-01-01 18:18:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HijackThis
[2013-01-01 18:18:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Trend Micro
[2012-12-15 22:58:18 | 000,000,000 | ---D | C] -- C:\Users\Ania\AppData\Roaming\Mp3tag
[2012-12-15 22:58:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mp3tag
[2012-12-02 00:33:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2012-12-02 00:33:28 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2012-12-02 00:33:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2012-11-30 23:36:58 | 000,000,000 | ---D | C] -- C:\Users\Ania\Desktop\zdjęcia 1
[2012-11-25 23:29:14 | 000,000,000 | ---D | C] -- C:\Users\Ania\AppData\Local\Windows Live
[2012-11-25 23:22:30 | 000,110,592 | R--- | C] (Nikon Corporation) -- C:\windows\SysWow64\RCSigProc.dll
[2012-11-25 23:22:29 | 006,475,096 | ---- | C] (Nikon, Inc.) -- C:\windows\SysWow64\NEFcodec.dll
[2012-11-25 23:22:29 | 000,200,704 | R--- | C] (Nikon Corporation) -- C:\windows\SysWow64\Strato7.dll
[2012-11-25 23:16:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ViewNX
[2012-11-25 23:15:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Trance Pad
[2012-11-25 23:14:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Transfer
[2012-11-25 23:14:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\muvee Technologies
[2012-11-25 23:13:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Nikon
[2012-11-25 23:13:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Nikon
[2012-11-25 23:13:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Nikon
[2012-11-25 23:12:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Ultima_T15
[2012-11-25 23:12:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Sync Services
[2012-11-25 23:12:03 | 000,000,000 | ---D | C] -- C:\ProgramData\EnterNHelp
[2012-11-25 23:09:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2012-11-25 23:08:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2012-11-25 23:08:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon
[2012-11-14 22:34:03 | 000,000,000 | ---D | C] -- C:\Users\Ania\AppData\Local\PokerStars.EU
[2012-11-14 22:33:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PokerStars.EU

[color=#e56717]========== Files - Modified Within 60 Days ==========[/color]

[2013-01-02 21:22:05 | 002,883,584 | -HS- | M] () -- C:\Users\Ania\NTUSER.DAT
[2013-01-02 21:12:12 | 000,013,648 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013-01-02 21:12:12 | 000,013,648 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013-01-02 21:04:10 | 000,001,040 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2013-01-02 21:03:25 | 000,000,006 | -H-- | M] () -- C:\windows\tasks\SA.DAT
[2013-01-02 21:02:59 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2013-01-02 21:02:45 | 3010,797,568 | -HS- | M] () -- C:\hiberfil.sys
[2013-01-02 21:02:13 | 006,395,525 | -H-- | M] () -- C:\Users\Ania\AppData\Local\IconCache.db
[2013-01-02 21:00:56 | 000,090,804 | ---- | M] () -- C:\Users\Ania\Desktop\otlforum.rtf
[2013-01-02 20:29:01 | 000,001,044 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2013-01-01 18:22:11 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Ania\Desktop\OTL.exe
[2013-01-01 18:18:58 | 000,002,097 | ---- | M] () -- C:\Users\Ania\Desktop\HijackThis.lnk
[2013-01-01 18:04:15 | 102,315,992 | ---- | M] () -- C:\Users\Ania\Desktop\avast_free_antivirus_setup.exe
[2012-12-30 20:47:02 | 001,407,135 | ---- | M] () -- C:\Users\Ania\Desktop\dsc05611g.jpg
[2012-12-30 20:47:01 | 000,124,302 | ---- | M] () -- C:\Users\Ania\Desktop\dsc05612s.jpg
[2012-12-30 20:47:01 | 000,108,133 | ---- | M] () -- C:\Users\Ania\Desktop\bm22.jpg
[2012-12-30 20:46:10 | 000,127,161 | ---- | M] () -- C:\Users\Ania\Desktop\3erS30B1.jpg
[2012-12-22 22:18:25 | 001,551,484 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2012-12-22 22:18:25 | 000,698,598 | ---- | M] () -- C:\windows\SysNative\perfh015.dat
[2012-12-22 22:18:25 | 000,616,694 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2012-12-22 22:18:25 | 000,135,418 | ---- | M] () -- C:\windows\SysNative\perfc015.dat
[2012-12-22 22:18:25 | 000,106,816 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2012-12-22 16:03:26 | 000,009,740 | ---- | M] () -- C:\Users\Ania\Desktop\Bez tytułu 2e46.ods
[2012-12-21 21:31:18 | 000,310,560 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
[2012-12-15 22:58:02 | 000,000,983 | ---- | M] () -- C:\Users\Public\Desktop\Mp3tag.lnk
[2012-12-15 22:57:34 | 003,204,456 | ---- | M] () -- C:\Users\Ania\Desktop\mp3tagv253setup.exe
[2012-12-03 20:58:09 | 000,504,320 | ---- | M] () -- C:\Users\Ania\Desktop\Zestawienie Ania K._xls
[2012-11-27 12:06:36 | 000,441,531 | ---- | M] () -- C:\Users\Ania\Desktop\Zdjęcie0113.jpg
[2012-11-27 12:06:18 | 000,452,758 | ---- | M] () -- C:\Users\Ania\Desktop\Zdjęcie0112.jpg
[2012-11-25 23:22:33 | 000,000,000 | -H-- | M] () -- C:\windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2012-11-25 23:16:25 | 000,001,949 | ---- | M] () -- C:\Users\Public\Desktop\ViewNX.lnk
[2012-11-25 23:15:13 | 000,000,268 | RH-- | M] () -- C:\ProgramData\Contextual Menu Items
[2012-11-25 23:15:13 | 000,000,268 | RH-- | M] () -- C:\Users\Ania\AppData\Roaming\Conditionals
[2012-11-25 23:15:13 | 000,000,020 | -H-- | M] () -- C:\ProgramData\PKP_DLdw.DAT
[2012-11-25 23:14:17 | 000,002,206 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Nikon Monitor.lnk
[2012-11-25 23:14:10 | 000,002,018 | ---- | M] () -- C:\Users\Public\Desktop\Nikon Transfer.lnk
[2012-11-25 23:12:03 | 000,000,268 | RH-- | M] () -- C:\ProgramData\Console
[2012-11-25 23:12:03 | 000,000,268 | RH-- | M] () -- C:\Users\Ania\AppData\Roaming\Components
[2012-11-25 23:12:03 | 000,000,020 | -H-- | M] () -- C:\ProgramData\PKP_DLdu.DAT
[2012-11-25 23:09:30 | 000,001,845 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012-11-17 17:13:29 | 000,066,960 | ---- | M] () -- C:\Users\Ania\AppData\Local\GDIPFONTCACHEV1.DAT
[2012-11-14 22:34:03 | 000,001,088 | ---- | M] () -- C:\Users\Public\Desktop\PokerStars.eu MsM3M5 cztery44.lnk

[color=#e56717]========== Files Created - No Company Name ==========[/color]

[2013-01-02 21:00:56 | 000,090,804 | ---- | C] () -- C:\Users\Ania\Desktop\otlforum.rtf
[2013-01-01 18:18:58 | 000,002,097 | ---- | C] () -- C:\Users\Ania\Desktop\HijackThis.lnk
[2013-01-01 18:04:11 | 102,315,992 | ---- | C] () -- C:\Users\Ania\Desktop\avast_free_antivirus_setup.exe
[2012-12-30 20:58:31 | 000,127,161 | ---- | C] () -- C:\Users\Ania\Desktop\3erS30B1.jpg
[2012-12-30 20:54:12 | 000,124,302 | ---- | C] () -- C:\Users\Ania\Desktop\dsc05612s.jpg
[2012-12-30 20:54:07 | 001,407,135 | ---- | C] () -- C:\Users\Ania\Desktop\dsc05611g.jpg
[2012-12-30 20:53:46 | 000,108,133 | ---- | C] () -- C:\Users\Ania\Desktop\bm22.jpg
[2012-12-22 16:03:24 | 000,009,740 | ---- | C] () -- C:\Users\Ania\Desktop\Bez tytułu 2e46.ods
[2012-12-15 22:58:02 | 000,000,983 | ---- | C] () -- C:\Users\Public\Desktop\Mp3tag.lnk
[2012-12-15 22:57:32 | 003,204,456 | ---- | C] () -- C:\Users\Ania\Desktop\mp3tagv253setup.exe
[2012-12-03 20:58:09 | 000,504,320 | ---- | C] () -- C:\Users\Ania\Desktop\Zestawienie Ania K._xls
[2012-11-27 22:26:31 | 000,441,531 | ---- | C] () -- C:\Users\Ania\Desktop\Zdjęcie0113.jpg
[2012-11-27 22:26:29 | 000,452,758 | ---- | C] () -- C:\Users\Ania\Desktop\Zdjęcie0112.jpg
[2012-11-25 23:22:33 | 000,000,000 | -H-- | C] () -- C:\windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2012-11-25 23:16:25 | 000,001,949 | ---- | C] () -- C:\Users\Public\Desktop\ViewNX.lnk
[2012-11-25 23:15:13 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Contextual Menu Items
[2012-11-25 23:15:13 | 000,000,268 | RH-- | C] () -- C:\Users\Ania\AppData\Roaming\Conditionals
[2012-11-25 23:15:13 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLdw.DAT
[2012-11-25 23:14:17 | 000,002,206 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Nikon Monitor.lnk
[2012-11-25 23:14:10 | 000,002,018 | ---- | C] () -- C:\Users\Public\Desktop\Nikon Transfer.lnk
[2012-11-25 23:12:03 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Console
[2012-11-25 23:12:03 | 000,000,268 | RH-- | C] () -- C:\Users\Ania\AppData\Roaming\Components
[2012-11-25 23:12:03 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLdu.DAT
[2012-11-25 23:09:30 | 000,001,845 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012-11-16 22:15:27 | 000,000,003 | ---- | C] () -- C:\windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2012-11-16 22:03:09 | 000,000,003 | ---- | C] () -- C:\windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2012-11-14 22:34:03 | 000,001,088 | ---- | C] () -- C:\Users\Public\Desktop\PokerStars.eu MsM3M5 cztery44.lnk
[2012-01-30 22:33:31 | 000,210,032 | ---- | C] () -- C:\windows\SysWow64\DBCLIENT.DLL
[2011-09-27 18:08:35 | 000,000,640 | RHS- | C] () -- C:\Users\Ania\ntuser.pol
[2011-08-19 19:49:41 | 000,006,144 | ---- | C] () -- C:\Users\Ania\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-07-05 19:33:00 | 001,578,194 | ---- | C] () -- C:\windows\SysWow64\PerfStringBackup.INI
[2011-07-02 22:47:56 | 006,395,525 | -H-- | C] () -- C:\Users\Ania\AppData\Local\IconCache.db
[2011-07-02 19:58:09 | 000,066,960 | ---- | C] () -- C:\Users\Ania\AppData\Local\GDIPFONTCACHEV1.DAT
[2011-07-02 19:57:14 | 002,883,584 | -HS- | C] () -- C:\Users\Ania\NTUSER.DAT
[2011-07-02 19:57:14 | 000,524,288 | -HS- | C] () -- C:\Users\Ania\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2011-07-02 19:57:14 | 000,524,288 | -HS- | C] () -- C:\Users\Ania\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2011-07-02 19:57:14 | 000,065,536 | -HS- | C] () -- C:\Users\Ania\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2011-07-02 19:57:14 | 000,000,020 | -HS- | C] () -- C:\Users\Ania\ntuser.ini

[color=#e56717]========== ZeroAccess Check ==========[/color]

[2009-07-14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012-06-09 06:30:56 | 014,165,504 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012-06-09 05:46:56 | 012,868,608 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009-07-14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009-07-14 02:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009-07-14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#e56717]========== LOP Check ==========[/color]

[2012-10-10 21:45:24 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\AirportMadness4
[2011-09-16 21:42:50 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Awem
[2012-10-10 21:35:00 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\com.bigfatsimulations.airportmadness3.3A85083A650345D1ADAB4572C5816AD2DC9802A3.1
[2012-03-09 22:35:39 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Creevity Mp3 Cover Downloader
[2012-09-21 23:43:11 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\DivoGames
[2012-03-04 19:52:53 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Easy Image Modifier
[2011-12-14 22:27:09 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Gadu-Gadu 10
[2012-01-15 22:40:56 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\GHISLER
[2012-04-14 19:35:07 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\ICAClient
[2011-11-09 00:05:21 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\md studio
[2012-12-15 23:31:28 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Mp3tag
[2011-08-19 19:46:34 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\MusicNet
[2012-05-08 20:32:36 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Nokia
[2011-10-11 22:25:42 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Nokia Ovi Suite
[2012-05-08 20:49:00 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Nokia Suite
[2012-01-08 10:54:43 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\OpenFM
[2012-01-30 22:39:15 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\OpenOffice.org
[2011-10-11 22:42:16 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\PC Suite
[2012-09-18 22:32:25 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Peace Craft
[2012-12-16 00:40:02 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\SoftGrid Client
[2011-07-05 19:35:08 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\TP
[2012-09-17 21:41:35 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\wargaming.net
[2012-09-18 23:02:41 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\World-LooM

[color=#e56717]========== Purity Check ==========[/color]


< End of report >[/log]

[log]
OTL logfile created on: 2013-01-02 21:17:25 - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Ania\Desktop
64bit- Professional (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,74 Gb Total Physical Memory | 2,13 Gb Available Physical Memory | 56,90% Memory free
7,48 Gb Paging File | 5,64 Gb Available in Paging File | 75,38% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 421,81 Gb Total Space | 362,71 Gb Free Space | 85,99% Space Free | Partition Type: NTFS
Drive D: | 29,00 Gb Total Space | 27,79 Gb Free Space | 95,86% Space Free | Partition Type: NTFS

Computer Name: ANIA-KOMPUTER | User Name: Ania | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 60 Days

[color=#e56717]========== Processes (All) ==========[/color]

PRC - [2013-01-01 18:22:11 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Ania\Desktop\OTL.exe
PRC - [2012-12-28 22:22:13 | 000,697,272 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.exe
PRC - [2012-10-27 06:02:44 | 000,672,832 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
PRC - [2012-07-11 20:00:46 | 000,919,008 | R--- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
PRC - [2012-02-01 08:11:34 | 001,083,264 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
PRC - [2012-01-04 14:22:40 | 000,822,624 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
PRC - [2012-01-04 12:32:36 | 000,718,888 | ---- | M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
PRC - [2012-01-04 12:32:06 | 000,148,520 | ---- | M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
PRC - [2011-10-01 08:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
PRC - [2011-10-01 08:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
PRC - [2011-01-17 19:50:30 | 011,322,880 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
PRC - [2011-01-17 19:50:30 | 011,314,688 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
PRC - [2010-07-11 19:09:20 | 001,620,584 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2010-05-28 04:14:52 | 000,376,176 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisTSR.exe
PRC - [2010-05-28 04:14:02 | 000,709,488 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisService.exe
PRC - [2010-05-28 04:13:38 | 000,314,736 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisDSService.exe
PRC - [2010-05-19 18:21:46 | 000,364,400 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\EgisPLTSR.exe
PRC - [2010-05-19 18:21:26 | 000,322,416 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\Egishlpsvc.exe
PRC - [2010-03-10 23:11:56 | 000,407,920 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
PRC - [2010-03-10 23:11:42 | 000,201,584 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
PRC - [2010-03-03 21:16:06 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2010-03-03 21:16:04 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
PRC - [2010-03-02 23:37:40 | 000,171,104 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
PRC - [2010-01-15 12:38:46 | 000,536,576 | ---- | M] (Vimicro) -- C:\Program Files (x86)\USB Camera\VM331_STI.EXE
PRC - [2009-09-30 13:02:38 | 002,320,920 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2009-09-30 13:02:36 | 000,268,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2009-07-14 15:27:26 | 000,038,152 | ---- | M] (Lenovo Group Limited) -- C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe
PRC - [2008-06-05 10:19:18 | 000,479,232 | ---- | M] (Nikon Corporation) -- C:\Program Files (x86)\Common Files\Nikon\Monitor\NkMonitor.exe


[color=#e56717]========== Modules (All) ==========[/color]

MOD - [2013-01-01 18:22:11 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Ania\Desktop\OTL.exe
MOD - [2012-12-28 22:22:13 | 014,460,856 | R--- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_5_502_135.ocx
MOD - [2012-12-28 22:22:13 | 000,697,272 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.exe
MOD - [2012-12-28 22:22:13 | 000,476,088 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.dll
MOD - [2012-11-20 23:26:08 | 000,452,608 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\c0dc6f48b089aa04822d3e205f124f88\IAStorUtil.ni.dll
MOD - [2012-11-17 17:18:06 | 000,771,584 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\1430191d067c0f28c3a676d3ecb85b26\System.Runtime.Remoting.ni.dll
MOD - [2012-11-17 17:17:12 | 012,433,920 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\515c6ffea562bb0f03a1ed8f75279648\System.Windows.Forms.ni.dll
MOD - [2012-11-17 17:16:57 | 001,591,808 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\f4be07261983040b29685575b69085e8\System.Drawing.ni.dll
MOD - [2012-11-17 17:16:32 | 003,325,952 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\6a68e4c50351a220511a5dfc3e025685\WindowsBase.ni.dll
MOD - [2012-11-17 17:16:19 | 005,453,312 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d2d47118e5da6db054d5676e665f2be2\System.Xml.ni.dll
MOD - [2012-11-17 17:16:10 | 000,971,264 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\2f44dac350b6161a9e9ce7222ae94335\System.Configuration.ni.dll
MOD - [2012-11-17 17:16:08 | 007,973,888 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System\c8ebcd93a2b547dc72dee2fcfabcdd50\System.ni.dll
MOD - [2012-11-17 17:15:52 | 011,490,816 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\5530227809880c9b8b1d834e5434e840\mscorlib.ni.dll
MOD - [2012-11-12 14:24:42 | 006,029,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mshtml.dll
MOD - [2012-10-27 06:02:44 | 000,672,832 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
MOD - [2012-10-27 06:00:40 | 000,981,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wininet.dll
MOD - [2012-10-27 06:00:37 | 001,230,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\urlmon.dll
MOD - [2012-10-27 06:00:11 | 000,627,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msfeeds.dll
MOD - [2012-10-27 05:59:25 | 002,072,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\iertutil.dll
MOD - [2012-10-27 05:59:25 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ieui.dll
MOD - [2012-10-27 05:59:24 | 011,019,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ieframe.dll
MOD - [2012-10-27 05:59:24 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\iepeers.dll
MOD - [2012-10-27 05:59:24 | 000,163,328 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\ieproxy.dll
MOD - [2012-10-04 17:54:17 | 001,114,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\kernel32.dll
MOD - [2012-10-04 17:54:17 | 000,274,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\KernelBase.dll
MOD - [2012-09-24 16:00:16 | 000,059,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
MOD - [2012-09-12 16:19:44 | 000,077,800 | ---- | M] (Microsoft Corporation) -- c:\Program Files (x86)\Microsoft Security Client\MpOAv.dll
MOD - [2012-08-31 12:02:23 | 005,919,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
MOD - [2012-08-24 18:10:47 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wintrust.dll
MOD - [2012-07-30 22:43:36 | 000,061,920 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
MOD - [2012-07-30 22:43:29 | 000,075,232 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
MOD - [2012-07-11 20:00:46 | 000,919,008 | R--- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
MOD - [2012-07-04 22:26:19 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\netapi32.dll
MOD - [2012-07-03 20:45:16 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Java\jre6\bin\MSVCR71.dll
MOD - [2012-06-16 05:36:19 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\jscript.dll
MOD - [2012-06-09 05:46:56 | 012,868,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shell32.dll
MOD - [2012-06-06 06:09:46 | 001,236,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msxml3.dll
MOD - [2012-06-02 05:48:39 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\secur32.dll
MOD - [2012-06-02 05:48:35 | 000,225,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\schannel.dll
MOD - [2012-06-02 05:47:31 | 000,219,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ncrypt.dll
MOD - [2012-06-02 05:45:21 | 001,157,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\crypt32.dll
MOD - [2012-06-02 05:45:21 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cryptnet.dll
MOD - [2012-06-02 05:42:51 | 000,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sspicli.dll
MOD - [2012-05-05 08:44:48 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\srclient.dll
MOD - [2012-04-21 05:23:06 | 001,625,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.17007_none_72f44f3186198a88\GdiPlus.dll
MOD - [2012-04-07 12:34:37 | 002,342,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msi.dll
MOD - [2012-03-01 06:45:05 | 000,158,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\imagehlp.dll
MOD - [2012-02-01 18:58:59 | 003,766,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90.dll
MOD - [2012-02-01 08:12:34 | 000,423,808 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\ssoengine.dll
MOD - [2012-02-01 08:12:32 | 000,058,240 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\securestorage.dll
MOD - [2012-02-01 08:12:30 | 000,272,768 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\phonon4.dll
MOD - [2012-02-01 08:12:30 | 000,095,104 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\qjson.dll
MOD - [2012-02-01 08:12:28 | 001,128,320 | ---- | M] (Nokia Corporation) -- C:\Program Files (x86)\Nokia\Nokia Suite\nossu2fn.dll
MOD - [2012-02-01 08:12:26 | 000,709,504 | ---- | M] (Nokia Corporation) -- C:\Program Files (x86)\Nokia\Nokia Suite\nossu2dm.dll
MOD - [2012-02-01 08:12:22 | 000,596,864 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\WidgetLibrary.dll
MOD - [2012-02-01 08:12:20 | 000,253,312 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\UI-QML_Library.dll
MOD - [2012-02-01 08:12:18 | 000,050,048 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\TrayIcon.dll
MOD - [2012-02-01 08:12:16 | 003,260,800 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\styles\Style.dll
MOD - [2012-02-01 08:12:14 | 000,384,896 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QxtCore.dll
MOD - [2012-02-01 08:12:14 | 000,165,248 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QxtWeb.dll
MOD - [2012-02-01 08:12:12 | 010,843,520 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtWebKit4.dll
MOD - [2012-02-01 08:12:12 | 002,557,312 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtXmlPatterns4.dll
MOD - [2012-02-01 08:12:12 | 000,346,496 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtXml4.dll
MOD - [2012-02-01 08:12:08 | 001,294,208 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtScript4.dll
MOD - [2012-02-01 08:12:08 | 000,196,480 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtSql4.dll
MOD - [2012-02-01 08:12:06 | 000,919,936 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtNetwork4.dll
MOD - [2012-02-01 08:12:06 | 000,682,880 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtOpenGL4.dll
MOD - [2012-02-01 08:12:06 | 000,517,504 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtMultimediaKit1.dll
MOD - [2012-02-01 08:12:04 | 008,172,928 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtGui4.dll
MOD - [2012-02-01 08:12:04 | 002,252,672 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtDeclarative4.dll
MOD - [2012-02-01 08:12:02 | 002,288,512 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\QtCore4.dll
MOD - [2012-02-01 08:12:00 | 001,962,880 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\Photos.dll
MOD - [2012-02-01 08:12:00 | 000,422,272 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\sqldrivers\qsqlite4.dll
MOD - [2012-02-01 08:11:58 | 004,954,496 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\Music.dll
MOD - [2012-02-01 08:11:56 | 000,202,624 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qjpeg4.dll
MOD - [2012-02-01 08:11:56 | 000,034,688 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qico4.dll
MOD - [2012-02-01 08:11:54 | 001,226,112 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\dashboard.dll
MOD - [2012-02-01 08:11:54 | 000,032,640 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qgif4.dll
MOD - [2012-02-01 08:11:52 | 001,371,008 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\contacts.dll
MOD - [2012-02-01 08:11:52 | 000,380,288 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\carousel.dll
MOD - [2012-02-01 08:11:50 | 000,066,944 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\WhatsNew.dll
MOD - [2012-02-01 08:11:48 | 002,191,744 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\SoftwareUpdater.dll
MOD - [2012-02-01 08:11:48 | 000,208,256 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\Settings.dll
MOD - [2012-02-01 08:11:46 | 000,627,584 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\NokiaAccount.dll
MOD - [2012-02-01 08:11:46 | 000,510,848 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\PIM.dll
MOD - [2012-02-01 08:11:44 | 001,531,776 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\Messages.dll
MOD - [2012-02-01 08:11:44 | 000,141,184 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\nps.dll
MOD - [2012-02-01 08:11:42 | 000,993,152 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\maps.dll
MOD - [2012-02-01 08:11:42 | 000,589,696 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\FirstTimeUse.dll
MOD - [2012-02-01 08:11:40 | 000,865,152 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\ConnectToInternet.dll
MOD - [2012-02-01 08:11:40 | 000,294,272 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\customerfeedback.dll
MOD - [2012-02-01 08:11:38 | 000,924,544 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\caresuite.dll
MOD - [2012-02-01 08:11:38 | 000,196,480 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\BringYourStuff.dll
MOD - [2012-02-01 08:11:36 | 000,702,336 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\BackUp.dll
MOD - [2012-02-01 08:11:36 | 000,388,480 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\OviShareLib.dll
MOD - [2012-02-01 08:11:36 | 000,214,400 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\plugins\ApplicationInstaller.dll
MOD - [2012-02-01 08:11:34 | 001,083,264 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
MOD - [2012-02-01 08:11:28 | 000,437,632 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\NService.dll
MOD - [2012-02-01 08:11:26 | 001,131,904 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\MThumbnailService.dll
MOD - [2012-02-01 08:11:22 | 002,141,056 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\MItemPlugins.dll
MOD - [2012-02-01 08:11:22 | 000,850,304 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\MItems.dll
MOD - [2012-02-01 08:11:20 | 002,914,176 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\MDataStore.dll
MOD - [2012-02-01 08:11:20 | 000,459,136 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\MEvent.dll
MOD - [2012-02-01 08:11:18 | 001,037,696 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\Maps Service API.dll
MOD - [2012-02-01 08:11:12 | 000,055,680 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\MMSParser.dll
MOD - [2012-02-01 08:11:02 | 001,081,216 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\Dal.dll
MOD - [2012-02-01 08:11:00 | 002,521,984 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\DAL\Service.dll
MOD - [2012-02-01 08:11:00 | 001,352,576 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\DAL\Pccs.dll
MOD - [2012-02-01 08:11:00 | 000,654,208 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\DAL\Sync.dll
MOD - [2012-02-01 08:10:58 | 000,506,240 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\DAL\NokiaService.dll
MOD - [2012-02-01 08:10:58 | 000,357,760 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\DAL\NossuService.dll
MOD - [2012-02-01 08:10:56 | 000,405,376 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\DAL\MapsService.dll
MOD - [2012-02-01 08:10:54 | 000,942,976 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\CommonWidgets.dll
MOD - [2012-02-01 08:10:54 | 000,880,000 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\CommonUtilities.dll
MOD - [2012-02-01 08:10:52 | 000,758,656 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\CommonUpdateChecker.dll
MOD - [2012-02-01 08:10:50 | 000,189,824 | ---- | M] (Nokia) -- C:\Program Files (x86)\Nokia\Nokia Suite\CDC.DLL
MOD - [2012-01-30 22:23:38 | 000,086,016 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\uwinapi.dll
MOD - [2012-01-30 22:23:37 | 000,597,504 | ---- | M] (STLport Consulting, Inc.) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\stlport_vc7145.dll
MOD - [2012-01-30 22:23:37 | 000,092,672 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\stocservices.uno.dll
MOD - [2012-01-30 22:23:37 | 000,053,248 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\store3.dll
MOD - [2012-01-30 22:23:36 | 001,740,800 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\sal3.dll
MOD - [2012-01-30 22:23:36 | 000,098,816 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\reflection.uno.dll
MOD - [2012-01-30 22:23:36 | 000,092,672 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\reg3.dll
MOD - [2012-01-30 22:23:36 | 000,013,312 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\salhelper3MSC.dll
MOD - [2012-01-30 22:23:35 | 000,092,160 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\jvmfwk3.dll
MOD - [2012-01-30 22:23:35 | 000,051,712 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\msci_uno.dll
MOD - [2012-01-30 22:23:33 | 000,452,608 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\bootstrap.uno.dll
MOD - [2012-01-30 22:23:33 | 000,432,128 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\cppuhelper3MSC.dll
MOD - [2012-01-30 22:23:33 | 000,142,848 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\cppu3.dll
MOD - [2012-01-30 22:23:33 | 000,098,816 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\URE\bin\introspection.uno.dll
MOD - [2012-01-30 22:23:32 | 000,346,112 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\xstor.dll
MOD - [2012-01-30 22:23:31 | 002,967,552 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\xomi.dll
MOD - [2012-01-30 22:23:30 | 000,531,456 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\xcrmi.dll
MOD - [2012-01-30 22:23:30 | 000,094,208 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\vos3MSC.dll
MOD - [2012-01-30 22:23:29 | 003,266,560 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\vclmi.dll
MOD - [2012-01-30 22:23:28 | 000,958,464 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\utlmi.dll
MOD - [2012-01-30 22:23:28 | 000,294,400 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\unoxmlmi.dll
MOD - [2012-01-30 22:23:28 | 000,226,304 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\uuimi.dll
MOD - [2012-01-30 22:23:28 | 000,174,080 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\updchk.uno.dll
MOD - [2012-01-30 22:23:28 | 000,053,760 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\updatefeed.uno.dll
MOD - [2012-01-30 22:23:27 | 000,257,024 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\ucpfile1.dll
MOD - [2012-01-30 22:23:26 | 000,529,408 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\tlmi.dll
MOD - [2012-01-30 22:23:26 | 000,358,912 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\ucbhelper4MSC.dll
MOD - [2012-01-30 22:23:26 | 000,286,720 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\ucpdav1.dll
MOD - [2012-01-30 22:23:26 | 000,260,096 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\ucpchelp1.dll
MOD - [2012-01-30 22:23:26 | 000,212,992 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\ucb1.dll
MOD - [2012-01-30 22:23:26 | 000,024,064 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\ucpexpand1.uno.dll
MOD - [2012-01-30 22:23:25 | 002,186,752 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\tkmi.dll
MOD - [2012-01-30 22:23:25 | 000,106,496 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\sysdtrans.dll
MOD - [2012-01-30 22:23:24 | 007,884,800 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\swmi.dll
MOD - [2012-01-30 22:23:24 | 000,054,784 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\swdmi.dll
MOD - [2012-01-30 22:23:23 | 005,470,208 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\svxcoremi.dll
MOD - [2012-01-30 22:23:23 | 002,524,672 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\svxmi.dll
MOD - [2012-01-30 22:23:22 | 002,863,616 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\svtmi.dll
MOD - [2012-01-30 22:23:22 | 000,777,216 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\svlmi.dll
MOD - [2012-01-30 22:23:22 | 000,209,920 | ---- | M] (The OpenSSL Project, [url="http://www.openssl.org/"]http://www.openssl.org/[/url]) -- C:\Program Files (x86)\OpenOffice.org 3\program\SSLEAY32.dll
MOD - [2012-01-30 22:23:21 | 000,379,904 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\sofficeapp.dll
MOD - [2012-01-30 22:23:21 | 000,256,000 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\sotmi.dll
MOD - [2012-01-30 22:23:21 | 000,160,768 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\spellmi.dll
MOD - [2012-01-30 22:23:20 | 003,234,816 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\sfxmi.dll
MOD - [2012-01-30 22:23:17 | 001,577,984 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\sbmi.dll
MOD - [2012-01-30 22:23:17 | 000,156,672 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\sax.uno.dll
MOD - [2012-01-30 22:23:14 | 000,282,112 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\package2.dll
MOD - [2012-01-30 22:23:14 | 000,083,968 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\oooimprovementmi.dll
MOD - [2012-01-30 22:23:13 | 000,287,232 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\oleautobridge.uno.dll
MOD - [2012-01-30 22:23:13 | 000,008,192 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\onlinecheck.DLL
MOD - [2012-01-30 22:23:12 | 001,078,784 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\mswordmi.DLL
MOD - [2012-01-30 22:23:12 | 000,110,592 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\neon.dll
MOD - [2012-01-30 22:23:11 | 000,705,024 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\msfiltermi.dll
MOD - [2012-01-30 22:23:10 | 000,697,344 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\localedata_euro.dll
MOD - [2012-01-30 22:23:10 | 000,103,936 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\localedata_en.dll
MOD - [2012-01-30 22:23:10 | 000,033,280 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\mcnttype.dll
MOD - [2012-01-30 22:23:09 | 000,991,744 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\lngmi.dll
MOD - [2012-01-30 22:23:09 | 000,985,088 | ---- | M] () -- C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
MOD - [2012-01-30 22:23:09 | 000,170,496 | ---- | M] () -- C:\Program Files (x86)\OpenOffice.org 3\program\libxslt.dll
MOD - [2012-01-30 22:23:09 | 000,056,320 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\lnthmi.dll
MOD - [2012-01-30 22:23:09 | 000,024,064 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\localebe1.uno.dll
MOD - [2012-01-30 22:23:09 | 000,014,336 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\libtextcat.dll
MOD - [2012-01-30 22:23:08 | 001,015,296 | ---- | M] (The OpenSSL Project, [url="http://www.openssl.org/"]http://www.openssl.org/[/url]) -- C:\Program Files (x86)\OpenOffice.org 3\program\LIBEAY32.dll
MOD - [2012-01-30 22:23:08 | 000,832,000 | ---- | M] (Oracle) -- C:\Program Files (x86)\OpenOffice.org 3\program\libdb47.dll
MOD - [2012-01-30 22:23:08 | 000,180,224 | ---- | M] (The cURL library, [url="http://curl.haxx.se/"]http://curl.haxx.se/[/url]) -- C:\Program Files (x86)\OpenOffice.org 3\program\libcurl.dll
MOD - [2012-01-30 22:23:06 | 000,951,296 | ---- | M] (IBM Corporation and others) -- C:\Program Files (x86)\OpenOffice.org 3\program\icuuc40.dll
MOD - [2012-01-30 22:23:05 | 013,914,112 | ---- | M] (IBM Corporation and others) -- C:\Program Files (x86)\OpenOffice.org 3\program\icudt40.dll
MOD - [2012-01-30 22:23:05 | 001,071,616 | ---- | M] (IBM Corporation and others) -- C:\Program Files (x86)\OpenOffice.org 3\program\icuin40.dll
MOD - [2012-01-30 22:23:05 | 000,066,560 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\i18nutilMSC.dll
MOD - [2012-01-30 22:23:05 | 000,037,888 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\i18nsearch.uno.dll
MOD - [2012-01-30 22:23:04 | 001,317,376 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\i18npool.uno.dll
MOD - [2012-01-30 22:23:04 | 000,154,624 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\helplinkermi.dll
MOD - [2012-01-30 22:23:04 | 000,057,344 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\hyphenmi.dll
MOD - [2012-01-30 22:23:04 | 000,032,768 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\i18nregexpMSC.dll
MOD - [2012-01-30 22:23:04 | 000,029,184 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\i18npapermi.dll
MOD - [2012-01-30 22:23:04 | 000,026,112 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\i18nisolang1MSC.dll
MOD - [2012-01-30 22:23:03 | 001,649,152 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\fwkmi.dll
MOD - [2012-01-30 22:23:03 | 000,343,040 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\fwlmi.dll
MOD - [2012-01-30 22:23:03 | 000,036,352 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\guesslangmi.dll
MOD - [2012-01-30 22:23:02 | 000,869,888 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\fwemi.dll
MOD - [2012-01-30 22:23:02 | 000,311,296 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\fwimi.dll
MOD - [2012-01-30 22:23:02 | 000,093,696 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\fsstorage.uno.dll
MOD - [2012-01-30 22:23:02 | 000,050,688 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\ftransl.dll
MOD - [2012-01-30 22:23:00 | 000,186,880 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\filterconfig1.dll
MOD - [2012-01-30 22:22:59 | 000,051,712 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\fileacc.dll
MOD - [2012-01-30 22:22:58 | 000,148,480 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\emsermi.dll
MOD - [2012-01-30 22:22:57 | 001,457,152 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\editengmi.dll
MOD - [2012-01-30 22:22:57 | 001,026,560 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\drawinglayermi.dll
MOD - [2012-01-30 22:22:57 | 000,115,200 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\dnd.dll
MOD - [2012-01-30 22:22:57 | 000,040,960 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\dtrans.dll
MOD - [2012-01-30 22:22:54 | 000,542,208 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\deploymentmi.uno.dll
MOD - [2012-01-30 22:22:54 | 000,135,680 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\deploymentmiscmi.dll
MOD - [2012-01-30 22:22:52 | 000,285,184 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\cppcanvasmi.dll
MOD - [2012-01-30 22:22:51 | 001,033,728 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\comphelp4MSC.dll
MOD - [2012-01-30 22:22:51 | 000,396,800 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\configmgr.uno.dll
MOD - [2012-01-30 22:22:50 | 000,503,296 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\canvastoolsmi.dll
MOD - [2012-01-30 22:22:49 | 000,700,928 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\basegfxmi.dll
MOD - [2012-01-30 22:22:49 | 000,211,456 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\avmediami.dll
MOD - [2012-01-30 22:22:48 | 000,129,024 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\aggmi.dll
MOD - [2012-01-05 14:19:12 | 000,112,640 | ---- | M] () -- C:\Program Files (x86)\Nokia\Nokia Suite\mediaservice\dsengine.dll
MOD - [2012-01-05 14:17:32 | 001,145,344 | ---- | M] (The OpenSSL Project, [url="http://www.openssl.org/"]http://www.openssl.org/[/url]) -- C:\Program Files (x86)\Nokia\Nokia Suite\libeay32.DLL
MOD - [2012-01-05 14:17:32 | 000,237,056 | ---- | M] (The OpenSSL Project, [url="http://www.openssl.org/"]http://www.openssl.org/[/url]) -- C:\Program Files (x86)\Nokia\Nokia Suite\ssleay32.dll
MOD - [2012-01-04 12:32:24 | 000,265,256 | ---- | M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\PCCS_ABAPI.dll
MOD - [2012-01-04 12:32:06 | 000,148,520 | ---- | M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
MOD - [2012-01-04 12:31:40 | 001,485,352 | ---- | M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\DAAPI.dll
MOD - [2012-01-04 12:31:36 | 000,661,544 | ---- | M] (Nokia.) -- C:\Program Files (x86)\PC Connectivity Solution\ConnAPI.dll
MOD - [2012-01-04 12:31:34 | 000,205,352 | ---- | M] (Nokia) -- C:\Program Files (x86)\PC Connectivity Solution\ConfServer.dll
MOD - [2012-01-04 10:03:07 | 000,442,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntshrui.dll
MOD - [2012-01-04 03:51:14 | 000,364,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
MOD - [2011-12-21 10:11:12 | 000,325,120 | ---- | M] (Nokia Corporation.) -- C:\Program Files (x86)\Nokia\Nokia Suite\syncRuntimeAPI.dll
MOD - [2011-12-21 10:10:48 | 000,942,080 | ---- | M] (Nokia Corporation.) -- C:\Program Files (x86)\Nokia\Nokia Suite\ilsyncEx.dll
MOD - [2011-12-21 10:10:16 | 000,599,040 | ---- | M] (Nokia Corporation.) -- C:\Program Files (x86)\Nokia\Nokia Suite\iltif32.dll
MOD - [2011-12-21 10:09:50 | 000,056,832 | ---- | M] (Nokia Corporation.) -- C:\Program Files (x86)\Nokia\Nokia Suite\Attendees.dll
MOD - [2011-12-21 10:09:44 | 001,061,888 | ---- | M] (Nokia Corporation.) -- C:\Program Files (x86)\Nokia\Nokia Suite\recipients.dll
MOD - [2011-12-21 10:09:26 | 000,069,120 | ---- | M] (Nokia Corporation.) -- C:\Program Files (x86)\Nokia\Nokia Suite\PTATTACH.dll
MOD - [2011-12-16 08:59:17 | 000,690,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msvcrt.dll
MOD - [2011-11-17 06:41:38 | 001,292,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntdll.dll
MOD - [2011-11-17 06:39:28 | 000,314,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\webio.dll
MOD - [2011-10-26 05:28:26 | 001,328,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\quartz.dll
MOD - [2011-10-16 20:41:59 | 000,653,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
MOD - [2011-10-16 20:41:59 | 000,569,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
MOD - [2011-08-27 05:43:07 | 000,571,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\oleaut32.dll
MOD - [2011-08-27 05:43:06 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\oleacc.dll
MOD - [2011-07-06 22:49:59 | 001,101,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll
MOD - [2011-07-06 22:49:59 | 001,093,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
MOD - [2011-07-06 22:49:49 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
MOD - [2011-07-06 22:49:49 | 000,554,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
MOD - [2011-06-16 05:35:50 | 000,180,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\xmllite.dll
MOD - [2011-05-24 11:34:20 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\devobj.dll
MOD - [2011-05-24 11:34:20 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\devrtl.dll
MOD - [2011-05-24 11:34:00 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cfgmgr32.dll
MOD - [2011-05-17 08:27:52 | 000,413,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
MOD - [2011-05-04 05:53:10 | 001,553,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\tquery.dll
MOD - [2011-03-03 06:29:23 | 000,269,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dnsapi.dll
MOD - [2011-02-19 22:03:12 | 000,421,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msvcp100.dll
MOD - [2011-02-18 23:40:50 | 000,773,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msvcr100.dll
MOD - [2011-01-17 19:50:30 | 011,322,880 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
MOD - [2011-01-17 19:50:30 | 011,314,688 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
MOD - [2010-12-21 06:38:22 | 000,350,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winhttp.dll
MOD - [2010-11-19 12:42:42 | 000,083,456 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\saxmi.dll
MOD - [2010-09-20 23:37:58 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msasn1.dll
MOD - [2010-09-20 23:33:12 | 000,311,296 | ---- | M] () -- C:\windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_pl_b77a5c561934e089\mscorlib.resources.dll
MOD - [2010-09-20 23:33:07 | 000,032,768 | ---- | M] () -- C:\windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_pl_b77a5c561934e089\System.Runtime.Remoting.resources.dll
MOD - [2010-08-21 06:33:24 | 000,530,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\comctl32.dll
MOD - [2010-08-21 06:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
MOD - [2010-07-11 22:40:00 | 001,625,704 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWOW64\nvapi.dll
MOD - [2010-07-11 22:40:00 | 000,441,448 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWOW64\nvumdshim.dll
MOD - [2010-07-11 22:40:00 | 000,227,432 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvdxgiwrap.dll
MOD - [2010-07-11 22:40:00 | 000,186,472 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\nvd3d9wrap.dll
MOD - [2010-07-11 22:40:00 | 000,100,968 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysWOW64\nvinit.dll
MOD - [2010-07-11 22:40:00 | 000,010,856 | ---- | M] () -- C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
MOD - [2010-06-29 06:02:02 | 001,413,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ole32.dll
MOD - [2010-06-19 07:23:50 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rtutils.dll
MOD - [2010-05-28 04:14:54 | 000,053,104 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\LoggerUtility.dll
MOD - [2010-05-28 04:14:52 | 000,376,176 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisTSR.exe
MOD - [2010-05-28 04:14:44 | 000,357,744 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisFeature.dll
MOD - [2010-05-28 04:14:40 | 000,318,832 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisAuthShell.dll
MOD - [2010-05-28 04:14:24 | 000,523,632 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec BioExcess\CryptoAPI.dll
MOD - [2010-05-28 04:14:20 | 000,053,616 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisIEPwdBank.dll
MOD - [2010-05-28 04:14:18 | 000,405,872 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisPBUI.dll
MOD - [2010-05-28 04:14:06 | 000,422,768 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisLaunch.dll
MOD - [2010-05-28 04:14:00 | 000,360,304 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisFingerEnroll.dll
MOD - [2010-05-28 04:13:58 | 000,329,072 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisFactorProxy.dll
MOD - [2010-05-28 04:13:54 | 000,743,280 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec BioExcess\LibFrame.dll
MOD - [2010-05-28 04:13:52 | 000,232,304 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec BioExcess\FrameUtility.dll
MOD - [2010-05-28 04:13:50 | 000,482,160 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec BioExcess\EgisUtility.dll
MOD - [2010-05-19 18:21:54 | 000,743,280 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec Port Locker\LibFrame.dll
MOD - [2010-05-19 18:21:52 | 000,226,672 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec Port Locker\FrameUtility.dll
MOD - [2010-05-19 18:21:48 | 000,476,528 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\EgisPLUtility.dll
MOD - [2010-05-19 18:21:48 | 000,053,104 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\LoggerUtility.dll
MOD - [2010-05-19 18:21:46 | 000,364,400 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\EgisPLTSR.exe
MOD - [2010-05-19 18:21:40 | 000,319,344 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\EgisPLFeature.dll
MOD - [2010-05-19 18:21:36 | 000,316,784 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\EgisPLAuthShell.dll
MOD - [2010-05-19 18:21:34 | 000,305,520 | ---- | M] (Egis Technology Inc. ) -- C:\Program Files (x86)\EgisTec Port Locker\EgisPLAbout.dll
MOD - [2010-05-19 18:21:24 | 000,523,632 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec Port Locker\CryptoAPI.dll
MOD - [2010-05-05 07:46:55 | 000,363,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\StructuredQuery.dll
MOD - [2010-03-30 17:39:18 | 004,960,256 | ---- | M] (Intel Corporation) -- C:\Windows\SysWOW64\igdumd32.dll
MOD - [2010-03-30 17:35:22 | 000,571,904 | ---- | M] (Intel Corporation) -- C:\Windows\SysWOW64\igdumdx32.dll
MOD - [2010-03-10 23:12:02 | 000,072,560 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\UpdateModel.dll
MOD - [2010-03-10 23:11:56 | 000,407,920 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
MOD - [2010-03-10 23:11:52 | 000,788,848 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\LiveUpdateUI.dll
MOD - [2010-03-10 23:11:50 | 000,068,976 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\LicenseCenter.dll
MOD - [2010-03-10 23:11:48 | 000,068,976 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\KernelController.dll
MOD - [2010-03-10 23:11:42 | 000,201,584 | ---- | M] (Egis Technology Inc.) -- C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
MOD - [2010-03-03 21:16:04 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
MOD - [2010-03-03 21:13:06 | 000,032,768 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\pl-PL\IAStorIcon.resources.dll
MOD - [2010-03-03 21:13:00 | 000,004,608 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\pl-PL\IntelVisualDesign.resources.dll
MOD - [2010-03-03 21:08:36 | 000,163,328 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUIHelper.dll
MOD - [2010-03-03 21:08:30 | 001,046,528 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll
MOD - [2010-03-02 23:39:42 | 001,056,352 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Lenovo\YouCam\MFC71U.DLL
MOD - [2010-03-02 23:39:42 | 000,506,976 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Lenovo\YouCam\MSVCP71.dll
MOD - [2010-03-02 23:39:42 | 000,351,328 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Lenovo\YouCam\MSVCR71.dll
MOD - [2010-03-02 23:37:40 | 000,171,104 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
MOD - [2010-01-15 12:38:46 | 000,536,576 | ---- | M] (Vimicro) -- C:\Program Files (x86)\USB Camera\VM331_STI.EXE
MOD - [2009-11-25 11:47:34 | 000,297,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mscoree.dll
MOD - [2009-09-07 16:38:22 | 000,013,096 | ---- | M] (TODO: ) -- C:\Program Files (x86)\Lenovo\YouCam\Custom\Lang\PLK\IM.dll
MOD - [2009-07-14 02:17:54 | 000,249,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\bcryptprimitives.dll
MOD - [2009-07-14 02:17:54 | 000,242,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rsaenh.dll
MOD - [2009-07-14 02:16:20 | 000,308,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\Wpc.dll
MOD - [2009-07-14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ws2_32.dll
MOD - [2009-07-14 02:16:20 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wtsapi32.dll
MOD - [2009-07-14 02:16:20 | 000,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wshbth.dll
MOD - [2009-07-14 02:16:20 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wsock32.dll
MOD - [2009-07-14 02:16:20 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wship6.dll
MOD - [2009-07-14 02:16:20 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WSHTCPIP.DLL
MOD - [2009-07-14 02:16:19 | 000,616,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wmdrmsdk.dll
MOD - [2009-07-14 02:16:19 | 000,268,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\Wldap32.dll
MOD - [2009-07-14 02:16:19 | 000,237,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WMASF.DLL
MOD - [2009-07-14 02:16:19 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winmm.dll
MOD - [2009-07-14 02:16:19 | 000,156,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winsta.dll
MOD - [2009-07-14 02:16:19 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wkscli.dll
MOD - [2009-07-14 02:16:19 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winrnr.dll
MOD - [2009-07-14 02:16:19 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winnsi.dll
MOD - [2009-07-14 02:16:18 | 001,011,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WindowsCodecs.dll
MOD - [2009-07-14 02:16:18 | 000,377,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wer.dll
MOD - [2009-07-14 02:16:18 | 000,262,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wevtapi.dll
MOD - [2009-07-14 02:16:17 | 001,123,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\vssapi.dll
MOD - [2009-07-14 02:16:17 | 000,627,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\usp10.dll
MOD - [2009-07-14 02:16:17 | 000,079,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\userenv.dll
MOD - [2009-07-14 02:16:17 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\vsstrace.dll
MOD - [2009-07-14 02:16:17 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\version.dll
MOD - [2009-07-14 02:16:15 | 000,380,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sxs.dll
MOD - [2009-07-14 02:16:15 | 000,171,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\spp.dll
MOD - [2009-07-14 02:16:15 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\srvcli.dll
MOD - [2009-07-14 02:16:15 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\slc.dll
MOD - [2009-07-14 02:16:14 | 001,668,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\setupapi.dll
MOD - [2009-07-14 02:16:14 | 000,350,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shlwapi.dll
MOD - [2009-07-14 02:16:14 | 000,179,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shdocvw.dll
MOD - [2009-07-14 02:16:14 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shfolder.dll
MOD - [2009-07-14 02:16:13 | 000,473,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\riched20.dll
MOD - [2009-07-14 02:16:13 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sechost.dll
MOD - [2009-07-14 02:16:13 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\samlib.dll
MOD - [2009-07-14 02:16:13 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\samcli.dll
MOD - [2009-07-14 02:16:13 | 000,045,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\RpcRtRemote.dll
MOD - [2009-07-14 02:16:13 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\SensApi.dll
MOD - [2009-07-14 02:16:13 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\riched32.dll
MOD - [2009-07-14 02:16:12 | 002,504,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WMVCORE.DLL
MOD - [2009-07-14 02:16:12 | 000,988,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\propsys.dll
MOD - [2009-07-14 02:16:12 | 000,791,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\opengl32.dll
MOD - [2009-07-14 02:16:12 | 000,325,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rasapi32.dll
MOD - [2009-07-14 02:16:12 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\powrprof.dll
MOD - [2009-07-14 02:16:12 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\olepro32.dll
MOD - [2009-07-14 02:16:12 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rasman.dll
MOD - [2009-07-14 02:16:12 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\pnrpnsp.dll
MOD - [2009-07-14 02:16:12 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\pngfilt.dll
MOD - [2009-07-14 02:16:12 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\profapi.dll
MOD - [2009-07-14 02:16:12 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rasadhlp.dll
MOD - [2009-07-14 02:16:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\psapi.dll
MOD - [2009-07-14 02:16:11 | 000,121,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntmarta.dll
MOD - [2009-07-14 02:16:11 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\npmproxy.dll
MOD - [2009-07-14 02:16:11 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\nsi.dll
MOD - [2009-07-14 02:16:03 | 002,494,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\netshell.dll
MOD - [2009-07-14 02:16:03 | 001,537,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\NlsData0000.dll
MOD - [2009-07-14 02:16:03 | 000,360,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\netprofm.dll
MOD - [2009-07-14 02:16:03 | 000,051,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\nlaapi.dll
MOD - [2009-07-14 02:16:03 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\netutils.dll
MOD - [2009-07-14 02:16:02 | 000,801,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\NaturalLanguage6.dll
MOD - [2009-07-14 02:16:02 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\NapiNSP.dll
MOD - [2009-07-14 02:15:51 | 000,232,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mswsock.dll
MOD - [2009-07-14 02:15:47 | 000,195,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msrating.dll
MOD - [2009-07-14 02:15:45 | 000,157,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msls31.dll
MOD - [2009-07-14 02:15:44 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msimtf.dll
MOD - [2009-07-14 02:15:44 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msiltcfg.dll
MOD - [2009-07-14 02:15:44 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msimg32.dll
MOD - [2009-07-14 02:15:43 | 000,828,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msctf.dll
MOD - [2009-07-14 02:15:43 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msdmo.dll
MOD - [2009-07-14 02:15:42 | 000,481,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mscms.dll
MOD - [2009-07-14 02:15:42 | 000,072,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msacm32.dll
MOD - [2009-07-14 02:15:41 | 000,213,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\MMDevAPI.dll
MOD - [2009-07-14 02:15:41 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mpr.dll
MOD - [2009-07-14 02:15:40 | 000,177,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mlang.dll
MOD - [2009-07-14 02:15:40 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\midimap.dll
MOD - [2009-07-14 02:15:39 | 000,352,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mfplat.dll
MOD - [2009-07-14 02:15:36 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\linkinfo.dll
MOD - [2009-07-14 02:15:35 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ksuser.dll
MOD - [2009-07-14 02:15:33 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\IPHLPAPI.DLL
MOD - [2009-07-14 02:15:32 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\imgutil.dll
MOD - [2009-07-14 02:15:28 | 000,200,704 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Internet Explorer\IEShims.dll
MOD - [2009-07-14 02:15:27 | 000,445,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ieapfltr.dll
MOD - [2009-07-14 02:15:22 | 000,130,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\glu32.dll
MOD - [2009-07-14 02:15:22 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\gpapi.dll
MOD - [2009-07-14 02:15:21 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\FWPUCLNT.DLL
MOD - [2009-07-14 02:15:19 | 001,495,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ExplorerFrame.dll
MOD - [2009-07-14 02:15:14 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\EhStorShell.dll
MOD - [2009-07-14 02:15:13 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dui70.dll
MOD - [2009-07-14 02:15:13 | 000,507,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dxgi.dll
MOD - [2009-07-14 02:15:13 | 000,453,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dsound.dll
MOD - [2009-07-14 02:15:13 | 000,346,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dxtmsft.dll
MOD - [2009-07-14 02:15:13 | 000,215,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dxtrans.dll
MOD - [2009-07-14 02:15:13 | 000,181,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\duser.dll
MOD - [2009-07-14 02:15:13 | 000,088,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dxva2.dll
MOD - [2009-07-14 02:15:13 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dwmapi.dll
MOD - [2009-07-14 02:15:11 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dhcpcsvc.dll
MOD - [2009-07-14 02:15:11 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dhcpcsvc6.dll
MOD - [2009-07-14 02:15:10 | 000,531,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ddraw.dll
MOD - [2009-07-14 02:15:10 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\devenum.dll
MOD - [2009-07-14 02:15:10 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ddrawex.dll
MOD - [2009-07-14 02:15:09 | 000,854,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dbghelp.dll
MOD - [2009-07-14 02:15:09 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dciman32.dll
MOD - [2009-07-14 02:15:08 | 001,826,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d9.dll
MOD - [2009-07-14 02:15:08 | 001,036,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d8.dll
MOD - [2009-07-14 02:15:08 | 000,817,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3dim700.dll
MOD - [2009-07-14 02:15:08 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d8thk.dll
MOD - [2009-07-14 02:15:07 | 001,030,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d10.dll
MOD - [2009-07-14 02:15:07 | 000,522,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d11.dll
MOD - [2009-07-14 02:15:07 | 000,486,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\comdlg32.dll
MOD - [2009-07-14 02:15:07 | 000,190,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d10core.dll
MOD - [2009-07-14 02:15:07 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cryptsp.dll
MOD - [2009-07-14 02:15:07 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cryptbase.dll
MOD - [2009-07-14 02:15:07 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cscapi.dll
MOD - [2009-07-14 02:15:07 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\credssp.dll
MOD - [2009-07-14 02:15:03 | 000,522,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\clbcatq.dll
MOD - [2009-07-14 02:14:58 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\avrt.dll
MOD - [2009-07-14 02:14:57 | 000,195,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\AudioSes.dll
MOD - [2009-07-14 02:14:57 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\atl.dll
MOD - [2009-07-14 02:14:53 | 000,640,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\advapi32.dll
MOD - [2009-07-14 02:14:53 | 000,292,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\apphelp.dll
MOD - [2009-07-14 02:14:52 | 000,309,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\actxprxy.dll
MOD - [2009-07-14 02:14:11 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ksproxy.ax
MOD - [2009-07-14 02:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx
MOD - [2009-07-14 02:14:08 | 000,692,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\bthprops.cpl
MOD - [2009-07-14 02:14:08 | 000,319,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winspool.drv
MOD - [2009-07-14 02:14:08 | 000,172,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wdmaud.drv
MOD - [2009-07-14 02:14:08 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msacm32.drv
MOD - [2009-07-14 02:11:24 | 000,833,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\user32.dll
MOD - [2009-07-14 02:11:24 | 000,245,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\uxtheme.dll
MOD - [2009-07-14 02:11:23 | 000,662,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rpcrt4.dll
MOD - [2009-07-14 02:11:23 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\lpk.dll
MOD - [2009-07-14 02:11:21 | 000,310,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\gdi32.dll
MOD - [2009-07-14 02:11:21 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\imm32.dll
MOD - [2009-07-14 02:11:20 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\bcrypt.dll
MOD - [2009-07-14 02:09:15 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\oleaccrc.dll
MOD - [2009-07-14 02:09:00 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\normaliz.dll
MOD - [2009-06-10 22:22:51 | 000,572,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
MOD - [2009-05-19 23:16:18 | 000,099,624 | ---- | M] (CyberLink Corp.) -- C:\Program Files (x86)\Lenovo\YouCam\MUITransfer\MUITransfer.dll
MOD - [2008-06-05 10:19:18 | 000,479,232 | ---- | M] (Nikon Corporation) -- C:\Program Files (x86)\Common Files\Nikon\Monitor\NkMonitor.exe


[color=#e56717]========== Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2012-09-12 20:21:48 | 000,368,896 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:[b]64bit:[/b] - [2012-09-12 20:21:48 | 000,022,072 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:[b]64bit:[/b] - [2010-04-20 14:29:08 | 000,903,456 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe -- (btwdins)
SRV:[b]64bit:[/b] - [2010-02-05 15:43:20 | 000,311,296 | ---- | M] (Realtek Semiconductor Corp.) [Auto | Running] -- C:\Program Files\Realtek\RtLED\RtLEDService.exe -- (RtLedService)
SRV:[b]64bit:[/b] - [2009-12-09 10:52:52 | 000,047,712 | ---- | M] (Lenovo.) [Auto | Running] -- C:\Windows\SysNative\TPHDEXLG64.exe -- (TPHDEXLGSVC)
SRV:[b]64bit:[/b] - [2009-09-22 19:16:32 | 000,579,400 | ---- | M] (Lenovo Group Limited) [On_Demand | Stopped] -- C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe -- (Lenovo ReadyComm ConnSvc)
SRV:[b]64bit:[/b] - [2009-08-14 15:22:48 | 000,509,192 | ---- | M] (Lenovo Group Limited) [On_Demand | Stopped] -- C:\Program Files\Lenovo\ReadyComm\AppSvc.exe -- (Lenovo ReadyComm AppSvc)
SRV:[b]64bit:[/b] - [2009-07-14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2009-07-14 02:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2012-01-04 12:32:36 | 000,718,888 | ---- | M] (Nokia) [On_Demand | Running] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2011-10-01 08:30:22 | 000,219,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa)
SRV - [2011-10-01 08:30:18 | 000,508,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist)
SRV - [2010-07-11 19:09:20 | 001,620,584 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2010-05-28 04:14:02 | 000,709,488 | ---- | M] (Egis Technology Inc. ) [Auto | Running] -- C:\Program Files (x86)\EgisTec BioExcess\EgisService.exe -- (EgisTec Service)
SRV - [2010-05-28 04:13:38 | 000,314,736 | ---- | M] (Egis Technology Inc. ) [Auto | Running] -- C:\Program Files (x86)\EgisTec BioExcess\EgisDSService.exe -- (EgisTec Data Security Service)
SRV - [2010-05-19 18:21:26 | 000,322,416 | ---- | M] (Egis Technology Inc. ) [Auto | Running] -- C:\Program Files (x86)\EgisTec Port Locker\Egishlpsvc.exe -- (EgisTec Service Help)
SRV - [2010-03-18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010-03-03 21:16:06 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2009-09-30 13:02:38 | 002,320,920 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2009-09-30 13:02:36 | 000,268,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2009-07-16 04:12:42 | 000,276,296 | ---- | M] (Lenovo Group Limited) [On_Demand | Stopped] -- C:\Program Files (x86)\Lenovo\ReadyComm\PS_MDP.dll -- (PS_MDP)
SRV - [2009-07-14 15:27:26 | 000,038,152 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe -- (IGRS)
SRV - [2009-07-14 15:27:20 | 000,103,688 | ---- | M] (Lenovo Group Limited) [Auto | Stopped] -- C:\Program Files (x86)\Lenovo\ReadyComm\common\router.dll -- (ReadyComm.DirectRouter)
SRV - [2009-06-10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)


[color=#e56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2012-10-07 15:13:32 | 000,311,968 | ---- | M] () [Kernel | Auto | Stopped] -- C:\Windows\SysNative\drivers\atksgt.sys -- (atksgt)
DRV:[b]64bit:[/b] - [2012-10-07 15:10:30 | 000,043,168 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\lirsgt.sys -- (lirsgt)
DRV:[b]64bit:[/b] - [2012-08-30 21:03:48 | 000,128,456 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:[b]64bit:[/b] - [2012-03-01 07:54:38 | 000,022,896 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2012-02-14 23:04:30 | 000,034,040 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MusCAudio.sys -- (MusCAudio)
DRV:[b]64bit:[/b] - [2011-10-01 08:30:22 | 000,022,376 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftvollh.sys -- (Sftvol)
DRV:[b]64bit:[/b] - [2011-10-01 08:30:18 | 000,268,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftplaylh.sys -- (Sftplay)
DRV:[b]64bit:[/b] - [2011-10-01 08:30:18 | 000,025,960 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftredirlh.sys -- (Sftredir)
DRV:[b]64bit:[/b] - [2011-10-01 08:30:10 | 000,764,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Sftfslh.sys -- (Sftfs)
DRV:[b]64bit:[/b] - [2011-03-11 07:22:41 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2011-03-11 07:22:40 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2010-09-20 16:46:21 | 000,055,880 | ---- | M] (Egis Technology Inc.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\EgisTecFF.sys -- (EgisTecFF)
DRV:[b]64bit:[/b] - [2010-09-20 16:29:35 | 000,035,888 | ---- | M] (EgisTec) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\FPSensor.sys -- (FPSensor)
DRV:[b]64bit:[/b] - [2010-09-20 16:29:33 | 000,060,464 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDVDisk.sys -- (mwlPSDVDisk)
DRV:[b]64bit:[/b] - [2010-09-20 16:29:33 | 000,022,576 | ---- | M] (Egis Technology Inc.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDFilter.sys -- (mwlPSDFilter)
DRV:[b]64bit:[/b] - [2010-09-20 16:29:33 | 000,020,016 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\mwlPSDNserv.sys -- (mwlPSDNServ)
DRV:[b]64bit:[/b] - [2010-07-11 22:40:00 | 000,024,680 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\nvpciflt.sys -- (nvpciflt)
DRV:[b]64bit:[/b] - [2010-04-08 17:11:12 | 000,054,824 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btusbflt.sys -- (btusbflt)
DRV:[b]64bit:[/b] - [2010-03-30 17:47:08 | 010,322,848 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:[b]64bit:[/b] - [2010-03-26 10:14:50 | 000,162,304 | ---- | M] (ELAN Microelectronics Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:[b]64bit:[/b] - [2010-03-24 10:57:20 | 000,243,744 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:[b]64bit:[/b] - [2010-03-18 11:35:10 | 000,215,168 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vm331avs.sys -- (vm331avs)
DRV:[b]64bit:[/b] - [2010-03-03 20:51:40 | 000,540,696 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:[b]64bit:[/b] - [2010-02-25 18:32:12 | 000,158,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:[b]64bit:[/b] - [2010-02-22 11:03:44 | 000,075,304 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
DRV:[b]64bit:[/b] - [2010-02-02 16:52:02 | 003,058,168 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\BCMWL664.SYS -- (BCM43XX)
DRV:[b]64bit:[/b] - [2010-02-02 08:38:30 | 000,271,872 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:[b]64bit:[/b] - [2010-01-15 19:08:34 | 000,039,008 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\LhdX64.sys -- (LHDmgr)
DRV:[b]64bit:[/b] - [2010-01-15 07:23:20 | 000,098,344 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwaudio.sys -- (btwaudio)
DRV:[b]64bit:[/b] - [2010-01-15 07:23:14 | 000,132,648 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwavdt.sys -- (btwavdt)
DRV:[b]64bit:[/b] - [2010-01-15 07:23:10 | 000,021,288 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwrchid.sys -- (btwrchid)
DRV:[b]64bit:[/b] - [2009-12-09 10:52:28 | 000,023,648 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ApsHM64.sys -- (TPDIGIMN)
DRV:[b]64bit:[/b] - [2009-12-09 10:52:22 | 000,135,264 | ---- | M] (Lenovo.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ApsX64.sys -- (Shockprf)
DRV:[b]64bit:[/b] - [2009-10-19 01:40:50 | 000,028,176 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AcpiVpc.sys -- (ACPIVPC)
DRV:[b]64bit:[/b] - [2009-09-17 05:54:54 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64)
DRV:[b]64bit:[/b] - [2009-07-21 15:20:06 | 000,121,840 | ---- | M] (CyberLink) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wsvd.sys -- (wsvd)
DRV:[b]64bit:[/b] - [2009-07-16 12:55:34 | 000,011,280 | ---- | M] (Lenovo) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WDMirror.sys -- (wdmirror)
DRV:[b]64bit:[/b] - [2009-07-16 04:38:20 | 000,079,376 | ---- | M] (Lenovo) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WDBridge.sys -- (Bridge0)
DRV:[b]64bit:[/b] - [2009-07-14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009-07-14 02:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009-06-10 21:35:28 | 005,434,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:36 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\k57nd60a.sys -- (k57nd60a)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009-06-10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009-06-10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:[b]64bit:[/b] - [2009-04-07 08:33:08 | 000,035,104 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\btwl2cap.sys -- (btwl2cap)
DRV:[b]64bit:[/b] - [2008-08-28 10:44:42 | 000,025,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV - [2009-07-14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


[color=#e56717]========== Standard Registry (SafeList) ==========[/color]


[color=#e56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope =
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC"]http://www.bing.com/...ms}&FORM=IE8SRC[/url]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC"]http://www.bing.com/...ms}&FORM=IE8SRC[/url]


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = [url="http://www.lenovo.com"]http://www.lenovo.com[/url]
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = [url="http://www.lenovo.com/"]http://www.lenovo.com/[/url] [binary data]
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url="http://www.lenovo.com"]http://www.lenovo.com[/url]
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox"]http://www.bing.com/...rc=IE-SearchBox[/url]
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\..\SearchScopes\{F534EC89-A1CC-4E20-96FB-B74999DC3401}: "URL" = [url="http://www.google.com/search?hl=pl&q={searchTerms"]http://www.google.co...&q={searchTerms[/url]}
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url="http://www.google.pl/"]http://www.google.pl/[/url]
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\..\SearchScopes\{F534EC89-A1CC-4E20-96FB-B74999DC3401}: "URL" = [url="http://www.google.com/search?hl=pl&q={searchTerms"]http://www.google.co...&q={searchTerms[/url]}
IE - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#e56717]========== FireFox ==========[/color]

FF - prefs.js..extensions.enabledAddons:
FF - prefs.js..network.proxy.type: 0
FF - prefs.js..browser.search.defaultenginename: ""
FF - prefs.js..browser.search.selectedEngine: ""
FF - prefs.js..browser.search.defaulturl: ""
FF - user.js - File not found

FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_37: C:\windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Ania\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\fe_7.0@nokia.com: C:\Program Files (x86)\Nokia\Nokia Suite\Connectors\Bookmarks Connector\FirefoxExtension_7.0 [2012-05-08 20:30:36 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012-11-25 23:09:41 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\te_9.0@nokia.com: C:\Program Files (x86)\Nokia\Nokia Suite\Connectors\Thunderbird Connector\ThunderbirdExtension_9.0 [2012-05-08 20:30:55 | 000,000,000 | ---D | M]

[2011-10-02 22:32:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ania\AppData\Roaming\mozilla\Extensions
[2013-01-02 21:01:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ania\AppData\Roaming\mozilla\Firefox\Profiles\q8g7bbby.default\extensions
[2012-07-31 12:59:18 | 000,221,380 | ---- | M] () (No name found) -- C:\Users\Ania\AppData\Roaming\mozilla\firefox\profiles\q8g7bbby.default\extensions\gophoto@gophoto.it.xpi
[2012-10-28 09:21:53 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2012-07-03 20:45:39 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
[2012-09-24 20:29:38 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
[2012-10-28 09:21:53 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
File not found (No name found) -- C:\PROGRAM FILES (X86)\MCAFEE\SITEADVISOR
[2011-09-29 08:30:14 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2011-09-29 01:52:42 | 000,002,767 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\allegro-pl.xml
[2011-09-29 01:52:42 | 000,001,406 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fbc-pl.xml
[2011-09-29 01:52:42 | 000,000,917 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\merlin-pl.xml
[2011-09-29 01:52:42 | 000,000,858 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\pwn-pl.xml
[2011-09-29 01:52:42 | 000,001,183 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-pl.xml
[2011-09-29 01:52:42 | 000,001,683 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wp-pl.xml

[color=#e56717]========== Chrome ==========[/color]


O1 HOSTS File: ([2009-06-10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (IEPwdBankBHO Class) - {56CBB761-DA41-4E31-B270-B13B4B0A61D0} - C:\Program Files (x86)\EgisTec BioExcess\EgisIEPwdBank.dll (Egis Technology Inc. )
O4:[b]64bit:[/b] - HKLM..\Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited)
O4:[b]64bit:[/b] - HKLM..\Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\utility.exe (Lenovo(beijing) Limited)
O4:[b]64bit:[/b] - HKLM..\Run: [ETDWare] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
O4:[b]64bit:[/b] - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:[b]64bit:[/b] - HKLM..\Run: [TpShocks] C:\Windows\SysNative\TpShocks.exe (Lenovo.)
O4:[b]64bit:[/b] - HKLM..\Run: [UpdatePRCShortCut] C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331_STI.EXE (Vimicro)
O4 - HKLM..\Run: [EgisTecPMMUpdate] C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe (Egis Technology Inc.)
O4 - HKLM..\Run: [EgisUpdate] C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe (Egis Technology Inc.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [IMSS] C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe ()
O4 - HKLM..\Run: [PLTSR] C:\Program Files (x86)\EgisTec Port Locker\EgisPLTSR.exe (Egis Technology Inc. )
O4 - HKLM..\Run: [UCam_Menu] C:\Program Files (x86)\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdateP2GShortCut] C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePRCShortCut] C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [VitaKeyTSR] C:\Program Files (x86)\EgisTec BioExcess\EgisTSR.exe (Egis Technology Inc. )
O4 - HKLM..\Run: [YouCam Mirror Tray icon] C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe (CyberLink Corp.)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe (Nokia)
O4 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000..\Run: [Power2GoExpress] C:\Program Files (x86)\Lenovo\Power2Go\Power2GoExpress.exe (Cyberlink)
O4 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe (Nokia)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - Startup: C:\Users\Ania\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O7 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\S-1-5-21-1055744232-3505066323-1831296020-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O8:[b]64bit:[/b] - Extra context menu item: Wyślij obraz do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm ()
O8:[b]64bit:[/b] - Extra context menu item: Wyślij stronę do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Wyślij obraz do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Wyślij stronę do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9:[b]64bit:[/b] - Extra Button: @C:\Program Files\Lenovo\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : @C:\Program Files\Lenovo\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: PokerStars.eu - {07BA1DA9-F501-4796-8728-74D1B91A6CD5} - C:\Program Files (x86)\PokerStars.EU\PokerStarsUpdate.exe File not found
O9 - Extra Button: Wyślij do interfejsu Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Wyślij do urządzenia &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} [url="http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab"]http://download.macr...director/sw.cab[/url] (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_37)
O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_37)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_37)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} [url="http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab"]http://platformdl.ad...Plus/1.6/gp.cab[/url] (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.179.1.63 62.179.1.62
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{22D5BAA4-B440-41E3-A350-07E4697C398D}: DhcpNameServer = 62.179.1.63 62.179.1.62
O18:[b]64bit:[/b] - Protocol\Handler\livecall - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\msnim - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml - No CLSID value found
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O20:[b]64bit:[/b] - AppInit_DLLs: (C:\windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20:[b]64bit:[/b] - AppInit_DLLs: (C:\windows\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation)
O20 - AppInit_DLLs: (C:\windows\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

[color=#e56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2013-01-02 20:21:10 | 000,000,000 | ---D | C] -- C:\_OTL
[2013-01-01 18:54:37 | 000,000,000 | ---D | C] -- C:\rsit
[2013-01-01 18:22:05 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Ania\Desktop\OTL.exe
[2013-01-01 18:18:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HijackThis
[2013-01-01 18:18:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Trend Micro
[2012-12-15 22:58:18 | 000,000,000 | ---D | C] -- C:\Users\Ania\AppData\Roaming\Mp3tag
[2012-12-15 22:58:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mp3tag
[2012-12-02 00:33:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2012-12-02 00:33:28 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2012-12-02 00:33:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2012-11-30 23:36:58 | 000,000,000 | ---D | C] -- C:\Users\Ania\Desktop\zdjęcia 1
[2012-11-25 23:29:14 | 000,000,000 | ---D | C] -- C:\Users\Ania\AppData\Local\Windows Live
[2012-11-25 23:22:30 | 000,110,592 | R--- | C] (Nikon Corporation) -- C:\windows\SysWow64\RCSigProc.dll
[2012-11-25 23:22:29 | 006,475,096 | ---- | C] (Nikon, Inc.) -- C:\windows\SysWow64\NEFcodec.dll
[2012-11-25 23:22:29 | 000,200,704 | R--- | C] (Nikon Corporation) -- C:\windows\SysWow64\Strato7.dll
[2012-11-25 23:16:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ViewNX
[2012-11-25 23:15:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Trance Pad
[2012-11-25 23:14:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Transfer
[2012-11-25 23:14:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\muvee Technologies
[2012-11-25 23:13:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Nikon
[2012-11-25 23:13:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Nikon
[2012-11-25 23:13:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Nikon
[2012-11-25 23:12:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Ultima_T15
[2012-11-25 23:12:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Sync Services
[2012-11-25 23:12:03 | 000,000,000 | ---D | C] -- C:\ProgramData\EnterNHelp
[2012-11-25 23:09:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2012-11-25 23:08:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2012-11-25 23:08:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon
[2012-11-14 22:34:03 | 000,000,000 | ---D | C] -- C:\Users\Ania\AppData\Local\PokerStars.EU
[2012-11-14 22:33:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PokerStars.EU

[color=#e56717]========== Files - Modified Within 60 Days ==========[/color]

[2013-01-02 21:22:05 | 002,883,584 | -HS- | M] () -- C:\Users\Ania\NTUSER.DAT
[2013-01-02 21:12:12 | 000,013,648 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013-01-02 21:12:12 | 000,013,648 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013-01-02 21:04:10 | 000,001,040 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2013-01-02 21:03:25 | 000,000,006 | -H-- | M] () -- C:\windows\tasks\SA.DAT
[2013-01-02 21:02:59 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2013-01-02 21:02:45 | 3010,797,568 | -HS- | M] () -- C:\hiberfil.sys
[2013-01-02 21:02:13 | 006,395,525 | -H-- | M] () -- C:\Users\Ania\AppData\Local\IconCache.db
[2013-01-02 21:00:56 | 000,090,804 | ---- | M] () -- C:\Users\Ania\Desktop\otlforum.rtf
[2013-01-02 20:29:01 | 000,001,044 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2013-01-01 18:22:11 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Ania\Desktop\OTL.exe
[2013-01-01 18:18:58 | 000,002,097 | ---- | M] () -- C:\Users\Ania\Desktop\HijackThis.lnk
[2013-01-01 18:04:15 | 102,315,992 | ---- | M] () -- C:\Users\Ania\Desktop\avast_free_antivirus_setup.exe
[2012-12-30 20:47:02 | 001,407,135 | ---- | M] () -- C:\Users\Ania\Desktop\dsc05611g.jpg
[2012-12-30 20:47:01 | 000,124,302 | ---- | M] () -- C:\Users\Ania\Desktop\dsc05612s.jpg
[2012-12-30 20:47:01 | 000,108,133 | ---- | M] () -- C:\Users\Ania\Desktop\bm22.jpg
[2012-12-30 20:46:10 | 000,127,161 | ---- | M] () -- C:\Users\Ania\Desktop\3erS30B1.jpg
[2012-12-22 22:18:25 | 001,551,484 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2012-12-22 22:18:25 | 000,698,598 | ---- | M] () -- C:\windows\SysNative\perfh015.dat
[2012-12-22 22:18:25 | 000,616,694 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2012-12-22 22:18:25 | 000,135,418 | ---- | M] () -- C:\windows\SysNative\perfc015.dat
[2012-12-22 22:18:25 | 000,106,816 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2012-12-22 16:03:26 | 000,009,740 | ---- | M] () -- C:\Users\Ania\Desktop\Bez tytułu 2e46.ods
[2012-12-21 21:31:18 | 000,310,560 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
[2012-12-15 22:58:02 | 000,000,983 | ---- | M] () -- C:\Users\Public\Desktop\Mp3tag.lnk
[2012-12-15 22:57:34 | 003,204,456 | ---- | M] () -- C:\Users\Ania\Desktop\mp3tagv253setup.exe
[2012-12-03 20:58:09 | 000,504,320 | ---- | M] () -- C:\Users\Ania\Desktop\Zestawienie Ania K._xls
[2012-11-27 12:06:36 | 000,441,531 | ---- | M] () -- C:\Users\Ania\Desktop\Zdjęcie0113.jpg
[2012-11-27 12:06:18 | 000,452,758 | ---- | M] () -- C:\Users\Ania\Desktop\Zdjęcie0112.jpg
[2012-11-25 23:22:33 | 000,000,000 | -H-- | M] () -- C:\windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2012-11-25 23:16:25 | 000,001,949 | ---- | M] () -- C:\Users\Public\Desktop\ViewNX.lnk
[2012-11-25 23:15:13 | 000,000,268 | RH-- | M] () -- C:\ProgramData\Contextual Menu Items
[2012-11-25 23:15:13 | 000,000,268 | RH-- | M] () -- C:\Users\Ania\AppData\Roaming\Conditionals
[2012-11-25 23:15:13 | 000,000,020 | -H-- | M] () -- C:\ProgramData\PKP_DLdw.DAT
[2012-11-25 23:14:17 | 000,002,206 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Nikon Monitor.lnk
[2012-11-25 23:14:10 | 000,002,018 | ---- | M] () -- C:\Users\Public\Desktop\Nikon Transfer.lnk
[2012-11-25 23:12:03 | 000,000,268 | RH-- | M] () -- C:\ProgramData\Console
[2012-11-25 23:12:03 | 000,000,268 | RH-- | M] () -- C:\Users\Ania\AppData\Roaming\Components
[2012-11-25 23:12:03 | 000,000,020 | -H-- | M] () -- C:\ProgramData\PKP_DLdu.DAT
[2012-11-25 23:09:30 | 000,001,845 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012-11-17 17:13:29 | 000,066,960 | ---- | M] () -- C:\Users\Ania\AppData\Local\GDIPFONTCACHEV1.DAT
[2012-11-14 22:34:03 | 000,001,088 | ---- | M] () -- C:\Users\Public\Desktop\PokerStars.eu MsM3M5 cztery44.lnk

[color=#e56717]========== Files Created - No Company Name ==========[/color]

[2013-01-02 21:00:56 | 000,090,804 | ---- | C] () -- C:\Users\Ania\Desktop\otlforum.rtf
[2013-01-01 18:18:58 | 000,002,097 | ---- | C] () -- C:\Users\Ania\Desktop\HijackThis.lnk
[2013-01-01 18:04:11 | 102,315,992 | ---- | C] () -- C:\Users\Ania\Desktop\avast_free_antivirus_setup.exe
[2012-12-30 20:58:31 | 000,127,161 | ---- | C] () -- C:\Users\Ania\Desktop\3erS30B1.jpg
[2012-12-30 20:54:12 | 000,124,302 | ---- | C] () -- C:\Users\Ania\Desktop\dsc05612s.jpg
[2012-12-30 20:54:07 | 001,407,135 | ---- | C] () -- C:\Users\Ania\Desktop\dsc05611g.jpg
[2012-12-30 20:53:46 | 000,108,133 | ---- | C] () -- C:\Users\Ania\Desktop\bm22.jpg
[2012-12-22 16:03:24 | 000,009,740 | ---- | C] () -- C:\Users\Ania\Desktop\Bez tytułu 2e46.ods
[2012-12-15 22:58:02 | 000,000,983 | ---- | C] () -- C:\Users\Public\Desktop\Mp3tag.lnk
[2012-12-15 22:57:32 | 003,204,456 | ---- | C] () -- C:\Users\Ania\Desktop\mp3tagv253setup.exe
[2012-12-03 20:58:09 | 000,504,320 | ---- | C] () -- C:\Users\Ania\Desktop\Zestawienie Ania K._xls
[2012-11-27 22:26:31 | 000,441,531 | ---- | C] () -- C:\Users\Ania\Desktop\Zdjęcie0113.jpg
[2012-11-27 22:26:29 | 000,452,758 | ---- | C] () -- C:\Users\Ania\Desktop\Zdjęcie0112.jpg
[2012-11-25 23:22:33 | 000,000,000 | -H-- | C] () -- C:\windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2012-11-25 23:16:25 | 000,001,949 | ---- | C] () -- C:\Users\Public\Desktop\ViewNX.lnk
[2012-11-25 23:15:13 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Contextual Menu Items
[2012-11-25 23:15:13 | 000,000,268 | RH-- | C] () -- C:\Users\Ania\AppData\Roaming\Conditionals
[2012-11-25 23:15:13 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLdw.DAT
[2012-11-25 23:14:17 | 000,002,206 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Nikon Monitor.lnk
[2012-11-25 23:14:10 | 000,002,018 | ---- | C] () -- C:\Users\Public\Desktop\Nikon Transfer.lnk
[2012-11-25 23:12:03 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Console
[2012-11-25 23:12:03 | 000,000,268 | RH-- | C] () -- C:\Users\Ania\AppData\Roaming\Components
[2012-11-25 23:12:03 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLdu.DAT
[2012-11-25 23:09:30 | 000,001,845 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012-11-16 22:15:27 | 000,000,003 | ---- | C] () -- C:\windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2012-11-16 22:03:09 | 000,000,003 | ---- | C] () -- C:\windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2012-11-14 22:34:03 | 000,001,088 | ---- | C] () -- C:\Users\Public\Desktop\PokerStars.eu MsM3M5 cztery44.lnk
[2012-01-30 22:33:31 | 000,210,032 | ---- | C] () -- C:\windows\SysWow64\DBCLIENT.DLL
[2011-09-27 18:08:35 | 000,000,640 | RHS- | C] () -- C:\Users\Ania\ntuser.pol
[2011-08-19 19:49:41 | 000,006,144 | ---- | C] () -- C:\Users\Ania\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-07-05 19:33:00 | 001,578,194 | ---- | C] () -- C:\windows\SysWow64\PerfStringBackup.INI
[2011-07-02 22:47:56 | 006,395,525 | -H-- | C] () -- C:\Users\Ania\AppData\Local\IconCache.db
[2011-07-02 19:58:09 | 000,066,960 | ---- | C] () -- C:\Users\Ania\AppData\Local\GDIPFONTCACHEV1.DAT
[2011-07-02 19:57:14 | 002,883,584 | -HS- | C] () -- C:\Users\Ania\NTUSER.DAT
[2011-07-02 19:57:14 | 000,524,288 | -HS- | C] () -- C:\Users\Ania\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2011-07-02 19:57:14 | 000,524,288 | -HS- | C] () -- C:\Users\Ania\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2011-07-02 19:57:14 | 000,065,536 | -HS- | C] () -- C:\Users\Ania\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2011-07-02 19:57:14 | 000,000,020 | -HS- | C] () -- C:\Users\Ania\ntuser.ini

[color=#e56717]========== ZeroAccess Check ==========[/color]

[2009-07-14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012-06-09 06:30:56 | 014,165,504 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012-06-09 05:46:56 | 012,868,608 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009-07-14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009-07-14 02:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009-07-14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

[color=#e56717]========== LOP Check ==========[/color]

[2012-10-10 21:45:24 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\AirportMadness4
[2011-09-16 21:42:50 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Awem
[2012-10-10 21:35:00 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\com.bigfatsimulations.airportmadness3.3A85083A650345D1ADAB4572C5816AD2DC9802A3.1
[2012-03-09 22:35:39 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Creevity Mp3 Cover Downloader
[2012-09-21 23:43:11 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\DivoGames
[2012-03-04 19:52:53 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Easy Image Modifier
[2011-12-14 22:27:09 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Gadu-Gadu 10
[2012-01-15 22:40:56 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\GHISLER
[2012-04-14 19:35:07 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\ICAClient
[2011-11-09 00:05:21 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\md studio
[2012-12-15 23:31:28 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Mp3tag
[2011-08-19 19:46:34 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\MusicNet
[2012-05-08 20:32:36 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Nokia
[2011-10-11 22:25:42 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Nokia Ovi Suite
[2012-05-08 20:49:00 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Nokia Suite
[2012-01-08 10:54:43 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\OpenFM
[2012-01-30 22:39:15 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\OpenOffice.org
[2011-10-11 22:42:16 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\PC Suite
[2012-09-18 22:32:25 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\Peace Craft
[2012-12-16 00:40:02 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\SoftGrid Client
[2011-07-05 19:35:08 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\TP
[2012-09-17 21:41:35 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\wargaming.net
[2012-09-18 23:02:41 | 000,000,000 | ---D | M] -- C:\Users\Ania\AppData\Roaming\World-LooM

[color=#e56717]========== Purity Check ==========[/color]


< End of report >[/log]

RSIT:
[log]
Logfile of random's system information tool 1.09 (written by random/random)
Run by Ania at 2013-01-02 21:33:27
Microsoft Windows 7 Professional
System drive C: has 371 GB (86%) free of 432 GB
Total RAM: 3828 MB (51% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:33:30, on 2013-01-02
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.17153)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\USB Camera\VM331_STI.EXE
C:\Program Files (x86)\EgisTec BioExcess\EgisTSR.exe
C:\Program Files (x86)\Common Files\Nikon\Monitor\NkMonitor.exe
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
C:\Program Files (x86)\EgisTec Port Locker\EgisPLTSR.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.exe
C:\Users\Ania\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VS5RXMTX\RSIT[1].exe
C:\Program Files (x86)\trend micro\Ania.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft....k/?LinkId=54896[/url]
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [url="http://www.google.pl/"]http://www.google.pl/[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [url="http://go.microsoft.com/fwlink/?LinkId=69157"]http://go.microsoft....k/?LinkId=69157[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft....k/?LinkId=54896[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft....k/?LinkId=54896[/url]
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: IEPwdBankBHO - {56CBB761-DA41-4E31-B270-B13B4B0A61D0} - C:\Program Files (x86)\EgisTec BioExcess\EgisIEPwdBank.dll
O2 - BHO: Pomocnik rejestracji usługi Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331_STI.EXE
O4 - HKLM\..\Run: [VitaKeyTSR] "C:\Program Files (x86)\EgisTec BioExcess\EgisTSR.exe"
O4 - HKLM\..\Run: [UCam_Menu] "C:\Program Files (x86)\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\3.0"
O4 - HKLM\..\Run: [YouCam Mirror Tray icon] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
O4 - HKLM\..\Run: [PLTSR] "C:\Program Files (x86)\EgisTec Port Locker\EgisPLTSR.exe"
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [UpdatePRCShortCut] "C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\OneKey App\OneKey Recovery" UpdateWithCreateOnce "Software\Lenovo\OneKey App\OneKey Recovery"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-21-1055744232-3505066323-1831296020-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1055744232-3505066323-1831296020-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\RunOnce: [WLStart] "C:\Program Files (x86)\Windows Live\Installer\wlstart.exe" /nosearch /nohomepage (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [WLStart] "C:\Program Files (x86)\Windows Live\Installer\wlstart.exe" /nosearch /nohomepage (User 'Default user')
O4 - Startup: OpenOffice.org 3.3.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Nikon Monitor.lnk = C:\Program Files (x86)\Common Files\Nikon\Monitor\NkMonitor.exe
O8 - Extra context menu item: Wyślij obraz do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Wyślij stronę do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: PokerStars.eu - {07BA1DA9-F501-4796-8728-74D1B91A6CD5} - C:\Program Files (x86)\PokerStars.EU\PokerStarsUpdate.exe (file missing)
O9 - Extra button: Wpis w blogu - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Wpis w blogu w Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Wyślij do interfejsu Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Wyślij do urządzenia &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - [url="http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab"]http://platformdl.ad...Plus/1.6/gp.cab[/url]
O20 - AppInit_DLLs: C:\windows\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: EgisTec Data Security Service - Egis Technology Inc. - C:\Program Files (x86)\EgisTec BioExcess\EgisDSService.exe
O23 - Service: EgisTec Service - Egis Technology Inc. - C:\Program Files (x86)\EgisTec BioExcess\EgisService.exe
O23 - Service: EgisTec Service Help - Egis Technology Inc. - C:\Program Files (x86)\EgisTec Port Locker\Egishlpsvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Usługa Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Usługa Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: IGRS - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo ReadyComm AppSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\AppSvc.exe
O23 - Service: Lenovo ReadyComm ConnSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe
O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: RtLedService Installer (RtLedService) - Realtek Semiconductor Corp. - C:\Program Files\Realtek\RtLED\RtLEDService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Unknown owner - C:\windows\System32\TPHDEXLG64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 12812 bytes
======Scheduled tasks folder======
C:\windows\tasks\GoogleUpdateTaskMachineCore.job
C:\windows\tasks\GoogleUpdateTaskMachineUA.job[/log]

To jest tylko część log.txt, więcej nie mogę wkleić, nie wiem o co chodzi, czy długość posta bedzie za długa? Może niech ktoś coś naipszę to wkleję resztę. :-)

hbubub

marcin_os
komentarz
komentarz (edytowane)

Log z RSIT
[log]
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:19:12, on 2013-01-01
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.17153)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Common Files\Nikon\Monitor\NkMonitor.exe
C:\Program Files (x86)\USB Camera\VM331_STI.EXE
C:\Program Files (x86)\EgisTec BioExcess\EgisTSR.exe
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\EgisTec Port Locker\EgisPLTSR.exe
C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = pl.v9.com/idg/idg_1331323256_496480
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft....k/?LinkId=54896[/url]
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [url="http://www.google.pl/"]http://www.google.pl/[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [url="http://go.microsoft.com/fwlink/?LinkId=69157"]http://go.microsoft....k/?LinkId=69157[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft....k/?LinkId=54896[/url]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft....k/?LinkId=54896[/url]
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [url="http://home.sweetim.com/?crg=3.1010000.10011&barid={8018C938-043C-11E2-8BB2-C0CB38E78EFA"]http://home.sweetim....B2-C0CB38E78EFA[/url]}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: IEPwdBankBHO - {56CBB761-DA41-4E31-B270-B13B4B0A61D0} - C:\Program Files (x86)\EgisTec BioExcess\EgisIEPwdBank.dll
O2 - BHO: Pomocnik rejestracji usługi Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Babylon IE plugin - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (file missing)
O2 - BHO: MediaBar - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\ToolBar\bsdtxmltbpi.dll (file missing)
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: MediaBar - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - C:\PROGRA~2\BEARSH~1\MediaBar\Datamngr\ToolBar\bsdtxmltbpi.dll (file missing)
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe"
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331_STI.EXE
O4 - HKLM\..\Run: [VitaKeyTSR] "C:\Program Files (x86)\EgisTec BioExcess\EgisTSR.exe"
O4 - HKLM\..\Run: [UCam_Menu] "C:\Program Files (x86)\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\3.0"
O4 - HKLM\..\Run: [YouCam Mirror Tray icon] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
O4 - HKLM\..\Run: [PLTSR] "C:\Program Files (x86)\EgisTec Port Locker\EgisPLTSR.exe"
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [UpdatePRCShortCut] "C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\OneKey App\OneKey Recovery" UpdateWithCreateOnce "Software\Lenovo\OneKey App\OneKey Recovery"
O4 - HKLM\..\Run: [Sweetpacks Communicator] C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-21-1055744232-3505066323-1831296020-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1055744232-3505066323-1831296020-1000\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-1055744232-3505066323-1831296020-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\RunOnce: [WLStart] "C:\Program Files (x86)\Windows Live\Installer\wlstart.exe" /nosearch /nohomepage (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [WLStart] "C:\Program Files (x86)\Windows Live\Installer\wlstart.exe" /nosearch /nohomepage (User 'Default user')
O4 - Startup: OpenOffice.org 3.3.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Nikon Monitor.lnk = C:\Program Files (x86)\Common Files\Nikon\Monitor\NkMonitor.exe
O8 - Extra context menu item: Translate this web page with Babylon - res://C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm
O8 - Extra context menu item: Translate with Babylon - res://C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm
O8 - Extra context menu item: Wyślij obraz do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Wyślij stronę do urządzenia &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: PokerStars.eu - {07BA1DA9-F501-4796-8728-74D1B91A6CD5} - C:\Program Files (x86)\PokerStars.EU\PokerStarsUpdate.exe
O9 - Extra button: Wpis w blogu - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Wpis w blogu w Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Wyślij do interfejsu Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Wyślij do urządzenia &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (file missing)
O9 - Extra 'Tools' menuitem: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (file missing)
O13 - Gopher Prefix:
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - [url="http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab"]http://platformdl.ad...Plus/1.6/gp.cab[/url]
O20 - AppInit_DLLs: C:\windows\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: EgisTec Data Security Service - Egis Technology Inc. - C:\Program Files (x86)\EgisTec BioExcess\EgisDSService.exe
O23 - Service: EgisTec Service - Egis Technology Inc. - C:\Program Files (x86)\EgisTec BioExcess\EgisService.exe
O23 - Service: EgisTec Service Help - Egis Technology Inc. - C:\Program Files (x86)\EgisTec Port Locker\Egishlpsvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Usługa Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Usługa Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: IGRS - Lenovo Group Limited - C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo ReadyComm AppSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\AppSvc.exe
O23 - Service: Lenovo ReadyComm ConnSvc - Lenovo Group Limited - C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe
O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: RtLedService Installer (RtLedService) - Realtek Semiconductor Corp. - C:\Program Files\Realtek\RtLED\RtLEDService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Unknown owner - C:\windows\System32\TPHDEXLG64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 14476 bytes[/log]

Nie wiem o co chodzi i co robię źle, za cholerę nie mogę wkleić drugiego loga, log.txt

log z Farbar Service Scanner
[log]
Farbar Service Scanner Version: 23-12-2012
Ran by Ania (administrator) on 03-01-2013 at 00:05:11
Running from "C:\Users\Ania\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VS5RXMTX"
Windows 7 Professional (X64)
Boot Mode: Normal
****************************************************************
Internet Services:
============
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.

Windows Firewall:
=============
Firewall Disabled Policy:
==================

System Restore:
============
System Restore Disabled Policy:
========================

Action Center:
============
Windows Update:
============
Windows Autoupdate Disabled Policy:
============================

Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.

Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1

Other Services:
==============

File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit

**** End of log ****[/log]

Natsuki Kuga
komentarz
komentarz

Czy problem nadal występuje?

 

Jeśli masz kłopoty z wklejaniem logów do posta, używaj wklej.org .

marcin_os
komentarz
komentarz

log z RSIT http://wklej.org/id/914846/

 

problem występuje niestety nadal.

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.